Report - ssi.mp3juice.blog/dl/ayc4Nv1fnZY

Report Overview

Visited public
2024-06-29 17:57:38
Tags
URL
ssi.mp3juice.blog/dl/ayc4Nv1fnZY
Finishing URL
ssi.mp3juice.blog/dl/ayc4Nv1fnZY
IP / ASN
172.67.194.169
#13335 CLOUDFLARENET
Title
Converting ... Crystal Castles - Crimewave (Crystal Castles vs. Health)

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
platform.hellspin.com	unknown	2020-05-18	2022-07-07 16:17:11	2024-06-28 10:10:46	19 kB	370 kB	104.26.8.227
location.services.mozilla.com	6771	1994-10-18	2014-06-01 18:52:34	2024-06-28 22:38:46	379 B	366 B	35.190.72.216
tm.ads.sportradar.com	40177	1998-10-30	2019-07-25 12:47:51	2024-06-29 10:53:55	426 B	32 kB	95.101.10.99
my.rtmark.net	9054	2014-10-29	2015-02-04 10:54:57	2024-06-29 12:35:49	533 B	1.2 kB	139.45.195.8
o.pki.goog	unknown	2016-06-13	2024-04-24 13:44:57	2024-06-28 18:15:27	1.6 kB	3.5 kB	142.250.74.131
www.google.com	7	1997-09-15	2015-05-10 13:11:19	2024-06-27 18:13:48	4.8 kB	80 kB	142.250.74.132
a.sportradarserving.com	2372	2019-05-15	2019-05-18 10:44:07	2024-06-27 18:37:46	959 B	4.8 kB	35.214.174.141
sentry.softlabs.com	unknown	2004-03-01	2021-11-03 08:02:43	2024-06-24 20:13:23	553 B	723 B	172.67.71.55
maxcdn.bootstrapcdn.com	724	2012-05-25	2014-06-18 02:37:31	2024-06-29 14:40:08	3.1 kB	278 kB	104.18.10.207
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2024-06-28 18:16:21	3.7 kB	182 kB	216.58.207.227
ws-cdn001.akamaized.net	188179	2014-03-18	2021-10-21 18:23:57	2024-06-28 10:17:32	440 B	68 kB	23.36.76.154
accounts.livechatinc.com	7698	2005-10-31	2017-07-31 07:50:56	2024-06-29 12:28:51	562 B	1.8 kB	95.101.10.202
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2024-06-28 18:20:08	941 B	18 kB	142.250.74.106
ux.plygainnoyau.com	unknown	unknown	No data	No data	416 B	1.5 kB	23.109.170.222
s.pemsrv.com	unknown	2023-08-01	2023-08-04 15:10:46	2024-06-29 13:54:46	480 B	236 B	95.211.229.245
tracker.ads.sportradar.com	41720	1998-10-30	2019-05-23 10:10:00	2024-06-29 10:53:55	844 B	82 kB	95.101.10.99
api.livechatinc.com	5353	2005-10-31	2013-12-20 15:27:35	2024-06-29 09:40:49	3.1 kB	19 kB	95.101.10.202
r10.o.lencr.org	unknown	2020-06-29	2024-06-06 21:45:11	2024-06-28 18:12:58	2.9 kB	8.0 kB	23.36.76.226
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2024-06-28 18:16:25	1.3 kB	286 kB	142.250.74.168
cd.jicaqueretd.com	unknown	unknown	No data	No data	418 B	1.5 kB	172.255.103.103
maithigloab.net	unknown	2024-03-27	2024-03-30 16:50:52	2024-05-14 21:14:16	2.1 kB	65 kB	139.45.197.244
cdn.launcher.a8r.games	unknown	2020-11-02	2023-06-19 07:49:23	2024-06-24 20:28:49	406 B	1.3 kB	172.64.146.103
wisteinsight.com	unknown	unknown	No data	No data	404 B	1.2 kB	23.109.170.31
s.opoxv.com	53756	2019-12-02	2019-12-13 10:21:20	2024-06-28 13:23:01	479 B	236 B	95.211.229.246
track.trackingtraffo.com	unknown	2021-12-15	2021-12-15 23:48:04	2024-06-28 19:26:07	1.0 kB	1.1 kB	88.214.195.156
secure.livechatinc.com	6541	2005-10-31	2012-08-20 21:27:12	2024-06-29 12:28:50	618 B	968 B	95.101.10.202
www.gstatic.com	unknown	2008-02-11	2016-07-26 11:37:06	2024-06-29 02:44:33	3.3 kB	1.1 MB	142.250.74.35
syndication.realsrv.com	9112	2019-02-07	2019-07-03 23:39:52	2024-06-28 07:27:18	491 B	236 B	95.211.229.246
cdn.onesignal.com	3015	2011-09-10	2015-04-22 15:41:50	2024-06-29 15:08:39	411 B	10 kB	104.17.111.223
cdn.seon.io	212690	2015-03-20	2017-09-06 18:34:18	2024-06-28 10:19:16	399 B	318 kB	54.240.174.66
aswpsdkus.com	5300	2019-01-22	2019-03-19 13:39:22	2024-06-27 19:15:16	410 B	233 kB	34.160.158.95
lil.sounddownmp3.com	unknown	2022-02-05	2022-10-19 06:58:19	2024-04-12 16:23:27	1.2 kB	9.5 kB	188.114.97.1
ze.rondoohm.com	unknown	unknown	No data	No data	1.3 kB	2.2 kB	172.255.103.103
r11.o.lencr.org	unknown	2020-06-29	2024-06-07 07:43:57	2024-06-28 18:12:11	327 B	887 B	2.23.172.203
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17 22:46:33	2024-06-29 09:07:46	421 B	8.6 kB	104.17.25.14
media.hellpartners.com	unknown	2021-07-14	2021-10-07 10:20:58	2024-06-28 10:14:07	514 B	1.2 kB	13.107.246.53
aa.sounddownmp3.com	unknown	2022-02-05	2024-04-12 16:23:28	2024-04-12 16:23:28	624 B	4.5 kB	188.114.97.1
ytdl.canehill.info	unknown	unknown	No data	No data	912 B	44 kB	188.114.97.1
s.magsrv.com	unknown	2023-08-01	2023-08-04 14:48:00	2024-06-29 11:46:31	480 B	236 B	95.211.229.245
d16vnr1tync57h.cloudfront.net	unknown	2008-04-25	2022-08-30 19:15:05	2024-06-28 10:10:43	1.9 kB	67 kB	143.204.42.37
ssi.mp3juice.blog	unknown	unknown	No data	No data	2.3 kB	30 kB	104.21.36.134
code.jquery.com	634	2005-12-10	2012-05-21 19:28:02	2024-06-29 07:13:50	870 B	63 kB	151.101.194.137
hellspin.com	unknown	2020-05-18	2020-08-04 10:43:02	2024-06-28 18:32:52	41 kB	8.0 MB	172.67.73.88
tsyndicate.com	13042	2017-03-08	2017-03-16 10:04:54	2024-06-29 18:36:31	466 B	617 B	148.251.120.78
ocsp.entrust.net	1208	1997-07-28	2014-01-10 03:18:45	2024-06-28 18:12:10	328 B	2.0 kB	184.24.45.171
centrifugo.platform-sys.net	unknown	2024-01-26	2024-02-20 20:38:49	2024-06-28 10:10:57	571 B	188 B	3.65.173.160
ytjar.downloader-ytjar.online	unknown	2022-07-10	2023-08-10 14:33:15	2024-03-27 21:20:07	622 B	5.1 kB	188.114.97.1
cdn.livechatinc.com	6288	2005-10-31	2012-06-22 10:37:34	2024-06-29 09:40:49	7.1 kB	743 kB	104.69.222.203
mediahell.world	unknown	2023-06-21	2023-07-01 07:21:20	2024-06-28 10:14:07	513 B	302 B	18.195.181.2
unpkg.com	11693	2016-01-06	2016-01-08 00:26:01	2024-06-28 19:26:50	850 B	134 kB	104.17.246.203
d3c3rwqla6qxaf.cloudfront.net	unknown	2008-04-25	2022-08-30 19:15:05	2024-06-28 10:19:16	24 kB	2.9 MB	143.204.42.73

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-06-29	medium	wisteinsight.com	Sinkholed
2024-06-29	medium	plygainnoyau.com	Sinkholed
2024-06-29	medium	rondoohm.com	Sinkholed
2024-06-29	medium	jicaqueretd.com	Sinkholed
2024-06-29	medium	rondoohm.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (102)

	URL	From	Size	First Seen	Last Seen
	hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2	ScriptElement	12 kB	2024-05-11	2024-08-19
Pretty URL hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2 IP 172.67.73.88 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-11 13:15 Last Seen2024-08-19 23:13 Times Seen88 Hash f7c77efa2881b8327f4610e9646c0d17 a7e93e2c53d6abf2ab9d72604bb57c7a9bbe3fc6 49f4146bb6ae4e7bd57f394b8eced8d0bb6759c371633edb04347ea5b29eabff Loading...

	unknown	ScriptElement	422 B	2024-05-22	2024-08-29
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-22 10:25 Last Seen2024-08-29 18:14 Times Seen94 Hash 86ce64c1b4855075b779206c4519cd7a 519fe216f968b450fa042fe8f52dc2b55334c7d8 7125a3d851367054552feae663583a3eff7e0723aa31633c1450e6061786515e Loading...

	my.rtmark.net/p.js?f=sync&lr=1&partner=88e642609867b249ea9df3234a2afb31a70d895dcb5f7f217d6cec67e6688b5c	ScriptElement	697 B	2023-05-07	2025-05-09
Pretty URL my.rtmark.net/p.js?f=sync&lr=1&partner=88e642609867b249ea9df3234a2afb31a70d895dcb5f7f217d6cec67e6688b5c IP 139.45.195.8 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-07 15:42 Last Seen2025-05-09 15:06 Times Seen151 Hash 4d6b016c8d4471e42cbc9aee065dbc85 6944f974c4f2b1436cb62140628fe095a73fd6b8 2a931025f8c5131bfdb853a25b1f55201361eded3dd58df6964e9f9d12dddfad Loading...

	hellspin.com/app/13567.66cf992e423190ff.js	ScriptElement	573 B	2024-06-10	2024-08-19
Pretty URL hellspin.com/app/13567.66cf992e423190ff.js IP 172.67.73.88 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-10 04:00 Last Seen2024-08-19 20:23 Times Seen9 Hash 23be5917e2279f11e997db29b260d19a f707d215c388bb3390bd21a58e1b311021628371 bad623192912851bf224e6113837c8de21d962106a729630c1f3aebbe3a40d04 Loading...

	hellspin.com/app/6959.2b559d99461bd6fa.js	ScriptElement	2.5 kB	2024-06-02	2024-11-24
Pretty URL hellspin.com/app/6959.2b559d99461bd6fa.js IP 172.67.73.88 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-02 05:43 Last Seen2024-11-24 07:21 Times Seen85 Hash d3552669e0e42713ceb82efef0eab18c baf6fb349b059e3056486a365f33c62f5a73c47d 27fc4264804f9ef3bb727b1771fa82cbe4b13549ab12b93de78e3b1fe3a3bdef Loading...

	unpkg.com/web-vitals/dist/web-vitals.iife.js	ScriptElement	7.2 kB	2024-06-07	2025-05-10
Pretty URL unpkg.com/web-vitals/dist/web-vitals.iife.js IP 104.17.246.203 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-07 10:00 Last Seen2025-05-10 14:00 Times Seen654 Hash 8e28db3a65522ae2012de9adce4de5bf 84ea63544da64a2355256b0bae973ae1eae04ce6 adf7f9b0dd938575c72ff1592ea18e7ab9bc53ff8838a38c8484c10f5d9be7fd Loading...

	cdn.livechatinc.com/widget/static/js/2.2ShMi4lz.chunk.js	ImportedModule	481 kB	2024-06-28	2024-08-19
Pretty URL cdn.livechatinc.com/widget/static/js/2.2ShMi4lz.chunk.js IP 104.69.222.203 ASN #20940 Akamai International B.V. Introduced by importedModule Embedded in HTML false Observations First Seen2024-06-28 09:26 Last Seen2024-08-19 18:57 Times Seen76 Hash bfea29b3026ff4739bb67e322611b98c cfe36dea9fa1108aa0a3c3eece6b6830e7a3d45b 4191566c6d568e81ef1c8c29729db11ea3861a01704271888d8d221e9eff89cf Loading...

	hellspin.com/app/5608.faf2ebe4b534f4f5.js	ScriptElement	1.4 kB	2024-06-10	2024-08-19
Pretty URL hellspin.com/app/5608.faf2ebe4b534f4f5.js IP 172.67.73.88 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-10 04:00 Last Seen2024-08-19 20:23 Times Seen9 Hash 99e776d93de179d4e1a99399b9636b9e d1ef99c541262c9f10be3c06a1036e547bdec747 6ee585b9a33f767e845556e6559f311066d306f0a0ea5b9bcc926ace3ac7094f Loading...

	www.googletagmanager.com/gtag/js?id=G-KEEDCVN9W4	ScriptElement	314 kB	2024-08-19	2024-08-19
Pretty URL www.googletagmanager.com/gtag/js?id=G-KEEDCVN9W4 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 18:48 Last Seen2024-08-19 18:48 Times Seen1 Hash fc3b2866ffc9b6e035961c55afbd598c 9af0a34e6b62cc95bfcddef0e072fa5c324d09c8 cff27f528912783a40099c3225072bf1c7dcd1dbbedc67f62b3b038c5a494e06 Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LdPYlIiAAAAAIIU-L2L9qPaqIVlZMBgugCw20qD&co=aHR0cHM6Ly9oZWxsc3Bpbi5jb206NDQz&hl=en&v=rKbTvxTxwcw5VqzrtN-ICwWt&size=invisible&cb=8tgp9arjr5yu	ScriptElement	69 B	2023-03-07	2025-05-11
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LdPYlIiAAAAAIIU-L2L9qPaqIVlZMBgugCw20qD&co=aHR0cHM6Ly9oZWxsc3Bpbi5jb206NDQz&hl=en&v=rKbTvxTxwcw5VqzrtN-ICwWt&size=invisible&cb=8tgp9arjr5yu IP 142.250.74.132 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 04:27 Times Seen116367 Hash 45ecf7458f42da80ac248ad42d610372 a5b3edf8328769bc754e6e616a957ceed4fdadd7 75867e75b209895995014b43c3d711476e3437481e5fbec91a4da674302558bf Loading...

	www.gstatic.com/recaptcha/releases/rKbTvxTxwcw5VqzrtN-ICwWt/recaptcha__en.js	ScriptElement	547 kB	2024-06-28	2024-09-19
Pretty URL www.gstatic.com/recaptcha/releases/rKbTvxTxwcw5VqzrtN-ICwWt/recaptcha__en.js IP 142.250.74.35 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-28 09:04 Last Seen2024-09-19 20:36 Times Seen6637 Hash 93e3f7248853ea26232278a54613f93c 16100c397972a415bfcfce1a470acad68c173375 0ec782544506a0aea967ea044659c633e1ee735b79e5172cb263797cc5cefe3a Loading...

	ssi.mp3juice.blog/glx_55541.js	ScriptElement	104 B	2024-01-22	2025-04-14
Pretty URL ssi.mp3juice.blog/glx_55541.js IP 104.21.36.134 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-01-22 00:41 Last Seen2025-04-14 04:51 Times Seen8 Hash 816502d8371814b830467b36d829e9f7 3a7370cbe7680fa94c23d286607e956d56e13e00 6cc73bca910ad5208b553af42c596371fbdf2f0510872d5bc742670f0a61bdab Loading...

	hellspin.com/configuration.js	ScriptElement	4.4 kB	2024-06-28	2024-08-19
Pretty URL hellspin.com/configuration.js IP 172.67.73.88 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-28 22:05 Last Seen2024-08-19 18:53 Times Seen8 Hash 316e04ab1594fa2b6aaa1ab7c7ca3d77 72f3e7a53bb3988b3641238bbcda74e696b9faad c67b9498a386796476e4ec59818a400805f0047b02959e1f4ad4009033547a45 Loading...

	hellspin.com/app/31653.fdd82c98a134e672.js	ScriptElement	2.6 kB	2024-06-02	2024-11-24
Pretty URL hellspin.com/app/31653.fdd82c98a134e672.js IP 172.67.73.88 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-02 05:43 Last Seen2024-11-24 07:21 Times Seen83 Hash 6b8785f324a7bf6c4043e52a9bf08a84 3f1852ef33077656dfd38b68ae357a6d379259dd 97cdeb3a248dc9f291b9e4cef99439d5e74f355a3154c1fa00967dea377e29be Loading...

	cdn.livechatinc.com/widget/static/js/6.CoSZoCaB.chunk.js	ImportedModule	782 B	2024-06-24	2024-08-29
Pretty URL cdn.livechatinc.com/widget/static/js/6.CoSZoCaB.chunk.js IP 104.69.222.203 ASN #20940 Akamai International B.V. Introduced by importedModule Embedded in HTML false Observations First Seen2024-06-24 12:34 Last Seen2024-08-29 18:15 Times Seen1099 Hash 89879f6eda326e6ddc29f55be5903f85 6fb512cc7a3575f5fc9437002c55f783cbe7e570 3b2a696be65cce769849d6cb2edb06b79e61bea3480707d7bd5880cb88a0a24e Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LcO0eQpAAAAAKabYSeOQdOq9axBOFHCMpmRNySZ&co=aHR0cHM6Ly95dGRsLmNhbmVoaWxsLmluZm86NDQz&hl=en&v=rKbTvxTxwcw5VqzrtN-ICwWt&size=invisible&cb=2ghcnua8h30c	ScriptElement	40 kB	2024-08-19	2024-08-19
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LcO0eQpAAAAAKabYSeOQdOq9axBOFHCMpmRNySZ&co=aHR0cHM6Ly95dGRsLmNhbmVoaWxsLmluZm86NDQz&hl=en&v=rKbTvxTxwcw5VqzrtN-ICwWt&size=invisible&cb=2ghcnua8h30c IP 142.250.74.132 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-19 18:48 Last Seen2024-08-19 18:48 Times Seen1 Hash 58b974ab3ad98bed1fb5aa19894d2a07 85f3fe7a47cc989bfd9781284e665cc69dccbcf6 94d8789cf0f41f8e7f4c27296cb7d47c3efc9a6d3d6c602cf1f5c1ef63b14a59 Loading...

	hellspin.com/app/65002.8add12e7fadf30e8.js	ScriptElement	2.4 kB	2024-06-02	2024-11-24
Pretty URL hellspin.com/app/65002.8add12e7fadf30e8.js IP 172.67.73.88 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-02 05:42 Last Seen2024-11-24 07:21 Times Seen84 Hash 7a064b427f92da1adff49f045d481a52 84a612cf8d22afca863c7ec6d5508df11e6316e4 75d33fc83e168976c3ca4d72e951eb5133e4b90b4401b057e84639d5d949312a Loading...

	hellspin.com/app/19479.6ca6441f69165c53.js	ScriptElement	3.8 kB	2024-06-02	2024-10-04
Pretty URL hellspin.com/app/19479.6ca6441f69165c53.js IP 172.67.73.88 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-02 05:43 Last Seen2024-10-04 11:09 Times Seen79 Hash 5cfa43fc598a3e6a3dd2dec053e5f243 ea32a7c7f17b980b070f07097ef8b12c478ab818 f6fa117a88b275d2e1f0fb3a54ff0a7f916b14adef42a10a9c0408be41210212 Loading...

	cdn.livechatinc.com/tracking.js	ScriptElement	82 kB	2024-06-28	2024-08-19
Pretty URL cdn.livechatinc.com/tracking.js IP 104.69.222.203 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-28 09:26 Last Seen2024-08-19 18:57 Times Seen78 Hash b16903fcdb08795354bbc550fecb5b8c 51ba252b57587c84a8530e9ba48f1b96131ae507 8f8ad551e6bf847350b9e389d43fc9c6d3dc6525d93a1d1960c85b49bd15b8ad Loading...

	ssi.mp3juice.blog/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js	ScriptElement	12 kB	2023-03-07	2025-05-11
Pretty URL ssi.mp3juice.blog/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js IP 104.21.36.134 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 02:05 Times Seen31288 Hash 88a769d2fe35899fd45a332a0a032cc0 514c6c1d8475d17e412849a4c90159517d0fa10a ccf00d1923b0131a10e0c6d26f95e5dee6ebf8621a27e83c5a2f68a2e0093142 Loading...

	ytjar.downloader-ytjar.online/13.php?id=ayc4Nv1fnZY&title=Crystal%20Castles%20-%20Crimewave%20(Crystal%20Castles%20vs.%20Health)	ScriptElement	0 B	0001-01-01	2025-05-11
Pretty URL ytjar.downloader-ytjar.online/13.php?id=ayc4Nv1fnZY&title=Crystal%20Castles%20-%20Crimewave%20(Crystal%20Castles%20vs.%20Health) IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-05-11 04:46 Times Seen4650765 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-M59LLXL	ScriptElement	246 kB	2024-08-19	2024-08-19
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-M59LLXL IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 18:48 Last Seen2024-08-19 18:48 Times Seen1 Hash 22e324ccf307cc5cbd10f1742e209350 bbc94d9a2862a5f9bd98307d5c0ed84fe936d4b2 18f18c4bb0f0f35fb2cc908a30688aeb91bc025c47d6432d6a6d5397301d2ba0 Loading...

	cdn.livechatinc.com/widget/static/js/3.Dt4piEpe.chunk.js	ImportedModule	72 kB	2024-06-28	2024-08-19
Pretty URL cdn.livechatinc.com/widget/static/js/3.Dt4piEpe.chunk.js IP 104.69.222.203 ASN #20940 Akamai International B.V. Introduced by importedModule Embedded in HTML false Observations First Seen2024-06-28 09:04 Last Seen2024-08-19 18:58 Times Seen95 Hash 2c2ebb690ba6ee786b6a850e053a9082 9eeca57587a4c067522c8764e95b06a426a4f2e1 f24cf4735a64a0619c55cbb563043a8018ec71cfaaf5f6bef80250f056c9a281 Loading...

	tm.ads.sportradar.com/dist/tag-manager.js?id=STM-AAAAOI	ScriptElement	328 kB	2024-04-20	2024-08-20
Pretty URL tm.ads.sportradar.com/dist/tag-manager.js?id=STM-AAAAOI IP 95.101.10.99 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-20 19:19 Last Seen2024-08-20 03:39 Times Seen91 Hash 35d28f4f5502536eef6cc64c45ee0ba0 f236c99b251d8c7b0183ac97b3a2b345e63eedf4 b6e773460c033ece7bdfc35cb6791526c6945af9955b1ca26ce37264b66cd800 Loading...

	hellspin.com/app/49540.a85fe342c23bd741.js	ScriptElement	12 kB	2024-06-02	2024-11-24
Pretty URL hellspin.com/app/49540.a85fe342c23bd741.js IP 172.67.73.88 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-02 05:43 Last Seen2024-11-24 07:21 Times Seen83 Hash bc5122253cb9a37e42e0737cbefca39d 0cf2ce94e2f5e855cee3daf7d8835af54c6a0b68 47a4da165507237690cc31aa64d2f35fb4ae66897f976fcc4e46ebd0c992da49 Loading...

	hellspin.com/app/65525.a7b568b3e610941c.js	ScriptElement	2.2 kB	2024-06-02	2024-11-24
Pretty URL hellspin.com/app/65525.a7b568b3e610941c.js IP 172.67.73.88 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-02 05:43 Last Seen2024-11-24 07:21 Times Seen84 Hash e536b75a10d3ec4b533acacd3fdb50ed 979b75256eb8bc528a77bd0594d49436f89eee50 95470b6b339c4a6c38b2cb6dd504b2b8ef444aaf7b6478130ed7bd4c15768390 Loading...

	api.livechatinc.com/v3.4/customer/action/get_configuration?organization_id=0423be4a-3d48-484e-a65a-2228122b8c26&version=300650.0.14.51103.9461.4201.1623.18.3.3.3.253.1&group_id=50&jsonp=__lc_static_config	ScriptElement	4.6 kB	2024-05-11	2024-08-19
Pretty URL api.livechatinc.com/v3.4/customer/action/get_configuration?organization_id=0423be4a-3d48-484e-a65a-2228122b8c26&version=300650.0.14.51103.9461.4201.1623.18.3.3.3.253.1&group_id=50&jsonp=__lc_static_config IP 95.101.10.202 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-11 13:15 Last Seen2024-08-19 23:13 Times Seen100 Hash 0497b427cc1b34836c694eb13316411f ecb5d8eec771fc6fde0eec09187ed23ffda4d030 f3ba76fdc42e5522fd20bef48f649a5165b3bb6e37344fdb6fbea7df804fb7b5 Loading...

	secure.livechatinc.com/customer/action/open_chat?license_id=9054575&group=50&embedded=1&widget_version=3&unique_groups=1	ScriptElement	109 B	2023-04-05	2025-03-02
Pretty URL secure.livechatinc.com/customer/action/open_chat?license_id=9054575&group=50&embedded=1&widget_version=3&unique_groups=1 IP 95.101.10.202 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-05 11:46 Last Seen2025-03-02 00:38 Times Seen6984 Hash 0b47a5f71e43dc48fe4a2e38b33baa80 b47894cdc2a2043584b3dff96bf588a557c42847 37ad73b199625a7e0733d018b474a1a7cad0faaa5f7acc12f5e3e788ce1e5d46 Loading...

	ytdl.canehill.info/mp3/ayc4Nv1fnZY	ScriptElement	7.9 kB	2024-08-19	2024-08-19
Pretty URL ytdl.canehill.info/mp3/ayc4Nv1fnZY IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-19 18:48 Last Seen2024-08-19 18:48 Times Seen1 Hash ae0759c2bb1ce44b73ae48b08e07605a 4f154d7aaa814a7a45ab9126290d4ba640eaddff b257e51f7c7b857d43afc31860e7279f19b8673bfc2027d1c327dbd694c09f60 Loading...

	hellspin.com/app/12657.5ab31255e3478579.js	ScriptElement	492 B	2024-06-10	2024-10-12
Pretty URL hellspin.com/app/12657.5ab31255e3478579.js IP 172.67.73.88 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-10 04:00 Last Seen2024-10-12 13:46 Times Seen11 Hash aba63a44a5bc4c0dc511cebf98583763 947d06237666b659355c6e824241a7e3a7952f84 9d0a4f9af0a9087ba16a79a8bd8c6c9015f231325f8d2b8048356d84ec2c7b0c Loading...

	cd.jicaqueretd.com/r4XyjNNfqmjHFi0/54376	ScriptElement	0 B	0001-01-01	2025-05-11
Pretty URL cd.jicaqueretd.com/r4XyjNNfqmjHFi0/54376 IP 172.255.103.103 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen0001-01-01 00:00 Last Seen2025-05-11 04:46 Times Seen4650765 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	cdn.livechatinc.com/widget/static/js/0.BJqCgkgV.chunk.js	ImportedModule	86 kB	2024-06-28	2024-08-19
Pretty URL cdn.livechatinc.com/widget/static/js/0.BJqCgkgV.chunk.js IP 104.69.222.203 ASN #20940 Akamai International B.V. Introduced by importedModule Embedded in HTML false Observations First Seen2024-06-28 09:26 Last Seen2024-08-19 18:57 Times Seen76 Hash 108fdb7bca1c1e160ff1511516df051f 2ba2335d7f5d076ba3cf24d504faf2981f8faeb2 48b3a83cbc612467db1ac7772aff0d360c7caea055430a62e5e6dedbcc35374c Loading...

	www.google.com/js/bg/YiMnlwYAPK-5JOvV4HgQVh4BjdfeuDlm7M1GgLf3u0w.js	ScriptElement	18 kB	2024-06-07	2024-08-21
Pretty URL www.google.com/js/bg/YiMnlwYAPK-5JOvV4HgQVh4BjdfeuDlm7M1GgLf3u0w.js IP 142.250.74.132 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-07 10:19 Last Seen2024-08-21 17:30 Times Seen559 Hash 5d31f8563fd0092335680029470d6270 66f8eeecdfa6f440631eadfaf180260bd5254cac 6223279706003cafb924ebd5e07810561e018dd7deb83966eccd4680b7f7bb4c Loading...

	hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2	ScriptElement	341 B	2023-05-07	2025-05-09
Pretty URL hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2 IP 172.67.73.88 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-07 15:42 Last Seen2025-05-09 15:06 Times Seen147 Hash eb14ba52f76577a101b213f30611d864 4d4c723d8198b12c61246154e80c303b17f6cf64 af6ed49c991c4ef0c4f1555d182daeb959f3a254a721487abf802705249b0055 Loading...

	hellspin.com/app/3336.f2473f3ea52a2f1c.js	ScriptElement	1.0 kB	2024-06-10	2024-08-19
Pretty URL hellspin.com/app/3336.f2473f3ea52a2f1c.js IP 172.67.73.88 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-10 04:00 Last Seen2024-08-19 20:23 Times Seen9 Hash 047e29488f662641d3e0fd57f5eee799 5e50628f463eb91e36db64c2de602760f1717568 1cad3186c4a8ebd1205a2e41eb24278ee66010696c73bbaf5b6f58b97b961427 Loading...

	hellspin.com/app/26915.013c53ff771df4d7.js	ScriptElement	2.3 kB	2024-06-10	2024-08-19
Pretty URL hellspin.com/app/26915.013c53ff771df4d7.js IP 172.67.73.88 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-10 04:00 Last Seen2024-08-19 20:23 Times Seen9 Hash 8cc0faf1bcd21dde2c21fab9a9589b77 149945107e69a43976531637f6bc24f1b9c305b2 afbbd7559ae61a680ab8375327f48a7f4e5c130fd58aa8c4974af42f594fd017 Loading...

	cdn.livechatinc.com/widget/static/js/7.xhyEK0_l.chunk.js	ImportedModule	74 B	2024-06-24	2025-05-11
Pretty URL cdn.livechatinc.com/widget/static/js/7.xhyEK0_l.chunk.js IP 104.69.222.203 ASN #20940 Akamai International B.V. Introduced by importedModule Embedded in HTML false Observations First Seen2024-06-24 12:34 Last Seen2025-05-11 00:27 Times Seen5320 Hash c96a39460d2b0a92409b2b92f3da88f9 c1ad7e3c7f38743ebadf589676726dad6799a9d5 af2012b0cdfa449f186df2f8dc9b3e64b48b8c5c630cc8d3c4df61973499e7c4 Loading...

	hellspin.com/app/75301.f4dbd4e0c4adc74e.js	ScriptElement	1.7 kB	2024-06-10	2024-08-19
Pretty URL hellspin.com/app/75301.f4dbd4e0c4adc74e.js IP 172.67.73.88 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-10 04:00 Last Seen2024-08-19 20:23 Times Seen9 Hash e6c6e9dfbb6a81028d329b9b3587cf01 d2aa5171afab7d84a39db17e30df01282ead5cf2 90de6fe79b4ca863acf7b0e6d63fe654a2f686bc0c36d04ac2c256b60e64e9df Loading...

	cdn.livechatinc.com/widget/static/js/4.DsIPCrft.chunk.js	ImportedModule	137 kB	2024-06-24	2024-08-19
Pretty URL cdn.livechatinc.com/widget/static/js/4.DsIPCrft.chunk.js IP 104.69.222.203 ASN #20940 Akamai International B.V. Introduced by importedModule Embedded in HTML false Observations First Seen2024-06-24 12:34 Last Seen2024-08-19 19:02 Times Seen698 Hash c014f95740c8bd30d747edcd67e1af78 dbd509fe1714b167234d9a3c924b078dfe500b83 3c4e3ce8a5362df99a41e22b1f711d7bd28ae12d0c7daa0b2fe8f38e66aa7775 Loading...

	www.google.com/recaptcha/api.js?render=6LdPYlIiAAAAAIIU-L2L9qPaqIVlZMBgugCw20qD&onload=rusted_labs_recaptcha_callback	ScriptElement	977 B	2024-06-28	2024-08-19
Pretty URL www.google.com/recaptcha/api.js?render=6LdPYlIiAAAAAIIU-L2L9qPaqIVlZMBgugCw20qD&onload=rusted_labs_recaptcha_callback IP 142.250.74.132 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-28 22:05 Last Seen2024-08-19 18:53 Times Seen20 Hash dbfaaaea2b5b10f7b45e8b91c018b7d3 29722629c67987316e172f786aa22dd10c6c04e3 c33aff6fc2f105e2ff4c25deb987cbbdc48fdc7169305f805d28b3854c9ef58c Loading...

	code.jquery.com/jquery-3.6.0.min.js	ScriptElement	90 kB	2023-03-07	2025-05-11
Pretty URL code.jquery.com/jquery-3.6.0.min.js IP 151.101.194.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 04:34 Times Seen205852 Hash 8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e Loading...

	hellspin.com/app/main.f895b5826c4ccae8.js	ScriptElement	177 kB	2024-06-28	2024-08-19
Pretty URL hellspin.com/app/main.f895b5826c4ccae8.js IP 172.67.73.88 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-28 22:05 Last Seen2024-08-19 18:53 Times Seen9 Hash f53bb121c7c85300d2f4569f9e827cc1 a8e69aab51130deb904b2b83b92f5a3076e29c3e ce2e44f13933910a0d15b9a2106b94c01e42bc8fd64c162d59e9287289e83d8e Loading...

	hellspin.com/app/remoteEntry.js	ScriptElement	178 kB	2024-06-28	2024-08-19
Pretty URL hellspin.com/app/remoteEntry.js IP 172.67.73.88 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-28 22:05 Last Seen2024-08-19 18:53 Times Seen9 Hash 4f4bb4cebcf6d2943b62360ee5b75616 09b67bd616864f1e67f20ad7a1ebb2eb2808d458 a5ecec26f276dc38c415472a18a35c394a52866013f6fdc04476c839857c1d5b Loading...

	cdn.seon.io/js/v4/agent.js	ScriptElement	317 kB	2023-04-05	2025-05-09
Pretty URL cdn.seon.io/js/v4/agent.js IP 54.240.174.66 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 13:53 Last Seen2025-05-09 15:06 Times Seen1214 Hash c34c3067f651e0fea2609171ab7bfec0 ab7c479be36ef4d193a5f235e90ad077a95bbfc0 5ebdda80c7f59c8f3237e0fa224a491321f544cf109c939141015c75d0f45312 Loading...

	track.trackingtraffo.com/pixel/js?auth=886um7&event=visit&uid=undefined&tid={TRANSACTION_ID}&cur={CURRENCY}&amount={DEPOSIT}	ScriptElement	499 B	2023-11-26	2024-11-24
Pretty URL track.trackingtraffo.com/pixel/js?auth=886um7&event=visit&uid=undefined&tid={TRANSACTION_ID}&cur={CURRENCY}&amount={DEPOSIT} IP 88.214.195.156 ASN #46636 NATCOWEB Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-26 06:43 Last Seen2024-11-24 07:21 Times Seen127 Hash 94a2da80ad033bcc6551afc83dfc21ca c192fc34cfa7b42dae1d30d3f2478219e9b55bc6 49cffad8cfc7cf2fe07c19850c6c27aab55fa2ec8dcaa353e4cacfaf53e1e50e Loading...

	hellspin.com/app/60273.946b9450a51d3fba.js	ScriptElement	1.9 kB	2024-06-10	2024-08-19
Pretty URL hellspin.com/app/60273.946b9450a51d3fba.js IP 172.67.73.88 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-10 04:00 Last Seen2024-08-19 20:23 Times Seen9 Hash 62711044926c3f556e1a9eb0863250f3 960f7cb1566c1ed1cc19f4b30ffc1b242e820ac8 563f7b622a5657deafd1485dfeb6daa10b2a21b7cc1ff5e735867f758b495c24 Loading...

	unknown	ScriptElement	283 B	2023-05-07	2025-05-09
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-07 15:42 Last Seen2025-05-09 15:06 Times Seen146 Hash 5610c224e7304e6fa2eaba8d34d153e7 72e518415b105162ed02d318a1e8443d254c982c bf5e461a1eec5437b2c060bc11a7e14307e2e24ce80b0aa7aa00dc7237847ff7 Loading...

	unknown	ScriptElement	433 B	2024-04-20	2025-05-09
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-20 19:19 Last Seen2025-05-09 15:06 Times Seen132 Hash 0872f14cdfd3c303ae00871adb72b242 e74f9e154056f6ab13fc2a5022366d7eb6b89125 041f5d877de3cd986c8c0ef66539840550258de3642ff2061aad194deea96e66 Loading...

	unknown	ScriptElement	153 B	2024-02-24	2025-01-18
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-24 05:23 Last Seen2025-01-18 20:47 Times Seen11 Hash 3a4ee13ca78fe83ff5cf44267a5c6786 bf31e0736b517a2dc93a19a6f1766db65f7a8069 f94973d363250cc7116060473299dcefaf742e45cfc8f3632ef557ab9be81c1e Loading...

	hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2	ScriptElement	390 B	2023-03-29	2025-03-17
Pretty URL hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2 IP 172.67.73.88 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-29 23:39 Last Seen2025-03-17 03:07 Times Seen147 Hash e6d27c5efbce34f78c524682c82967ce 8cedd28e604b118853749c4930b9eb1208d67485 b7b5d979128d65c046f71ad7ebb3354b8cd13a99e50f02c51df072e0c585fafb Loading...

	cdn.onesignal.com/sdks/OneSignalSDK.js	ScriptElement	9.2 kB	2023-11-28	2025-03-05
Pretty URL cdn.onesignal.com/sdks/OneSignalSDK.js IP 104.17.111.223 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-28 20:00 Last Seen2025-03-05 01:56 Times Seen4270 Hash a87c48d211877c49b878679b2e3cdab8 e75653dd0156806682e39abe8b1323ed40d840ca 4191d89ec03bce5dc273716075335e31851031184b0fff0ab9fc900a8442019f Loading...

	www.googletagmanager.com/gtag/js?id=G-ELE5VVG4DX&l=dataLayer&cx=c	ScriptElement	296 kB	2024-08-19	2024-08-19
Pretty URL www.googletagmanager.com/gtag/js?id=G-ELE5VVG4DX&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 18:48 Last Seen2024-08-19 18:48 Times Seen1 Hash c0018b5a43f32fbd0e99bffea6fea37b 34ee5c335325076ea0bd5820badc23508ababeb4 6c3f85d85d94e24478c5646f11fd43b735c83e424f75b827c5ccf5a563b0f8e0 Loading...

	hellspin.com/app/polyfills.e364cfdbc8ec3a81.js	ScriptElement	333 kB	2024-06-02	2024-08-19
Pretty URL hellspin.com/app/polyfills.e364cfdbc8ec3a81.js IP 172.67.73.88 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-02 05:43 Last Seen2024-08-19 21:02 Times Seen67 Hash 3980b6ff8b802867e884a92fce7cd524 dadd34cd84e4536f081d7267b451acb5f8693ddd 431806afcf2e6a97e9334996ee9131f77706db2beaf05f91d6a1cf6404ac5e8a Loading...

	www.google.com/recaptcha/api.js?render=6LcO0eQpAAAAAKabYSeOQdOq9axBOFHCMpmRNySZ	ScriptElement	904 B	2024-08-19	2024-08-19
Pretty URL www.google.com/recaptcha/api.js?render=6LcO0eQpAAAAAKabYSeOQdOq9axBOFHCMpmRNySZ IP 142.250.74.132 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 18:48 Last Seen2024-08-19 18:48 Times Seen1 Hash 6dadde2d55161256f53136dc290160d1 9c31f84b2b078bd47963b743dcd9d49355b97825 6c4392f304722551b11e882dac5ccbe57901447b67ee91580bdaf970be180ced Loading...

	cdn.livechatinc.com/widget/static/js/1.2nZU-uUT.chunk.js	ImportedModule	30 kB	2024-06-28	2024-08-19
Pretty URL cdn.livechatinc.com/widget/static/js/1.2nZU-uUT.chunk.js IP 104.69.222.203 ASN #20940 Akamai International B.V. Introduced by importedModule Embedded in HTML false Observations First Seen2024-06-28 09:26 Last Seen2024-08-19 18:57 Times Seen75 Hash e1fdef22ecd8f3353430a63468894853 88901fb3eb01605672a71f9e275758f420ebf6ea 0b1e9f62e90499d1125e23a5f388bf6ceb0bcc116d139931acc1c846f93a9454 Loading...

	cdnjs.cloudflare.com/ajax/libs/iframe-resizer/4.3.1/iframeResizer.contentWindow.js	ScriptElement	35 kB	2023-03-07	2025-04-14
Pretty URL cdnjs.cloudflare.com/ajax/libs/iframe-resizer/4.3.1/iframeResizer.contentWindow.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:26 Last Seen2025-04-14 04:51 Times Seen14 Hash 90d63c5b4613ed268cd47b55c30da535 bb511267776c113cb28df6e651010b749224a80e ddc2193310ebb4c54b0485757a431d4d67beb737a0205c0e6122ca641f78e87e Loading...

	hellspin.com/app/66504.6abe387efb9a45f5.js	ScriptElement	1.2 kB	2024-06-02	2024-11-24
Pretty URL hellspin.com/app/66504.6abe387efb9a45f5.js IP 172.67.73.88 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-02 05:43 Last Seen2024-11-24 07:21 Times Seen83 Hash f3965d7556f05a0a92ce893e33faea13 0c74d46ba3f0b64284865240f7eb4f10f5b623b8 916f0f2dd958dc14b746ecefccd7974cef08aa09138d6df9763755152ae96d6d Loading...

	cdn.livechatinc.com/widget/static/js/9.DNvb5pV8.chunk.js	ImportedModule	307 B	2024-06-24	2024-12-13
Pretty URL cdn.livechatinc.com/widget/static/js/9.DNvb5pV8.chunk.js IP 104.69.222.203 ASN #20940 Akamai International B.V. Introduced by importedModule Embedded in HTML false Observations First Seen2024-06-24 12:34 Last Seen2024-12-13 08:14 Times Seen2181 Hash a611e384114ceb76e510a16b37f9738c b0f870c2e48579c20693ade91e76b1687eb51883 40dc48349bc43c0444a7c11aee8fafb09df8809d1dcdb7b664d69e48a097ff6a Loading...

	hellspin.com/app/52183.09f52728bb44b324.js	ScriptElement	8.9 kB	2024-06-10	2024-08-19
Pretty URL hellspin.com/app/52183.09f52728bb44b324.js IP 172.67.73.88 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-10 04:00 Last Seen2024-08-19 20:23 Times Seen7 Hash 85a81285dde6010aea9bb543618d4f4c cdaf1bfda19c654eeffa3e3fec9c57c2a89a150c f2a0434122e41a32b251e11023a01468eeeb99fff8a3ad5ed23d88e38c0369cf Loading...

	unknown	ScriptElement	394 B	2023-03-07	2025-05-11
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06 Last Seen2025-05-11 00:04 Times Seen682 Hash 9d6eb340ce0c810328b8866aa3e14118 b60a1e2489912170edee437799255873d46d0abe 3a84e7f9c0e72f5006c5e32ba4426a0ab0b9bad4c8a2ad4c7e1e4357970483fb Loading...

	aswpsdkus.com/notify/v1/ua-sdk.min.js	ScriptElement	232 kB	2024-05-25	2024-08-19
Pretty URL aswpsdkus.com/notify/v1/ua-sdk.min.js IP 34.160.158.95 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-25 02:59 Last Seen2024-08-19 21:52 Times Seen87 Hash 9b6496067b47d14a0f05a39d279b9b1b e801fc737f00bfd15992faf062b59438616ac444 098acc59a1d47b64272d65ebe22d3b1bfc4f4b655d1c60509e92b4c22fdf21a5 Loading...

	hellspin.com/app/67551.86c6063d3f02ae10.js	ScriptElement	2.0 kB	2024-06-02	2024-11-24
Pretty URL hellspin.com/app/67551.86c6063d3f02ae10.js IP 172.67.73.88 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-02 05:42 Last Seen2024-11-24 07:21 Times Seen85 Hash 373da99fbbc507b828166dec322d8152 52acee181c539fdd8b8fea3a9ed685711d5d6dab 963c035dcfeeefc53451d5b257c05d02837349937c6446083f570187e63a94ed Loading...

	hellspin.com/app/67495.9ebcf05953e4f77f.js	ScriptElement	5.4 kB	2024-06-10	2024-08-19
Pretty URL hellspin.com/app/67495.9ebcf05953e4f77f.js IP 172.67.73.88 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-10 04:00 Last Seen2024-08-19 20:23 Times Seen9 Hash 4c80a1e2da99af4554938757a8cdf218 9a130811b27d9182d694bd70d0e52e3f991aa11a f61e9ad8bd0ba7c03473d2d2267c0383426264c8678827d4b8c538199c2ca10e Loading...

	hellspin.com/app/1878.e4e99a044b2d07c7.js	ScriptElement	235 kB	2024-06-28	2024-08-19
Pretty URL hellspin.com/app/1878.e4e99a044b2d07c7.js IP 172.67.73.88 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-28 22:05 Last Seen2024-08-19 18:53 Times Seen9 Hash 52ec64676d3a6b838ff4cb2949dc9e75 fa110897158a6150201c4c694148c605c57688c1 4007bf5d835588b7cd3955467979c0e8e2abac05c79dd73af59c5dc2188fdf37 Loading...

	tracker.ads.sportradar.com/dist//sp-3.8.0.js	ScriptElement	75 kB	2023-05-10	2025-05-11
Pretty URL tracker.ads.sportradar.com/dist//sp-3.8.0.js IP 95.101.10.99 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-10 19:16 Last Seen2025-05-11 00:04 Times Seen5294 Hash 143272dddc33395008a84a86ac9c2e96 8a90a07a66c30b4fa28300001cf97db7baba420e 6361e3a49a38d1fdc74ec96bd29ee1ecd7c30045ccb0e5f361413d65cbf5ef87 Loading...

	ytdl.canehill.info/js/jquery.min.js	ScriptElement	87 kB	2023-03-07	2025-05-10
Pretty URL ytdl.canehill.info/js/jquery.min.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:24 Last Seen2025-05-10 21:27 Times Seen508 Hash 27a8f25e65bfe1872ebd62e021a0c6ca 9f835084914c0f4403a080fb7de4abe0d210adf8 d3a518dea876de39f9e5dc1ffcdeb6c661aee25d8a62474386b664ef3bf1b40f Loading...

	hellspin.com/app/68301.d1d14c1f7c819ecb.js	ScriptElement	1.6 kB	2024-06-10	2024-08-19
Pretty URL hellspin.com/app/68301.d1d14c1f7c819ecb.js IP 172.67.73.88 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-10 04:00 Last Seen2024-08-19 20:23 Times Seen9 Hash 0c52494cc4cf5d79c2b023dfc99db107 f6455f443bdaeb37578ae3ff9f499b44dc51bf71 1239b7840fef473cffc1712fb4a5398474f988213d24e15c6067219d394705f6 Loading...

	api.livechatinc.com/v3.4/customer/action/get_localization?organization_id=0423be4a-3d48-484e-a65a-2228122b8c26&version=470b74842e9d45ce9f156d1d5a957bad_40f169a0175ba66eee854031d16bc6bb&language=en&group_id=50&jsonp=__lc_localization	ScriptElement	11 kB	2024-05-20	2024-11-24
Pretty URL api.livechatinc.com/v3.4/customer/action/get_localization?organization_id=0423be4a-3d48-484e-a65a-2228122b8c26&version=470b74842e9d45ce9f156d1d5a957bad_40f169a0175ba66eee854031d16bc6bb&language=en&group_id=50&jsonp=__lc_localization IP 95.101.10.202 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-20 14:40 Last Seen2024-11-24 07:21 Times Seen108 Hash 09ddfa8f5df4e5034df89ce254812dd0 ffd0e04c5d0e1332a3f7a022efc5d9ec59c315cf 599c3c38cd903d243f0341ab31536b7e7c24ca67a565751134e8172ce11d483b Loading...

	hellspin.com/app/styles.fa1905df45bb99b2.js	ScriptElement	142 kB	2024-06-02	2024-08-19
Pretty URL hellspin.com/app/styles.fa1905df45bb99b2.js IP 172.67.73.88 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-02 05:42 Last Seen2024-08-19 21:02 Times Seen66 Hash 992013b2633af5269a1680a8f1adc627 30a59f20031373592a20d498d7103028b84b1389 f53e0fa9ed4f4c80aa8de67e1be0b43b97f26c8db853b6eb41cc4b4ac3e0e4d9 Loading...

	hellspin.com/app/70519.d1425352fe3f051c.js	ScriptElement	36 kB	2024-06-28	2024-08-19
Pretty URL hellspin.com/app/70519.d1425352fe3f051c.js IP 172.67.73.88 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-28 22:05 Last Seen2024-08-19 18:53 Times Seen9 Hash 80d1e14866795ef3b111fb58ec4c909b 62eeea87bcbee22ce7f809b6bd4bda45e04d8b91 2108e68ac595ff83527779956192f6a9baaad040cfd8688bd45914f76af626a3 Loading...

	hellspin.com/app/33242.178c79f16078f5dc.js	ScriptElement	9.1 kB	2024-06-02	2024-11-24
Pretty URL hellspin.com/app/33242.178c79f16078f5dc.js IP 172.67.73.88 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-02 05:43 Last Seen2024-11-24 07:21 Times Seen81 Hash d237251c21fb2e298c3f28e5a4a5e16d d830dc592e42145ad4958514ad2c0a572ebb14f2 d6ea10c6ca9222cad9d55e1158b41023f1bae64b43632827d6ec8415ebb25419 Loading...

	cdn.livechatinc.com/widget/static/js/10.CdoV-K8b.chunk.js	ImportedModule	169 B	2024-06-24	2024-08-19
Pretty URL cdn.livechatinc.com/widget/static/js/10.CdoV-K8b.chunk.js IP 104.69.222.203 ASN #20940 Akamai International B.V. Introduced by importedModule Embedded in HTML false Observations First Seen2024-06-24 12:34 Last Seen2024-08-19 19:02 Times Seen113 Hash 283b68664f949a8bc335fdddbfb1e1ec f2c56d98d5f8ad8f38e599a8ddccd3e9ac9f63cb e53910f4caa987752f020978fa8eaacad1dd63d0393bc2f7818367a7e63296e6 Loading...

	wisteinsight.com/1clkn/55541	ScriptElement	6 B	2023-03-07	2025-05-11
Pretty URL wisteinsight.com/1clkn/55541 IP 23.109.170.31 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-05-11 04:27 Times Seen12575 Hash 9082dc37e5e8046929da411544ad071a 41e0e3963ed94e59e8a2f115994c382712411537 b7848d86edc8dc3b5bc6a5c666069f9a31e000cee51575d3b6083951607e1550 Loading...

	tracker.ads.sportradar.com/dist/tracker.js	ScriptElement	28 kB	2023-09-12	2025-05-11
Pretty URL tracker.ads.sportradar.com/dist/tracker.js IP 95.101.10.99 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-12 11:17 Last Seen2025-05-11 00:04 Times Seen5006 Hash 235331a0761142ae4fd345cdf7c7f9ed f71a2cb5824a7049b2c86f5658f48e17ff7f588c 063237f5f52863c3f711ef56625653397a5650eca2da3fa375dc181985a1badb Loading...

	cdn.livechatinc.com/widget/static/js/5.C_rgEAoe.chunk.js	ImportedModule	193 B	2024-06-24	2025-05-11
Pretty URL cdn.livechatinc.com/widget/static/js/5.C_rgEAoe.chunk.js IP 104.69.222.203 ASN #20940 Akamai International B.V. Introduced by importedModule Embedded in HTML false Observations First Seen2024-06-24 12:34 Last Seen2025-05-11 00:27 Times Seen5311 Hash 1771376dc07da48b3f03339d86d57b7b a5861ebfff23a92ccd1ce6b8a517b6f877d50a63 6e148df31d721a0ff08563f2d676751786e01418c86ee54ee8f0e88aa46ae26a Loading...

	cdn.livechatinc.com/widget/static/js/11.Gv78iMd6.chunk.js	ImportedModule	240 B	2024-06-24	2025-05-11
Pretty URL cdn.livechatinc.com/widget/static/js/11.Gv78iMd6.chunk.js IP 104.69.222.203 ASN #20940 Akamai International B.V. Introduced by importedModule Embedded in HTML false Observations First Seen2024-06-24 12:34 Last Seen2025-05-11 00:27 Times Seen5324 Hash 8ec94005c25c7e0874b7b048ea97dc00 2649e6120dff6489d15cf68a590e6e73e153aae3 d3b76fb03a7607b5da00fc0252be26fef8c76a0b68feb2ff19b439eeeab3f705 Loading...

	hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2	ScriptElement	5.8 kB	2024-04-20	2025-03-17
Pretty URL hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2 IP 172.67.73.88 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-20 19:19 Last Seen2025-03-17 03:07 Times Seen131 Hash 6040c3241fb2a831a8f5ff0649d3e39d 9b1838580704067b15250e4f9b894abc2824221d a3aa6549c2a99963875e1a0f284545d72b9290ae1338ea93d943dd6ed07d66bd Loading...

	hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2	ScriptElement	448 B	2024-04-20	2024-08-20
Pretty URL hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2 IP 172.67.73.88 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-20 19:19 Last Seen2024-08-20 03:39 Times Seen89 Hash a4566ee9bd28a2fd8ea0effd0939c4a2 92a69d462e86b9ccd393e96106f3d6ba1bc56aca e805efbf9760d6ec5fce77a3b6ac2857f04c60892567ca2e458c760dca4b39b2 Loading...

	ws-cdn001.akamaized.net/7693683943e78a298c36d469e68b47d8/widgetloader	ScriptElement	229 kB	2024-08-19	2024-08-19
Pretty URL ws-cdn001.akamaized.net/7693683943e78a298c36d469e68b47d8/widgetloader IP 23.36.76.154 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 18:48 Last Seen2024-08-19 18:48 Times Seen1 Hash ae5dc2780b955e79523b722522a27d85 bfcacf31388867db44624422859faedb3a0f2280 d7e931564534ecfb49b02a5c8ebde6d2783471d5a51b614a352f69b7bb8a4d75 Loading...

	hellspin.com/app/98529.476ac1fa726802b2.js	ScriptElement	5.3 kB	2024-06-10	2024-08-19
Pretty URL hellspin.com/app/98529.476ac1fa726802b2.js IP 172.67.73.88 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-10 04:00 Last Seen2024-08-19 20:23 Times Seen10 Hash eff1efcffe3131c0a29269456ad017cf 26f0921765e15e1fc2077581f0ec79c294903960 43ad52605aaecc73e72919672ccb41838c551b22155a428b3205447586838f6e Loading...

	unknown	ScriptElement	793 B	2023-09-21	2024-12-13
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-21 21:37 Last Seen2024-12-13 02:59 Times Seen348 Hash d66862ffb94dbcdb9080e36dfed112c0 d7a3f8b4cd44b341c30891320b2a08b6fc1ae2b2 ea0a2c81a47867ba19c9b6271f3ba3fdb22bb3c21612ed356bb33c91aa2e6195 Loading...

	hellspin.com/app/20739.b8d0a67c5f8709c7.js	ScriptElement	384 B	2024-06-02	2024-08-19
Pretty URL hellspin.com/app/20739.b8d0a67c5f8709c7.js IP 172.67.73.88 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-02 05:43 Last Seen2024-08-19 21:02 Times Seen67 Hash d4ab9089627a9397b8bf2dfccaec16c5 ea3336b1d288c156f2f944a8bf263dcb1a6d6cb8 cb273b9e15ab6bd2656bc1447c6ecf19d250d9f4ba64b835498242b2ce0561a1 Loading...

	a.sportradarserving.com/pixel?type=js&aid=1433&id=5156	ScriptElement	1.5 kB	2024-08-19	2024-08-19
Pretty URL a.sportradarserving.com/pixel?type=js&aid=1433&id=5156 IP 35.214.174.141 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 18:48 Last Seen2024-08-19 18:48 Times Seen1 Hash 88a5d600bcd44206337256db5348664c 5b2be33aa34976e14cf1529bed8d17c28f12721a d4a2e84f2ae8f02ac1abfb811e6f100f932a40486d35a266226488fb6cf37579 Loading...

	hellspin.com/app/2447.43a7bd65768f7dcb.js	ScriptElement	1.1 kB	2024-06-10	2024-10-12
Pretty URL hellspin.com/app/2447.43a7bd65768f7dcb.js IP 172.67.73.88 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-10 04:00 Last Seen2024-10-12 13:46 Times Seen11 Hash 18ebb06e4b6fd47046795b4bb1b9dc8e bab26d4ae1c8c80ffa1662472be78ffaebea7346 65567a40238dcbb22921b90958815155cecf6c19bb7df771b5eff218f1364c9f Loading...

	aa.sounddownmp3.com/button-ytjarmp4.php?id=ayc4Nv1fnZY&title=Crystal%20Castles%20-%20Crimewave%20(Crystal%20Castles%20vs.%20Health)	ScriptElement	0 B	0001-01-01	2025-05-11
Pretty URL aa.sounddownmp3.com/button-ytjarmp4.php?id=ayc4Nv1fnZY&title=Crystal%20Castles%20-%20Crimewave%20(Crystal%20Castles%20vs.%20Health) IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-05-11 04:46 Times Seen4650765 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	cdn.launcher.a8r.games/connector.js	ScriptElement	1.9 kB	2024-03-31	2025-05-09
Pretty URL cdn.launcher.a8r.games/connector.js IP 172.64.146.103 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-31 08:57 Last Seen2025-05-09 15:06 Times Seen662 Hash 31f31b789e1157fae8d55fb85b07f82d 79a087348423ab49ce222da90b82f006429bff80 71877550f925a2b52f1f57d969b2cdb9f9deab1d8cf7d3382ffae9675524308d Loading...

	hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2	ScriptElement	909 B	2023-03-07	2025-05-09
Pretty URL hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2 IP 172.67.73.88 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:36 Last Seen2025-05-09 15:06 Times Seen537 Hash ebcbda0c54d95f97e83353d7c9f02e64 f4133dc966560b8ae25821c5189da1313d304350 8c33076336ee60dcf10b1a876fd1bf0d53c394038bd28e09b5b2bac872941cef Loading...

	hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2	ScriptElement	426 B	2023-03-07	2025-05-09
Pretty URL hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2 IP 172.67.73.88 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:36 Last Seen2025-05-09 15:06 Times Seen531 Hash 6511fa3f7e30db934ae70cdf5eb1bffb 06027e62a2071ae9164f835ab1f4e79816127797 a1155914c10f25434890e72a446669748c3c4a2569fbc39e6625f4dcae502dc7 Loading...

	api.livechatinc.com/v3.6/customer/action/get_dynamic_configuration?license_id=9054575&client_id=c5e4f61e1a6c3b1521b541bc5c5a2ac5&url=https%3A%2F%2Fhellspin.com%2Fno%3Fbtag%3D659013_7992acb287074dcdb105665a66498ab2&channel_type=code&jsonp=__12dcflgtdwq	ScriptElement	1.2 kB	2024-08-19	2024-08-19
Pretty URL api.livechatinc.com/v3.6/customer/action/get_dynamic_configuration?license_id=9054575&client_id=c5e4f61e1a6c3b1521b541bc5c5a2ac5&url=https%3A%2F%2Fhellspin.com%2Fno%3Fbtag%3D659013_7992acb287074dcdb105665a66498ab2&channel_type=code&jsonp=__12dcflgtdwq IP 95.101.10.202 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 18:48 Last Seen2024-08-19 18:48 Times Seen1 Hash ebab203b5bbaf8a91c187799107884a5 2837c0c0213fdb33f2d9ef2525979d272b0bc5e4 0fe03665bd34b5e987ec203558a1f7fee7fcb7f3b97df106174f1566b0c190ab Loading...

	cdn.livechatinc.com/widget/static/js/livechat.DkxYi6_J.js	ScriptElement	401 B	2024-06-28	2024-08-19
Pretty URL cdn.livechatinc.com/widget/static/js/livechat.DkxYi6_J.js IP 104.69.222.203 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-28 09:26 Last Seen2024-08-19 18:57 Times Seen76 Hash c2f1c4b1540dad4809dd95233f8fc45c f9b623a37156ced449a3f7d3e2968bf739a346f3 595ff828fa3acb43335b9e852c5af29fdf27433ed9cadc524a4ced4cd04fbadc Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LdPYlIiAAAAAIIU-L2L9qPaqIVlZMBgugCw20qD&co=aHR0cHM6Ly9oZWxsc3Bpbi5jb206NDQz&hl=en&v=rKbTvxTxwcw5VqzrtN-ICwWt&size=invisible&cb=8tgp9arjr5yu	ScriptElement	41 kB	2024-08-19	2024-08-19
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LdPYlIiAAAAAIIU-L2L9qPaqIVlZMBgugCw20qD&co=aHR0cHM6Ly9oZWxsc3Bpbi5jb206NDQz&hl=en&v=rKbTvxTxwcw5VqzrtN-ICwWt&size=invisible&cb=8tgp9arjr5yu IP 142.250.74.132 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-19 18:48 Last Seen2024-08-19 18:48 Times Seen1 Hash c57e85eb12fedbc3d2336a3c6aea6130 24d1fbe19de79cb5415c12f04c1a0ecfa463d46d 8f7d8a6ce271c2c0fb3e2ad66a053fc3f8d6ec6364383498e0f4b891bba64065 Loading...

	hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2	ScriptElement	3.2 kB	2024-06-28	2024-08-19
Pretty URL hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2 IP 172.67.73.88 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-06-28 22:05 Last Seen2024-08-19 18:53 Times Seen9 Hash 3bc4eb631fcaac092ea96eb50a801e1f 1bd7a4f081620bd160bc0713bfaf45e96f962707 a89b59209293fb8ee2cfde2e96b4c32c121e688ebcdb0965058a2a550d66e391 Loading...

	hellspin.com/app/75105.9ddca62c1c96fdd6.js	ScriptElement	3.1 MB	2024-06-28	2024-08-19
Pretty URL hellspin.com/app/75105.9ddca62c1c96fdd6.js IP 172.67.73.88 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-28 22:05 Last Seen2024-08-19 18:53 Times Seen9 Hash 6ad5c39edca80e04fadc4a62083710af 07b94e6c9dc7aed42ae5165f09ca1b24e810d62d 74131115f9864559c8526b0f37665dddc1aa4987604a266e2624bfba1c52633f Loading...

	hellspin.com/app/81085.1747e800a02af809.js	ScriptElement	14 kB	2024-06-12	2024-08-19
Pretty URL hellspin.com/app/81085.1747e800a02af809.js IP 172.67.73.88 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-12 17:12 Last Seen2024-08-19 20:11 Times Seen64 Hash 7dee74781ec8dca003b093bf870f49d7 c07722e8c9e9116c46b6da209e71c3568bda7b7c f61a139422fe378c84d011ce9dfd3c7ad369d6f360a9780aa38ce239ff6b0692 Loading...

	cdn.livechatinc.com/widget/static/js/8.Bm-j6nQo.chunk.js	ImportedModule	437 B	2024-06-24	2024-08-19
Pretty URL cdn.livechatinc.com/widget/static/js/8.Bm-j6nQo.chunk.js IP 104.69.222.203 ASN #20940 Akamai International B.V. Introduced by importedModule Embedded in HTML false Observations First Seen2024-06-24 12:34 Last Seen2024-08-19 19:02 Times Seen698 Hash d7905f0c359865cabc21782fc2904379 0013e3489fdb243110f3b91201512fa153e2664b b3a4b8b8ec52c29f4f99271051b52cf3359f4e5469611147bbfb8452959971e4 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 3218a4b323627726e81b6b9d33bf0eb9	24 kB	2024-08-19 18:48	2024-08-19 18:48
Pretty Observations First Seen2024-08-19 18:48 Last Seen2024-08-19 18:48 Times Seen1 Hash 3218a4b323627726e81b6b9d33bf0eb9 fa16a69432dd363587f3dffd5f26e9bbc5c25054 7fa5d00a1f7ab53fe61d1234c1be0fafdf2a75164cdd4afdc440210b73432149 Loading...

	#2 Eval - bd9c451949e132bf02389d8e7f0b309f	22 B	2024-06-07 10:19	2024-08-21 17:30
Pretty Observations First Seen2024-06-07 10:19 Last Seen2024-08-21 17:30 Times Seen547 Hash bd9c451949e132bf02389d8e7f0b309f bf0714e0f7ef428e892dffc350044909766685e1 f472cb55487e632175db1de1845a2dae9c1e5eff98e06508331eea21c069248c Loading...

	#3 Eval - f48afd7e8f0cb133d4aceb63c50480a1	22 B	2024-06-07 10:19	2024-08-21 17:30
Pretty Observations First Seen2024-06-07 10:19 Last Seen2024-08-21 17:30 Times Seen556 Hash f48afd7e8f0cb133d4aceb63c50480a1 e06d55a27957082f0741082441225d3f52618fad caba42f4ba2de4280ed7c3f740cf0f6d692f761d13592fdf096ea9dbbce1f5f1 Loading...

	#4 Eval - 828e25a278f87cb1908438bc800894ba	18 kB	2024-08-19 18:48	2024-08-19 18:48
Pretty Observations First Seen2024-08-19 18:48 Last Seen2024-08-19 18:48 Times Seen1 Hash 828e25a278f87cb1908438bc800894ba 144ce4a1525f226bd3c8f967b0a7c91ce43c179b 000388e2c85ac546a57abb698da06074fe29eea9dd6f59a77c013bb1b75e2fbe Loading...

	#5 Eval - 00caf9c0befcff725d294e64ceab2117	62 B	2024-06-07 10:19	2024-08-21 17:30
Pretty Observations First Seen2024-06-07 10:19 Last Seen2024-08-21 17:30 Times Seen550 Hash 00caf9c0befcff725d294e64ceab2117 804d688bdea3ccef14324d30058c8d90a4d95a4f 4a416297d26465b251a9c207de45905a0c81c494d11658e32ea4476e285ca5ec Loading...

	#6 Eval - d0edb3cd495c2422b26a08b154c6556b	120 B	2023-09-30 00:55	2025-05-11 00:04
Pretty Observations First Seen2023-09-30 00:55 Last Seen2025-05-11 00:04 Times Seen852 Hash d0edb3cd495c2422b26a08b154c6556b 462e1e765ad8a0990197b012df31eddf89f50d11 bbe01cef61b4937d6b71b5ca85c2c3f2b6aa9e76ad55ca32cd20718d0238ab6c Loading...

		Size	First Seen	Last Seen
	#1 Write - accacec06248a474fe9ffcf7610c666a	6.7 kB	2024-08-19 18:48	2024-08-19 18:48
Pretty Observations First Seen2024-08-19 18:48 Last Seen2024-08-19 18:48 Times Seen1 Hash accacec06248a474fe9ffcf7610c666a 76a1f16fb509117c0e04d655a994e6144f217522 14443c01746ad82ffafd9cbfbf31b91dd26a3406e2a3c5a2eafa251f0fe2cca5 Loading...

HTTP Transactions (263)

URL IP Response Size

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
11d12f1fba8aca9d9418e9d8dc4952bf
815abf5c4b5eb6f908e3c9aa829ee2e6ccdcc449
97f30de1fa8e41bf859ba482af92cec319429e14f4f81a9c675977b672ed7b9a

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "97F30DE1FA8E41BF859BA482AF92CEC319429E14F4F81A9C675977B672ED7B9A"
Last-Modified: Fri, 28 Jun 2024 01:53:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12961
Expires: Sat, 29 Jun 2024 21:33:01 GMT
Date: Sat, 29 Jun 2024 17:57:00 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
116ef0f15d988075de9127b4d85aeeac
cd431538d40d2097891757fd0ca8c06b576051e9
7dd2781a8624ca9b8c54539a3c46c44cdd86477de3078e4dab624bfc7ce5b7ae

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "7DD2781A8624CA9B8C54539A3C46C44CDD86477DE3078E4DAB624BFC7CE5B7AE"
Last-Modified: Thu, 27 Jun 2024 11:47:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4495
Expires: Sat, 29 Jun 2024 19:11:55 GMT
Date: Sat, 29 Jun 2024 17:57:00 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
1a0a218c9c80fb05585b4f6c937a462a
e888eb5099221806dda66adb4bf792f352ef6610
bb1019aa57ae13a1711a36128a9cd37fba1ed8dfa97bef742765067f4ed17d50

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "BB1019AA57AE13A1711A36128A9CD37FBA1ED8DFA97BEF742765067F4ED17D50"
Last-Modified: Thu, 27 Jun 2024 04:21:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8482
Expires: Sat, 29 Jun 2024 20:18:22 GMT
Date: Sat, 29 Jun 2024 17:57:00 GMT
Connection: keep-alive

ssi.mp3juice.blog/images/mp3juice-blog.png

104.21.36.134

200 OK

7.0 kB

URL GET HTTP/3
ssi.mp3juice.blog/images/mp3juice-blog.png
IP
104.21.36.134:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ssi.mp3juice.blog/dl/ayc4Nv1fnZY
Certificate
IssuerGoogle Trust Services LLC
Subjectmp3juice.blog
Fingerprint4D:7D:B7:99:D7:46:52:0F:CB:A3:6E:A1:D3:A3:07:69:D5:A6:9B:C1
ValidityFri, 17 May 2024 15:16:57 GMT - Thu, 15 Aug 2024 15:16:56 GMT

File type
PNG image data, 221 x 125, 8-bit/color RGBA, non-interlaced
Size
7.0 kB (6992 bytes)
Hash
f42e5eb60ae26fc9b74c66e1999ceaad
e652cdce425c6ed455ca0840999a3aede8cfb111
3aca91ed77581fc87539106b9e9e49d3344ed5cca6f29ba04d49a8560bd799fa

HTTP Headers

GET /images/mp3juice-blog.png HTTP/1.1
Host: ssi.mp3juice.blog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ssi.mp3juice.blog/dl/ayc4Nv1fnZY
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 29 Jun 2024 17:57:01 GMT
content-type: image/png
content-length: 6992
last-modified: Thu, 13 Oct 2022 09:24:28 GMT
etag: "1b50-5eae7136feb00"
cache-control: max-age=7200
cf-cache-status: HIT
age: 1895
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=X4ztjfrL8o%2FQ%2F%2FCapzegi2VjWwEOl679gvK%2BzY%2Ff%2Bj20svKKCK6JaIxba04AJTEV3F%2ByVJ9SXr7iYcVExcSR9BaC0GuJfjp5ddDfxRzZb8Qn6hpP%2FOFQWhgphgIFKvrvvKCBOA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 89b7cbecab3792ac-CPH
alt-svc: h3=":443"; ma=86400

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
c1e6062b687b140e588184553f940763
cfb0887f7279ad82a73b8830d86d72775dea2803
9062ee5d1d4a53f2d02f07b5d5a97711d3bac1bf3e671403f75c8c28df00dd30

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "9062EE5D1D4A53F2D02F07B5D5A97711D3BAC1BF3E671403F75C8C28DF00DD30"
Last-Modified: Thu, 27 Jun 2024 01:22:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4698
Expires: Sat, 29 Jun 2024 19:15:19 GMT
Date: Sat, 29 Jun 2024 17:57:01 GMT
Connection: keep-alive

wisteinsight.com/1clkn/55541

23.109.170.31

200 OK

26 B

URL GET HTTP/1.1
wisteinsight.com/1clkn/55541
IP
23.109.170.31:443
ASN
#7979 SERVERS-COM

Requested by
https://ssi.mp3juice.blog/dl/ayc4Nv1fnZY
Certificate
IssuerLet's Encrypt
Subjectwisteinsight.com
Fingerprint56:2E:93:27:06:BC:EB:B1:15:68:0E:52:05:60:4B:F5:75:B2:FD:EE
ValidityTue, 11 Jun 2024 23:48:38 GMT - Mon, 09 Sep 2024 23:48:37 GMT

File type
ASCII text, with no line terminators
Size
26 B (26 bytes)
Hash
9082dc37e5e8046929da411544ad071a
41e0e3963ed94e59e8a2f115994c382712411537
b7848d86edc8dc3b5bc6a5c666069f9a31e000cee51575d3b6083951607e1550

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /1clkn/55541 HTTP/1.1
Host: wisteinsight.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ssi.mp3juice.blog/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 29 Jun 2024 17:57:01 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list
Set-Cookie: GL_UI4=eJw9jUtug0AQRPljJ4akJQ7gIxgUjL3MJivfAQ0zDZ4Ypq1mjJ3bZxIp2dUrPVV5nhcUL%2BAvyRrCm6hhe1R9s5dYojyUVVW%2BHSrZ151o%2BlJVTVnvYK3n1opuRBvBap4E29YuEWwGNMhatpIUZvDqrL%2FmYuhuIog7FkZlEE%2FOGDNIO6b7jFyEEBkxIaQfmrGnhzPEJzEEx72L2rjo7yCguQjzJ4hP2twe%2BSbx8jzx4Pk6CtsTT61WDuOBhULw32ElhcWB%2BAtShfPF0hWARtX%2B%2B7%2Bf8fizBonCRUuHZM%2FI38wATrY%3D; expires=Sun, 30-Jun-2024 17:57:01 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJwVyM0KgkAUhuE5hxiIJPjIC%2FAKTMsWbrNl6MIrMIsYGObIzNjP3WeLd%2FG8SilOE7CZkNRlXhd5dcjLUwV6gtsOPDroVvx7%2BII8uDiCvcOmC1ayRmYXlz9i9TfIYHu25pP1YudoxAXw0roZbvaxv%2FRX0KQJHEUzONxTBXrp3Q9e7R3S; expires=Sun, 30-Jun-2024 17:57:01 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff

ssi.mp3juice.blog/glx_55541.js

104.21.36.134

200 OK

110 B

URL GET HTTP/3
ssi.mp3juice.blog/glx_55541.js
IP
104.21.36.134:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ssi.mp3juice.blog/dl/ayc4Nv1fnZY
Certificate
IssuerGoogle Trust Services LLC
Subjectmp3juice.blog
Fingerprint4D:7D:B7:99:D7:46:52:0F:CB:A3:6E:A1:D3:A3:07:69:D5:A6:9B:C1
ValidityFri, 17 May 2024 15:16:57 GMT - Thu, 15 Aug 2024 15:16:56 GMT

File type
JavaScript source, ASCII text, with no line terminators
Size
110 B (110 bytes)
Hash
816502d8371814b830467b36d829e9f7
3a7370cbe7680fa94c23d286607e956d56e13e00
6cc73bca910ad5208b553af42c596371fbdf2f0510872d5bc742670f0a61bdab

HTTP Headers

GET /glx_55541.js HTTP/1.1
Host: ssi.mp3juice.blog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ssi.mp3juice.blog/dl/ayc4Nv1fnZY
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 29 Jun 2024 17:57:01 GMT
content-type: text/javascript
content-length: 110
last-modified: Thu, 18 Jan 2024 17:27:10 GMT
etag: "68-60f3bac6f24cf-gzip"
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=7200
cf-cache-status: HIT
age: 5043
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6lmdW9o2jSbr4HURw5VUdv0Rf5HMzzZCcmBFuxtbUSgxVoTs0OnqY3%2BtzUBIq0lK6sLQkU%2BXusaTbDqgQn8zen4moMFt3vypkVJ9U8EqyTytxGtWSNbpedK3M%2FfykYuUHLrqwA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cbee5e4292ac-CPH
alt-svc: h3=":443"; ma=86400

o.pki.goog/wr2

142.250.74.131

472 B

URL
o.pki.goog/wr2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
ff51be611c9cc3f7e611b23aad00dea6
76e8fefa896d4e9fa2c6aa4a1a30bd60433b9662
33b243fe9a28615ae6f0c7357c7c7c30e88e556450988102f4a22b01c10d212a

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 29 Jun 2024 17:57:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ux.plygainnoyau.com/rdbscXeAUdOig9/12532

23.109.170.222

200 OK

20 B

URL GET HTTP/1.1
ux.plygainnoyau.com/rdbscXeAUdOig9/12532
IP
23.109.170.222:443
ASN
#7979 SERVERS-COM

Requested by
https://ssi.mp3juice.blog/dl/ayc4Nv1fnZY
Certificate
IssuerLet's Encrypt
Subjectux.plygainnoyau.com
Fingerprint61:EF:99:34:C2:8D:10:71:42:A2:4C:F8:54:13:4C:77:C0:9A:93:2C
ValidityFri, 31 May 2024 07:22:30 GMT - Thu, 29 Aug 2024 07:22:29 GMT

File type
gzip compressed data, from Unix
Size
20 B (20 bytes)
Hash
7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /rdbscXeAUdOig9/12532 HTTP/1.1
Host: ux.plygainnoyau.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ssi.mp3juice.blog/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 29 Jun 2024 17:57:01 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://ssi.mp3juice.blog
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for, x-requested-with, cache-control, pragma, expires
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
Set-Cookie: GL_UI4=eJw9jUtug0AQRPljJ4akJQ7gIxgUjL3MJivfAQ0zDZ4Ypq1mjJ3bZxIp2dUrPVV5nhcUL%2BAvyRrCm6hhe1R9s5dYojyUVVW%2BHSrZ151o%2BlJVTVnvYK3n1opuRBvBap4E29YuEWwGNMhatpIUZvDqrL%2FmYuhuIog7FkZlEE%2FOGDNIO6b7jFyEEBkxIaQfmrGnhzPEJzEEx72L2rjo7yCguQjzJ4hP2twe%2BSbx8jzx4Pk6CtsTT61WDuOBhULw32ElhcWB%2BAtShfPF0hWARtX%2B%2B7%2Bf8fizBonCRUuHZM%2FI38wATrY%3D; expires=Sun, 30-Jun-2024 17:57:01 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJwVyM0KgkAUhuE5hxiIJPjIC%2FAKTMsWbrNl6MIrMIsYGObIzNjP3WeLd%2FG8SilOE7CZkNRlXhd5dcjLUwV6gtsOPDroVvx7%2BII8uDiCvcOmC1ayRmYXlz9i9TfIYHu25pP1YudoxAXw0roZbvaxv%2FRX0KQJHEUzONxTBXrp3Q9e7R3S; expires=Sun, 30-Jun-2024 17:57:01 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff

www.googletagmanager.com/gtag/js?id=G-KEEDCVN9W4

142.250.74.168

200 OK

104 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=G-KEEDCVN9W4
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://ssi.mp3juice.blog/dl/ayc4Nv1fnZY
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintBA:5D:A9:7F:41:46:B0:37:01:9E:05:B0:92:BA:41:C9:31:5B:4B:4A
ValidityThu, 13 Jun 2024 15:27:14 GMT - Thu, 05 Sep 2024 15:27:13 GMT

File type
JavaScript source, ASCII text, with very long lines (5945)
Size
104 kB (103775 bytes)
Hash
fc3b2866ffc9b6e035961c55afbd598c
9af0a34e6b62cc95bfcddef0e072fa5c324d09c8
cff27f528912783a40099c3225072bf1c7dcd1dbbedc67f62b3b038c5a494e06

HTTP Headers

GET /gtag/js?id=G-KEEDCVN9W4 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ssi.mp3juice.blog/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 29 Jun 2024 17:57:01 GMT
expires: Sat, 29 Jun 2024 17:57:01 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 103775
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

maxcdn.bootstrapcdn.com/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0

104.18.10.207

200 OK

77 kB

URL GET HTTP/2
maxcdn.bootstrapcdn.com/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
104.18.10.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ssi.mp3juice.blog/dl/ayc4Nv1fnZY
Certificate
IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint93:87:98:7E:3F:62:5F:E6:68:1C:1C:8A:E4:9D:FB:A8:C3:72:4F:90
ValiditySat, 25 May 2024 01:51:52 GMT - Fri, 23 Aug 2024 01:51:51 GMT

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459
Size
77 kB (77160 bytes)
Hash
af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

HTTP Headers

GET /font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ssi.mp3juice.blog
DNT: 1
Connection: keep-alive
Referer: https://maxcdn.bootstrapcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:01 GMT
content-type: font/woff2
content-length: 77160
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: "af7ae505a9eed503f8b8e6982036873e"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 10/31/2023 19:08:24
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 752
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 7caf6eef92434f801eec365bea4448b3
cdn-cache: HIT
cf-cache-status: HIT
age: 733300
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 89b7cbeebad3be38-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ssi.mp3juice.blog/favicon.ico?v=1.1

104.21.36.134

200 OK

2.0 kB

URL GET HTTP/3
ssi.mp3juice.blog/favicon.ico?v=1.1
IP
104.21.36.134:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ssi.mp3juice.blog/dl/ayc4Nv1fnZY
Certificate
IssuerGoogle Trust Services LLC
Subjectmp3juice.blog
Fingerprint4D:7D:B7:99:D7:46:52:0F:CB:A3:6E:A1:D3:A3:07:69:D5:A6:9B:C1
ValidityFri, 17 May 2024 15:16:57 GMT - Thu, 15 Aug 2024 15:16:56 GMT

File type
MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
Size
2.0 kB (2039 bytes)
Hash
2105fcc5b355d3ae5b8b1a9df0f1317b
55cc174311ee1eb5c38a56fab53b5f15fbdeef8e
93e7f9defa9e1c86e3dd546a478cea412e0743502802270277033a1fe470d84e

HTTP Headers

GET /favicon.ico?v=1.1 HTTP/1.1
Host: ssi.mp3juice.blog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ssi.mp3juice.blog/dl/ayc4Nv1fnZY
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 29 Jun 2024 17:57:02 GMT
content-type: image/x-icon
content-length: 2039
last-modified: Wed, 21 Sep 2022 14:39:42 GMT
etag: "1536-5e930ea4a6780-gzip"
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=7200
cf-cache-status: HIT
age: 566
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=K4qrcS1mVjYnP7s5gjmk4N6K65dq24mzHI3qd2BCz%2BK3CrNqs7c7r3yptKDBiZer%2Fy4%2FkOWWa%2BKR0%2FV3Rw4vDFh48pZ8UTKOB2sbL8HVtKWctf5m2Zyc50C68DLwmvJe4%2BQJYg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cbefa8a692ac-CPH
alt-svc: h3=":443"; ma=86400

o.pki.goog/wr2

142.250.74.131

472 B

URL
o.pki.goog/wr2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
ff51be611c9cc3f7e611b23aad00dea6
76e8fefa896d4e9fa2c6aa4a1a30bd60433b9662
33b243fe9a28615ae6f0c7357c7c7c30e88e556450988102f4a22b01c10d212a

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 29 Jun 2024 17:57:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ssi.mp3juice.blog/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js

104.21.36.134

200 OK

4.4 kB

URL GET HTTP/3
ssi.mp3juice.blog/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
IP
104.21.36.134:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ssi.mp3juice.blog/dl/ayc4Nv1fnZY
Certificate
IssuerGoogle Trust Services LLC
Subjectmp3juice.blog
Fingerprint4D:7D:B7:99:D7:46:52:0F:CB:A3:6E:A1:D3:A3:07:69:D5:A6:9B:C1
ValidityFri, 17 May 2024 15:16:57 GMT - Thu, 15 Aug 2024 15:16:56 GMT

File type
gzip compressed data, from Unix
Size
4.4 kB (4358 bytes)
Hash
c7ea73f97bb104201323b37410186837
f88c0676b784ccbcfc0d3004d2acf853fe4899e8
e2a86636c59fd23b320d4a2c284910647af909c5fea0b52e41b3cadc2dfa9332

HTTP Headers

GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1
Host: ssi.mp3juice.blog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ssi.mp3juice.blog/dl/ayc4Nv1fnZY
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 29 Jun 2024 17:57:01 GMT
content-type: application/javascript
last-modified: Wed, 26 Jun 2024 17:43:16 GMT
etag: W/"667c5334-302c"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nUgmD%2Bwux44zN%2FwJwtDKRa%2BijbMP8Pzz8W5RM3NwT8zLLqsnnQntaHnUJ04CG59IZav8ZGgLOb9P0yNlHNuGQ26M5EQvAvwXi4MzNlKOs%2Br%2B67k0ilYfAWaWi5T3daP8IgOFMQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 89b7cbecab4092ac-CPH
x-frame-options: DENY
x-content-type-options: nosniff
expires: Mon, 01 Jul 2024 17:57:01 GMT
cache-control: max-age=172800, public
content-encoding: gzip

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
0c22b10a118098f2cdc4b186e6f8e9a8
cfe8b247d843f42d2205bb16a48cefe38c78526e
1208b1961307dfb3c91a337dfa900f9be57f91cab6a7dd3d7c5e38d2399d5d10

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "1208B1961307DFB3C91A337DFA900F9BE57F91CAB6A7DD3D7C5E38D2399D5D10"
Last-Modified: Fri, 28 Jun 2024 05:32:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2171
Expires: Sat, 29 Jun 2024 18:33:13 GMT
Date: Sat, 29 Jun 2024 17:57:02 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
0c22b10a118098f2cdc4b186e6f8e9a8
cfe8b247d843f42d2205bb16a48cefe38c78526e
1208b1961307dfb3c91a337dfa900f9be57f91cab6a7dd3d7c5e38d2399d5d10

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "1208B1961307DFB3C91A337DFA900F9BE57F91CAB6A7DD3D7C5E38D2399D5D10"
Last-Modified: Fri, 28 Jun 2024 05:32:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2171
Expires: Sat, 29 Jun 2024 18:33:13 GMT
Date: Sat, 29 Jun 2024 17:57:02 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
0c22b10a118098f2cdc4b186e6f8e9a8
cfe8b247d843f42d2205bb16a48cefe38c78526e
1208b1961307dfb3c91a337dfa900f9be57f91cab6a7dd3d7c5e38d2399d5d10

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "1208B1961307DFB3C91A337DFA900F9BE57F91CAB6A7DD3D7C5E38D2399D5D10"
Last-Modified: Fri, 28 Jun 2024 05:32:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10095
Expires: Sat, 29 Jun 2024 20:45:17 GMT
Date: Sat, 29 Jun 2024 17:57:02 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
0c22b10a118098f2cdc4b186e6f8e9a8
cfe8b247d843f42d2205bb16a48cefe38c78526e
1208b1961307dfb3c91a337dfa900f9be57f91cab6a7dd3d7c5e38d2399d5d10

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "1208B1961307DFB3C91A337DFA900F9BE57F91CAB6A7DD3D7C5E38D2399D5D10"
Last-Modified: Fri, 28 Jun 2024 05:32:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2171
Expires: Sat, 29 Jun 2024 18:33:13 GMT
Date: Sat, 29 Jun 2024 17:57:02 GMT
Connection: keep-alive

lil.sounddownmp3.com/ea1.php?link=ayc4Nv1fnZY&title=Crystal%20Castles%20-%20Crimewave%20(Crystal%20Castles%20vs.%20Health)

188.114.97.1

200 OK

7.9 kB

URL GET HTTP/2
lil.sounddownmp3.com/ea1.php?link=ayc4Nv1fnZY&title=Crystal%20Castles%20-%20Crimewave%20(Crystal%20Castles%20vs.%20Health)
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ssi.mp3juice.blog/dl/ayc4Nv1fnZY
Certificate
IssuerGoogle Trust Services
Subjectsounddownmp3.com
Fingerprint78:7E:22:7F:07:92:1B:54:94:66:B2:EC:27:17:86:CE:53:BF:6D:E1
ValidityFri, 21 Jun 2024 05:27:23 GMT - Thu, 19 Sep 2024 05:27:22 GMT

File type
HTML document, ASCII text
Size
7.9 kB (7897 bytes)
Hash
5c6ea1b39b1c57909ea5fc4718d0f585
2c8ba51136318d29edb315eb35f48291cfa8ba77
67d5b1de751e32d7243365c353ec3085a9486ee463a110842123b35d06c8d6d8

HTTP Headers

GET /ea1.php?link=ayc4Nv1fnZY&title=Crystal%20Castles%20-%20Crimewave%20(Crystal%20Castles%20vs.%20Health) HTTP/1.1
Host: lil.sounddownmp3.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ssi.mp3juice.blog/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:02 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LGmXHeCyUyjbJ0K4aHkSLfU8gvk7LWXhuKVVHRBrHHes%2FR8%2FyGk5N078f6tzt%2FBn8kbdlFgf2R%2FLM2gAbHCm6sRtzFgm1T8ST54IydftL7UMCKkPv04vjQNsPKwfpWNUdsLdH211FA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cbed8a651d22-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/iframe-resizer/4.3.1/iframeResizer.contentWindow.js

104.17.25.14

200 OK

7.6 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/iframe-resizer/4.3.1/iframeResizer.contentWindow.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ytdl.canehill.info/mp3/ayc4Nv1fnZY
Certificate
IssuerLet's Encrypt
Subjectcdnjs.cloudflare.com
Fingerprint3B:5B:7C:DD:19:E8:16:5A:09:22:D6:1E:03:84:8D:B9:A1:32:BF:8E
ValiditySun, 02 Jun 2024 00:47:32 GMT - Sat, 31 Aug 2024 00:47:31 GMT

File type
JavaScript source, ASCII text
Size
7.6 kB (7554 bytes)
Hash
90d63c5b4613ed268cd47b55c30da535
bb511267776c113cb28df6e651010b749224a80e
ddc2193310ebb4c54b0485757a431d4d67beb737a0205c0e6122ca641f78e87e

HTTP Headers

GET /ajax/libs/iframe-resizer/4.3.1/iframeResizer.contentWindow.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:02 GMT
content-type: application/javascript; charset=utf-8
content-length: 7554
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5ffc72cf-888d"
last-modified: Mon, 11 Jan 2021 15:46:23 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 780479
expires: Thu, 19 Jun 2025 17:57:02 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nDwMt%2FTH9R1YhwcXTtrexeSfDD9XJzzB%2FoRlps1jJ7%2Fhi%2B2X%2F8rgE7%2F83fSJQ40c6VDms00nTuZEySi0uEgF2hd3bx28xbNCJemYRuOPAVEwEVlmgSV9N2xQyb2i9jeNgZ04oqCw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 89b7cbf3caee92e5-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ytdl.canehill.info/mp3/ayc4Nv1fnZY

188.114.97.1

200 OK

12 kB

URL GET HTTP/2
ytdl.canehill.info/mp3/ayc4Nv1fnZY
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ssi.mp3juice.blog/dl/ayc4Nv1fnZY
Certificate
IssuerGoogle Trust Services LLC
Subjectcanehill.info
FingerprintEA:6F:4C:77:8E:CC:C5:B6:8F:70:17:B9:4F:E9:04:14:66:90:FC:AA
ValidityThu, 23 May 2024 00:49:31 GMT - Wed, 21 Aug 2024 00:49:30 GMT

File type
JavaScript source, ASCII text, with very long lines (2374)
Size
12 kB (12152 bytes)
Hash
01ee932f28e90e38ae46e0a015ed79c7
26f575cbff2833d58e69d84e01b3d1b591ad8e50
2c130ace1874727b05d7a0dcb16f59a18c7daef4d62f433bc12e9713395a8d93

HTTP Headers

GET /mp3/ayc4Nv1fnZY HTTP/1.1
Host: ytdl.canehill.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ssi.mp3juice.blog/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:02 GMT
content-type: text/html; charset=utf-8
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-xss-protection: 0
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9diubPydHK5kxXyXgf9H9MGGk3tRSip8h79fbLOeT6iQCuK9SW3MIjELSWaRnjE0aCpqKD9i6%2BgFM%2BjRsSamt%2B1Wgx3h3OiqK5ufN7R%2Bvs%2Fz01l9HGkHLcx%2B0doEjobSMaD%2BDqk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cbedad2492ac-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

o.pki.goog/wr2

142.250.74.131

472 B

URL
o.pki.goog/wr2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
3665df621f90660848dcf3e894b58629
dbc1de6c85aaff5f54071dcebfa900ffc43b9b49
6c1d856b33871105bf000752af951492cc67cd4832f7c347fe87ae360668a089

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 29 Jun 2024 17:57:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ze.rondoohm.com/rA5zltn5xmW72pr/54376

172.255.103.103

200 OK

20 B

URL GET HTTP/1.1
ze.rondoohm.com/rA5zltn5xmW72pr/54376
IP
172.255.103.103:443
ASN
#7979 SERVERS-COM

Requested by
https://ytjar.downloader-ytjar.online/13.php?id=ayc4Nv1fnZY&title=Crystal%20Castles%20-%20Crimewave%20(Crystal%20Castles%20vs.%20Health)
Certificate
IssuerLet's Encrypt
Subjectze.rondoohm.com
Fingerprint86:B6:05:84:31:FC:D7:61:08:BB:93:88:62:AE:ED:87:B6:FA:2B:54
ValidityTue, 04 Jun 2024 06:05:57 GMT - Mon, 02 Sep 2024 06:05:56 GMT

File type
gzip compressed data, from Unix
Size
20 B (20 bytes)
Hash
7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /rA5zltn5xmW72pr/54376 HTTP/1.1
Host: ze.rondoohm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 29 Jun 2024 17:57:03 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for, x-requested-with, cache-control, pragma, expires
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
Set-Cookie: GL_UI4=eJw9jUtug0AQRPljJ4akJQ7gIxgUjL3MJivfAQ0zDZ4Ypq1mjJ3bZxIp2dUrPVV5nhcUL%2BAvyRrCm6hhe1R9s5dYojyUVVW%2BHSrZ151o%2BlJVTVnvYK3n1opuRBvBap4E29YuEWwGNMhatpIUZvDqrL%2FmYuhuIog7FkZlEE%2FOGDNIO6b7jFyEEBkxIaQfmrGnhzPEJzEEx72L2rjo7yCguQjzJ4hP2twe%2BSbx8jzx4Pk6CtsTT61WDuOBhULw32ElhcWB%2BAtShfPF0hWARtX%2B%2B7%2Bf8fizBonCRUuHZM%2FI38wATrY%3D; expires=Sun, 30-Jun-2024 17:57:03 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJwVyM0KgkAUhuE5hxiIJPjIC%2FAKTMsWbrNl6MIrMIsYGObIzNjP3WeLd%2FG8SilOE7CZkNRlXhd5dcjLUwV6gtsOPDroVvx7%2BII8uDiCvcOmC1ayRmYXlz9i9TfIYHu25pP1YudoxAXw0roZbvaxv%2FRX0KQJHEUzONxTBXrp3Q9e7R3S; expires=Sun, 30-Jun-2024 17:57:03 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff

code.jquery.com/jquery-3.6.0.min.js

151.101.194.137

200 OK

31 kB

URL GET HTTP/2
code.jquery.com/jquery-3.6.0.min.js
IP
151.101.194.137:443
ASN
#54113 FASTLY

Requested by
https://aa.sounddownmp3.com/button-ytjarmp4.php?id=ayc4Nv1fnZY&title=Crystal%20Castles%20-%20Crimewave%20(Crystal%20Castles%20vs.%20Health)
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
31 kB (30875 bytes)
Hash
8fb8fee4fcc3cc86ff6c724154c49c42
b82d238d4e31fdf618bae8ac11a6c812c03dd0d4
ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e

HTTP Headers

GET /jquery-3.6.0.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://aa.sounddownmp3.com
DNT: 1
Connection: keep-alive
Referer: https://aa.sounddownmp3.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-15d9d"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 29 Jun 2024 17:57:03 GMT
age: 1088394
x-served-by: cache-lga21931-LGA, cache-hel1410020-HEL
x-cache: HIT, HIT
x-cache-hits: 16, 332164
x-timer: S1719683823.394846,VS0,VE0
vary: Accept-Encoding
content-length: 30875
X-Firefox-Spdy: h2

maxcdn.bootstrapcdn.com/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0

104.18.10.207

200 OK

77 kB

URL GET HTTP/2
maxcdn.bootstrapcdn.com/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
104.18.10.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ssi.mp3juice.blog/dl/ayc4Nv1fnZY
Certificate
IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint93:87:98:7E:3F:62:5F:E6:68:1C:1C:8A:E4:9D:FB:A8:C3:72:4F:90
ValiditySat, 25 May 2024 01:51:52 GMT - Fri, 23 Aug 2024 01:51:51 GMT

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459
Size
77 kB (77160 bytes)
Hash
af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

HTTP Headers

GET /font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://aa.sounddownmp3.com
DNT: 1
Connection: keep-alive
Referer: https://maxcdn.bootstrapcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 29 Jun 2024 17:57:03 GMT
content-type: font/woff2
content-length: 77160
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: "af7ae505a9eed503f8b8e6982036873e"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 10/31/2023 19:08:24
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 752
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 25b21f25f7323a8959c9a5bd85cf8e5c
cdn-cache: HIT
cf-cache-status: HIT
age: 5082607
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 89b7cbf7cbe6be38-CPH
alt-svc: h3=":443"; ma=86400

cd.jicaqueretd.com/r4XyjNNfqmjHFi0/54376

172.255.103.103

200 OK

20 B

URL GET HTTP/1.1
cd.jicaqueretd.com/r4XyjNNfqmjHFi0/54376
IP
172.255.103.103:443
ASN
#7979 SERVERS-COM

Requested by
https://aa.sounddownmp3.com/button-ytjarmp4.php?id=ayc4Nv1fnZY&title=Crystal%20Castles%20-%20Crimewave%20(Crystal%20Castles%20vs.%20Health)
Certificate
IssuerLet's Encrypt
Subjectcd.jicaqueretd.com
FingerprintEE:AD:E3:29:BF:DB:E5:94:1B:57:B6:08:2E:40:9B:FA:5C:8B:39:1B
ValidityWed, 29 May 2024 07:06:49 GMT - Tue, 27 Aug 2024 07:06:48 GMT

File type
gzip compressed data, from Unix
Size
20 B (20 bytes)
Hash
7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /r4XyjNNfqmjHFi0/54376 HTTP/1.1
Host: cd.jicaqueretd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aa.sounddownmp3.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 29 Jun 2024 17:57:03 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://aa.sounddownmp3.com
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for, x-requested-with, cache-control, pragma, expires
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
Set-Cookie: GL_UI4=eJw9jUtug0AQRPljJ4akJQ7gIxgUjL3MJivfAQ0zDZ4Ypq1mjJ3bZxIp2dUrPVV5nhcUL%2BAvyRrCm6hhe1R9s5dYojyUVVW%2BHSrZ151o%2BlJVTVnvYK3n1opuRBvBap4E29YuEWwGNMhatpIUZvDqrL%2FmYuhuIog7FkZlEE%2FOGDNIO6b7jFyEEBkxIaQfmrGnhzPEJzEEx72L2rjo7yCguQjzJ4hP2twe%2BSbx8jzx4Pk6CtsTT61WDuOBhULw32ElhcWB%2BAtShfPF0hWARtX%2B%2B7%2Bf8fizBonCRUuHZM%2FI38wATrY%3D; expires=Sun, 30-Jun-2024 17:57:03 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJwVyM0KgkAUhuE5hxiIJPjIC%2FAKTMsWbrNl6MIrMIsYGObIzNjP3WeLd%2FG8SilOE7CZkNRlXhd5dcjLUwV6gtsOPDroVvx7%2BII8uDiCvcOmC1ayRmYXlz9i9TfIYHu25pP1YudoxAXw0roZbvaxv%2FRX0KQJHEUzONxTBXrp3Q9e7R3S; expires=Sun, 30-Jun-2024 17:57:03 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff

ze.rondoohm.com/rA5zltn5xmW72pr/54376

172.255.103.103

200 OK

20 B

URL GET HTTP/1.1
ze.rondoohm.com/rA5zltn5xmW72pr/54376
IP
172.255.103.103:443
ASN
#7979 SERVERS-COM

Requested by
https://ytjar.downloader-ytjar.online/13.php?id=ayc4Nv1fnZY&title=Crystal%20Castles%20-%20Crimewave%20(Crystal%20Castles%20vs.%20Health)
Certificate
IssuerLet's Encrypt
Subjectze.rondoohm.com
Fingerprint86:B6:05:84:31:FC:D7:61:08:BB:93:88:62:AE:ED:87:B6:FA:2B:54
ValidityTue, 04 Jun 2024 06:05:57 GMT - Mon, 02 Sep 2024 06:05:56 GMT

File type
gzip compressed data, from Unix
Size
20 B (20 bytes)
Hash
7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /rA5zltn5xmW72pr/54376 HTTP/1.1
Host: ze.rondoohm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ytjar.downloader-ytjar.online/
Cookie: GL_UI4=eJw9jUtug0AQRPljJ4akJQ7gIxgUjL3MJivfAQ0zDZ4Ypq1mjJ3bZxIp2dUrPVV5nhcUL%2BAvyRrCm6hhe1R9s5dYojyUVVW%2BHSrZ151o%2BlJVTVnvYK3n1opuRBvBap4E29YuEWwGNMhatpIUZvDqrL%2FmYuhuIog7FkZlEE%2FOGDNIO6b7jFyEEBkxIaQfmrGnhzPEJzEEx72L2rjo7yCguQjzJ4hP2twe%2BSbx8jzx4Pk6CtsTT61WDuOBhULw32ElhcWB%2BAtShfPF0hWARtX%2B%2B7%2Bf8fizBonCRUuHZM%2FI38wATrY%3D; GL_GI10=eJwVyM0KgkAUhuE5hxiIJPjIC%2FAKTMsWbrNl6MIrMIsYGObIzNjP3WeLd%2FG8SilOE7CZkNRlXhd5dcjLUwV6gtsOPDroVvx7%2BII8uDiCvcOmC1ayRmYXlz9i9TfIYHu25pP1YudoxAXw0roZbvaxv%2FRX0KQJHEUzONxTBXrp3Q9e7R3S
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 29 Jun 2024 17:57:03 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://ytjar.downloader-ytjar.online
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for, x-requested-with, cache-control, pragma, expires
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff

ytdl.canehill.info/js/jquery.min.js

188.114.97.1

200 OK

30 kB

URL GET HTTP/3
ytdl.canehill.info/js/jquery.min.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ytdl.canehill.info/mp3/ayc4Nv1fnZY
Certificate
IssuerGoogle Trust Services LLC
Subjectcanehill.info
FingerprintEA:6F:4C:77:8E:CC:C5:B6:8F:70:17:B9:4F:E9:04:14:66:90:FC:AA
ValidityThu, 23 May 2024 00:49:31 GMT - Wed, 21 Aug 2024 00:49:30 GMT

File type
JavaScript source, ASCII text, with very long lines (32058), with CRLF line terminators
Size
30 kB (30144 bytes)
Hash
27a8f25e65bfe1872ebd62e021a0c6ca
9f835084914c0f4403a080fb7de4abe0d210adf8
d3a518dea876de39f9e5dc1ffcdeb6c661aee25d8a62474386b664ef3bf1b40f

HTTP Headers

GET /js/jquery.min.js HTTP/1.1
Host: ytdl.canehill.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 29 Jun 2024 17:57:03 GMT
content-type: application/javascript; charset=UTF-8
content-length: 30144
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-xss-protection: 0
cache-control: public, max-age=14400
last-modified: Fri, 24 May 2024 13:11:12 GMT
etag: W/"15285-18faaba155f-gzip"
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=c4NRmqe9eRLxeHqPYAWkmmzKVClu%2FFDqvdCXfeYqTeCJgGbkl9wQmOj0bsqLQn7fvP4r9YKT5uLREwvBiXXVIJUv6Z6GiqxlfcuUe4FR%2FsWtiImVQcg%2BCfot3r3Jcx26yCQav%2FI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cbf39f798f5d-CPH
alt-svc: h3=":443"; ma=86400

code.jquery.com/jquery-3.6.0.min.js

151.101.194.137

200 OK

31 kB

URL GET HTTP/2
code.jquery.com/jquery-3.6.0.min.js
IP
151.101.194.137:443
ASN
#54113 FASTLY

Requested by
https://aa.sounddownmp3.com/button-ytjarmp4.php?id=ayc4Nv1fnZY&title=Crystal%20Castles%20-%20Crimewave%20(Crystal%20Castles%20vs.%20Health)
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
31 kB (30875 bytes)
Hash
8fb8fee4fcc3cc86ff6c724154c49c42
b82d238d4e31fdf618bae8ac11a6c812c03dd0d4
ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e

HTTP Headers

GET /jquery-3.6.0.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ytjar.downloader-ytjar.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-15d9d"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 29 Jun 2024 17:57:03 GMT
age: 1088395
x-served-by: cache-lga21931-LGA, cache-hel1410029-HEL
x-cache: HIT, HIT
x-cache-hits: 16, 857382
x-timer: S1719683824.753192,VS0,VE0
vary: Accept-Encoding
content-length: 30875
X-Firefox-Spdy: h2

o.pki.goog/wr2

142.250.74.131

471 B

URL
o.pki.goog/wr2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
559aa414317bf1f850db09285be67d56
92aa13c1573ee06a9bd63aa9c86ce554634d5b62
2bd132d3f876dd0bcfbd9f75f7440f2c446bf69fad4fa9514012cb2b13565e91

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 29 Jun 2024 17:57:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
ff9e68505189ccb8136d5c4ef7938452
439030a8fa7d23c1676237d82ff4cfcf20ec284c
c6d3ea39a12717fc9eb4bf74ddf088a29f79fcdfd0831759866f0de44a60081f

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "C6D3EA39A12717FC9EB4BF74DDF088A29F79FCDFD0831759866F0DE44A60081F"
Last-Modified: Sat, 29 Jun 2024 09:33:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2724
Expires: Sat, 29 Jun 2024 18:42:27 GMT
Date: Sat, 29 Jun 2024 17:57:03 GMT
Connection: keep-alive

www.gstatic.com/recaptcha/releases/rKbTvxTxwcw5VqzrtN-ICwWt/recaptcha__en.js

142.250.74.35

200 OK

216 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/rKbTvxTxwcw5VqzrtN-ICwWt/recaptcha__en.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcO0eQpAAAAAKabYSeOQdOq9axBOFHCMpmRNySZ&co=aHR0cHM6Ly95dGRsLmNhbmVoaWxsLmluZm86NDQz&hl=en&v=rKbTvxTxwcw5VqzrtN-ICwWt&size=invisible&cb=2ghcnua8h30c
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintC4:9C:27:09:1C:F7:14:C9:86:F0:B5:42:0B:8A:D2:AE:5E:AE:98:04
ValidityThu, 13 Jun 2024 16:31:03 GMT - Thu, 05 Sep 2024 16:31:02 GMT

File type
JavaScript source, ASCII text, with very long lines (636)
Size
216 kB (216123 bytes)
Hash
93e3f7248853ea26232278a54613f93c
16100c397972a415bfcfce1a470acad68c173375
0ec782544506a0aea967ea044659c633e1ee735b79e5172cb263797cc5cefe3a

HTTP Headers

GET /recaptcha/releases/rKbTvxTxwcw5VqzrtN-ICwWt/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ytdl.canehill.info
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 216123
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 29 Jun 2024 04:41:03 GMT
expires: Sun, 29 Jun 2025 04:41:03 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 23 Jun 2024 08:01:07 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 47760
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.google.com/recaptcha/api.js?render=6LcO0eQpAAAAAKabYSeOQdOq9axBOFHCMpmRNySZ

142.250.74.132

200 OK

1.1 kB

URL GET HTTP/2
www.google.com/recaptcha/api.js?render=6LcO0eQpAAAAAKabYSeOQdOq9axBOFHCMpmRNySZ
IP
142.250.74.132:443
ASN
#15169 GOOGLE

Requested by
https://ytdl.canehill.info/mp3/ayc4Nv1fnZY
Certificate
IssuerGoogle Trust Services
Subjectwww.google.com
Fingerprint7D:D9:03:2A:D5:D4:39:E1:4F:69:08:1C:64:E9:F9:16:1C:B1:5B:CF
ValidityThu, 13 Jun 2024 16:36:10 GMT - Thu, 05 Sep 2024 16:36:09 GMT

File type
gzip compressed data
Size
1.1 kB (1067 bytes)
Hash
55d2e8734ea7fa05fe2fb447078967d5
f56ce783b0b667ce1ef4831568a41d8cbbaa5d25
241a9fcbb9416ef9296fad114c1fdfedc377c772e81f32879e530add4d4609e4

HTTP Headers

GET /recaptcha/api.js?render=6LcO0eQpAAAAAKabYSeOQdOq9axBOFHCMpmRNySZ HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Sat, 29 Jun 2024 17:57:02 GMT
date: Sat, 29 Jun 2024 17:57:02 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

maithigloab.net/sftouch?userId=00808add24074ca1f4465773cf702f66&z=7629065&p_rid=14f84864-dd96-4723-8e58-967fc9bc8395&p_src=sf&branchId=0&rb=Xkp1xWDnv7Q3ObesGnh5pPXy3nu8iudpF2RRwrMW7mOfVNFseisKjXqOHChQzKC7AALe6UKKIxdv-F8VVkPmCPGuqJVvmzEEW5dH8nKXN0MHEv7L54VKYfGnRGisJutKtilbBj97fH_NUoJQgSNremT5pb7j1iwokIxV-7VI4XmQydim2-b_ioruIhheYm692fBMvfa3TQIYEDw2xx8Bl3iPG84wjGPlFXSc4mophuPzLsmU

139.45.197.244

2 B

URL
maithigloab.net/sftouch?userId=00808add24074ca1f4465773cf702f66&z=7629065&p_rid=14f84864-dd96-4723-8e58-967fc9bc8395&p_src=sf&branchId=0&rb=Xkp1xWDnv7Q3ObesGnh5pPXy3nu8iudpF2RRwrMW7mOfVNFseisKjXqOHChQzKC7AALe6UKKIxdv-F8VVkPmCPGuqJVvmzEEW5dH8nKXN0MHEv7L54VKYfGnRGisJutKtilbBj97fH_NUoJQgSNremT5pb7j1iwokIxV-7VI4XmQydim2-b_ioruIhheYm692fBMvfa3TQIYEDw2xx8Bl3iPG84wjGPlFXSc4mophuPzLsmU
IP
139.45.197.244:0
ASN
#9002 RETN Limited

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df

HTTP Headers

POST /sftouch?userId=00808add24074ca1f4465773cf702f66&z=7629065&p_rid=14f84864-dd96-4723-8e58-967fc9bc8395&p_src=sf&branchId=0&rb=Xkp1xWDnv7Q3ObesGnh5pPXy3nu8iudpF2RRwrMW7mOfVNFseisKjXqOHChQzKC7AALe6UKKIxdv-F8VVkPmCPGuqJVvmzEEW5dH8nKXN0MHEv7L54VKYfGnRGisJutKtilbBj97fH_NUoJQgSNremT5pb7j1iwokIxV-7VI4XmQydim2-b_ioruIhheYm692fBMvfa3TQIYEDw2xx8Bl3iPG84wjGPlFXSc4mophuPzLsmU HTTP/1.1
Host: maithigloab.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://maithigloab.net
DNT: 1
Connection: keep-alive
Referer: https://maithigloab.net/4/7629065
Cookie: OAID=00808add24074ca1f4465773cf702f66; oaidts=1719683824
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Content-Length: 0
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 29 Jun 2024 17:57:04 GMT
content-type: text/plain
content-length: 2
x-trace-id: 0e488f8edcc093b8e180b61c0de85853
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://maithigloab.net
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

maxcdn.bootstrapcdn.com/bootstrap/4.0.0/css/bootstrap.min.css

104.18.10.207

200 OK

25 kB

URL GET HTTP/2
maxcdn.bootstrapcdn.com/bootstrap/4.0.0/css/bootstrap.min.css
IP
104.18.10.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ssi.mp3juice.blog/dl/ayc4Nv1fnZY
Certificate
IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint93:87:98:7E:3F:62:5F:E6:68:1C:1C:8A:E4:9D:FB:A8:C3:72:4F:90
ValiditySat, 25 May 2024 01:51:52 GMT - Fri, 23 Aug 2024 01:51:51 GMT

File type
ASCII text, with very long lines (65325)
Size
25 kB (24850 bytes)
Hash
450fc463b8b1a349df717056fbb3e078
895125a4522a3b10ee7ada06ee6503587cbf95c5
2c0f3dcfe93d7e380c290fe4ab838ed8cadff1596d62697f5444be460d1f876d

HTTP Headers

GET /bootstrap/4.0.0/css/bootstrap.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ssi.mp3juice.blog
DNT: 1
Connection: keep-alive
Referer: https://ssi.mp3juice.blog/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:01 GMT
content-type: text/css; charset=utf-8
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31919000
content-encoding: br
etag: W/"450fc463b8b1a349df717056fbb3e078"
last-modified: Mon, 25 Jan 2021 22:04:04 GMT
cdn-cachedat: 03/18/2024 12:51:41
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1048
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: e55358c3b4f1e1646d47e82dfdc8abfc
cdn-cache: HIT
cf-cache-status: HIT
age: 2946692
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 89b7cbed1fb1be38-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.google.com/recaptcha/api2/anchor?ar=1&k=6LcO0eQpAAAAAKabYSeOQdOq9axBOFHCMpmRNySZ&co=aHR0cHM6Ly95dGRsLmNhbmVoaWxsLmluZm86NDQz&hl=en&v=rKbTvxTxwcw5VqzrtN-ICwWt&size=invisible&cb=2ghcnua8h30c

142.250.74.132

200 OK

0 B

URL GET HTTP/3
www.google.com/recaptcha/api2/anchor?ar=1&k=6LcO0eQpAAAAAKabYSeOQdOq9axBOFHCMpmRNySZ&co=aHR0cHM6Ly95dGRsLmNhbmVoaWxsLmluZm86NDQz&hl=en&v=rKbTvxTxwcw5VqzrtN-ICwWt&size=invisible&cb=2ghcnua8h30c
IP
142.250.74.132:443
ASN
#15169 GOOGLE

Requested by
https://ytdl.canehill.info/mp3/ayc4Nv1fnZY
Certificate
IssuerGoogle Trust Services
Subject*.google.com
Fingerprint5E:16:23:DF:7D:42:8E:61:6E:AA:4A:CC:FB:08:1A:B9:8F:FA:E0:A2
ValidityThu, 13 Jun 2024 15:27:14 GMT - Thu, 05 Sep 2024 15:27:13 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /recaptcha/api2/anchor?ar=1&k=6LcO0eQpAAAAAKabYSeOQdOq9axBOFHCMpmRNySZ&co=aHR0cHM6Ly95dGRsLmNhbmVoaWxsLmluZm86NDQz&hl=en&v=rKbTvxTxwcw5VqzrtN-ICwWt&size=invisible&cb=2ghcnua8h30c HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 29 Jun 2024 17:57:04 GMT
content-security-policy: script-src 'nonce-w5bYVKy3sPbXn70LaGSqnw' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/releases/rKbTvxTxwcw5VqzrtN-ICwWt/styles__ltr.css

142.250.74.35

200 OK

25 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/rKbTvxTxwcw5VqzrtN-ICwWt/styles__ltr.css
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcO0eQpAAAAAKabYSeOQdOq9axBOFHCMpmRNySZ&co=aHR0cHM6Ly95dGRsLmNhbmVoaWxsLmluZm86NDQz&hl=en&v=rKbTvxTxwcw5VqzrtN-ICwWt&size=invisible&cb=2ghcnua8h30c
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintC4:9C:27:09:1C:F7:14:C9:86:F0:B5:42:0B:8A:D2:AE:5E:AE:98:04
ValidityThu, 13 Jun 2024 16:31:03 GMT - Thu, 05 Sep 2024 16:31:02 GMT

File type
ASCII text, with very long lines (56359), with no line terminators
Size
25 kB (24613 bytes)
Hash
4adccf70587477c74e2fcd636e4ec895
af63034901c98e2d93faa7737f9c8f52e302d88b
0e04cd9eec042868e190cbdabf2f8f0c7172dcc54ab87eb616eca14258307b4d

HTTP Headers

GET /recaptcha/releases/rKbTvxTxwcw5VqzrtN-ICwWt/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24613
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 29 Jun 2024 04:30:46 GMT
expires: Sun, 29 Jun 2025 04:30:46 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 23 Jun 2024 08:01:07 GMT
content-type: text/css
vary: Accept-Encoding
age: 48378
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/releases/rKbTvxTxwcw5VqzrtN-ICwWt/recaptcha__en.js

142.250.74.35

200 OK

216 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/rKbTvxTxwcw5VqzrtN-ICwWt/recaptcha__en.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcO0eQpAAAAAKabYSeOQdOq9axBOFHCMpmRNySZ&co=aHR0cHM6Ly95dGRsLmNhbmVoaWxsLmluZm86NDQz&hl=en&v=rKbTvxTxwcw5VqzrtN-ICwWt&size=invisible&cb=2ghcnua8h30c
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintC4:9C:27:09:1C:F7:14:C9:86:F0:B5:42:0B:8A:D2:AE:5E:AE:98:04
ValidityThu, 13 Jun 2024 16:31:03 GMT - Thu, 05 Sep 2024 16:31:02 GMT

File type
JavaScript source, ASCII text, with very long lines (636)
Size
216 kB (216123 bytes)
Hash
93e3f7248853ea26232278a54613f93c
16100c397972a415bfcfce1a470acad68c173375
0ec782544506a0aea967ea044659c633e1ee735b79e5172cb263797cc5cefe3a

HTTP Headers

GET /recaptcha/releases/rKbTvxTxwcw5VqzrtN-ICwWt/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 216123
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 29 Jun 2024 04:41:03 GMT
expires: Sun, 29 Jun 2025 04:41:03 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 23 Jun 2024 08:01:07 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 47761
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

media.hellpartners.com/redirect.aspx?pid=22335&bid=1466&lpid=6

13.107.246.53

307 Temporary Redirect

0 B

URL GET HTTP/2
media.hellpartners.com/redirect.aspx?pid=22335&bid=1466&lpid=6
IP
13.107.246.53:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://ytdl.canehill.info/mp3/ayc4Nv1fnZY
Certificate
IssuerSectigo Limited
Subjecthellpartners.com
FingerprintDE:EF:4F:B6:9C:7D:9D:C1:51:FB:85:45:E7:15:13:72:0A:44:3C:51
ValidityFri, 24 May 2024 00:00:00 GMT - Sat, 24 May 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /redirect.aspx?pid=22335&bid=1466&lpid=6 HTTP/1.1
Host: media.hellpartners.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 307 Temporary Redirect
date: Sat, 29 Jun 2024 17:57:04 GMT
content-type: text/html
content-length: 0
cache-control: private,no-cache, no-store
pragma: no-cache
location: https://mediahell.world?btag=659013_7992acb287074dcdb105665a66498ab2
p3p: CP="This is not a P3P policy! It is used to bypass IEs problematic handling of cookies"
x-aspnet-version: 4.0.30319
set-cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a22335%2c%22BID%22%3a1466%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1719683824719)%5c%2f%22%2c%22CookieTag%22%3a%22146622335451240919C20246291757%22%7d%5d; SameSite=None;; domain=.hellpartners.com; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; secure
NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%2277b3b569-3b56-405f-ba89-bb4914f06421%7c0%22%7d%5d; domain=.hellpartners.com; expires=Sun, 29-Jun-3023 17:57:04 GMT; path=/; secure; SameSite=Strict
request-context: appId=cid-v1:83ffbda4-9458-475e-90ec-4427cfb5c3b0
access-control-expose-headers: Request-Context
x-azure-ref: 20240629T175704Z-17d85d5877c8b4mc5zxy8g2rds000000077g000000002rrp
x-cache: CONFIG_NOCACHE
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

15 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcO0eQpAAAAAKabYSeOQdOq9axBOFHCMpmRNySZ&co=aHR0cHM6Ly95dGRsLmNhbmVoaWxsLmluZm86NDQz&hl=en&v=rKbTvxTxwcw5VqzrtN-ICwWt&size=invisible&cb=2ghcnua8h30c
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintC4:9C:27:09:1C:F7:14:C9:86:F0:B5:42:0B:8A:D2:AE:5E:AE:98:04
ValidityThu, 13 Jun 2024 16:31:03 GMT - Thu, 05 Sep 2024 16:31:02 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15344, version 1.0
Size
15 kB (15344 bytes)
Hash
5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc

HTTP Headers

GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 29 Jun 2024 04:40:55 GMT
expires: Sun, 29 Jun 2025 04:40:55 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 47769
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.gstatic.com/recaptcha/releases/rKbTvxTxwcw5VqzrtN-ICwWt/recaptcha__en.js

142.250.74.35

200 OK

216 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/rKbTvxTxwcw5VqzrtN-ICwWt/recaptcha__en.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcO0eQpAAAAAKabYSeOQdOq9axBOFHCMpmRNySZ&co=aHR0cHM6Ly95dGRsLmNhbmVoaWxsLmluZm86NDQz&hl=en&v=rKbTvxTxwcw5VqzrtN-ICwWt&size=invisible&cb=2ghcnua8h30c
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintC4:9C:27:09:1C:F7:14:C9:86:F0:B5:42:0B:8A:D2:AE:5E:AE:98:04
ValidityThu, 13 Jun 2024 16:31:03 GMT - Thu, 05 Sep 2024 16:31:02 GMT

File type
JavaScript source, ASCII text, with very long lines (636)
Size
216 kB (216123 bytes)
Hash
93e3f7248853ea26232278a54613f93c
16100c397972a415bfcfce1a470acad68c173375
0ec782544506a0aea967ea044659c633e1ee735b79e5172cb263797cc5cefe3a

HTTP Headers

GET /recaptcha/releases/rKbTvxTxwcw5VqzrtN-ICwWt/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 216123
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 29 Jun 2024 04:41:03 GMT
expires: Sun, 29 Jun 2025 04:41:03 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 23 Jun 2024 08:01:07 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 47761
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/3
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdPYlIiAAAAAIIU-L2L9qPaqIVlZMBgugCw20qD&co=aHR0cHM6Ly9oZWxsc3Bpbi5jb206NDQz&hl=en&v=rKbTvxTxwcw5VqzrtN-ICwWt&size=invisible&cb=8tgp9arjr5yu
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintC4:9C:27:09:1C:F7:14:C9:86:F0:B5:42:0B:8A:D2:AE:5E:AE:98:04
ValidityThu, 13 Jun 2024 16:31:03 GMT - Thu, 05 Sep 2024 16:31:02 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15552, version 1.0
Size
16 kB (15552 bytes)
Hash
285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7

HTTP Headers

GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 28 Jun 2024 21:23:03 GMT
expires: Sat, 28 Jun 2025 21:23:03 GMT
cache-control: public, max-age=31536000
age: 74041
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.google.com/js/bg/YiMnlwYAPK-5JOvV4HgQVh4BjdfeuDlm7M1GgLf3u0w.js

142.250.74.132

200 OK

7.5 kB

URL GET HTTP/3
www.google.com/js/bg/YiMnlwYAPK-5JOvV4HgQVh4BjdfeuDlm7M1GgLf3u0w.js
IP
142.250.74.132:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdPYlIiAAAAAIIU-L2L9qPaqIVlZMBgugCw20qD&co=aHR0cHM6Ly9oZWxsc3Bpbi5jb206NDQz&hl=en&v=rKbTvxTxwcw5VqzrtN-ICwWt&size=invisible&cb=8tgp9arjr5yu
Certificate
IssuerGoogle Trust Services
Subject*.google.com
Fingerprint5E:16:23:DF:7D:42:8E:61:6E:AA:4A:CC:FB:08:1A:B9:8F:FA:E0:A2
ValidityThu, 13 Jun 2024 15:27:14 GMT - Thu, 05 Sep 2024 15:27:13 GMT

File type
JavaScript source, ASCII text, with very long lines (17693)
Size
7.5 kB (7515 bytes)
Hash
5d31f8563fd0092335680029470d6270
66f8eeecdfa6f440631eadfaf180260bd5254cac
6223279706003cafb924ebd5e07810561e018dd7deb83966eccd4680b7f7bb4c

HTTP Headers

GET /js/bg/YiMnlwYAPK-5JOvV4HgQVh4BjdfeuDlm7M1GgLf3u0w.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcO0eQpAAAAAKabYSeOQdOq9axBOFHCMpmRNySZ&co=aHR0cHM6Ly95dGRsLmNhbmVoaWxsLmluZm86NDQz&hl=en&v=rKbTvxTxwcw5VqzrtN-ICwWt&size=invisible&cb=2ghcnua8h30c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 7515
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 28 Jun 2024 08:21:24 GMT
expires: Sat, 28 Jun 2025 08:21:24 GMT
cache-control: public, max-age=31536000
age: 120941
last-modified: Mon, 03 Jun 2024 09:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/api2/logo_48.png

142.250.74.35

200 OK

2.2 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/api2/logo_48.png
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcO0eQpAAAAAKabYSeOQdOq9axBOFHCMpmRNySZ&co=aHR0cHM6Ly95dGRsLmNhbmVoaWxsLmluZm86NDQz&hl=en&v=rKbTvxTxwcw5VqzrtN-ICwWt&size=invisible&cb=2ghcnua8h30c
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintC4:9C:27:09:1C:F7:14:C9:86:F0:B5:42:0B:8A:D2:AE:5E:AE:98:04
ValidityThu, 13 Jun 2024 16:31:03 GMT - Thu, 05 Sep 2024 16:31:02 GMT

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced
Size
2.2 kB (2228 bytes)
Hash
ef9941290c50cd3866e2ba6b793f010d
4736508c795667dcea21f8d864233031223b7832
1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a

HTTP Headers

GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/rKbTvxTxwcw5VqzrtN-ICwWt/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 28 Jun 2024 08:41:39 GMT
expires: Fri, 05 Jul 2024 08:41:39 GMT
cache-control: public, max-age=604800
age: 119726
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

mediahell.world/?btag=659013_7992acb287074dcdb105665a66498ab2

18.195.181.2

302 Found

89 B

URL GET HTTP/2
mediahell.world/?btag=659013_7992acb287074dcdb105665a66498ab2
IP
18.195.181.2:443
ASN
#16509 AMAZON-02

Requested by
https://ytdl.canehill.info/mp3/ayc4Nv1fnZY
Certificate
IssuerAmazon
Subjectmediahell.world
Fingerprint4D:C9:0E:C4:00:0D:2D:EC:AD:4F:0F:83:7A:83:44:5B:42:43:5B:3C
ValiditySun, 26 May 2024 00:00:00 GMT - Wed, 25 Jun 2025 23:59:59 GMT

File type
HTML document, ASCII text
Size
89 B (89 bytes)
Hash
7d0ec815b243100c7b7b96347ebf2005
6469b06c3c9162a4acdf9b425e7f3e6f7d098220
33c78fd3c38e2e6a5c700a752f70724d1d86ca9d5e919356acd828d366395bc2

HTTP Headers

GET /?btag=659013_7992acb287074dcdb105665a66498ab2 HTTP/1.1
Host: mediahell.world
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Sat, 29 Jun 2024 17:57:05 GMT
content-type: text/html; charset=utf-8
content-length: 89
location: https://hellspin.com/?btag=659013_7992acb287074dcdb105665a66498ab2
X-Firefox-Spdy: h2

o.pki.goog/wr2

142.250.74.131

472 B

URL
o.pki.goog/wr2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
bef2decfc002a28553f98c40ec13611e
75c1154a73259d53dcd44b04b422d6255008b8f9
d6d8f09a03cc5eed81e48f5876354d1fbbf0ff00b1431ef86921c890d043554a

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 29 Jun 2024 17:57:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

hellspin.com/?btag=659013_7992acb287074dcdb105665a66498ab2

172.67.73.88

302 Found

11 kB

URL GET HTTP/2
hellspin.com/?btag=659013_7992acb287074dcdb105665a66498ab2
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ytdl.canehill.info/mp3/ayc4Nv1fnZY
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
data
Size
11 kB (11029 bytes)
Hash
cfd445955b328011cedd21b2b3269838
9603910797323c767c60ddca401dd5cf93d4daf5
8b00db573a8290384a974e3074f7e89e301fc5d67cbfe5e6c4cd2434a880dad4

HTTP Headers

GET /?btag=659013_7992acb287074dcdb105665a66498ab2 HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Sat, 29 Jun 2024 17:57:05 GMT
content-type: text/html; charset=UTF-8
cache-control: no-cache, private
location: /no?btag=659013_7992acb287074dcdb105665a66498ab2
set-cookie: preferred-language=no; path=/; secure; httponly; samesite=lax
btag=659013_7992acb287074dcdb105665a66498ab2; expires=Mon, 29-Jul-2024 00:00:00 GMT; Max-Age=2527375; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0mnAymHvyZd4dht27iesJ8nVRoubInAFFoyLO0SeH0e4LP1c9AQX6FaDTH68Z%2BxUbW67nNejIsAN5MnhxKYiVExRuzUqSsTJB9z6eF8GjEbvlLwp3B79Ft9iVELjzQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc036a428d7a-HEL
X-Firefox-Spdy: h2

fonts.gstatic.com/s/merriweathersans/v26/2-c99IRs1JiJN1FRAMjTN5zd9vgsFHX1QjU.woff2

216.58.207.227

200 OK

38 kB

URL GET HTTP/3
fonts.gstatic.com/s/merriweathersans/v26/2-c99IRs1JiJN1FRAMjTN5zd9vgsFHX1QjU.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintC4:9C:27:09:1C:F7:14:C9:86:F0:B5:42:0B:8A:D2:AE:5E:AE:98:04
ValidityThu, 13 Jun 2024 16:31:03 GMT - Thu, 05 Sep 2024 16:31:02 GMT

File type
Web Open Font Format (Version 2), TrueType, length 38268, version 1.0
Size
38 kB (38268 bytes)
Hash
9b0f2fe8ae9d38fea56cc9e84fdbc2c2
6fe3352049b17554d46380342372a737f4a8a3de
a8a4a852dedcc7e3b6bb2c6acffac1a82a31828a00749ce2a8c2d6dd5f268dd9

HTTP Headers

GET /s/merriweathersans/v26/2-c99IRs1JiJN1FRAMjTN5zd9vgsFHX1QjU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hellspin.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 38268
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 29 Jun 2024 04:27:07 GMT
expires: Sun, 29 Jun 2025 04:27:07 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 27 Apr 2023 00:13:26 GMT
content-type: font/woff2
age: 48599
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtm.js?id=GTM-M59LLXL

142.250.74.168

200 OK

81 kB

URL GET HTTP/3
www.googletagmanager.com/gtm.js?id=GTM-M59LLXL
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintBA:5D:A9:7F:41:46:B0:37:01:9E:05:B0:92:BA:41:C9:31:5B:4B:4A
ValidityThu, 13 Jun 2024 15:27:14 GMT - Thu, 05 Sep 2024 15:27:13 GMT

File type
JavaScript source, ASCII text, with very long lines (24824)
Size
81 kB (80610 bytes)
Hash
22e324ccf307cc5cbd10f1742e209350
bbc94d9a2862a5f9bd98307d5c0ed84fe936d4b2
18f18c4bb0f0f35fb2cc908a30688aeb91bc025c47d6432d6a6d5397301d2ba0

HTTP Headers

GET /gtm.js?id=GTM-M59LLXL HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 29 Jun 2024 17:57:06 GMT
expires: Sat, 29 Jun 2024 17:57:06 GMT
cache-control: private, max-age=900
last-modified: Sat, 29 Jun 2024 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 80610
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

ws-cdn001.akamaized.net/7693683943e78a298c36d469e68b47d8/widgetloader

23.36.76.154

200 OK

68 kB

URL GET HTTP/2
ws-cdn001.akamaized.net/7693683943e78a298c36d469e68b47d8/widgetloader
IP
23.36.76.154:443
ASN
#20940 Akamai International B.V.

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint28:39:AF:63:7D:02:E8:F7:17:23:A0:EE:E0:C9:2F:9C:64:17:68:0A
ValidityThu, 18 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (45227)
Size
68 kB (67477 bytes)
Hash
ae5dc2780b955e79523b722522a27d85
bfcacf31388867db44624422859faedb3a0f2280
d7e931564534ecfb49b02a5c8ebde6d2783471d5a51b614a352f69b7bb8a4d75

HTTP Headers

GET /7693683943e78a298c36d469e68b47d8/widgetloader HTTP/1.1
Host: ws-cdn001.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-security-policy: frame-ancestors 'self' https://st-cdn001.akamaized.net https://ls-cdn001.akamaized.net
cache-control: public, max-age=120, stale-while-revalidate=60, immutable
etag: "4a2ab5436b970941703aa4fef4c01250-7e10aacda806dcd8af6f50bb8b813295"
content-encoding: gzip
date: Sat, 29 Jun 2024 17:57:06 GMT
content-length: 67477
vary: Accept-Encoding
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

hellspin.com/configuration.js

172.67.73.88

200 OK

44 kB

URL GET HTTP/2
hellspin.com/configuration.js
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
ASCII text
Size
44 kB (44267 bytes)
Hash
316e04ab1594fa2b6aaa1ab7c7ca3d77
72f3e7a53bb3988b3641238bbcda74e696b9faad
c67b9498a386796476e4ec59818a400805f0047b02959e1f4ad4009033547a45

HTTP Headers

GET /configuration.js HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:05 GMT
content-type: text/javascript; charset=UTF-8
cache-control: no-cache, no-store, private
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zKzrRoCgqlpHiJS7KLVSijrvxB8l7gVT0KkFSI%2FhQ5NBw0CljV4ex7wlwdqttB3bpx6PTSQH9HM5qn2UXePSd2WiyEgie0GGbaQiScG4zWn5xQYd%2FobZTYIpksy9Og%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 89b7cc062c5c8d7a-HEL
content-encoding: br
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-ELE5VVG4DX&l=dataLayer&cx=c

142.250.74.168

200 OK

100 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-ELE5VVG4DX&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintBA:5D:A9:7F:41:46:B0:37:01:9E:05:B0:92:BA:41:C9:31:5B:4B:4A
ValidityThu, 13 Jun 2024 15:27:14 GMT - Thu, 05 Sep 2024 15:27:13 GMT

File type
JavaScript source, ASCII text, with very long lines (5945)
Size
100 kB (100168 bytes)
Hash
c0018b5a43f32fbd0e99bffea6fea37b
34ee5c335325076ea0bd5820badc23508ababeb4
6c3f85d85d94e24478c5646f11fd43b735c83e424f75b827c5ccf5a563b0f8e0

HTTP Headers

GET /gtag/js?id=G-ELE5VVG4DX&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 29 Jun 2024 17:57:06 GMT
expires: Sat, 29 Jun 2024 17:57:06 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 100168
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

s.opoxv.com/tag.php?goal=331e4ee56c526f5bd5c5ad6c88fcb308;stackUid=20240629175706233391

95.211.229.246

200 OK

20 B

URL GET HTTP/1.1
s.opoxv.com/tag.php?goal=331e4ee56c526f5bd5c5ad6c88fcb308;stackUid=20240629175706233391
IP
95.211.229.246:443
ASN
#60781 LeaseWeb Netherlands B.V.

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerLet's Encrypt
Subjectopoxv.com
Fingerprint28:1A:B2:D6:50:F7:36:1E:36:04:A8:1A:CC:54:61:90:DB:1D:F1:F7
ValidityTue, 30 Apr 2024 07:51:47 GMT - Mon, 29 Jul 2024 07:51:46 GMT

File type
gzip compressed data, max speed, from Unix
Size
20 B (20 bytes)
Hash
a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf

HTTP Headers

GET /tag.php?goal=331e4ee56c526f5bd5c5ad6c88fcb308;stackUid=20240629175706233391 HTTP/1.1
Host: s.opoxv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 29 Jun 2024 17:57:06 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Robots-Tag: noindex, follow
Content-Encoding: gzip

s.magsrv.com/tag.php?goal=331e4ee56c526f5bd5c5ad6c88fcb308;stackUid=20240629175706232115

95.211.229.245

200 OK

20 B

URL GET HTTP/1.1
s.magsrv.com/tag.php?goal=331e4ee56c526f5bd5c5ad6c88fcb308;stackUid=20240629175706232115
IP
95.211.229.245:443
ASN
#60781 LeaseWeb Netherlands B.V.

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerLet's Encrypt
Subjectmagsrv.com
FingerprintE9:B1:06:11:C7:80:11:9F:62:6C:E8:AF:35:69:C6:21:29:87:60:51
ValidityTue, 30 Apr 2024 07:49:25 GMT - Mon, 29 Jul 2024 07:49:24 GMT

File type
gzip compressed data, max speed, from Unix
Size
20 B (20 bytes)
Hash
a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf

HTTP Headers

GET /tag.php?goal=331e4ee56c526f5bd5c5ad6c88fcb308;stackUid=20240629175706232115 HTTP/1.1
Host: s.magsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 29 Jun 2024 17:57:06 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Robots-Tag: noindex, follow
Content-Encoding: gzip

s.pemsrv.com/tag.php?goal=331e4ee56c526f5bd5c5ad6c88fcb308;stackUid=20240629175706234745

95.211.229.245

200 OK

20 B

URL GET HTTP/1.1
s.pemsrv.com/tag.php?goal=331e4ee56c526f5bd5c5ad6c88fcb308;stackUid=20240629175706234745
IP
95.211.229.245:443
ASN
#60781 LeaseWeb Netherlands B.V.

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerLet's Encrypt
Subjectpemsrv.com
FingerprintBA:AA:AB:1F:22:EF:D5:0A:2D:0C:D0:E8:1C:F5:D4:F5:29:2A:0D:5D
ValidityTue, 30 Apr 2024 07:53:35 GMT - Mon, 29 Jul 2024 07:53:34 GMT

File type
gzip compressed data, max speed, from Unix
Size
20 B (20 bytes)
Hash
a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf

HTTP Headers

GET /tag.php?goal=331e4ee56c526f5bd5c5ad6c88fcb308;stackUid=20240629175706234745 HTTP/1.1
Host: s.pemsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 29 Jun 2024 17:57:06 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Robots-Tag: noindex, follow
Content-Encoding: gzip

syndication.realsrv.com/tag.php?goal=331e4ee56c526f5bd5c5ad6c88fcb308;stackUid=20240629175706235613

95.211.229.246

200 OK

20 B

URL GET HTTP/1.1
syndication.realsrv.com/tag.php?goal=331e4ee56c526f5bd5c5ad6c88fcb308;stackUid=20240629175706235613
IP
95.211.229.246:443
ASN
#60781 LeaseWeb Netherlands B.V.

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerLet's Encrypt
Subjectrealsrv.com
FingerprintD6:E9:CF:67:58:14:C0:E8:FF:A6:F9:E4:10:41:F9:BF:03:93:4D:1B
ValidityTue, 30 Apr 2024 07:54:23 GMT - Mon, 29 Jul 2024 07:54:22 GMT

File type
gzip compressed data, max speed, from Unix
Size
20 B (20 bytes)
Hash
a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf

HTTP Headers

GET /tag.php?goal=331e4ee56c526f5bd5c5ad6c88fcb308;stackUid=20240629175706235613 HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 29 Jun 2024 17:57:06 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Robots-Tag: noindex, follow
Content-Encoding: gzip

tm.ads.sportradar.com/dist/tag-manager.js?id=STM-AAAAOI

95.101.10.99

200 OK

32 kB

URL GET HTTP/2
tm.ads.sportradar.com/dist/tag-manager.js?id=STM-AAAAOI
IP
95.101.10.99:443
ASN
#20940 Akamai International B.V.

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerLet's Encrypt
Subjecttracker.ads.sportradar.com
Fingerprint02:3F:09:5A:8E:93:6F:EC:CF:12:00:AD:0F:07:0D:B0:DF:9D:2B:F8
ValidityThu, 02 May 2024 09:21:00 GMT - Wed, 31 Jul 2024 09:20:59 GMT

File type
JavaScript source, ASCII text, with very long lines (62152)
Size
32 kB (31786 bytes)
Hash
35d28f4f5502536eef6cc64c45ee0ba0
f236c99b251d8c7b0183ac97b3a2b345e63eedf4
b6e773460c033ece7bdfc35cb6791526c6945af9955b1ca26ce37264b66cd800

HTTP Headers

GET /dist/tag-manager.js?id=STM-AAAAOI HTTP/1.1
Host: tm.ads.sportradar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
content-length: 31786
content-disposition: inline
content-encoding: gzip
apigw-requestid: aI_DRiEAjoEEMTg=
vary: Accept-Encoding
date: Sat, 29 Jun 2024 17:57:06 GMT
cache-control: max-age=900, public
X-Firefox-Spdy: h2

tsyndicate.com/api/v1/retargeting/set/20fe8922-3082-4b10-8a7a-2279e97cbdf0

148.251.120.78

200 OK

43 B

URL GET HTTP/2
tsyndicate.com/api/v1/retargeting/set/20fe8922-3082-4b10-8a7a-2279e97cbdf0
IP
148.251.120.78:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerLet's Encrypt
Subjecttsyndicate.com
Fingerprint21:44:73:D5:80:22:FF:67:C5:62:ED:C0:AA:50:45:16:EB:B3:BC:00
ValidityWed, 12 Jun 2024 09:06:28 GMT - Tue, 10 Sep 2024 09:06:27 GMT

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
ba036c43037cfe89320d1ef7b64cd43f
88c72d3e26047eb1e45e5564a76427734f120efe
42cb846e07917f6731406e500f24aeb2e88c42cda124eaa59e08c5331cad8bcb

HTTP Headers

GET /api/v1/retargeting/set/20fe8922-3082-4b10-8a7a-2279e97cbdf0 HTTP/1.1
Host: tsyndicate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 29 Jun 2024 17:57:06 GMT
content-type: image/gif
content-length: 43
pragma: no-cache
expires: 0
vary: *
x-api-version: 1
x-request-id: 1b1ae8e11e3e6599
set-cookie: ts_rt_20fe8922-3082-4b10-8a7a-2279e97cbdf0=AAMC; expires=Sun, 29 Jun 2025 17:57:06 GMT; path=/; HttpOnly; secure; SameSite=None
cache-control: no-cache, no-store, no-transform, must-revalidate, no-transform
x-robots-tag: none, noindex, nofollow
report-to: { "url": "https://pxl.tsyndicate.com/api/v1/heavy-ad/report", "max_age": 86401 }
X-Firefox-Spdy: h2

tracker.ads.sportradar.com/dist/tracker.js

95.101.10.99

200 OK

6.4 kB

URL GET HTTP/2
tracker.ads.sportradar.com/dist/tracker.js
IP
95.101.10.99:443
ASN
#20940 Akamai International B.V.

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerLet's Encrypt
Subjecttracker.ads.sportradar.com
Fingerprint02:3F:09:5A:8E:93:6F:EC:CF:12:00:AD:0F:07:0D:B0:DF:9D:2B:F8
ValidityThu, 02 May 2024 09:21:00 GMT - Wed, 31 Jul 2024 09:20:59 GMT

File type
JavaScript source, ASCII text, with very long lines (25690)
Size
6.4 kB (6405 bytes)
Hash
235331a0761142ae4fd345cdf7c7f9ed
f71a2cb5824a7049b2c86f5658f48e17ff7f588c
063237f5f52863c3f711ef56625653397a5650eca2da3fa375dc181985a1badb

HTTP Headers

GET /dist/tracker.js HTTP/1.1
Host: tracker.ads.sportradar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 12 Sep 2023 08:33:19 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
etag: "235331a0761142ae4fd345cdf7c7f9ed"
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: FKhT3ZSf6zDvJmUAPmDJHzDcTxcwjIHL6l2SK_9nO6Z2Eck-Bow7rg==
vary: Accept-Encoding
content-encoding: gzip
date: Sat, 29 Jun 2024 17:57:06 GMT
content-length: 6405
cache-control: max-age=900, public
X-Firefox-Spdy: h2

hellspin.com/app/1878.e77165d9aa0faec0.css

172.67.73.88

200 OK

66 kB

URL GET HTTP/2
hellspin.com/app/1878.e77165d9aa0faec0.css
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
ASCII text, with very long lines (58210)
Size
66 kB (65600 bytes)
Hash
6318a28250433612bdd57957498a4001
e9871f994a5c9947f31254d58e4249071f0723be
7e3f0b8a16b4c1424134fc4c2ab9b07e17be7258f1fd59b224a69e8450979cb8

HTTP Headers

GET /app/1878.e77165d9aa0faec0.css HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:06 GMT
content-type: text/css
last-modified: Thu, 27 Jun 2024 09:12:27 GMT
vary: Accept-Encoding
etag: W/"667d2cfb-8df48"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: HIT
age: 4562
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CBdrJ4IbGfRCIQ2uHPcXwXksSnkOF%2Bj07bodmcSYKw45t6fmF0eyDSPi1%2Fvc8bqynZA135pBSDM6IIoj%2Ftx9QvqpQrI7KIToEwI7pBwcAEEs456y3XOCfKN9oDKPrw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc0d4a8b8d7a-HEL
X-Firefox-Spdy: h2

track.trackingtraffo.com/pixel/js?auth=886um7&event=visit&uid=undefined&tid={TRANSACTION_ID}&cur={CURRENCY}&amount={DEPOSIT}

88.214.195.156

200 OK

499 B

URL GET HTTP/1.1
track.trackingtraffo.com/pixel/js?auth=886um7&event=visit&uid=undefined&tid={TRANSACTION_ID}&cur={CURRENCY}&amount={DEPOSIT}
IP
88.214.195.156:443
ASN
#46636 NATCOWEB

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerSectigo Limited
Subjecttrackingtraffo.com
Fingerprint66:CE:68:F3:6C:8A:98:F0:D8:02:5B:C4:5E:2E:C7:B0:C7:73:5B:A8
ValidityThu, 23 Nov 2023 00:00:00 GMT - Fri, 22 Nov 2024 23:59:59 GMT

File type
JavaScript source, ASCII text
Size
499 B (499 bytes)
Hash
94a2da80ad033bcc6551afc83dfc21ca
c192fc34cfa7b42dae1d30d3f2478219e9b55bc6
49cffad8cfc7cf2fe07c19850c6c27aab55fa2ec8dcaa353e4cacfaf53e1e50e

HTTP Headers

GET /pixel/js?auth=886um7&event=visit&uid=undefined&tid={TRANSACTION_ID}&cur={CURRENCY}&amount={DEPOSIT} HTTP/1.1
Host: track.trackingtraffo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 29 Jun 2024 17:57:06 GMT
Content-Type: text/javascript
Content-Length: 499
Connection: keep-alive
Cache-Control: no-cache, max-age=0, must-revalidate, proxy-revalidate, no-store
Pragma: no-cache
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Access-Control-Allow-Origin: *

ocsp.entrust.net/

184.24.45.171

1.6 kB

URL
ocsp.entrust.net/
IP
184.24.45.171:0
ASN
#16625 AKAMAI-AS

File type
data
Size
1.6 kB (1588 bytes)
Hash
0a754372ba1e5a02db27cfd92bba5c52
a5b1ee0c9c67b8719fcfc2699fccbc69db9dcae1
2c2d1ccd94c4488755c923671a56c3450a40801e0d71147416dc9e5ce3c2c1a5

HTTP Headers

POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "2C2D1CCD94C4488755C923671A56C3450A40801E0D71147416DC9E5CE3C2C1A5"
Last-Modified: Sat, 29 Jun 2024 08:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=2781
Expires: Sat, 29 Jun 2024 18:43:28 GMT
Date: Sat, 29 Jun 2024 17:57:07 GMT
Connection: keep-alive

my.rtmark.net/p.js?f=sync&lr=1&partner=88e642609867b249ea9df3234a2afb31a70d895dcb5f7f217d6cec67e6688b5c

139.45.195.8

200 OK

697 B

URL GET HTTP/2
my.rtmark.net/p.js?f=sync&lr=1&partner=88e642609867b249ea9df3234a2afb31a70d895dcb5f7f217d6cec67e6688b5c
IP
139.45.195.8:443
ASN
#9002 RETN Limited

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerLet's Encrypt
Subjectrtmark.net
Fingerprint90:47:5A:A5:5F:5F:FA:E6:7C:6F:AB:D2:06:D1:D9:BD:F3:54:9E:6E
ValiditySat, 11 May 2024 20:51:41 GMT - Fri, 09 Aug 2024 20:51:40 GMT

File type
JavaScript source, ASCII text
Size
697 B (697 bytes)
Hash
4d6b016c8d4471e42cbc9aee065dbc85
6944f974c4f2b1436cb62140628fe095a73fd6b8
2a931025f8c5131bfdb853a25b1f55201361eded3dd58df6964e9f9d12dddfad

HTTP Headers

GET /p.js?f=sync&lr=1&partner=88e642609867b249ea9df3234a2afb31a70d895dcb5f7f217d6cec67e6688b5c HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Cookie: ID=00808add24074ca1f4465773cf702f66
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 29 Jun 2024 17:57:07 GMT
content-type: text/javascript
content-length: 697
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

unpkg.com/web-vitals/dist/web-vitals.iife.js

104.17.246.203

302 Found

67 B

URL GET HTTP/2
unpkg.com/web-vitals/dist/web-vitals.iife.js
IP
104.17.246.203:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services LLC
Subjectunpkg.com
Fingerprint1E:BD:61:21:20:80:6D:7A:38:A4:15:7A:FB:C2:B0:50:AF:1F:F6:31
ValidityThu, 30 May 2024 03:44:12 GMT - Wed, 28 Aug 2024 03:44:11 GMT

File type
ASCII text, with no line terminators
Size
67 B (67 bytes)
Hash
e4d0e6e34e4a455b2368b65e031dbe1c
fe40612eb1005a5e0412780c32e22ad115ef6a86
153922c72dcb8c0df696a9ddd137f2c8a5bd16988335a880b92425fd053cbf30

HTTP Headers

GET /web-vitals/dist/web-vitals.iife.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Sat, 29 Jun 2024 17:57:06 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /web-vitals@4.2.0/dist/web-vitals.iife.js
vary: Accept, Accept-Encoding
content-encoding: br
via: 1.1 fly.io
fly-request-id: 01J1JJ5V6XCBM2B1MDH7AQXE5H-arn
cf-cache-status: HIT
age: 120
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 89b7cc0aff8abe47-CPH
X-Firefox-Spdy: h2

track.trackingtraffo.com/pixel?auth=886um7&event=visit&uid=undefined&tid=%7BTRANSACTION_ID%7D&cur=%7BCURRENCY%7D&amount=%7BDEPOSIT%7D&site=hellspin.com&ln=en-US

88.214.195.156

200 OK

0 B

URL GET HTTP/1.1
track.trackingtraffo.com/pixel?auth=886um7&event=visit&uid=undefined&tid=%7BTRANSACTION_ID%7D&cur=%7BCURRENCY%7D&amount=%7BDEPOSIT%7D&site=hellspin.com&ln=en-US
IP
88.214.195.156:443
ASN
#46636 NATCOWEB

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerSectigo Limited
Subjecttrackingtraffo.com
Fingerprint66:CE:68:F3:6C:8A:98:F0:D8:02:5B:C4:5E:2E:C7:B0:C7:73:5B:A8
ValidityThu, 23 Nov 2023 00:00:00 GMT - Fri, 22 Nov 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel?auth=886um7&event=visit&uid=undefined&tid=%7BTRANSACTION_ID%7D&cur=%7BCURRENCY%7D&amount=%7BDEPOSIT%7D&site=hellspin.com&ln=en-US HTTP/1.1
Host: track.trackingtraffo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 29 Jun 2024 17:57:07 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-cache, max-age=0, must-revalidate, proxy-revalidate, no-store
Pragma: no-cache
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Access-Control-Allow-Origin: *

d16vnr1tync57h.cloudfront.net/site/upload/helloader.svg

143.204.42.37

200 OK

49 kB

URL GET HTTP/2
d16vnr1tync57h.cloudfront.net/site/upload/helloader.svg
IP
143.204.42.37:443
ASN
#16509 AMAZON-02

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
49 kB (48745 bytes)
Hash
c2c0a7edd1faf55fa77ad9e946a9cabb
93b9afa701a1e0deb5ce477a344eff3d6d992d79
416c1262a737a39655eae502d78b7816053e39062f9406bb9334e5251204d759

HTTP Headers

GET /site/upload/helloader.svg HTTP/1.1
Host: d16vnr1tync57h.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/svg+xml
content-length: 48745
last-modified: Tue, 18 Jun 2024 07:42:04 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sat, 29 Jun 2024 17:36:32 GMT
etag: "c2c0a7edd1faf55fa77ad9e946a9cabb"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: jlmjvSBMdZ_Up1okSxZ1SlnuA3OfEJ1KDBj2KjnqtnroHyXunWdJpw==
age: 1236
X-Firefox-Spdy: h2

a.sportradarserving.com/ul_cb/pixel?type=js&aid=1433&id=5156

35.214.174.141

200 OK

1.5 kB

URL GET HTTP/2
a.sportradarserving.com/ul_cb/pixel?type=js&aid=1433&id=5156
IP
35.214.174.141:443
ASN
#15169 GOOGLE

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerEntrust, Inc.
Subject*.sportradarserving.com
FingerprintD0:C1:99:26:D2:AD:C7:6B:F2:AD:C4:44:44:70:7C:4F:D2:49:9B:C4
ValidityWed, 20 Sep 2023 07:44:29 GMT - Mon, 14 Oct 2024 07:44:28 GMT

File type
JavaScript source, ASCII text, with very long lines (1527), with no line terminators
Size
1.5 kB (1527 bytes)
Hash
88a5d600bcd44206337256db5348664c
5b2be33aa34976e14cf1529bed8d17c28f12721a
d4a2e84f2ae8f02ac1abfb811e6f100f932a40486d35a266226488fb6cf37579

HTTP Headers

GET /ul_cb/pixel?type=js&aid=1433&id=5156 HTTP/1.1
Host: a.sportradarserving.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hellspin.com/
DNT: 1
Connection: keep-alive
Cookie: zuuid=c0a51ef6-3c3a-4ff2-b749-53003405e04c; c=1719683827; zuuid_lu=1719683827
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-length: 1527
content-type: text/javascript; charset=UTF-8
date: Sat, 29 Jun 2024 17:57:07 GMT
set-cookie: zuuid=c0a51ef6-3c3a-4ff2-b749-53003405e04c; path=/; expires=Sat, 28-Jun-2025 17:57:07 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1719683827; path=/; expires=Sat, 28-Jun-2025 17:57:07 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k=1; path=/; expires=Sat, 28-Jun-2025 17:57:07 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k_lu=1719683827; path=/; expires=Sat, 28-Jun-2025 17:57:07 GMT; domain=sportradarserving.com; samesite=none; secure
bss=!bidswitch=488941027; path=/; expires=Sat, 28-Jun-2025 17:57:07 GMT; domain=sportradarserving.com; samesite=none; secure
cm2=!bidswitch=489013027; path=/; expires=Sat, 28-Jun-2025 17:57:07 GMT; domain=sportradarserving.com; samesite=none; secure
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

sentry.softlabs.com/api/9/store/?sentry_key=913196a6014545bda28200a38ba9826a&sentry_version=7

172.67.71.55

200 OK

41 B

URL POST HTTP/2
sentry.softlabs.com/api/9/store/?sentry_key=913196a6014545bda28200a38ba9826a&sentry_version=7
IP
172.67.71.55:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services LLC
Subjectsoftlabs.com
Fingerprint24:8B:FD:A2:C7:55:CB:A9:C1:26:32:54:5C:74:95:A6:12:19:5A:AA
ValidityTue, 04 Jun 2024 12:32:01 GMT - Mon, 02 Sep 2024 12:32:00 GMT

File type
JSON text data
Size
41 B (41 bytes)
Hash
e10640dd7ea018e57192ef912cb76084
4f1b8516e1c1ba62eeb0fa6cb9448e1d02f405ba
6bb0389fac43508538141a205a43d3a380325bf54e24dc1ead631357fca559ec

HTTP Headers

POST /api/9/store/?sentry_key=913196a6014545bda28200a38ba9826a&sentry_version=7 HTTP/1.1
Host: sentry.softlabs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hellspin.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 1088
Origin: https://hellspin.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:07 GMT
content-type: application/json
content-length: 41
access-control-allow-origin: https://hellspin.com
access-control-expose-headers: x-sentry-rate-limits, retry-after, x-sentry-error
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=abRKE5MoKeihXH%2BXJwhwHb4OUATrJpFipJRqVIDERTOCoyFCQchJNQr9aK%2FAdIIHEQIwIOja1GY1heBUt2glU%2FMPO4zzVA51TEcJTaaMEc9yKQ7i1V%2Bxjm6%2ByrGraj2qL7v%2BIZs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc13a9a88d68-HEL
X-Firefox-Spdy: h2

platform.hellspin.com/api/v2/registration-configurations?desktop=1

104.26.8.227

204 No Content

0 B

URL OPTIONS HTTP/2
platform.hellspin.com/api/v2/registration-configurations?desktop=1
IP
104.26.8.227:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /api/v2/registration-configurations?desktop=1 HTTP/1.1
Host: platform.hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://hellspin.com/
Origin: https://hellspin.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 204 No Content
date: Sat, 29 Jun 2024 17:57:07 GMT
access-control-allow-origin: https://hellspin.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,ws-channel,ws-session-uuid,LOCATION-SMART-DEVICE-SESSION-ID,LOCATION-SMART-HTML-SESSION-ID,X-BFF
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PN2KGLB9FPvAoNp1yj1nfiFUTjVGxbNzbbUEjs8UvmFceY7UpnbQifMN15veJ3JskRmPTShoINUUo6mQEGp%2BdxrVo7Kw1nL6wcPHG5q4M8yQiPvhgLrRAisJzmsUARDfEwQfiEYL7g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc141e008d6c-HEL
X-Firefox-Spdy: h2

platform.hellspin.com/api/v2/ip-data

104.26.8.227

200 OK

0 B

URL GET HTTP/2
platform.hellspin.com/api/v2/ip-data
IP
104.26.8.227:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /api/v2/ip-data HTTP/1.1
Host: platform.hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://hellspin.com/
Origin: https://hellspin.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 204 No Content
date: Sat, 29 Jun 2024 17:57:07 GMT
access-control-allow-origin: https://hellspin.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,ws-channel,ws-session-uuid,LOCATION-SMART-DEVICE-SESSION-ID,LOCATION-SMART-HTML-SESSION-ID,X-BFF
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=v1T%2F0n3ZbcKrkA0XAbpl2ddx93tXe8g5RROkPfMxAuYU5is8yuVwmUK63zbp9jkZhvG4VYzdvMRkNqDxHPr0MDgCpbNHFn156wUnPEJiNj6mAk%2BD3K7frVttiiUY%2BFf0O%2BZ8ZVYEqQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc141e028d6c-HEL
X-Firefox-Spdy: h2

platform.hellspin.com/api/data/get-countries

104.26.8.227

200 OK

0 B

URL GET HTTP/2
platform.hellspin.com/api/data/get-countries
IP
104.26.8.227:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /api/data/get-countries HTTP/1.1
Host: platform.hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://hellspin.com/
Origin: https://hellspin.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 204 No Content
date: Sat, 29 Jun 2024 17:57:07 GMT
access-control-allow-origin: https://hellspin.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,ws-channel,ws-session-uuid,LOCATION-SMART-DEVICE-SESSION-ID,LOCATION-SMART-HTML-SESSION-ID,X-BFF
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ozfg7UonX7eFgvqAzEQbotDOL2wYDk3MPJ8zHJaO8gzPQUH52VpikfDKG4quUKy%2BFPVIxrdMujuXytPW0tsadCgA%2Fp4h2QrfXiFKoMxqJzbrXW%2BFtioV%2Bo3DeRtt5tYaefZ8inulIA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc142e0e8d6c-HEL
X-Firefox-Spdy: h2

platform.hellspin.com/api/data/get-currencies

104.26.8.227

204 No Content

0 B

URL OPTIONS HTTP/2
platform.hellspin.com/api/data/get-currencies
IP
104.26.8.227:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /api/data/get-currencies HTTP/1.1
Host: platform.hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://hellspin.com/
Origin: https://hellspin.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 204 No Content
date: Sat, 29 Jun 2024 17:57:07 GMT
access-control-allow-origin: https://hellspin.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,ws-channel,ws-session-uuid,LOCATION-SMART-DEVICE-SESSION-ID,LOCATION-SMART-HTML-SESSION-ID,X-BFF
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZL7xvPOGlu9jhOIaN1W3im1aysM2hEUs8m0CjK6kLXFmcWDxNND%2B8UZRX1l56GYJFhQv6GA4rAdAIvr8Myw4wVY1ECJVgbfe5gLh8HwiYmGiJmgSK4KnJ0SaB7uOwE2bzkzNiCGHog%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc142e0d8d6c-HEL
X-Firefox-Spdy: h2

platform.hellspin.com/api/data/provinces

104.26.8.227

200 OK

0 B

URL GET HTTP/2
platform.hellspin.com/api/data/provinces
IP
104.26.8.227:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /api/data/provinces HTTP/1.1
Host: platform.hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://hellspin.com/
Origin: https://hellspin.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 204 No Content
date: Sat, 29 Jun 2024 17:57:07 GMT
access-control-allow-origin: https://hellspin.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,ws-channel,ws-session-uuid,LOCATION-SMART-DEVICE-SESSION-ID,LOCATION-SMART-HTML-SESSION-ID,X-BFF
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9MUIh79auzyxkhNwAi3xilYbWKCzBjN6DKQrsVnWf%2BU9AcMBQs3FhovczOu8HOjayuYXEOIn4TyqprgREBctqYTPLg1iWPFoAcCZ8V16P7Axc6WagCSXqmcqbeQL4JvcfxJIN3Jfpw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc147e538d6c-HEL
X-Firefox-Spdy: h2

platform.hellspin.com/api/v2/casino/producer?is_desktop=1&is_live=0&topProducer=1

104.26.8.227

204 No Content

0 B

URL OPTIONS HTTP/2
platform.hellspin.com/api/v2/casino/producer?is_desktop=1&is_live=0&topProducer=1
IP
104.26.8.227:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /api/v2/casino/producer?is_desktop=1&is_live=0&topProducer=1 HTTP/1.1
Host: platform.hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://hellspin.com/
Origin: https://hellspin.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 204 No Content
date: Sat, 29 Jun 2024 17:57:07 GMT
access-control-allow-origin: https://hellspin.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,ws-channel,ws-session-uuid,LOCATION-SMART-DEVICE-SESSION-ID,LOCATION-SMART-HTML-SESSION-ID,X-BFF
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QIsCiPLd9aDP0yTq1eYIpwMBVp3cRgre%2FmRo8uj%2BlVkdSLXgdLdf1Q%2FKcN1dV0K2%2Ba4VxorIR24Y2ijuUUN9GKQYQYMo0cOpLkUpZHdoPUsJ0EKIS6Vu7Zpycpg8pOpe5fZsIWmdGw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc14be818d6c-HEL
X-Firefox-Spdy: h2

cdn.launcher.a8r.games/connector.js

172.64.146.103

200 OK

874 B

URL GET HTTP/2
cdn.launcher.a8r.games/connector.js
IP
172.64.146.103:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjectcdn.launcher.a8r.games
Fingerprint39:57:99:0F:D9:AC:F9:E5:BE:B6:BA:98:20:46:2B:A8:A4:32:7B:60
ValidityMon, 10 Jun 2024 02:15:02 GMT - Sun, 08 Sep 2024 03:14:59 GMT

File type
JavaScript source, ASCII text, with very long lines (1904), with no line terminators
Size
874 B (874 bytes)
Hash
31f31b789e1157fae8d55fb85b07f82d
79a087348423ab49ce222da90b82f006429bff80
71877550f925a2b52f1f57d969b2cdb9f9deab1d8cf7d3382ffae9675524308d

HTTP Headers

GET /connector.js HTTP/1.1
Host: cdn.launcher.a8r.games
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:05 GMT
content-type: application/javascript
last-modified: Mon, 15 Apr 2024 09:36:16 GMT
etag: W/"661cf510-770"
cf-cache-status: HIT
age: 516
expires: Sat, 29 Jun 2024 21:57:05 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
server: cloudflare
cf-ray: 89b7cc06ccf2be44-CPH
content-encoding: gzip
X-Firefox-Spdy: h2

platform.hellspin.com/api/v2/casino/category?auth=false&categoryRecentlyPlayedEnabled=true&withGameCount=0

104.26.8.227

204 No Content

0 B

URL OPTIONS HTTP/2
platform.hellspin.com/api/v2/casino/category?auth=false&categoryRecentlyPlayedEnabled=true&withGameCount=0
IP
104.26.8.227:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /api/v2/casino/category?auth=false&categoryRecentlyPlayedEnabled=true&withGameCount=0 HTTP/1.1
Host: platform.hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://hellspin.com/
Origin: https://hellspin.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 204 No Content
date: Sat, 29 Jun 2024 17:57:08 GMT
access-control-allow-origin: https://hellspin.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,ws-channel,ws-session-uuid,LOCATION-SMART-DEVICE-SESSION-ID,LOCATION-SMART-HTML-SESSION-ID,X-BFF
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=flndMNglH6Lf63SrirVxDXPqoSgM0Vb84%2BtVp6EuECgJAVGnn5Fx5saOjKxa2T%2BOBNaNTlWgovgP4opXsQBAmqfh3%2BBjDNq8XnRphQebSJW65DWayaCzVEVlqy5ZGJ%2F6jIAJEHWipQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc14ee9f8d6c-HEL
X-Firefox-Spdy: h2

platform.hellspin.com/api/casino/players-online?isDesktop=1

104.26.8.227

200 OK

0 B

URL GET HTTP/2
platform.hellspin.com/api/casino/players-online?isDesktop=1
IP
104.26.8.227:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /api/casino/players-online?isDesktop=1 HTTP/1.1
Host: platform.hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://hellspin.com/
Origin: https://hellspin.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 204 No Content
date: Sat, 29 Jun 2024 17:57:08 GMT
access-control-allow-origin: https://hellspin.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,ws-channel,ws-session-uuid,LOCATION-SMART-DEVICE-SESSION-ID,LOCATION-SMART-HTML-SESSION-ID,X-BFF
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qQcJx2pzuOXHSkjt%2F2Mp1mYJgchLoO0sFVkJcLHiCY93OjNBnxzTQELaUgPkZUzpP49OqiIfMP6dItH%2FEtr84a6raWwFDyhpd1yqyqfZYo2%2B%2FTDXRc3NzG2EUY3BQPYqdKY40V5E%2Fw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc14feb18d6c-HEL
X-Firefox-Spdy: h2

hellspin.com/api/promotion/tournaments?lang=nor_NO

172.67.73.88

200 OK

1.8 kB

URL GET HTTP/2
hellspin.com/api/promotion/tournaments?lang=nor_NO
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
JSON text data
Size
1.8 kB (1819 bytes)
Hash
93b8c44a9c740fb1ff9475de409aa1b5
fc8d3425ea39e884b9d30e839a52a98e90513b28
4fd853cd3ae70f81701a162ed399464ae95cbc8fc2640af28f564f13e849bb5f

HTTP Headers

GET /api/promotion/tournaments?lang=nor_NO HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2; _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:08 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, private
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
content-encoding: gzip
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jqWQ13awIjIq2zfNDxZCUeWi0wt6nd8VqSBjoACifqnx%2BbjQiWbLeDbLTp9anXYhDu9i0PaGzdYMqcau47yBKsmM%2BYQPjcP2yNikkojwDQvHiG5qHWB2hQp6xV9huw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc146f598d7a-HEL
X-Firefox-Spdy: h2

platform.hellspin.com/api/data/get-countries

172.67.73.88

200 OK

4.6 kB

URL GET HTTP/2
platform.hellspin.com/api/data/get-countries
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
JSON text data
Size
4.6 kB (4557 bytes)
Hash
96f2d74469c028e50e32c3406ceaf3fd
b8460005a4b8ed0b07f053787c77c74dbb87a8e8
7c9a3444b95010bc30295be8e69d6d1f83f8ae022cea17520724d4bb88714db8

HTTP Headers

GET /api/data/get-countries HTTP/1.1
Host: platform.hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://hellspin.com
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Cookie: _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:08 GMT
content-type: application/json; charset=UTF-8
status: 200 OK
x-backend: rr
access-control-allow-origin: https://hellspin.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,ws-channel,ws-session-uuid,LOCATION-SMART-DEVICE-SESSION-ID,LOCATION-SMART-HTML-SESSION-ID,X-BFF
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7zw67anXQ50NxHK8qd6qvJwgdtfelFbjK5J7TZ9GyG%2BVDqmWTy2DBxDETxRBvE8VizW9bXfkn%2Bg1IAN6i9PG%2FXQCkAw%2FZveJk%2FX7Apt2rSRUL9dkhxg6ZnRSGsdm8xOop3hXCkeA8A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc14af7e8d7a-HEL
content-encoding: br
X-Firefox-Spdy: h2

platform.hellspin.com/api/data/get-currencies

172.67.73.88

204 No Content

9.7 kB

URL OPTIONS HTTP/2
platform.hellspin.com/api/data/get-currencies
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
JSON text data
Size
9.7 kB (9689 bytes)
Hash
243f3b118ac82f0a3a3a30462cc287fb
7081722e81acf80233ee8f1b4b1e1a745eea641e
e9ceadd3311ed075d6acc091d8f645ae4dca5967e06d437bcceb924f23c0b0f0

HTTP Headers

GET /api/data/get-currencies HTTP/1.1
Host: platform.hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://hellspin.com
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Cookie: _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:08 GMT
content-type: application/json; charset=UTF-8
status: 200 OK
x-backend: rr
access-control-allow-origin: https://hellspin.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,ws-channel,ws-session-uuid,LOCATION-SMART-DEVICE-SESSION-ID,LOCATION-SMART-HTML-SESSION-ID,X-BFF
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qHnG8hZWy1P9X2SZVtFMkXuM77Of3GB19nH0a93PJ6XeorjVkxztSK4xiNb6nBsfq9xgpWIjArdcT%2FvW2QcSjccg3Ybirq%2FSh5IMJbcBAWTpBqiyfpBZV0%2BcyiK8SmalLaYPuG6bOg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc14af848d7a-HEL
content-encoding: br
X-Firefox-Spdy: h2

d16vnr1tync57h.cloudfront.net/site/upload/logohellmob.svg

143.204.42.37

200 OK

7.0 kB

URL GET HTTP/2
d16vnr1tync57h.cloudfront.net/site/upload/logohellmob.svg
IP
143.204.42.37:443
ASN
#16509 AMAZON-02

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
7.0 kB (7004 bytes)
Hash
1edfb49eb51f09ad4f484446bd380594
6dc9079a04bfc578ca44f5748c1dbf88d48bff73
56cbf2f274ccff7b9c8f79b35fcee8ab9067aa3fc56b31b8fe3db481db6e14e6

HTTP Headers

GET /site/upload/logohellmob.svg HTTP/1.1
Host: d16vnr1tync57h.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/svg+xml
content-length: 7004
date: Fri, 28 Jun 2024 23:28:10 GMT
last-modified: Wed, 18 Jan 2023 11:05:46 GMT
etag: "1edfb49eb51f09ad4f484446bd380594"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: biMHsSGrLr99NYp7DSziWKDewW_tpvu1y576_Ktj66_-ulRkWBXmiQ==
age: 66539
X-Firefox-Spdy: h2

hellspin.com/assets/images/aside-bg.webp

172.67.73.88

200 OK

7.6 kB

URL GET HTTP/2
hellspin.com/assets/images/aside-bg.webp
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
RIFF (little-endian) data, Web/P image
Size
7.6 kB (7606 bytes)
Hash
254fdf5b4dd57d7f740122363417ba27
ec245b36690c9e65cf8132aa5a126ba99ee9006a
fbfde765f3677ca22f5b072a29272448f1f0a830662421d1c7e449056c080237

HTTP Headers

GET /assets/images/aside-bg.webp HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2; _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:08 GMT
content-type: image/webp
content-length: 7606
last-modified: Thu, 27 Jun 2024 09:12:50 GMT
etag: "667d2d12-1db6"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5142
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MYQ96YjHWWusceOHClYIsVZ1tjDTdMieKPZY8CPnsQZQiA284GJ61DEhJ8HFS1%2BAzwZOeCg3hKGIdDKWRFiG0v1UmHYhFu4LKRDsEWE63LNWX937EF%2F3maW7HS%2BrMA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 89b7cc1819e48d7a-HEL
X-Firefox-Spdy: h2

fonts.gstatic.com/s/merriweathersans/v26/2-c99IRs1JiJN1FRAMjTN5zd9vgsFHX1QjU.woff2

216.58.207.227

200 OK

38 kB

URL GET HTTP/3
fonts.gstatic.com/s/merriweathersans/v26/2-c99IRs1JiJN1FRAMjTN5zd9vgsFHX1QjU.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintC4:9C:27:09:1C:F7:14:C9:86:F0:B5:42:0B:8A:D2:AE:5E:AE:98:04
ValidityThu, 13 Jun 2024 16:31:03 GMT - Thu, 05 Sep 2024 16:31:02 GMT

File type
Web Open Font Format (Version 2), TrueType, length 38268, version 1.0
Size
38 kB (38268 bytes)
Hash
9b0f2fe8ae9d38fea56cc9e84fdbc2c2
6fe3352049b17554d46380342372a737f4a8a3de
a8a4a852dedcc7e3b6bb2c6acffac1a82a31828a00749ce2a8c2d6dd5f268dd9

HTTP Headers

GET /s/merriweathersans/v26/2-c99IRs1JiJN1FRAMjTN5zd9vgsFHX1QjU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hellspin.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 38268
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 29 Jun 2024 04:27:07 GMT
expires: Sun, 29 Jun 2025 04:27:07 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 27 Apr 2023 00:13:26 GMT
content-type: font/woff2
age: 48601
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

platform.hellspin.com/api/casino/players-online?isDesktop=1

172.67.73.88

200 OK

4.7 kB

URL GET HTTP/2
platform.hellspin.com/api/casino/players-online?isDesktop=1
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
JSON text data
Size
4.7 kB (4685 bytes)
Hash
39209271b81e05576aacdd21b603e3f5
818d30f09d751871c4a16abeeb5e26d56cddc5f8
00d77437005276dfa90735c5928f7f35aeb505cf08ae335f97007507a8aea477

HTTP Headers

GET /api/casino/players-online?isDesktop=1 HTTP/1.1
Host: platform.hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://hellspin.com
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Cookie: _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:08 GMT
content-type: application/json; charset=UTF-8
x-powered-by: PHP/7.4.33
access-control-allow-origin: https://hellspin.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,ws-channel,ws-session-uuid,LOCATION-SMART-DEVICE-SESSION-ID,LOCATION-SMART-HTML-SESSION-ID,X-BFF
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JiLXehtRVYSYN3vM%2BLra9bbnGDDm%2F%2FJy8IAglRkauDve8BCCgK4QCLGqawV%2BPqAlowLW3BP7UId0qxQrexnrQwTuuXJiZB2hEmzhSoc0ZTHye1Zf%2FhVjA3LQk8PP%2B9mscEbldPOFAw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc155fdd8d7a-HEL
content-encoding: br
X-Firefox-Spdy: h2

platform.hellspin.com/api/v2/casino/category?auth=false&categoryRecentlyPlayedEnabled=true&withGameCount=0

172.67.73.88

204 No Content

11 kB

URL OPTIONS HTTP/2
platform.hellspin.com/api/v2/casino/category?auth=false&categoryRecentlyPlayedEnabled=true&withGameCount=0
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
JSON text data
Size
11 kB (11087 bytes)
Hash
cc56f73f9105239999e0cd9dd121bb8a
2212efde52fec3396b6f4388b8653b0b856bda82
600ddaf6d03efd7b8450a13c126e4cc282970e5633ce903f6444a69e92d3593a

HTTP Headers

GET /api/v2/casino/category?auth=false&categoryRecentlyPlayedEnabled=true&withGameCount=0 HTTP/1.1
Host: platform.hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://hellspin.com
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Cookie: _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:08 GMT
content-type: application/json; charset=UTF-8
x-powered-by: PHP/7.4.33
access-control-allow-origin: https://hellspin.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,ws-channel,ws-session-uuid,LOCATION-SMART-DEVICE-SESSION-ID,LOCATION-SMART-HTML-SESSION-ID,X-BFF
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2QcQ10y%2BvULA51cm7VX9C62gMFbmTjt31pBdCNqAV9%2BRbMd83zL%2B3mO30%2Fl8uNbwEMFNAKfOghxv0PB8%2BXT3e9P3FkN1uT%2FMpUmHGcwJamfeoPB5lM54vnLRP5m7fm0I3PCbENXTRQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc153fcd8d7a-HEL
content-encoding: br
X-Firefox-Spdy: h2

cdn.livechatinc.com/tracking.js

104.69.222.203

200 OK

26 kB

URL GET HTTP/2
cdn.livechatinc.com/tracking.js
IP
104.69.222.203:443
ASN
#20940 Akamai International B.V.

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerDigiCert Inc
Subjectlivechat.com
FingerprintAD:E9:73:3D:F9:98:EE:AF:EA:A1:C6:F0:07:27:92:13:66:F0:44:6E
ValidityWed, 31 Jan 2024 00:00:00 GMT - Fri, 31 Jan 2025 23:59:59 GMT

File type
data
Size
26 kB (26200 bytes)
Hash
b16903fcdb08795354bbc550fecb5b8c
51ba252b57587c84a8530e9ba48f1b96131ae507
8f8ad551e6bf847350b9e389d43fc9c6d3dc6525d93a1d1960c85b49bd15b8ad

HTTP Headers

GET /tracking.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Fri, 28 Jun 2024 07:22:54 GMT
etag: W/"b16903fcdb08795354bbc550fecb5b8c"
x-amz-server-side-encryption: AES256
x-amz-version-id: YmVEwXTEI.2q1IAyT8f21LMYHPY8pmmn
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: UD1fg9X7cd6CJ8Qnw7bf85hDYqt-2LdKiNcMCE5-d2gXGtpKjGQwIg==
content-length: 26200
cache-control: max-age=28800
expires: Sun, 30 Jun 2024 01:57:08 GMT
date: Sat, 29 Jun 2024 17:57:08 GMT
content-type: application/javascript; charset=utf-8
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
X-Firefox-Spdy: h2

platform.hellspin.com/api/user/is-auth

104.26.8.227

200 OK

0 B

URL GET HTTP/2
platform.hellspin.com/api/user/is-auth
IP
104.26.8.227:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /api/user/is-auth HTTP/1.1
Host: platform.hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://hellspin.com/
Origin: https://hellspin.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 204 No Content
date: Sat, 29 Jun 2024 17:57:08 GMT
access-control-allow-origin: https://hellspin.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,ws-channel,ws-session-uuid,LOCATION-SMART-DEVICE-SESSION-ID,LOCATION-SMART-HTML-SESSION-ID,X-BFF
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BvQFprPTjh%2Ftp0016jwuXsoMAGdZk3VvzOTHf3EzpgQC%2Fj7Z49qGlW6ugNxt73NoahG7ZOM9lxOsiIPQc8oSwFGQRNl0i%2B%2F3pujSbXxHTmfHxSZWubkz4DA9Fy7bcK69BtB2kYcPbA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc18797f8d6c-HEL
X-Firefox-Spdy: h2

hellspin.com/assets/registration/one/3-bb.webp

172.67.73.88

200 OK

12 kB

URL GET HTTP/2
hellspin.com/assets/registration/one/3-bb.webp
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
RIFF (little-endian) data, Web/P image
Size
12 kB (11640 bytes)
Hash
f34ae2085675c2857acd57c9804faf4d
0e4f697ddcf3f7e0397469efb3abed58e75b0a8e
a284dfa27c79fa71a186c2a89e7ce2028a9e4f842f6eacd9589e8ab83eace184

HTTP Headers

GET /assets/registration/one/3-bb.webp HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2; _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:08 GMT
content-type: image/webp
content-length: 11640
last-modified: Thu, 27 Jun 2024 09:12:50 GMT
etag: "667d2d12-2d78"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5838
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FlkY2G4BqvC1%2BF0F4EdHYFn6HvXACjFB7Ne%2FUmU3QUkzvKFeSPXqO9xx7sK9%2ByaI0QB9iArnQ1AFcy0xXCNf22FgjYSMUS%2FA6Pi6Ez8ufmzVl2LyTVt5ExMVO0V1TA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 89b7cc18ba558d7a-HEL
X-Firefox-Spdy: h2

hellspin.com/assets/registration/one/2-bb.webp

172.67.73.88

200 OK

10 kB

URL GET HTTP/2
hellspin.com/assets/registration/one/2-bb.webp
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
RIFF (little-endian) data, Web/P image
Size
10 kB (10272 bytes)
Hash
0c9d4b2566af6ed219a3e06bb6749683
a13fbd91566701fc1858c310b149d56d5c9c2751
e0fbdbc545dad2eddcf0b0dc2cdaf7bcbb07be4e073f6125d4e68f6ea3276582

HTTP Headers

GET /assets/registration/one/2-bb.webp HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2; _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:08 GMT
content-type: image/webp
content-length: 10272
last-modified: Thu, 27 Jun 2024 09:12:44 GMT
etag: "667d2d0c-2820"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5838
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=O0189ufxUUwUKr6PH7mpfa9%2FhUtMD7cZQ8OGyvL2mRScV6VPEiYXtlIENah9AKdDxr6mqZVqJ%2FRGkqsKf8SSWN%2BMrliMGDAwAkgF5%2F7fLqvqXEAgMf4oecbRQj978g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 89b7cc18ba548d7a-HEL
X-Firefox-Spdy: h2

hellspin.com/assets/registration/one/bb-border.svg

172.67.73.88

200 OK

17 kB

URL GET HTTP/2
hellspin.com/assets/registration/one/bb-border.svg
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
SVG Scalable Vector Graphics image
Size
17 kB (16902 bytes)
Hash
1bdd2c80cd274b919dfa68454daf036c
42ffd9873c2ebd5d2d00583de40eef0769c95ab0
11944df075ecea09db203ad134f35e537bb166b1332d541e575a7136b5417958

HTTP Headers

GET /assets/registration/one/bb-border.svg HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2; _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:08 GMT
content-type: image/svg+xml
last-modified: Thu, 27 Jun 2024 09:13:01 GMT
etag: W/"667d2d1d-1de"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5838
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JZHTz1h9GqJgSkNETpCqmFR3r2kaiFy775nBAMXEu5brcygZxCvrjjILAHskyJ0aKqSn8VfgHqnrkgqo1YmfvflzYJfzBZe6pBrRIXTM931GD8jCtjVSeZZGs1kc6A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 89b7cc18aa4a8d7a-HEL
content-encoding: br
X-Firefox-Spdy: h2

hellspin.com/assets/registration/one/bb-container-inner-bcg.webp

172.67.73.88

200 OK

300 kB

URL GET HTTP/2
hellspin.com/assets/registration/one/bb-container-inner-bcg.webp
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
RIFF (little-endian) data, Web/P image
Size
300 kB (300238 bytes)
Hash
c2c9914fab282228a924868de2900302
c2385c2784008ead5822f941b8111d62a25e4592
48a624b54a6f5d779a3fcd3025b48fb63d90dc730c3ef97625008b481f9c80c7

HTTP Headers

GET /assets/registration/one/bb-container-inner-bcg.webp HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2; _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:08 GMT
content-type: image/webp
content-length: 300238
last-modified: Thu, 27 Jun 2024 09:12:50 GMT
etag: "667d2d12-494ce"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3771
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TrnVNgRrE5aDwDISzejsGXOp1OtyUt96xnq%2BWH3AXaCLWVhj4q93AKar7wCnEoIWNGlIo8upURxeGpW63e7RB28Wnm2dtI%2FO3sdqFCdyDv4BK4UagYqHfsBPRr%2BYFw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 89b7cc19aada8d7a-HEL
X-Firefox-Spdy: h2

hellspin.com/assets/images/blazon.webp

172.67.73.88

200 OK

26 kB

URL GET HTTP/2
hellspin.com/assets/images/blazon.webp
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
RIFF (little-endian) data, Web/P image
Size
26 kB (26218 bytes)
Hash
045ace3871c314f376d006a7e13b8866
0467281d5aba3fee6a4072adf0679124a01ed17c
34850278ab5e565d0883e355ed5a906b39cc9d99202d59c00968744ecc14f120

HTTP Headers

GET /assets/images/blazon.webp HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2; _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:08 GMT
content-type: image/webp
content-length: 26218
last-modified: Thu, 27 Jun 2024 09:12:50 GMT
etag: "667d2d12-666a"
cache-control: max-age=14400
cf-cache-status: HIT
age: 7155
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BNqc3KWtNGMPBzR8ykYuXRzxvDFbFNUpQ%2FwELjjroxn8ryPGNNU7xSOii1MH1lU7oB%2F06T71uzd3UZqcR4gxjve4R%2BMIPowjCrB2dyozvBfdHQntUNuojvvY4PzKMQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 89b7cc19baec8d7a-HEL
X-Firefox-Spdy: h2

hellspin.com/assets/main/new/new-games-bg.webp

172.67.73.88

200 OK

99 kB

URL GET HTTP/2
hellspin.com/assets/main/new/new-games-bg.webp
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
RIFF (little-endian) data, Web/P image
Size
99 kB (99282 bytes)
Hash
348023d355b43996f14facd8dc923c5a
0b54015f6ed4135451936b1c8faa3ac092a8248a
beae3fc786773391733d81a92e88e4aa4446dd6bf5bd1f2a70d62e61ab507030

HTTP Headers

GET /assets/main/new/new-games-bg.webp HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2; _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:08 GMT
content-type: image/webp
content-length: 99282
last-modified: Thu, 27 Jun 2024 09:13:01 GMT
etag: "667d2d1d-183d2"
cache-control: max-age=14400
cf-cache-status: HIT
age: 7155
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Pz1V%2BU3MVfbvqRwDugO9RubYPpi9VypHOHNQ9NA6AncNhbVDO36bxlRo%2BEfJ2pbE%2BIzdTc75r0ev%2Fo5%2FAOD1U19tq74W8rmdEwkP%2Fbj331ar4yiVXgx2KZdbAxq5Ig%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 89b7cc19baee8d7a-HEL
X-Firefox-Spdy: h2

hellspin.com/assets/fonts/text-font/aa_badaboom_bb.ttf?3289zf

172.67.73.88

200 OK

18 kB

URL GET HTTP/2
hellspin.com/assets/fonts/text-font/aa_badaboom_bb.ttf?3289zf
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
TrueType Font data, 15 tables, 1st "FFTM", 14 names, Macintosh
Size
18 kB (18228 bytes)
Hash
82c96f704a6f0ef16c27b0ef0b247b63
78057f31a4954377b39619692ad201a67251ff9a
62560591cb898396f46a8ef19ad2725d600a57d82ddd8ebc371500428870a456

HTTP Headers

GET /assets/fonts/text-font/aa_badaboom_bb.ttf?3289zf HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/app/styles.92c86a5fea28714a.css
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2; _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:08 GMT
content-type: application/octet-stream
content-length: 18228
last-modified: Thu, 27 Jun 2024 09:12:56 GMT
etag: "667d2d18-4734"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3251
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qGridtpeIR4ulO4D%2BfTCaTp4y0Wq2NImXFx9uW99NtbRPRf8IkRwJpGZ1T9bUNZl%2BzsayXw7MWvzz94389G2%2BUX4%2FxOIF%2FYIugQYBYSBfQPNxEFV5kYw2hUr60QBiQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 89b7cc19baf18d7a-HEL
X-Firefox-Spdy: h2

hellspin.com/assets/registration/one/1-bb.webp

172.67.73.88

200 OK

11 kB

URL GET HTTP/2
hellspin.com/assets/registration/one/1-bb.webp
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
RIFF (little-endian) data, Web/P image
Size
11 kB (10618 bytes)
Hash
6a2ef0eaa66a2c367efb832ef7fe2607
b24a9e7f2bbe5041fb8d4a74f37b5660c0873187
b27e2bfae5087ddd8fa793c41970b96c6fa3069fe9fae108a2394f3e5c44c8b1

HTTP Headers

GET /assets/registration/one/1-bb.webp HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2; _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:08 GMT
content-type: image/webp
content-length: 10618
last-modified: Thu, 27 Jun 2024 09:12:38 GMT
etag: "667d2d06-297a"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5838
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RdlkSEGENfwx%2BwmFWL3bSojLgox34jan4jD13VmWJrsAzeDUYaH%2FKdk2ntyHdnoViSdNVUvST6Ae6AY0XcLETy81UjAGzXDVB2%2Bsb17knH46ixnUY8s9YHpgAX%2F5xA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 89b7cc19caf38d7a-HEL
X-Firefox-Spdy: h2

hellspin.com/assets/registration/one/2-bb.webp

172.67.73.88

200 OK

10 kB

URL GET HTTP/2
hellspin.com/assets/registration/one/2-bb.webp
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
RIFF (little-endian) data, Web/P image
Size
10 kB (10272 bytes)
Hash
0c9d4b2566af6ed219a3e06bb6749683
a13fbd91566701fc1858c310b149d56d5c9c2751
e0fbdbc545dad2eddcf0b0dc2cdaf7bcbb07be4e073f6125d4e68f6ea3276582

HTTP Headers

GET /assets/registration/one/2-bb.webp HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2; _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:08 GMT
content-type: image/webp
content-length: 10272
last-modified: Thu, 27 Jun 2024 09:12:44 GMT
etag: "667d2d0c-2820"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5838
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6vb%2FJ%2B5EVaiT%2FUGug6oHHzl%2F47G1%2BxWguWDotJFSlieoKMysVCk%2By0zzZx92g45Er4CCCZrYCOqrKZCneYXdkVgTclPunxeWTFqbw7R2ik81ZAm3v9yns4wgtB5EEQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 89b7cc19caf48d7a-HEL
X-Firefox-Spdy: h2

hellspin.com/api/seo/get-data?pageUrl=/no

172.67.73.88

200 OK

13 kB

URL GET HTTP/2
hellspin.com/api/seo/get-data?pageUrl=/no
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
gzip compressed data, from Unix
Size
13 kB (12591 bytes)
Hash
c20bb0a591c35113c89556133e937e42
3e6507887d6c506794377941c371b98d7bbd6e1e
0fec26f437fbc3c0a18321112964be4cbeff8c331603758680e261891a3f0341

HTTP Headers

GET /api/seo/get-data?pageUrl=/no HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2; _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:08 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, private
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
content-encoding: gzip
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=02m437hN2ni1y3KdzyIU3bd5vspEiZIliI%2FH7NmRVzhWmMAVkT1TN6EgF8lln5u2hX2pH1e5H8dqO3dRTO3CNkkjUyb%2FZJRCCwl%2FP9FXeQCUobz7oYh5JjdHOplBjA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc187a218d7a-HEL
X-Firefox-Spdy: h2

fonts.gstatic.com/s/merriweathersans/v26/2-c99IRs1JiJN1FRAMjTN5zd9vgsFHX1QjU.woff2

216.58.207.227

200 OK

38 kB

URL GET HTTP/3
fonts.gstatic.com/s/merriweathersans/v26/2-c99IRs1JiJN1FRAMjTN5zd9vgsFHX1QjU.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintC4:9C:27:09:1C:F7:14:C9:86:F0:B5:42:0B:8A:D2:AE:5E:AE:98:04
ValidityThu, 13 Jun 2024 16:31:03 GMT - Thu, 05 Sep 2024 16:31:02 GMT

File type
Web Open Font Format (Version 2), TrueType, length 38268, version 1.0
Size
38 kB (38268 bytes)
Hash
9b0f2fe8ae9d38fea56cc9e84fdbc2c2
6fe3352049b17554d46380342372a737f4a8a3de
a8a4a852dedcc7e3b6bb2c6acffac1a82a31828a00749ce2a8c2d6dd5f268dd9

HTTP Headers

GET /s/merriweathersans/v26/2-c99IRs1JiJN1FRAMjTN5zd9vgsFHX1QjU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hellspin.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 38268
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 29 Jun 2024 04:27:07 GMT
expires: Sun, 29 Jun 2025 04:27:07 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 27 Apr 2023 00:13:26 GMT
content-type: font/woff2
age: 48601
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

platform.hellspin.com/api/v2/casino/last-winners?limit=4&has_live=0&include_images=196x147

104.26.8.227

204 No Content

0 B

URL OPTIONS HTTP/2
platform.hellspin.com/api/v2/casino/last-winners?limit=4&has_live=0&include_images=196x147
IP
104.26.8.227:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /api/v2/casino/last-winners?limit=4&has_live=0&include_images=196x147 HTTP/1.1
Host: platform.hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://hellspin.com/
Origin: https://hellspin.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 204 No Content
date: Sat, 29 Jun 2024 17:57:08 GMT
access-control-allow-origin: https://hellspin.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,ws-channel,ws-session-uuid,LOCATION-SMART-DEVICE-SESSION-ID,LOCATION-SMART-HTML-SESSION-ID,X-BFF
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Gc2GdPUH82fx%2Bp%2BXJRRJJNMPqVPfKx8wdf8ESCZYdUbT%2BTfR%2FcMtwsUVFds8PA80PFzYbvbFTcCnoasCCGcbH8rEJ9s2SteyF8YcFX9EYGQhJThlvwMB2XrCQzg15GlGEHLYKe53BA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc1a7b3f8d6c-HEL
X-Firefox-Spdy: h2

platform.hellspin.com/api/user/is-auth

172.67.73.88

200 OK

145 B

URL GET HTTP/2
platform.hellspin.com/api/user/is-auth
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
JSON text data
Size
145 B (145 bytes)
Hash
b9169af20adb2be940a35d3a8f7508cf
568312af24eadcadb00306bb3cd3cc6b2cf494ea
a53e5b90daea1d5c794bf41c3123c69533f9ea6f821e0051413ec99a1883a153

HTTP Headers

GET /api/user/is-auth HTTP/1.1
Host: platform.hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://hellspin.com
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Cookie: _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:08 GMT
content-type: application/json; charset=UTF-8
status: 200 OK
x-backend: rr
access-control-allow-origin: https://hellspin.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,ws-channel,ws-session-uuid,LOCATION-SMART-DEVICE-SESSION-ID,LOCATION-SMART-HTML-SESSION-ID,X-BFF
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xXgwcVdT0TnJ7jJZP0gaCl2O4CcSYankDIJntGY8ax5SJ%2BjY1ZJ0MJrU%2FurRRhmDeOxuXqrfAPHa8Iy93HoDBPZwFW0MCdobSIJVQLgiPHCqXAjCiki%2FM9sSZeDd0UrKsSH%2FuCvY5A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc193a9a8d7a-HEL
content-encoding: br
X-Firefox-Spdy: h2

platform.hellspin.com/api/v2/casino/game-recommendations?lang=no

104.26.8.227

200 OK

0 B

URL GET HTTP/2
platform.hellspin.com/api/v2/casino/game-recommendations?lang=no
IP
104.26.8.227:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /api/v2/casino/game-recommendations?lang=no HTTP/1.1
Host: platform.hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://hellspin.com/
Origin: https://hellspin.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 204 No Content
date: Sat, 29 Jun 2024 17:57:08 GMT
access-control-allow-origin: https://hellspin.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,ws-channel,ws-session-uuid,LOCATION-SMART-DEVICE-SESSION-ID,LOCATION-SMART-HTML-SESSION-ID,X-BFF
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MHzaDQhLv2m4SP6Nz80tf4lf2EKO6ldo%2FjkdeLQmmvWAyj704PGpfoFBhVpBh%2FXP7sutzic1KJ%2FG2rR3%2F5a4KyVdhBOcv21gsTD1Frf9e1uBeeGp%2BtEEAWk33UXLdhrbYTuBOGSgNA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc1a7b418d6c-HEL
X-Firefox-Spdy: h2

unpkg.com/web-vitals@4.2.0/dist/web-vitals.iife.js

104.17.246.203

200 OK

132 kB

URL GET HTTP/2
unpkg.com/web-vitals@4.2.0/dist/web-vitals.iife.js
IP
104.17.246.203:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services LLC
Subjectunpkg.com
Fingerprint1E:BD:61:21:20:80:6D:7A:38:A4:15:7A:FB:C2:B0:50:AF:1F:F6:31
ValidityThu, 30 May 2024 03:44:12 GMT - Wed, 28 Aug 2024 03:44:11 GMT

File type
JavaScript source, ASCII text, with very long lines (7179)
Size
132 kB (132522 bytes)
Hash
8e28db3a65522ae2012de9adce4de5bf
84ea63544da64a2355256b0bae973ae1eae04ce6
adf7f9b0dd938575c72ff1592ea18e7ab9bc53ff8838a38c8484c10f5d9be7fd

HTTP Headers

GET /web-vitals@4.2.0/dist/web-vitals.iife.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hellspin.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:06 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
content-encoding: br
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: "1c0c-hOpjVE2mSiNVJWsLrpc64ergTOY"
via: 1.1 fly.io
fly-request-id: 01J0VQ07XRGW6XAVSR0YBVP9J0-arn
cf-cache-status: HIT
age: 766813
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 89b7cc0bd943be47-CPH
X-Firefox-Spdy: h2

api.livechatinc.com/v3.6/customer/action/get_dynamic_configuration?license_id=9054575&client_id=c5e4f61e1a6c3b1521b541bc5c5a2ac5&url=https%3A%2F%2Fhellspin.com%2Fno%3Fbtag%3D659013_7992acb287074dcdb105665a66498ab2&channel_type=code&jsonp=__12dcflgtdwq

95.101.10.202

200 OK

1.2 kB

URL GET HTTP/2
api.livechatinc.com/v3.6/customer/action/get_dynamic_configuration?license_id=9054575&client_id=c5e4f61e1a6c3b1521b541bc5c5a2ac5&url=https%3A%2F%2Fhellspin.com%2Fno%3Fbtag%3D659013_7992acb287074dcdb105665a66498ab2&channel_type=code&jsonp=__12dcflgtdwq
IP
95.101.10.202:443
ASN
#20940 Akamai International B.V.

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerDigiCert Inc
Subjectlivechat.com
FingerprintAD:E9:73:3D:F9:98:EE:AF:EA:A1:C6:F0:07:27:92:13:66:F0:44:6E
ValidityWed, 31 Jan 2024 00:00:00 GMT - Fri, 31 Jan 2025 23:59:59 GMT

File type
ASCII text, with very long lines (1153), with no line terminators
Size
1.2 kB (1153 bytes)
Hash
ebab203b5bbaf8a91c187799107884a5
2837c0c0213fdb33f2d9ef2525979d272b0bc5e4
0fe03665bd34b5e987ec203558a1f7fee7fcb7f3b97df106174f1566b0c190ab

HTTP Headers

GET /v3.6/customer/action/get_dynamic_configuration?license_id=9054575&client_id=c5e4f61e1a6c3b1521b541bc5c5a2ac5&url=https%3A%2F%2Fhellspin.com%2Fno%3Fbtag%3D659013_7992acb287074dcdb105665a66498ab2&channel_type=code&jsonp=__12dcflgtdwq HTTP/1.1
Host: api.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-security-policy: frame-ancestors https://hellspin.com/;
content-type: application/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-frame-options: allow-from https://hellspin.com/
content-length: 1153
date: Sat, 29 Jun 2024 17:57:09 GMT
X-Firefox-Spdy: h2

hellspin.com/app/98529.476ac1fa726802b2.js

172.67.73.88

200 OK

4.2 kB

URL GET HTTP/2
hellspin.com/app/98529.476ac1fa726802b2.js
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
Unicode text, UTF-8 text, with very long lines (9922), with no line terminators
Size
4.2 kB (4183 bytes)
Hash
d5f893dd49d6ee8ff431034930455529
22539e73880f5708d5bed859698e1fefb378e44a
32546d2b86f00f6000c13ce666618431e2f6f9ed2746222f6356647d70c3d941

HTTP Headers

GET /app/98529.476ac1fa726802b2.js HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2; _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:08 GMT
content-type: application/javascript
last-modified: Thu, 27 Jun 2024 09:12:46 GMT
vary: Accept-Encoding
etag: W/"667d2d0e-14d3"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: HIT
age: 2501
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4JVLSil%2FcP3rbAncYbN2DRpBXqD%2Fmc3vc12RJA6GvITmG2DUAJQDbGHp82EO9%2B6mrbf8quG1Lhzjf2YAVOrqSY8yjS%2FaSOQ8tTfmgBWrzGyQN8kapXwIKPxLhcdtJA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc1aabbf8d7a-HEL
X-Firefox-Spdy: h2

hellspin.com/assets/placeholders/games/200x150.png

172.67.73.88

200 OK

13 kB

URL GET HTTP/2
hellspin.com/assets/placeholders/games/200x150.png
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
PNG image data, 200 x 150, 8-bit/color RGBA, non-interlaced
Size
13 kB (12704 bytes)
Hash
229381adbd672ffe2aedaa337ac1e929
ef9f4db4c546b9f66fe0107a28e28e67f1eaf258
4099f84baaffd6db04e9d6685b0d37d9a2c95112fd9c8b55a21ce271a0ad645e

HTTP Headers

GET /assets/placeholders/games/200x150.png HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2; _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:09 GMT
content-type: image/png
content-length: 12704
last-modified: Thu, 27 Jun 2024 09:13:01 GMT
etag: "667d2d1d-31a0"
cache-control: max-age=14400
cf-cache-status: HIT
age: 11
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bp%2BIgsUZD23gm6l0FBiQ%2BrfUCTUVG3S2Wkmc3Tr9dGjFqREwRN7WtcUsp%2B7WskFog8s75N70ksVyFPyWS%2BLJj4qGbjCUfJYIcJ34Bm6Wv67YEJ%2F0kxRHeX7uKLlIMw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 89b7cc1ced918d7a-HEL
X-Firefox-Spdy: h2

hellspin.com/assets/placeholders/games/400x300.png

172.67.73.88

200 OK

29 kB

URL GET HTTP/2
hellspin.com/assets/placeholders/games/400x300.png
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
PNG image data, 400 x 300, 8-bit/color RGBA, non-interlaced
Size
29 kB (29416 bytes)
Hash
f997c6df9bd787ad198f9bdd9a383767
26156a008d2d25b1d375954f048ac015dd6c7cbb
9ebd53a493bebbd3d47f6a49bd77e16713e552a7b8865ea1c755515dddb2a6e7

HTTP Headers

GET /assets/placeholders/games/400x300.png HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2; _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:09 GMT
content-type: image/png
content-length: 29416
last-modified: Thu, 27 Jun 2024 09:12:38 GMT
etag: "667d2d06-72e8"
cache-control: max-age=14400
cf-cache-status: HIT
age: 7155
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=88qVqqYObK57d68v2eIi1AZ4dhyXLFswUyjwGkoIv8ikrwrOgfy31SrcI2rA6qik65LC%2FUR7I57bMCOoYAXI%2FmNAPIbrJpBhZ6LD%2B%2Fp0KLi4ymtP8aQSN0iOlgWM1w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 89b7cc1d3dcc8d7a-HEL
X-Firefox-Spdy: h2

hellspin.com/app/75301.f4dbd4e0c4adc74e.js

172.67.73.88

200 OK

114 kB

URL GET HTTP/2
hellspin.com/app/75301.f4dbd4e0c4adc74e.js
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
gzip compressed data, from Unix
Size
114 kB (114496 bytes)
Hash
b3474bff3bde6fac4ca08e6512210393
ddd8e09c972504147c3becfe9347582b538e8ae5
eeef32b7df24c71699cdc5f686363e11700763baafda8c27c55c456b24c6105c

HTTP Headers

GET /app/75301.f4dbd4e0c4adc74e.js HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2; _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:08 GMT
content-type: application/javascript
last-modified: Thu, 27 Jun 2024 09:12:27 GMT
vary: Accept-Encoding
etag: W/"667d2cfb-6a0"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: HIT
age: 2501
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LWwh6Hi7EKryF7%2F10bCS1HGKGjBogWA3GKczH2ORhouOHpJ0AEAC%2BPNDOtug7x6N3e5t1BpTU0YmgDWqtENgG3B45%2BNabffpHjxZvRLiQ5jF4ZAfBJacyOO9%2F1nn1Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc1aabc28d7a-HEL
X-Firefox-Spdy: h2

hellspin.com/app/13567.66cf992e423190ff.js

172.67.73.88

200 OK

1.0 kB

URL GET HTTP/2
hellspin.com/app/13567.66cf992e423190ff.js
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
ASCII text, with very long lines (573), with no line terminators
Size
1.0 kB (1011 bytes)
Hash
23be5917e2279f11e997db29b260d19a
f707d215c388bb3390bd21a58e1b311021628371
bad623192912851bf224e6113837c8de21d962106a729630c1f3aebbe3a40d04

HTTP Headers

GET /app/13567.66cf992e423190ff.js HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2; _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:08 GMT
content-type: application/javascript
last-modified: Thu, 27 Jun 2024 09:12:34 GMT
etag: W/"667d2d02-23d"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1889
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=F9NlrNm6Pu1qaG24e3Yt%2FSaAbwmDhWyNCLWArZTfoLCxYkndsXpigJEq5rJYD%2BPqHERnejNHGPTzEeQMdVcZhyr0FRUf0MRfQY2U1bPhcoVGjTJ%2B8x26TWyOt5MUvQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 89b7cc1aabc78d7a-HEL
content-encoding: br
X-Firefox-Spdy: h2

platform.hellspin.com/api/v2/casino/last-winners?limit=4&has_live=0&include_images=196x147

172.67.73.88

204 No Content

8.8 kB

URL OPTIONS HTTP/2
platform.hellspin.com/api/v2/casino/last-winners?limit=4&has_live=0&include_images=196x147
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
JSON text data
Size
8.8 kB (8800 bytes)
Hash
3550992930e0d14c70056df7e8fa9b45
57ccc435df8db4bb9f3a2e362d992e97486fc55c
c2c0d00e9c6417063a0019c2d5a08d0a469ad7b2b46af340fbf6d4eb584423ee

HTTP Headers

GET /api/v2/casino/last-winners?limit=4&has_live=0&include_images=196x147 HTTP/1.1
Host: platform.hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://hellspin.com
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Cookie: _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:09 GMT
content-type: application/json; charset=UTF-8
x-powered-by: PHP/7.4.33
access-control-allow-origin: https://hellspin.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,ws-channel,ws-session-uuid,LOCATION-SMART-DEVICE-SESSION-ID,LOCATION-SMART-HTML-SESSION-ID,X-BFF
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AdaiQJNvNCqgarpXs6UfJ%2B4VZcQrV%2BNINjpGdz87fxSMb%2FfINVb1CkqVsNFax%2BZ8n%2Fc4qIoyu9vf2EzBMzf%2FjWoX1aDh6xgSYIOv9uT3l%2FUh4bI8mVeuHun%2FMhoDTWaI4qdC3KCwYQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc1afbfe8d7a-HEL
content-encoding: br
X-Firefox-Spdy: h2

d3c3rwqla6qxaf.cloudfront.net/games-images/spribe/miniroulette/196x147/mini_roulette.webp

143.204.42.73

200 OK

3.2 kB

URL GET HTTP/2
d3c3rwqla6qxaf.cloudfront.net/games-images/spribe/miniroulette/196x147/mini_roulette.webp
IP
143.204.42.73:443
ASN
#16509 AMAZON-02

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 196x147, Scaling: [none]x[none], YUV color, decoders should clamp
Size
3.2 kB (3166 bytes)
Hash
3e3cabccba8d7243d3f32b819d71c6e5
8f4d19edd12d9be32ba4d752508d4e15fed7588b
b9ee54e4c37a5903770e691d3533d121278a9900db56d95652b8135dc6dbde22

HTTP Headers

GET /games-images/spribe/miniroulette/196x147/mini_roulette.webp HTTP/1.1
Host: d3c3rwqla6qxaf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/webp
content-length: 3166
date: Sat, 29 Jun 2024 17:57:09 GMT
last-modified: Thu, 07 Jul 2022 01:39:20 GMT
etag: "3e3cabccba8d7243d3f32b819d71c6e5"
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _-r678RpFPxgBJMT-hKeBCxRgSDHo8SmDZwPhsfJnkgx4tpPO3EQQg==
age: 1
X-Firefox-Spdy: h2

hellspin.com/assets/images/flame-bg.svg

172.67.73.88

200 OK

5.0 kB

URL GET HTTP/2
hellspin.com/assets/images/flame-bg.svg
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
gzip compressed data, from Unix
Size
5.0 kB (4980 bytes)
Hash
a5675bfcdbe65c1995aa0b88d7ffdc0a
c1c25e6db5605ad6ae56ea3c07a2f40ce7a78755
b872f2ccb4f47eaf7704e02e374a8b22366e1f5f24fa8cb9c4ab30b6f8909348

HTTP Headers

GET /assets/images/flame-bg.svg HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/app/1878.e77165d9aa0faec0.css
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2; _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:08 GMT
content-type: image/svg+xml
last-modified: Thu, 27 Jun 2024 09:13:01 GMT
vary: Accept-Encoding
etag: W/"667d2d1d-296b"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: HIT
age: 1898
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kG4YRvzPs1ppO4zDJ02Eoo2Crj7OHwbogfAXPT7SsROfPzkvkouK0dv35V%2BuaNM%2FHl1H5Rpi6JTT8lI2Ty%2FUF6up8a2zxJaXK0ur9vRuNIeDiucLPdSkVv%2Bjq%2FjRZA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc19baf08d7a-HEL
X-Firefox-Spdy: h2

d3c3rwqla6qxaf.cloudfront.net/games-images/kagaming/sharkbite/196x147/sharkbite.webp

143.204.42.73

200 OK

32 kB

URL GET HTTP/2
d3c3rwqla6qxaf.cloudfront.net/games-images/kagaming/sharkbite/196x147/sharkbite.webp
IP
143.204.42.73:443
ASN
#16509 AMAZON-02

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
32 kB (31772 bytes)
Hash
47e12c249ec06c37e29d3ad3a3dc66db
c3f41bd703ea395d9367da0981aa1400e957e2a2
c36ad1ccf48d9b0bbaacd5f176fda69d4a1d50494e41f3a16d780fa49c169524

HTTP Headers

GET /games-images/kagaming/sharkbite/196x147/sharkbite.webp HTTP/1.1
Host: d3c3rwqla6qxaf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/webp
content-length: 31772
date: Fri, 28 Jun 2024 19:56:57 GMT
last-modified: Thu, 27 Jun 2024 02:14:51 GMT
etag: "47e12c249ec06c37e29d3ad3a3dc66db"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: tBRiCbbeSicrANcTyMB7hvPtQQ2Va0QHHkAT9uXG1r8fMNfFngv3gg==
age: 79213
X-Firefox-Spdy: h2

d3c3rwqla6qxaf.cloudfront.net/games-images/spinomenal/bookoftribes/196x147/book_of_tribes.webp

143.204.42.73

200 OK

11 kB

URL GET HTTP/2
d3c3rwqla6qxaf.cloudfront.net/games-images/spinomenal/bookoftribes/196x147/book_of_tribes.webp
IP
143.204.42.73:443
ASN
#16509 AMAZON-02

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 196x147, Scaling: [none]x[none], YUV color, decoders should clamp
Size
11 kB (11196 bytes)
Hash
a69818b14a951bf95d1b4c6f616a772a
44babca0ffa6a3141fb6b37e3ac0e7df59ea8c33
59173b41fff708972752ee10e7fd6ef73a224851eb4fb31959b2509bf9feb889

HTTP Headers

GET /games-images/spinomenal/bookoftribes/196x147/book_of_tribes.webp HTTP/1.1
Host: d3c3rwqla6qxaf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/webp
content-length: 11196
date: Fri, 28 Jun 2024 20:09:05 GMT
last-modified: Mon, 11 Apr 2022 18:27:26 GMT
etag: "a69818b14a951bf95d1b4c6f616a772a"
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: CFjKbreWQRba93GxlDGCozccjnrB9AbjuW5j8gLHVmTZknpdRN8iwA==
age: 78485
X-Firefox-Spdy: h2

d3c3rwqla6qxaf.cloudfront.net/producer/53_bgaming/colored/bgaming.svg

143.204.42.73

200 OK

886 B

URL GET HTTP/2
d3c3rwqla6qxaf.cloudfront.net/producer/53_bgaming/colored/bgaming.svg
IP
143.204.42.73:443
ASN
#16509 AMAZON-02

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
886 B (886 bytes)
Hash
0ff62b362e019eccdd6e0b8a33b6ea4d
8a04906b671d7c466879d53a8e3a1edbf338edd4
de0b5943f68d8517b5de8c89800d2d43e221cd940fb61be5874a3c366c752165

HTTP Headers

GET /producer/53_bgaming/colored/bgaming.svg HTTP/1.1
Host: d3c3rwqla6qxaf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/svg+xml
content-length: 886
date: Fri, 28 Jun 2024 23:28:11 GMT
last-modified: Thu, 12 Oct 2023 08:30:28 GMT
etag: "0ff62b362e019eccdd6e0b8a33b6ea4d"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: TXukh5moVYbqzQNyOeuSC_sGp9h-w7XTPL3bUAbntyjLVrADtmhfSQ==
age: 66539
X-Firefox-Spdy: h2

platform.hellspin.com/api/v2/casino/game-recommendations?lang=no

172.67.73.88

200 OK

124 kB

URL GET HTTP/2
platform.hellspin.com/api/v2/casino/game-recommendations?lang=no
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
JSON text data
Size
124 kB (124161 bytes)
Hash
47042bb515ce820e561606d03ee01dca
7035f2c5de62ffdab4f73910fe1cf6b0c35ee865
8a6b08a1ef41dc076c5113047a5ad673c5c3ea2dc86857ef7bf06b9aa2bd7046

HTTP Headers

GET /api/v2/casino/game-recommendations?lang=no HTTP/1.1
Host: platform.hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://hellspin.com
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Cookie: _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:09 GMT
content-type: application/json; charset=UTF-8
x-powered-by: PHP/7.4.33
access-control-allow-origin: https://hellspin.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,ws-channel,ws-session-uuid,LOCATION-SMART-DEVICE-SESSION-ID,LOCATION-SMART-HTML-SESSION-ID,X-BFF
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vJ9uooFZOdyMz%2BNqVoc%2B9fzctUt25i0E5%2BmdBApyIKGYNpD6h38YcMY6zXsvRxXk9qdFKOfEmZ1DZJerU8F2WKjrDg%2Bs0n%2Fvrc25zHI5LkktQ%2FNvfioQ3vXfS6X%2BwegbpVvvtf9R6w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc1b1c238d7a-HEL
content-encoding: br
X-Firefox-Spdy: h2

d3c3rwqla6qxaf.cloudfront.net/games-images/hacksawgaming/divinedrop/315x236/divinedrop.webp

143.204.42.73

200 OK

116 kB

URL GET HTTP/2
d3c3rwqla6qxaf.cloudfront.net/games-images/hacksawgaming/divinedrop/315x236/divinedrop.webp
IP
143.204.42.73:443
ASN
#16509 AMAZON-02

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
116 kB (115908 bytes)
Hash
5a3631ed2e36cccdf1fe9298eb37e41d
5d8cc74d9b0151354132c73bbd6252d75d470216
3191e9f5213a471bc39e499f83ff472b31097f3bae1412837fc48a39223eed16

HTTP Headers

GET /games-images/hacksawgaming/divinedrop/315x236/divinedrop.webp HTTP/1.1
Host: d3c3rwqla6qxaf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/webp
content-length: 115908
date: Fri, 28 Jun 2024 18:23:53 GMT
last-modified: Fri, 26 Apr 2024 01:58:50 GMT
etag: "5a3631ed2e36cccdf1fe9298eb37e41d"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: tl6g425lhfg4EKF4l2b3diJWg7JTgdxsJcsSbEJS87SoYQt5lKPGdA==
age: 84797
X-Firefox-Spdy: h2

d3c3rwqla6qxaf.cloudfront.net/games-images/onlyplay/godsparty/315x236/godsparty.webp

143.204.42.73

200 OK

112 kB

URL GET HTTP/2
d3c3rwqla6qxaf.cloudfront.net/games-images/onlyplay/godsparty/315x236/godsparty.webp
IP
143.204.42.73:443
ASN
#16509 AMAZON-02

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
112 kB (112450 bytes)
Hash
55a949e492c5ad8a20c7ec182ee7a34c
e563e7e387f97e8bd25811f319a56a0d4d0a4bcd
8f81347862a64d2a11d0128ca5a4337f3ec722b315828a30fcc86952afe8ae23

HTTP Headers

GET /games-images/onlyplay/godsparty/315x236/godsparty.webp HTTP/1.1
Host: d3c3rwqla6qxaf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/webp
content-length: 112450
last-modified: Thu, 15 Feb 2024 11:04:30 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Fri, 28 Jun 2024 20:54:47 GMT
etag: "55a949e492c5ad8a20c7ec182ee7a34c"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: PM7SyNDutUHybtgI7PM9STCU7dYP1xXrQBVz18juU72ZLZHypaNJoA==
age: 75743
X-Firefox-Spdy: h2

hellspin.com/app/6959.2b559d99461bd6fa.js

172.67.73.88

200 OK

26 kB

URL GET HTTP/2
hellspin.com/app/6959.2b559d99461bd6fa.js
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
gzip compressed data, from Unix
Size
26 kB (26472 bytes)
Hash
c6d34727811ccd7ff2b61283bbb9feba
63d9859d27a5620411d2deb20fb5a81c0e5d975f
bd9d8b73a40881d3ff91749fb9c421207a015519be710c442e8558b111c5df13

HTTP Headers

GET /app/6959.2b559d99461bd6fa.js HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2; _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:08 GMT
content-type: application/javascript
last-modified: Thu, 27 Jun 2024 09:12:27 GMT
vary: Accept-Encoding
etag: W/"667d2cfb-994"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: HIT
age: 1642
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FWswWPK51G71zW0FFaHPBiBHmbbb12pcLu832SymNg9N%2F2ZMJsuKMBWRK73t%2Falu1mbcPiJyzMQZBlmGtFrS86s9HmrCD9Z%2BXIlhEjFg6U1U0uFK8tHZkySEsIVB2A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc1a8ba18d7a-HEL
X-Firefox-Spdy: h2

hellspin.com/app/12657.5ab31255e3478579.js

172.67.73.88

200 OK

4.3 kB

URL GET HTTP/2
hellspin.com/app/12657.5ab31255e3478579.js
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
ASCII text, with very long lines (492), with no line terminators
Size
4.3 kB (4261 bytes)
Hash
aba63a44a5bc4c0dc511cebf98583763
947d06237666b659355c6e824241a7e3a7952f84
9d0a4f9af0a9087ba16a79a8bd8c6c9015f231325f8d2b8048356d84ec2c7b0c

HTTP Headers

GET /app/12657.5ab31255e3478579.js HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2; _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:08 GMT
content-type: application/javascript
last-modified: Thu, 27 Jun 2024 09:12:46 GMT
etag: W/"667d2d0e-1ec"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1889
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9ou5K9UySTGFwPn0hg5UKHbsnwBGsebUiMzXCD55BSs7WTBji8og2duGfim9dIgftJ4efAu93UZhEIWjqGh1ZCufMXD6lJfTXcs5m81pDjfzgr2tAepoF425Cegwuw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 89b7cc1aabc68d7a-HEL
content-encoding: br
X-Firefox-Spdy: h2

hellspin.com/assets/images/flame/banner-flame.svg

172.67.73.88

200 OK

22 kB

URL GET HTTP/2
hellspin.com/assets/images/flame/banner-flame.svg
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
gzip compressed data, from Unix
Size
22 kB (22245 bytes)
Hash
23e0e88694c67638f04e5812b6854044
5195f2267dd01dd6474a94fecccc92e6161ad794
962cf0188dd20f057c8bafbad149b5de34054e63c8951d70185671fb67b3b21a

HTTP Headers

GET /assets/images/flame/banner-flame.svg HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/app/1878.e77165d9aa0faec0.css
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2; _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:08 GMT
content-type: image/svg+xml
last-modified: Thu, 27 Jun 2024 09:12:50 GMT
vary: Accept-Encoding
etag: W/"667d2d12-2819"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: HIT
age: 1891
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=T36f6AJ8zId8iun3UNHnmT4CN6udnsyurZiLDoVGq4PhiMVHtboW1Rz%2Fy8NNwc5ZRvwfc8mStgW3s%2BGQB9myjsjglMO4NIAD0Bat9JSj1XJV03B2faqikvQlb%2FEzKA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc19aadb8d7a-HEL
X-Firefox-Spdy: h2

d3c3rwqla6qxaf.cloudfront.net/games-images/belatra/tonygambler/315x236/tonygambler.webp

143.204.42.73

200 OK

80 kB

URL GET HTTP/2
d3c3rwqla6qxaf.cloudfront.net/games-images/belatra/tonygambler/315x236/tonygambler.webp
IP
143.204.42.73:443
ASN
#16509 AMAZON-02

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
80 kB (80210 bytes)
Hash
1bcafacfc15e13d9b1bdcc0fb99a431c
0501c3ef57fd2fcad7a3beff04755805316f160b
38937224b9672418219d78b16140a0d2b1339eb6845ae113b2df2ee2fbfca3ef

HTTP Headers

GET /games-images/belatra/tonygambler/315x236/tonygambler.webp HTTP/1.1
Host: d3c3rwqla6qxaf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/webp
content-length: 80210
date: Fri, 28 Jun 2024 23:28:12 GMT
last-modified: Thu, 30 May 2024 04:11:23 GMT
etag: "1bcafacfc15e13d9b1bdcc0fb99a431c"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: anbC0PWGFKe5Lcfjr2uQswnRrsFuajlvItlZuzsU62oIzwW9XNIiDg==
age: 66538
X-Firefox-Spdy: h2

d3c3rwqla6qxaf.cloudfront.net/games-images/gamzix/coinwinholdthespin/315x236/coin_win_hold_the_spin.webp

143.204.42.73

200 OK

18 kB

URL GET HTTP/2
d3c3rwqla6qxaf.cloudfront.net/games-images/gamzix/coinwinholdthespin/315x236/coin_win_hold_the_spin.webp
IP
143.204.42.73:443
ASN
#16509 AMAZON-02

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 315x236, Scaling: [none]x[none], YUV color, decoders should clamp
Size
18 kB (18212 bytes)
Hash
43febe3dbaee5b08a97ecb5f1bc2bf10
ff9c35348db0487373407c84456dd501c59acea5
85a4513c91a533e2d25ca146324bbc0cacb10ee0ff2a0f91e478275016c12890

HTTP Headers

GET /games-images/gamzix/coinwinholdthespin/315x236/coin_win_hold_the_spin.webp HTTP/1.1
Host: d3c3rwqla6qxaf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/webp
content-length: 18212
date: Fri, 28 Jun 2024 23:28:12 GMT
last-modified: Fri, 18 Aug 2023 10:58:27 GMT
etag: "43febe3dbaee5b08a97ecb5f1bc2bf10"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: tgJ_HTR6PDbu0C73fMe0GSBJ-y1yobPfq36mm4SXlJ4-O3JYJOnyPA==
age: 66538
X-Firefox-Spdy: h2

hellspin.com/app/31653.fdd82c98a134e672.js

172.67.73.88

200 OK

108 kB

URL GET HTTP/2
hellspin.com/app/31653.fdd82c98a134e672.js
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
gzip compressed data, from Unix
Size
108 kB (108092 bytes)
Hash
721e9874d3b6bfc7c82cc77c357e3887
fc0c64fe032ab45eb7ddc59ee27a7e408a80e71e
b98299260b7580840059f31f7d17f775ae48f1ab34eaa3b0aa8cd6ee0b1ab1c3

HTTP Headers

GET /app/31653.fdd82c98a134e672.js HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2; _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:08 GMT
content-type: application/javascript
last-modified: Thu, 27 Jun 2024 09:12:52 GMT
vary: Accept-Encoding
etag: W/"667d2d14-a4e"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: HIT
age: 1642
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BIIgfzSPNzzqRDOygWYXRswSLiOWN3EZgGEVpGowiNVOkK9U2rNarCIodAu%2BaS05%2FRAmjKQkm67NmBosQNdHVBaELOCDJIoMLBu%2FfZ3IW%2B5bqXGDPwg8Wgjd1l7QMg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc1a9bb08d7a-HEL
X-Firefox-Spdy: h2

secure.livechatinc.com/customer/action/open_chat?license_id=9054575&group=50&embedded=1&widget_version=3&unique_groups=1

95.101.10.202

200 OK

744 B

URL GET HTTP/2
secure.livechatinc.com/customer/action/open_chat?license_id=9054575&group=50&embedded=1&widget_version=3&unique_groups=1
IP
95.101.10.202:443
ASN
#20940 Akamai International B.V.

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerDigiCert Inc
Subjectlivechat.com
FingerprintAD:E9:73:3D:F9:98:EE:AF:EA:A1:C6:F0:07:27:92:13:66:F0:44:6E
ValidityWed, 31 Jan 2024 00:00:00 GMT - Fri, 31 Jan 2025 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (1749), with no line terminators
Size
744 B (744 bytes)
Hash
a07c77c6fb8654ecb53a97a544352aea
5b2ef3da5aecdc89808a78408f69450e38829223
82394bcf5298f4051687c279af2978a50d3783ca711bd5fd32f257b07a2b9f3a

HTTP Headers

GET /customer/action/open_chat?license_id=9054575&group=50&embedded=1&widget_version=3&unique_groups=1 HTTP/1.1
Host: secure.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
content-length: 744
date: Sat, 29 Jun 2024 17:57:09 GMT
X-Firefox-Spdy: h2

d3c3rwqla6qxaf.cloudfront.net/games-images/felixgaming/caishen689/315x236/cai_shen_689.webp

143.204.42.73

200 OK

126 kB

URL GET HTTP/2
d3c3rwqla6qxaf.cloudfront.net/games-images/felixgaming/caishen689/315x236/cai_shen_689.webp
IP
143.204.42.73:443
ASN
#16509 AMAZON-02

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
126 kB (125786 bytes)
Hash
8dfe0dcd0f3fb0e58e43fc2c45a3df73
7d0f85a220d566ff34dc87dfa95508b582b788f8
07d92769855489e11a83ad8b6e7a032180ac5c3e0a6de311984f9158959285f1

HTTP Headers

GET /games-images/felixgaming/caishen689/315x236/cai_shen_689.webp HTTP/1.1
Host: d3c3rwqla6qxaf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/webp
content-length: 125786
last-modified: Tue, 19 Jul 2022 08:15:50 GMT
accept-ranges: bytes
server: AmazonS3
date: Fri, 28 Jun 2024 18:08:25 GMT
etag: "8dfe0dcd0f3fb0e58e43fc2c45a3df73"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: P6LoIKdFcEE62C9kfSWJr6w6LDsweEg1sqV0QwAUL7UDY02JbngTjA==
age: 85725
X-Firefox-Spdy: h2

d3c3rwqla6qxaf.cloudfront.net/games-images/felixgaming/5hotwildsboost/315x236/5hotwildsboost.webp

143.204.42.73

200 OK

16 kB

URL GET HTTP/2
d3c3rwqla6qxaf.cloudfront.net/games-images/felixgaming/5hotwildsboost/315x236/5hotwildsboost.webp
IP
143.204.42.73:443
ASN
#16509 AMAZON-02

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
16 kB (16408 bytes)
Hash
f9fccd8120680978da8e9654716da9c1
4d4217e49b61e0b16e1d2a9f7eddcc60b0680696
f8613b8ef8174f784f827755baa5aa5118775be8d80d2b4ebb9617b258d428a3

HTTP Headers

GET /games-images/felixgaming/5hotwildsboost/315x236/5hotwildsboost.webp HTTP/1.1
Host: d3c3rwqla6qxaf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/webp
content-length: 16408
date: Fri, 28 Jun 2024 23:28:11 GMT
last-modified: Fri, 21 Jun 2024 11:32:43 GMT
etag: "f9fccd8120680978da8e9654716da9c1"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: hN6Nzo7ueyEfdJvFCBDI-YjlPx5VyXd86TRo7MM7ws3VrBRULky4fQ==
age: 66539
X-Firefox-Spdy: h2

d3c3rwqla6qxaf.cloudfront.net/games-images/redgenn/3chinapots/315x236/3chinapots.webp

143.204.42.73

200 OK

99 kB

URL GET HTTP/2
d3c3rwqla6qxaf.cloudfront.net/games-images/redgenn/3chinapots/315x236/3chinapots.webp
IP
143.204.42.73:443
ASN
#16509 AMAZON-02

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
99 kB (99340 bytes)
Hash
b8762d789de59b1c456c2d0aafa68a5b
f914a31e37d7c834223a40a5ed883a783b44f78f
e06af19e01e7bb861faec8a5ccbba3b6c86bfd4f57d41afadb9645abf192649e

HTTP Headers

GET /games-images/redgenn/3chinapots/315x236/3chinapots.webp HTTP/1.1
Host: d3c3rwqla6qxaf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/webp
content-length: 99340
date: Fri, 28 Jun 2024 23:28:11 GMT
last-modified: Sat, 15 Jun 2024 02:07:37 GMT
etag: "b8762d789de59b1c456c2d0aafa68a5b"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: xFjLeo4-lLhKDK5py0DrPn55Tl3GrAYg4yLGR9ZLZI1RF6eAWxHbfg==
age: 66539
X-Firefox-Spdy: h2

d3c3rwqla6qxaf.cloudfront.net/games-images/bgaming/goldofminos/315x236/goldofminos_1717691200.webp

143.204.42.73

200 OK

103 kB

URL GET HTTP/2
d3c3rwqla6qxaf.cloudfront.net/games-images/bgaming/goldofminos/315x236/goldofminos_1717691200.webp
IP
143.204.42.73:443
ASN
#16509 AMAZON-02

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
103 kB (103114 bytes)
Hash
d5ecf44f4d71278a9ff9953ab09c304a
7b03ddcded5a200854a1056aeda2e802f60a2b06
5061553979ac5d1de742d9595911fa143316ac9642d5d7e0fc30b070a0653a2e

HTTP Headers

GET /games-images/bgaming/goldofminos/315x236/goldofminos_1717691200.webp HTTP/1.1
Host: d3c3rwqla6qxaf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/webp
content-length: 103114
last-modified: Thu, 06 Jun 2024 16:26:41 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Fri, 28 Jun 2024 20:54:26 GMT
etag: "d5ecf44f4d71278a9ff9953ab09c304a"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: zJFYZYvbGRXqq-5808RHWjs5pisGbuZzyL8gXaPf-k3LAwEFVAwpuQ==
age: 75764
X-Firefox-Spdy: h2

d3c3rwqla6qxaf.cloudfront.net/games-images/gamzix/egyptsphereholdthespin/315x236/egyptsphereholdthespin.webp

143.204.42.73

200 OK

120 kB

URL GET HTTP/2
d3c3rwqla6qxaf.cloudfront.net/games-images/gamzix/egyptsphereholdthespin/315x236/egyptsphereholdthespin.webp
IP
143.204.42.73:443
ASN
#16509 AMAZON-02

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
120 kB (119724 bytes)
Hash
4ed1bfeae12b4b0b9cd2040c3aea21d1
05fb6b979aea62803cf2e65f1da034b8d8e7b43e
e6b609fbae9c3b90274f011981d12f1bc834ceedbd11f1ead8e1634f9f7882c5

HTTP Headers

GET /games-images/gamzix/egyptsphereholdthespin/315x236/egyptsphereholdthespin.webp HTTP/1.1
Host: d3c3rwqla6qxaf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/webp
content-length: 119724
last-modified: Thu, 13 Jun 2024 11:08:03 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Fri, 28 Jun 2024 20:54:26 GMT
etag: "4ed1bfeae12b4b0b9cd2040c3aea21d1"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: zrvVAs7minKUyivGkGPA86XiSkbLlzgFjLoneHoayKF82-q2QzPHvg==
age: 75764
X-Firefox-Spdy: h2

d3c3rwqla6qxaf.cloudfront.net/producer/209_onlyplay/colored/onlyplay.svg

143.204.42.73

200 OK

21 kB

URL GET HTTP/2
d3c3rwqla6qxaf.cloudfront.net/producer/209_onlyplay/colored/onlyplay.svg
IP
143.204.42.73:443
ASN
#16509 AMAZON-02

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
21 kB (20898 bytes)
Hash
5ee48e6c744202afe97fc3a7b667e920
0c3911ebc7511db30fe3b6e19be2b3f061fb5060
299aad248109d9fd8bf45c25c3ddacabb0ef22d5a0cf45dd27718d0548b99818

HTTP Headers

GET /producer/209_onlyplay/colored/onlyplay.svg HTTP/1.1
Host: d3c3rwqla6qxaf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/svg+xml
date: Fri, 28 Jun 2024 23:09:46 GMT
last-modified: Thu, 12 Oct 2023 08:30:24 GMT
etag: W/"5ee48e6c744202afe97fc3a7b667e920"
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: g3UQ8smQQpts57t6R0cXdULfjS8heJbc2HDasdNwn7SIfrGKuqot_g==
age: 67644
X-Firefox-Spdy: h2

d3c3rwqla6qxaf.cloudfront.net/games-images/redgenn/sunnyfruits2holdandwin/315x236/sunnyfruits2holdandwin.webp

143.204.42.73

200 OK

82 kB

URL GET HTTP/2
d3c3rwqla6qxaf.cloudfront.net/games-images/redgenn/sunnyfruits2holdandwin/315x236/sunnyfruits2holdandwin.webp
IP
143.204.42.73:443
ASN
#16509 AMAZON-02

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
82 kB (81626 bytes)
Hash
cb0a3d6a4612061656c8341aede86481
69e9e2736ab4fcd66ec3d5c84ecef99ab154b2c9
fd0f15232ffb1b334496347821c0257494ec8ffd3370b849c940a4aa50fbddbc

HTTP Headers

GET /games-images/redgenn/sunnyfruits2holdandwin/315x236/sunnyfruits2holdandwin.webp HTTP/1.1
Host: d3c3rwqla6qxaf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/webp
content-length: 81626
last-modified: Wed, 15 May 2024 16:55:08 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Fri, 28 Jun 2024 20:54:47 GMT
etag: "cb0a3d6a4612061656c8341aede86481"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: UyloZDnfYBKhdQUGC5bq_M5LBHW0tn_NJN9GVH5SHD1m0wTcdpVdmA==
age: 75743
X-Firefox-Spdy: h2

hellspin.com/app/49540.a85fe342c23bd741.js

172.67.73.88

200 OK

91 kB

URL GET HTTP/2
hellspin.com/app/49540.a85fe342c23bd741.js
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
gzip compressed data, from Unix
Size
91 kB (90748 bytes)
Hash
c502d8df721aba6e69a827439327ba03
69cb561bc74ec7ec0ef32f84b13ef201e8b1b05e
bba0b4860a15ea003513d66ea4f82e50a6ad6f2686ba408d73ecf4c51f7324c5

HTTP Headers

GET /app/49540.a85fe342c23bd741.js HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2; _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:08 GMT
content-type: application/javascript
last-modified: Thu, 27 Jun 2024 09:12:40 GMT
vary: Accept-Encoding
etag: W/"667d2d08-2f95"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: HIT
age: 1642
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nO4yULqoq30%2F6d3y0JzAmSe2mddiHFgtH6yCNAW5EbQXQLj7NmxxMeS%2BHPYnLCi%2Bv%2F4EfQfK3LignD%2F4jKQQPetl3%2BBeEOViCT07zjpuH8rI7KoFyKxYhNrvQzX7pQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc1a6b7f8d7a-HEL
X-Firefox-Spdy: h2

d3c3rwqla6qxaf.cloudfront.net/producer/242_3oaks/colored/3oaks.svg

143.204.42.73

200 OK

124 kB

URL GET HTTP/2
d3c3rwqla6qxaf.cloudfront.net/producer/242_3oaks/colored/3oaks.svg
IP
143.204.42.73:443
ASN
#16509 AMAZON-02

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
gzip compressed data, from Unix
Size
124 kB (123463 bytes)
Hash
697260fa74ba26df2e93a9e000e95376
7132761975b63a71bdece87137708468bb888d36
e3ccd37bffc3552601911d3d201175447ee7371cda1a8a986b4334930fdb54ea

HTTP Headers

GET /producer/242_3oaks/colored/3oaks.svg HTTP/1.1
Host: d3c3rwqla6qxaf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/svg+xml
date: Fri, 28 Jun 2024 23:28:11 GMT
last-modified: Thu, 12 Oct 2023 08:31:23 GMT
etag: W/"5b5ee9a224cd2342d60170a9b4a0e782"
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: u8ONwMXE7D9QCEjIhuA0vjufqPzrjJH3cPK55_4KELiiG9YdzR0Yjg==
age: 66539
X-Firefox-Spdy: h2

d3c3rwqla6qxaf.cloudfront.net/producer/9_pragmaticplay/colored/pragmaticplay.svg

143.204.42.73

200 OK

757 B

URL GET HTTP/2
d3c3rwqla6qxaf.cloudfront.net/producer/9_pragmaticplay/colored/pragmaticplay.svg
IP
143.204.42.73:443
ASN
#16509 AMAZON-02

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
757 B (757 bytes)
Hash
dab7d0af9f6bc1ee58b7c0d7cf62f228
6f1c895c2546515a510784afb1f945b66d615c3c
20724a22816868997d66ec61ee51c3c447e75ae3d656862abb1d8ce54196b380

HTTP Headers

GET /producer/9_pragmaticplay/colored/pragmaticplay.svg HTTP/1.1
Host: d3c3rwqla6qxaf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/svg+xml
content-length: 757
date: Sat, 29 Jun 2024 10:12:16 GMT
last-modified: Thu, 12 Oct 2023 08:30:59 GMT
etag: "dab7d0af9f6bc1ee58b7c0d7cf62f228"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: nl0nbm26q6aYi3AMAQ8B58XSWjrZUUluWY6dgLDNeZeWQ2CEty55qQ==
age: 27894
X-Firefox-Spdy: h2

d3c3rwqla6qxaf.cloudfront.net/games-images/playtech/wolvescashcollectlink/315x236/wolvescashcollectandlink.webp

143.204.42.73

200 OK

111 kB

URL GET HTTP/2
d3c3rwqla6qxaf.cloudfront.net/games-images/playtech/wolvescashcollectlink/315x236/wolvescashcollectandlink.webp
IP
143.204.42.73:443
ASN
#16509 AMAZON-02

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
111 kB (111380 bytes)
Hash
945022d274c4993a2bf2c61b7293c718
e12cc1fcc27abd80fba501e0658be9558a6a8b51
e896d536577b0cbd558e18c8f5f258c40ec56b16f7b573665340c299f47db1ad

HTTP Headers

GET /games-images/playtech/wolvescashcollectlink/315x236/wolvescashcollectandlink.webp HTTP/1.1
Host: d3c3rwqla6qxaf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/webp
content-length: 111380
date: Fri, 28 Jun 2024 23:28:11 GMT
last-modified: Fri, 28 Jun 2024 02:05:28 GMT
etag: "945022d274c4993a2bf2c61b7293c718"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Ynp0iWl30EjoedOpp5XOI6gJj6QvCbRenzUrBnk8nQDt07mh7y1Gpw==
age: 66538
X-Firefox-Spdy: h2

d3c3rwqla6qxaf.cloudfront.net/games-images/pragmaticplay/gatesofolympus1000/315x236/gates_of_olympus_1000.webp

143.204.42.73

200 OK

21 kB

URL GET HTTP/2
d3c3rwqla6qxaf.cloudfront.net/games-images/pragmaticplay/gatesofolympus1000/315x236/gates_of_olympus_1000.webp
IP
143.204.42.73:443
ASN
#16509 AMAZON-02

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 315x236, Scaling: [none]x[none], YUV color, decoders should clamp
Size
21 kB (21448 bytes)
Hash
9d372c9824f1fc34b13d05b47b9e7732
0cd53e2ccb06b473c78948b111983e0a5c2fd1fd
ed118a0d724bdc38280c658931512bdb9c5f454273f4c4e6a7af489721ecc6b0

HTTP Headers

GET /games-images/pragmaticplay/gatesofolympus1000/315x236/gates_of_olympus_1000.webp HTTP/1.1
Host: d3c3rwqla6qxaf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/webp
content-length: 21448
date: Fri, 28 Jun 2024 23:28:12 GMT
last-modified: Thu, 14 Dec 2023 11:05:32 GMT
etag: "9d372c9824f1fc34b13d05b47b9e7732"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 6Qw7pB23GkpcDSgrpoD2NvSuBnkyF-i4RP7OO0M4xYBCaGmtB4Uv6A==
age: 66538
X-Firefox-Spdy: h2

d3c3rwqla6qxaf.cloudfront.net/games-images/spinomenal/bookoftribes/315x236/book_of_tribes.webp

143.204.42.73

200 OK

25 kB

URL GET HTTP/2
d3c3rwqla6qxaf.cloudfront.net/games-images/spinomenal/bookoftribes/315x236/book_of_tribes.webp
IP
143.204.42.73:443
ASN
#16509 AMAZON-02

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 315x236, Scaling: [none]x[none], YUV color, decoders should clamp
Size
25 kB (24784 bytes)
Hash
b7c3a9cbe1c72fb9cd19737bbad7d370
934c3940951a45eff6f38bbd7e9ad5877c5bec7a
61e7b33a26974c72ef315d1ee117fbe583eafa8b822fdbef9a8c251e972faef6

HTTP Headers

GET /games-images/spinomenal/bookoftribes/315x236/book_of_tribes.webp HTTP/1.1
Host: d3c3rwqla6qxaf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/webp
content-length: 24784
date: Sat, 29 Jun 2024 02:26:25 GMT
last-modified: Mon, 11 Apr 2022 18:27:26 GMT
etag: "b7c3a9cbe1c72fb9cd19737bbad7d370"
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: NAq8OjfJBfaGISAHBzP25Vj-1hh5D0ZdLKvoXDlNkL4iuojTRJ6rqg==
age: 55845
X-Firefox-Spdy: h2

d3c3rwqla6qxaf.cloudfront.net/games-images/fugaso/strikingdiamondrunningwins/315x236/strikingdiamondrunningwins.webp

143.204.42.73

200 OK

130 kB

URL GET HTTP/2
d3c3rwqla6qxaf.cloudfront.net/games-images/fugaso/strikingdiamondrunningwins/315x236/strikingdiamondrunningwins.webp
IP
143.204.42.73:443
ASN
#16509 AMAZON-02

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
130 kB (129510 bytes)
Hash
385cf7595da6492a763057c6db305bc9
9eaf2329b8368641ba2a857d778e21674b7338b3
eb949ed7a8725589caa34e2d729faf4a8faf287384456e4ff395515ff04c7de8

HTTP Headers

GET /games-images/fugaso/strikingdiamondrunningwins/315x236/strikingdiamondrunningwins.webp HTTP/1.1
Host: d3c3rwqla6qxaf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/webp
content-length: 129510
date: Fri, 28 Jun 2024 23:28:12 GMT
last-modified: Thu, 28 Mar 2024 11:03:16 GMT
etag: "385cf7595da6492a763057c6db305bc9"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 7XpDeMGe7pNfFVxhCxyu1aAe1CXa8l4ScBhY67v2e5nR-nuTwWyS4A==
age: 66538
X-Firefox-Spdy: h2

d3c3rwqla6qxaf.cloudfront.net/producer/66_belatra/colored/belatra.svg

143.204.42.73

200 OK

109 kB

URL GET HTTP/2
d3c3rwqla6qxaf.cloudfront.net/producer/66_belatra/colored/belatra.svg
IP
143.204.42.73:443
ASN
#16509 AMAZON-02

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
109 kB (109366 bytes)
Hash
8ac0b6f43386989c0ed18af088f4e3cc
5847e32dc3db7b36c4e8b104334f2804b35925e2
0f670c6f8eeccd1138f33bd8df72e8c5404e433800377fd475659102aa19798a

HTTP Headers

GET /producer/66_belatra/colored/belatra.svg HTTP/1.1
Host: d3c3rwqla6qxaf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Thu, 12 Oct 2023 08:31:06 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sat, 29 Jun 2024 11:01:52 GMT
etag: W/"8ac0b6f43386989c0ed18af088f4e3cc"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: dfiyOzbAuk7zaFMZ9ZKNiwiR6Ey9x6gXUqSTAV_fos-Lhf8GezyHIw==
age: 24918
X-Firefox-Spdy: h2

d3c3rwqla6qxaf.cloudfront.net/games-images/fugaso/egyptcoinlinkrunningwins/315x236/egyptcoinlinkrunningwins.webp

143.204.42.73

200 OK

133 kB

URL GET HTTP/2
d3c3rwqla6qxaf.cloudfront.net/games-images/fugaso/egyptcoinlinkrunningwins/315x236/egyptcoinlinkrunningwins.webp
IP
143.204.42.73:443
ASN
#16509 AMAZON-02

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
133 kB (132858 bytes)
Hash
0d5fd6bf04f0198b652e9e3622f65d15
cb34e0bbca0d3b8740a0891876d61504bc12878c
e3d7b2d6df119dc2243bc7679993f688f9800775f54a6334b03a804a0737f041

HTTP Headers

GET /games-images/fugaso/egyptcoinlinkrunningwins/315x236/egyptcoinlinkrunningwins.webp HTTP/1.1
Host: d3c3rwqla6qxaf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/webp
content-length: 132858
date: Fri, 28 Jun 2024 23:28:12 GMT
last-modified: Thu, 30 May 2024 11:03:31 GMT
etag: "0d5fd6bf04f0198b652e9e3622f65d15"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ztvh585yNE4h-zXjh6hRgjoQrLexdgiQjKW76X_MVfkdmEBmpuU4bA==
age: 66538
X-Firefox-Spdy: h2

d3c3rwqla6qxaf.cloudfront.net/games-images/wazdan/sizzlingeggs/315x236/sizzling_eggs.webp

143.204.42.73

200 OK

18 kB

URL GET HTTP/2
d3c3rwqla6qxaf.cloudfront.net/games-images/wazdan/sizzlingeggs/315x236/sizzling_eggs.webp
IP
143.204.42.73:443
ASN
#16509 AMAZON-02

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 315x236, Scaling: [none]x[none], YUV color, decoders should clamp
Size
18 kB (18058 bytes)
Hash
a037fb852a144863f6bf404d4b42c00b
614c6df764f0f2a5a96a5c5e77940cf6ab6de5e2
402470fb4601c318e82839a550a4c893169d21a12b6056099ff86bfc894fa17d

HTTP Headers

GET /games-images/wazdan/sizzlingeggs/315x236/sizzling_eggs.webp HTTP/1.1
Host: d3c3rwqla6qxaf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/webp
content-length: 18058
date: Fri, 28 Jun 2024 23:28:12 GMT
last-modified: Fri, 06 May 2022 01:30:33 GMT
etag: "a037fb852a144863f6bf404d4b42c00b"
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _0fRnouU-0nrXndxyJm98XWhc8oFG5A9VC6UYOl2m2HkHApAdzl56g==
age: 66538
X-Firefox-Spdy: h2

d3c3rwqla6qxaf.cloudfront.net/producer/20_wazdan/colored/wazdan.svg

143.204.42.73

200 OK

525 B

URL GET HTTP/2
d3c3rwqla6qxaf.cloudfront.net/producer/20_wazdan/colored/wazdan.svg
IP
143.204.42.73:443
ASN
#16509 AMAZON-02

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
525 B (525 bytes)
Hash
a723506ecb6eecbffe70e5cb87c87945
08f32d3dc7ac49d710ce7fde5e90d871ce917464
7108ea892cb8614c56589b274f45afd556a5bea54e1e9d047f41749964303721

HTTP Headers

GET /producer/20_wazdan/colored/wazdan.svg HTTP/1.1
Host: d3c3rwqla6qxaf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/svg+xml
content-length: 525
last-modified: Thu, 12 Oct 2023 08:31:04 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sat, 29 Jun 2024 10:10:27 GMT
etag: "a723506ecb6eecbffe70e5cb87c87945"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: xNUk_2C4CEvjsw1j403K97vzvwy53bACoYrjyHmNjkUTFIf8wGGFXQ==
age: 28003
X-Firefox-Spdy: h2

d3c3rwqla6qxaf.cloudfront.net/games-images/bgaming/ladywolfmoon/315x236/k7Usslsg.webp

143.204.42.73

200 OK

113 kB

URL GET HTTP/2
d3c3rwqla6qxaf.cloudfront.net/games-images/bgaming/ladywolfmoon/315x236/k7Usslsg.webp
IP
143.204.42.73:443
ASN
#16509 AMAZON-02

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
113 kB (113386 bytes)
Hash
80388c8abc1758ea1b1a8d476997877a
d3aa27f2cf632aed0235922c0786ea043923c571
b0a771864fa8298fa587f0b34e649c4f546dffc0a9517733ab50cd03fcff07d0

HTTP Headers

GET /games-images/bgaming/ladywolfmoon/315x236/k7Usslsg.webp HTTP/1.1
Host: d3c3rwqla6qxaf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/webp
content-length: 113386
date: Fri, 28 Jun 2024 23:28:12 GMT
last-modified: Wed, 02 Aug 2023 07:23:49 GMT
etag: "80388c8abc1758ea1b1a8d476997877a"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 0k_cad6lQcqgVcSrZ_NshuWKB0eacHgAJXBag2RUPEzflbkHhGxhjQ==
age: 66538
X-Firefox-Spdy: h2

hellspin.com/app/66504.6abe387efb9a45f5.js

172.67.73.88

200 OK

18 kB

URL GET HTTP/2
hellspin.com/app/66504.6abe387efb9a45f5.js
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
ASCII text, with very long lines (1157), with no line terminators
Size
18 kB (17751 bytes)
Hash
f3965d7556f05a0a92ce893e33faea13
0c74d46ba3f0b64284865240f7eb4f10f5b623b8
916f0f2dd958dc14b746ecefccd7974cef08aa09138d6df9763755152ae96d6d

HTTP Headers

GET /app/66504.6abe387efb9a45f5.js HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2; _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:08 GMT
content-type: application/javascript
last-modified: Thu, 27 Jun 2024 09:12:57 GMT
etag: W/"667d2d19-485"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1642
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gUbdmuj%2FKWSEr433u4h4iv35zvN321MUiutKKJlnHcZBBIIKkqrHND1%2F%2BhsCwtb9oqaVOgkd%2BspOoMfaa0OgAq1rk6%2Bbj7A4T2mRwKyHj%2B5a%2Fmf4mCa1fckemuDLow%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 89b7cc1a6b818d7a-HEL
content-encoding: br
X-Firefox-Spdy: h2

hellspin.com/app/remoteEntry.js

172.67.73.88

200 OK

187 kB

URL GET HTTP/2
hellspin.com/app/remoteEntry.js
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
gzip compressed data, from Unix
Size
187 kB (186766 bytes)
Hash
92952129872ccd3d0a89addb599546bc
3d1a25251d8b56efa80783c2559e78fe1037a274
e3f264231198e585016b3e54e926bbc4d2e6994b1315ac0f3425e6cdb6851ec9

HTTP Headers

GET /app/remoteEntry.js HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:06 GMT
content-type: application/javascript
last-modified: Thu, 27 Jun 2024 09:12:52 GMT
vary: Accept-Encoding
etag: W/"667d2d14-2b559"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: HIT
age: 4612
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xpnKRgQfExrkQAhzyS6oHHcOws2RlC0n1RYKDS6IWaB8GDVwh5kMBoJlmvCFH8gYs8MO06yBt9%2FJAFbX3KY8tcTYYUtUNzKUJxMB6PmQCM8FQp9v3yVhRr8JVVSY4A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc0cda4a8d7a-HEL
X-Firefox-Spdy: h2

hellspin.com/app/26915.013c53ff771df4d7.js

172.67.73.88

200 OK

110 kB

URL GET HTTP/2
hellspin.com/app/26915.013c53ff771df4d7.js
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
gzip compressed data, from Unix
Size
110 kB (110426 bytes)
Hash
14fa8b32c59bace7f88610190c056d18
eec1560be091ba7504c82caf3dc5524f8633d2e1
2d7526fa826f37eaa4ebeb3edf8b38cc4c7a7085e6bc0b3c92bccd66093113e9

HTTP Headers

GET /app/26915.013c53ff771df4d7.js HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2; _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:08 GMT
content-type: application/javascript
last-modified: Thu, 27 Jun 2024 09:12:52 GMT
vary: Accept-Encoding
etag: W/"667d2d14-8dd"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: HIT
age: 2501
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IiZB%2FKkyqIiFJDBKMcbc11HZX0TelgfJNMpG5pWUy8T9qVde7WhvIm4cJ7r5jHk7D52mnO56XVWIA6bHHyRAxHXDP0sSe3ZlyGbkfCEUVmtqgDc1AzyS6FedSdnFsw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc1a9bb28d7a-HEL
X-Firefox-Spdy: h2

cdn.livechatinc.com/widget/static/js/livechat.DkxYi6_J.js

104.69.222.203

200 OK

210 B

URL GET HTTP/2
cdn.livechatinc.com/widget/static/js/livechat.DkxYi6_J.js
IP
104.69.222.203:443
ASN
#20940 Akamai International B.V.

Requested by
https://secure.livechatinc.com/customer/action/open_chat?license_id=9054575&group=50&embedded=1&widget_version=3&unique_groups=1
Certificate
IssuerDigiCert Inc
Subjectlivechat.com
FingerprintAD:E9:73:3D:F9:98:EE:AF:EA:A1:C6:F0:07:27:92:13:66:F0:44:6E
ValidityWed, 31 Jan 2024 00:00:00 GMT - Fri, 31 Jan 2025 23:59:59 GMT

File type
Java source, ASCII text, with very long lines (400)
Size
210 B (210 bytes)
Hash
c2f1c4b1540dad4809dd95233f8fc45c
f9b623a37156ced449a3f7d3e2968bf739a346f3
595ff828fa3acb43335b9e852c5af29fdf27433ed9cadc524a4ced4cd04fbadc

HTTP Headers

GET /widget/static/js/livechat.DkxYi6_J.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://secure.livechatinc.com
DNT: 1
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Fri, 28 Jun 2024 07:22:55 GMT
etag: "c2f1c4b1540dad4809dd95233f8fc45c"
x-amz-server-side-encryption: AES256
x-amz-version-id: RXmXZ.5rz5G7GH6KWMcYux36IWRbNmSB
accept-ranges: bytes
server: AmazonS3
x-amz-cf-pop: AMS58-P4
x-amz-cf-id: Kyn874fBDdp9J-LrIY51ijsE6SMDGP37RMdtUwzNXJywmXHceUhxfA==
vary: Accept-Encoding
content-encoding: gzip
content-length: 210
cache-control: max-age=31536000
expires: Sun, 29 Jun 2025 17:57:10 GMT
date: Sat, 29 Jun 2024 17:57:10 GMT
content-type: application/javascript; charset=utf-8
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn.livechatinc.com/widget/static/js/0.BJqCgkgV.chunk.js

104.69.222.203

200 OK

26 kB

URL GET HTTP/2
cdn.livechatinc.com/widget/static/js/0.BJqCgkgV.chunk.js
IP
104.69.222.203:443
ASN
#20940 Akamai International B.V.

Requested by
https://secure.livechatinc.com/customer/action/open_chat?license_id=9054575&group=50&embedded=1&widget_version=3&unique_groups=1
Certificate
IssuerDigiCert Inc
Subjectlivechat.com
FingerprintAD:E9:73:3D:F9:98:EE:AF:EA:A1:C6:F0:07:27:92:13:66:F0:44:6E
ValidityWed, 31 Jan 2024 00:00:00 GMT - Fri, 31 Jan 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
26 kB (26439 bytes)
Hash
108fdb7bca1c1e160ff1511516df051f
2ba2335d7f5d076ba3cf24d504faf2981f8faeb2
48b3a83cbc612467db1ac7772aff0d360c7caea055430a62e5e6dedbcc35374c

HTTP Headers

GET /widget/static/js/0.BJqCgkgV.chunk.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://secure.livechatinc.com
DNT: 1
Connection: keep-alive
Referer: https://cdn.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 28 Jun 2024 07:22:58 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: dOrjJ056GC.jLyYZweWW.2KU2QrJVYBQ
server: AmazonS3
content-encoding: br
etag: W/"108fdb7bca1c1e160ff1511516df051f"
vary: Accept-Encoding
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: TyD1TDrLKqnftZUSdWeHHXnVmxX7qk5A4k8j7SRw0ojafDpkTkMcpA==
content-length: 26439
cache-control: max-age=31536000
expires: Sun, 29 Jun 2025 17:57:10 GMT
date: Sat, 29 Jun 2024 17:57:10 GMT
content-type: application/javascript; charset=utf-8
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn.livechatinc.com/widget/static/js/1.2nZU-uUT.chunk.js

104.69.222.203

200 OK

11 kB

URL GET HTTP/2
cdn.livechatinc.com/widget/static/js/1.2nZU-uUT.chunk.js
IP
104.69.222.203:443
ASN
#20940 Akamai International B.V.

Requested by
https://secure.livechatinc.com/customer/action/open_chat?license_id=9054575&group=50&embedded=1&widget_version=3&unique_groups=1
Certificate
IssuerDigiCert Inc
Subjectlivechat.com
FingerprintAD:E9:73:3D:F9:98:EE:AF:EA:A1:C6:F0:07:27:92:13:66:F0:44:6E
ValidityWed, 31 Jan 2024 00:00:00 GMT - Fri, 31 Jan 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (15402)
Size
11 kB (11160 bytes)
Hash
e1fdef22ecd8f3353430a63468894853
88901fb3eb01605672a71f9e275758f420ebf6ea
0b1e9f62e90499d1125e23a5f388bf6ceb0bcc116d139931acc1c846f93a9454

HTTP Headers

GET /widget/static/js/1.2nZU-uUT.chunk.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://secure.livechatinc.com
DNT: 1
Connection: keep-alive
Referer: https://cdn.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 28 Jun 2024 07:22:56 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: yXSGAARMv2.GSNUhdCmedDFa3PHhOYXY
server: AmazonS3
content-encoding: br
etag: W/"e1fdef22ecd8f3353430a63468894853"
vary: Accept-Encoding
x-amz-cf-pop: AMS58-P4
x-amz-cf-id: 9yqJf7cgJ3ef-UAd_DeIJtHeGiZRa1V-aMX4BRVRfszGStK8NZisng==
content-length: 11160
cache-control: max-age=31536000
expires: Sun, 29 Jun 2025 17:57:10 GMT
date: Sat, 29 Jun 2024 17:57:10 GMT
content-type: application/javascript; charset=utf-8
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
X-Firefox-Spdy: h2

d3c3rwqla6qxaf.cloudfront.net/producer/276_redgenn/colored/rg.svg

143.204.42.73

200 OK

153 kB

URL GET HTTP/2
d3c3rwqla6qxaf.cloudfront.net/producer/276_redgenn/colored/rg.svg
IP
143.204.42.73:443
ASN
#16509 AMAZON-02

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
153 kB (152694 bytes)
Hash
8721605483c3a0638b7e367ddfcf3ea4
c98d9aadce94734d0313cfd3c7dfdc0eec91fcbe
e08115d2140aa66682e55d114482b2cfb0557492e44c53abdd9058e7cb284aa9

HTTP Headers

GET /producer/276_redgenn/colored/rg.svg HTTP/1.1
Host: d3c3rwqla6qxaf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Thu, 12 Oct 2023 08:31:03 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sat, 29 Jun 2024 11:02:03 GMT
etag: W/"8721605483c3a0638b7e367ddfcf3ea4"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: LJYtPQf1qh5sNw9vo3oxBY-k3fvnKnVRB89ved4peg9ntYhy71Fsng==
age: 24907
X-Firefox-Spdy: h2

cdn.livechatinc.com/widget/static/js/3.Dt4piEpe.chunk.js

104.69.222.203

200 OK

23 kB

URL GET HTTP/2
cdn.livechatinc.com/widget/static/js/3.Dt4piEpe.chunk.js
IP
104.69.222.203:443
ASN
#20940 Akamai International B.V.

Requested by
https://secure.livechatinc.com/customer/action/open_chat?license_id=9054575&group=50&embedded=1&widget_version=3&unique_groups=1
Certificate
IssuerDigiCert Inc
Subjectlivechat.com
FingerprintAD:E9:73:3D:F9:98:EE:AF:EA:A1:C6:F0:07:27:92:13:66:F0:44:6E
ValidityWed, 31 Jan 2024 00:00:00 GMT - Fri, 31 Jan 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (41524)
Size
23 kB (23418 bytes)
Hash
2c2ebb690ba6ee786b6a850e053a9082
9eeca57587a4c067522c8764e95b06a426a4f2e1
f24cf4735a64a0619c55cbb563043a8018ec71cfaaf5f6bef80250f056c9a281

HTTP Headers

GET /widget/static/js/3.Dt4piEpe.chunk.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://secure.livechatinc.com
DNT: 1
Connection: keep-alive
Referer: https://cdn.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 26 Jun 2024 10:05:30 GMT
etag: W/"2c2ebb690ba6ee786b6a850e053a9082"
x-amz-server-side-encryption: AES256
x-amz-version-id: xi4o2WwwhNcJTmO78MJKQLYL9sOOwEv5
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: MzkUzm0KkIrBIlyKZKLh5T7Dog5YtTKjD6BbZHxHSnQj8nD5NRvUrA==
content-length: 23418
cache-control: max-age=31536000
expires: Sun, 29 Jun 2025 17:57:10 GMT
date: Sat, 29 Jun 2024 17:57:10 GMT
content-type: application/javascript; charset=utf-8
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
X-Firefox-Spdy: h2

d3c3rwqla6qxaf.cloudfront.net/producer/94_playson/colored/playson.svg

143.204.42.73

200 OK

43 kB

URL GET HTTP/2
d3c3rwqla6qxaf.cloudfront.net/producer/94_playson/colored/playson.svg
IP
143.204.42.73:443
ASN
#16509 AMAZON-02

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
43 kB (43158 bytes)
Hash
0e3277e369846fbeca9ffe55249b3dce
ee2dde3fe69216512f541e1945ae333aced4cb85
b8ae2b285c11afbd9c8197894bc14b6305d07ece251bab7e1e67079c64e45c4f

HTTP Headers

GET /producer/94_playson/colored/playson.svg HTTP/1.1
Host: d3c3rwqla6qxaf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Thu, 12 Oct 2023 08:31:20 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sat, 29 Jun 2024 06:34:04 GMT
etag: W/"0e3277e369846fbeca9ffe55249b3dce"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: yObjgxM6FNk_2yp26PfJ4-THSrbMoDdSReUsbCYKd_tWz8Ehb7soOg==
age: 40986
X-Firefox-Spdy: h2

cdn.livechatinc.com/widget/static/js/5.C_rgEAoe.chunk.js

104.69.222.203

200 OK

159 B

URL GET HTTP/2
cdn.livechatinc.com/widget/static/js/5.C_rgEAoe.chunk.js
IP
104.69.222.203:443
ASN
#20940 Akamai International B.V.

Requested by
https://secure.livechatinc.com/customer/action/open_chat?license_id=9054575&group=50&embedded=1&widget_version=3&unique_groups=1
Certificate
IssuerDigiCert Inc
Subjectlivechat.com
FingerprintAD:E9:73:3D:F9:98:EE:AF:EA:A1:C6:F0:07:27:92:13:66:F0:44:6E
ValidityWed, 31 Jan 2024 00:00:00 GMT - Fri, 31 Jan 2025 23:59:59 GMT

File type
ASCII text
Size
159 B (159 bytes)
Hash
1771376dc07da48b3f03339d86d57b7b
a5861ebfff23a92ccd1ce6b8a517b6f877d50a63
6e148df31d721a0ff08563f2d676751786e01418c86ee54ee8f0e88aa46ae26a

HTTP Headers

GET /widget/static/js/5.C_rgEAoe.chunk.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://secure.livechatinc.com
DNT: 1
Connection: keep-alive
Referer: https://cdn.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 25 Jun 2024 11:08:35 GMT
etag: "1771376dc07da48b3f03339d86d57b7b"
x-amz-server-side-encryption: AES256
x-amz-version-id: A66jHDMy4DiO2jbtIW6TC8PcmBIfP1aZ
accept-ranges: bytes
server: AmazonS3
x-amz-cf-pop: BNA50-P1
x-amz-cf-id: _E7lSJwa1cLHzBxUaIpMP12UYAqhLgpvsiEYpnS4jBWn-f7_U6x6Gg==
vary: Accept-Encoding
content-encoding: gzip
content-length: 159
cache-control: max-age=31536000
expires: Sun, 29 Jun 2025 17:57:10 GMT
date: Sat, 29 Jun 2024 17:57:10 GMT
content-type: application/javascript; charset=utf-8
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn.livechatinc.com/widget/static/js/6.CoSZoCaB.chunk.js

104.69.222.203

200 OK

488 B

URL GET HTTP/2
cdn.livechatinc.com/widget/static/js/6.CoSZoCaB.chunk.js
IP
104.69.222.203:443
ASN
#20940 Akamai International B.V.

Requested by
https://secure.livechatinc.com/customer/action/open_chat?license_id=9054575&group=50&embedded=1&widget_version=3&unique_groups=1
Certificate
IssuerDigiCert Inc
Subjectlivechat.com
FingerprintAD:E9:73:3D:F9:98:EE:AF:EA:A1:C6:F0:07:27:92:13:66:F0:44:6E
ValidityWed, 31 Jan 2024 00:00:00 GMT - Fri, 31 Jan 2025 23:59:59 GMT

File type
data
Size
488 B (488 bytes)
Hash
89879f6eda326e6ddc29f55be5903f85
6fb512cc7a3575f5fc9437002c55f783cbe7e570
3b2a696be65cce769849d6cb2edb06b79e61bea3480707d7bd5880cb88a0a24e

HTTP Headers

GET /widget/static/js/6.CoSZoCaB.chunk.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://secure.livechatinc.com
DNT: 1
Connection: keep-alive
Referer: https://cdn.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 25 Jun 2024 11:08:35 GMT
etag: "89879f6eda326e6ddc29f55be5903f85"
x-amz-server-side-encryption: AES256
x-amz-version-id: RcLSvqIPHgn.s_bvxZVHFlFCfdRWKdM4
accept-ranges: bytes
server: AmazonS3
x-amz-cf-pop: IST50-P2
x-amz-cf-id: ecEDsGb758O3w1n74dkpM0WNqSc4hPdg_qmH_Ob8_t43CGJvMgaGRQ==
vary: Accept-Encoding
content-encoding: gzip
content-length: 488
cache-control: max-age=31536000
expires: Sun, 29 Jun 2025 17:57:10 GMT
date: Sat, 29 Jun 2024 17:57:10 GMT
content-type: application/javascript; charset=utf-8
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn.livechatinc.com/widget/static/js/7.xhyEK0_l.chunk.js

104.69.222.203

200 OK

92 B

URL GET HTTP/2
cdn.livechatinc.com/widget/static/js/7.xhyEK0_l.chunk.js
IP
104.69.222.203:443
ASN
#20940 Akamai International B.V.

Requested by
https://secure.livechatinc.com/customer/action/open_chat?license_id=9054575&group=50&embedded=1&widget_version=3&unique_groups=1
Certificate
IssuerDigiCert Inc
Subjectlivechat.com
FingerprintAD:E9:73:3D:F9:98:EE:AF:EA:A1:C6:F0:07:27:92:13:66:F0:44:6E
ValidityWed, 31 Jan 2024 00:00:00 GMT - Fri, 31 Jan 2025 23:59:59 GMT

File type
ASCII text
Size
92 B (92 bytes)
Hash
c96a39460d2b0a92409b2b92f3da88f9
c1ad7e3c7f38743ebadf589676726dad6799a9d5
af2012b0cdfa449f186df2f8dc9b3e64b48b8c5c630cc8d3c4df61973499e7c4

HTTP Headers

GET /widget/static/js/7.xhyEK0_l.chunk.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://secure.livechatinc.com
DNT: 1
Connection: keep-alive
Referer: https://cdn.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 24 Jun 2024 13:45:57 GMT
etag: "c96a39460d2b0a92409b2b92f3da88f9"
x-amz-server-side-encryption: AES256
x-amz-version-id: RrU0mqQSMj5ASaGfgdD3ZFCbOboMAs2F
accept-ranges: bytes
server: AmazonS3
x-amz-cf-pop: PHL51-P1
x-amz-cf-id: mWocsatdDBkT1MEyIKEFxjNQAeKrZT3hFlnbrpnSmGmrGqKeMrPfEA==
vary: Accept-Encoding
content-encoding: gzip
content-length: 92
cache-control: max-age=31536000
expires: Sun, 29 Jun 2025 17:57:10 GMT
date: Sat, 29 Jun 2024 17:57:10 GMT
content-type: application/javascript; charset=utf-8
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn.livechatinc.com/widget/static/js/10.CdoV-K8b.chunk.js

104.69.222.203

200 OK

160 B

URL GET HTTP/2
cdn.livechatinc.com/widget/static/js/10.CdoV-K8b.chunk.js
IP
104.69.222.203:443
ASN
#20940 Akamai International B.V.

Requested by
https://secure.livechatinc.com/customer/action/open_chat?license_id=9054575&group=50&embedded=1&widget_version=3&unique_groups=1
Certificate
IssuerDigiCert Inc
Subjectlivechat.com
FingerprintAD:E9:73:3D:F9:98:EE:AF:EA:A1:C6:F0:07:27:92:13:66:F0:44:6E
ValidityWed, 31 Jan 2024 00:00:00 GMT - Fri, 31 Jan 2025 23:59:59 GMT

File type
ASCII text
Size
160 B (160 bytes)
Hash
283b68664f949a8bc335fdddbfb1e1ec
f2c56d98d5f8ad8f38e599a8ddccd3e9ac9f63cb
e53910f4caa987752f020978fa8eaacad1dd63d0393bc2f7818367a7e63296e6

HTTP Headers

GET /widget/static/js/10.CdoV-K8b.chunk.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://secure.livechatinc.com
DNT: 1
Connection: keep-alive
Referer: https://cdn.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 25 Jun 2024 11:08:35 GMT
etag: "283b68664f949a8bc335fdddbfb1e1ec"
x-amz-server-side-encryption: AES256
x-amz-version-id: Ytv5.pDP1sj6n4XAy_lhMue9b9zl.kGl
accept-ranges: bytes
server: AmazonS3
x-amz-cf-pop: ARN53-P2
x-amz-cf-id: Pp8dG8R7beHWdNeylaGlh4YodK65o07K6OkJmffMxNzOY3nGi22s6Q==
vary: Accept-Encoding
content-encoding: gzip
content-length: 160
cache-control: max-age=31536000
expires: Sun, 29 Jun 2025 17:57:10 GMT
date: Sat, 29 Jun 2024 17:57:10 GMT
content-type: application/javascript; charset=utf-8
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
X-Firefox-Spdy: h2

d3c3rwqla6qxaf.cloudfront.net/producer/23_fugaso/colored/fugaso1.svg

143.204.42.73

200 OK

1.3 kB

URL GET HTTP/2
d3c3rwqla6qxaf.cloudfront.net/producer/23_fugaso/colored/fugaso1.svg
IP
143.204.42.73:443
ASN
#16509 AMAZON-02

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
1.3 kB (1333 bytes)
Hash
86086cfa311f487297a81a26736232c0
9b5c91e77c65179fe3f357afa9790945cae89e65
0a7a7e106ec1690f978034ad6da8f35d221731f4a028183c08cbec787b42b4d2

HTTP Headers

GET /producer/23_fugaso/colored/fugaso1.svg HTTP/1.1
Host: d3c3rwqla6qxaf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Thu, 12 Oct 2023 08:30:39 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sat, 29 Jun 2024 11:01:52 GMT
etag: W/"86086cfa311f487297a81a26736232c0"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: UaTMfahLUUgyzH22jROd4QcqFFRKfFG3gAfnx4B3wf02ixxDC7SfAw==
age: 24918
X-Firefox-Spdy: h2

cdn.livechatinc.com/widget/static/js/8.Bm-j6nQo.chunk.js

104.69.222.203

200 OK

437 B

URL GET HTTP/2
cdn.livechatinc.com/widget/static/js/8.Bm-j6nQo.chunk.js
IP
104.69.222.203:443
ASN
#20940 Akamai International B.V.

Requested by
https://secure.livechatinc.com/customer/action/open_chat?license_id=9054575&group=50&embedded=1&widget_version=3&unique_groups=1
Certificate
IssuerDigiCert Inc
Subjectlivechat.com
FingerprintAD:E9:73:3D:F9:98:EE:AF:EA:A1:C6:F0:07:27:92:13:66:F0:44:6E
ValidityWed, 31 Jan 2024 00:00:00 GMT - Fri, 31 Jan 2025 23:59:59 GMT

File type
Java source, ASCII text, with very long lines (436)
Size
437 B (437 bytes)
Hash
d7905f0c359865cabc21782fc2904379
0013e3489fdb243110f3b91201512fa153e2664b
b3a4b8b8ec52c29f4f99271051b52cf3359f4e5469611147bbfb8452959971e4

HTTP Headers

GET /widget/static/js/8.Bm-j6nQo.chunk.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://secure.livechatinc.com
DNT: 1
Connection: keep-alive
Referer: https://cdn.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-length: 437
last-modified: Mon, 24 Jun 2024 09:50:10 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: 91YVJ_0dVeUqKk5FwnIEcw79LbPL_jZg
accept-ranges: bytes
server: AmazonS3
etag: "d7905f0c359865cabc21782fc2904379"
vary: Accept-Encoding
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: 6OUyXNuifCx_Q8lOpPyd1sYYUnhtAsJiUoa8i-Tsm3B9FRX8BNWKfQ==
cache-control: max-age=31536000
expires: Sun, 29 Jun 2025 17:57:10 GMT
date: Sat, 29 Jun 2024 17:57:10 GMT
content-type: application/javascript; charset=utf-8
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
X-Firefox-Spdy: h2

hellspin.com/api/promotion/list?onlyPromotionType=0&lang=nor_NO

172.67.73.88

200 OK

5.0 kB

URL GET HTTP/2
hellspin.com/api/promotion/list?onlyPromotionType=0&lang=nor_NO
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
gzip compressed data, from Unix
Size
5.0 kB (4962 bytes)
Hash
5b18b1e9cd395a3fad2465811b00e2c8
8b91adda8b642f36f57806c5df825bcb0752255d
8e1f2daa81edf37b11f16a360d6b76a34b32a24edafafcf799131f3625a968ab

HTTP Headers

GET /api/promotion/list?onlyPromotionType=0&lang=nor_NO HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2; _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:07 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, private
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
content-encoding: gzip
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6gg%2FY1fQdAjcf1tAuwzjUWPAew13ZT9Fh42ngklJ%2BoKLBu4wvt5QNvwcWPtSmCKaGQyLCe0wPCk8JlLh%2FNjcUxIfZdQj6oMYi3JB9hyjqSxRss4hmPW%2FgYICQOtwow%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc140f1d8d7a-HEL
X-Firefox-Spdy: h2

cdn.livechatinc.com/tracking.js

104.69.222.203

200 OK

26 kB

URL GET HTTP/2
cdn.livechatinc.com/tracking.js
IP
104.69.222.203:443
ASN
#20940 Akamai International B.V.

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerDigiCert Inc
Subjectlivechat.com
FingerprintAD:E9:73:3D:F9:98:EE:AF:EA:A1:C6:F0:07:27:92:13:66:F0:44:6E
ValidityWed, 31 Jan 2024 00:00:00 GMT - Fri, 31 Jan 2025 23:59:59 GMT

File type
data
Size
26 kB (26200 bytes)
Hash
b16903fcdb08795354bbc550fecb5b8c
51ba252b57587c84a8530e9ba48f1b96131ae507
8f8ad551e6bf847350b9e389d43fc9c6d3dc6525d93a1d1960c85b49bd15b8ad

HTTP Headers

GET /tracking.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 28 Jun 2024 07:22:54 GMT
etag: W/"b16903fcdb08795354bbc550fecb5b8c"
x-amz-server-side-encryption: AES256
x-amz-version-id: YmVEwXTEI.2q1IAyT8f21LMYHPY8pmmn
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: UD1fg9X7cd6CJ8Qnw7bf85hDYqt-2LdKiNcMCE5-d2gXGtpKjGQwIg==
content-length: 26200
cache-control: max-age=28800
expires: Sun, 30 Jun 2024 01:57:10 GMT
date: Sat, 29 Jun 2024 17:57:10 GMT
content-type: application/javascript; charset=utf-8
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
X-Firefox-Spdy: h2

hellspin.com/app/67495.9ebcf05953e4f77f.js

172.67.73.88

200 OK

6.3 kB

URL GET HTTP/2
hellspin.com/app/67495.9ebcf05953e4f77f.js
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
gzip compressed data, from Unix
Size
6.3 kB (6342 bytes)
Hash
8856813f779adbd3bae0bbff049db6de
4c031e65b78819891f4d774f45d460e36d522d61
8f8ef817c93948198e26de7391fdf0da3ccad95bffefcbf389b54701b14fdaf7

HTTP Headers

GET /app/67495.9ebcf05953e4f77f.js HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2; _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:08 GMT
content-type: application/javascript
last-modified: Thu, 27 Jun 2024 09:12:57 GMT
vary: Accept-Encoding
etag: W/"667d2d19-1515"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: HIT
age: 2501
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uZIPHf2O5pGsArLO%2Fa5wFyOeHb9kX9P%2BENDr%2FjtPvZ%2BtlIPwJ7sE4j5p9U61LCfUXb1dq3r%2FZlbmbxEO0c7YMPBDwcwTfo1iSLBfB9wlXCCI49d7z6L%2BjDD6%2FnJOXw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc1aabc38d7a-HEL
X-Firefox-Spdy: h2

api.livechatinc.com/v3.5/customer/action/check_goals?organization_id=0423be4a-3d48-484e-a65a-2228122b8c26

95.101.10.202

200 OK

0 B

URL OPTIONS HTTP/2
api.livechatinc.com/v3.5/customer/action/check_goals?organization_id=0423be4a-3d48-484e-a65a-2228122b8c26
IP
95.101.10.202:443
ASN
#20940 Akamai International B.V.

Requested by
https://secure.livechatinc.com/customer/action/open_chat?license_id=9054575&group=50&embedded=1&widget_version=3&unique_groups=1
Certificate
IssuerDigiCert Inc
Subjectlivechat.com
FingerprintAD:E9:73:3D:F9:98:EE:AF:EA:A1:C6:F0:07:27:92:13:66:F0:44:6E
ValidityWed, 31 Jan 2024 00:00:00 GMT - Fri, 31 Jan 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /v3.5/customer/action/check_goals?organization_id=0423be4a-3d48-484e-a65a-2228122b8c26 HTTP/1.1
Host: api.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type
Referer: https://secure.livechatinc.com/
Origin: https://secure.livechatinc.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Authorization,Content-Type
access-control-allow-origin: https://secure.livechatinc.com
vary: Accept-Encoding
content-length: 0
date: Sat, 29 Jun 2024 17:57:11 GMT
X-Firefox-Spdy: h2

api.livechatinc.com/v3.5/customer/action/check_goals?organization_id=0423be4a-3d48-484e-a65a-2228122b8c26

95.101.10.202

200 OK

2 B

URL OPTIONS HTTP/2
api.livechatinc.com/v3.5/customer/action/check_goals?organization_id=0423be4a-3d48-484e-a65a-2228122b8c26
IP
95.101.10.202:443
ASN
#20940 Akamai International B.V.

Requested by
https://secure.livechatinc.com/customer/action/open_chat?license_id=9054575&group=50&embedded=1&widget_version=3&unique_groups=1
Certificate
IssuerDigiCert Inc
Subjectlivechat.com
FingerprintAD:E9:73:3D:F9:98:EE:AF:EA:A1:C6:F0:07:27:92:13:66:F0:44:6E
ValidityWed, 31 Jan 2024 00:00:00 GMT - Fri, 31 Jan 2025 23:59:59 GMT

File type
JSON text data
Size
2 B (2 bytes)
Hash
99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

HTTP Headers

POST /v3.5/customer/action/check_goals?organization_id=0423be4a-3d48-484e-a65a-2228122b8c26 HTTP/1.1
Host: api.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Authorization: Bearer dal:TI7sfDTjQpKeT7JiSQ8B-A
Content-Length: 117
Origin: https://secure.livechatinc.com
DNT: 1
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://secure.livechatinc.com
content-type: application/json
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
content-length: 2
date: Sat, 29 Jun 2024 17:57:12 GMT
X-Firefox-Spdy: h2

hellspin.com/app/60273.946b9450a51d3fba.js

172.67.73.88

200 OK

11 kB

URL GET HTTP/2
hellspin.com/app/60273.946b9450a51d3fba.js
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
gzip compressed data, from Unix
Size
11 kB (10947 bytes)
Hash
93eb4928ab4917d46c334adfd4566125
e463f5ce839a28182e9986a5bb6f282bca242482
bd74cc9cc2e9de013591161c50d982be3dca843e4ccd206e9caa292a5695a88b

HTTP Headers

GET /app/60273.946b9450a51d3fba.js HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2; _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:08 GMT
content-type: application/javascript
last-modified: Thu, 27 Jun 2024 09:12:46 GMT
vary: Accept-Encoding
etag: W/"667d2d0e-74f"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: HIT
age: 2501
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ejb7PD%2BU0GVmQo0PZEsdhHAtvijyS7g5YV1%2BTsSjG%2BYdEEVsyrwPGkn6NBw7ItM56XA%2Bu52DuUpJBD%2Fwus8thy3EhfhYuEwL977bIV4GWxlABQ5wnsQAokGvIDEicw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc1aabc48d7a-HEL
X-Firefox-Spdy: h2

www.gstatic.com/recaptcha/releases/rKbTvxTxwcw5VqzrtN-ICwWt/recaptcha__en.js

142.250.74.35

200 OK

216 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/rKbTvxTxwcw5VqzrtN-ICwWt/recaptcha__en.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcO0eQpAAAAAKabYSeOQdOq9axBOFHCMpmRNySZ&co=aHR0cHM6Ly95dGRsLmNhbmVoaWxsLmluZm86NDQz&hl=en&v=rKbTvxTxwcw5VqzrtN-ICwWt&size=invisible&cb=2ghcnua8h30c
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintC4:9C:27:09:1C:F7:14:C9:86:F0:B5:42:0B:8A:D2:AE:5E:AE:98:04
ValidityThu, 13 Jun 2024 16:31:03 GMT - Thu, 05 Sep 2024 16:31:02 GMT

File type
JavaScript source, ASCII text, with very long lines (636)
Size
216 kB (216123 bytes)
Hash
93e3f7248853ea26232278a54613f93c
16100c397972a415bfcfce1a470acad68c173375
0ec782544506a0aea967ea044659c633e1ee735b79e5172cb263797cc5cefe3a

HTTP Headers

GET /recaptcha/releases/rKbTvxTxwcw5VqzrtN-ICwWt/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hellspin.com
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 216123
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 29 Jun 2024 04:41:03 GMT
expires: Sun, 29 Jun 2025 04:41:03 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 23 Jun 2024 08:01:07 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 47769
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.com/recaptcha/api.js?render=6LdPYlIiAAAAAIIU-L2L9qPaqIVlZMBgugCw20qD&onload=rusted_labs_recaptcha_callback

142.250.74.132

200 OK

25 kB

URL GET HTTP/3
www.google.com/recaptcha/api.js?render=6LdPYlIiAAAAAIIU-L2L9qPaqIVlZMBgugCw20qD&onload=rusted_labs_recaptcha_callback
IP
142.250.74.132:443
ASN
#15169 GOOGLE

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subject*.google.com
Fingerprint5E:16:23:DF:7D:42:8E:61:6E:AA:4A:CC:FB:08:1A:B9:8F:FA:E0:A2
ValidityThu, 13 Jun 2024 15:27:14 GMT - Thu, 05 Sep 2024 15:27:13 GMT

File type
JavaScript source, ASCII text, with very long lines (57336), with no line terminators
Size
25 kB (25239 bytes)
Hash
f3b6fc22e09bc1b9da73150751ff103e
27422ad32ec92d945d19f39c9ca5ee749ac3199e
d1088a7f8a19be3fac80715b59ac95f6d2305490c7f6a8f14102873fdca37ac0

HTTP Headers

GET /recaptcha/api.js?render=6LdPYlIiAAAAAIIU-L2L9qPaqIVlZMBgugCw20qD&onload=rusted_labs_recaptcha_callback HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/javascript; charset=utf-8
expires: Sat, 29 Jun 2024 17:57:12 GMT
date: Sat, 29 Jun 2024 17:57:12 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

hellspin.com/app/5608.faf2ebe4b534f4f5.js

172.67.73.88

200 OK

217 kB

URL GET HTTP/2
hellspin.com/app/5608.faf2ebe4b534f4f5.js
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
ASCII text, with very long lines (1352), with no line terminators
Size
217 kB (216894 bytes)
Hash
99e776d93de179d4e1a99399b9636b9e
d1ef99c541262c9f10be3c06a1036e547bdec747
6ee585b9a33f767e845556e6559f311066d306f0a0ea5b9bcc926ace3ac7094f

HTTP Headers

GET /app/5608.faf2ebe4b534f4f5.js HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2; _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:08 GMT
content-type: application/javascript
last-modified: Thu, 27 Jun 2024 09:12:57 GMT
etag: W/"667d2d19-548"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1889
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=X4L4YWI9n58tgZpkH4vVNg6m8AtTm89vw53e5pi6x6H4dZLWPbNUCNLl4IgH0DSU%2B9PJDej7W5KqeQ%2BxOlhubHhOmqAb7kA3mgtN1s4zg4%2BSwlg4DaNldHTQyAYHKg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 89b7cc1aabc88d7a-HEL
content-encoding: br
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

15 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcO0eQpAAAAAKabYSeOQdOq9axBOFHCMpmRNySZ&co=aHR0cHM6Ly95dGRsLmNhbmVoaWxsLmluZm86NDQz&hl=en&v=rKbTvxTxwcw5VqzrtN-ICwWt&size=invisible&cb=2ghcnua8h30c
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintC4:9C:27:09:1C:F7:14:C9:86:F0:B5:42:0B:8A:D2:AE:5E:AE:98:04
ValidityThu, 13 Jun 2024 16:31:03 GMT - Thu, 05 Sep 2024 16:31:02 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15344, version 1.0
Size
15 kB (15344 bytes)
Hash
5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc

HTTP Headers

GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 29 Jun 2024 04:40:55 GMT
expires: Sun, 29 Jun 2025 04:40:55 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 47778
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/3
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdPYlIiAAAAAIIU-L2L9qPaqIVlZMBgugCw20qD&co=aHR0cHM6Ly9oZWxsc3Bpbi5jb206NDQz&hl=en&v=rKbTvxTxwcw5VqzrtN-ICwWt&size=invisible&cb=8tgp9arjr5yu
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintC4:9C:27:09:1C:F7:14:C9:86:F0:B5:42:0B:8A:D2:AE:5E:AE:98:04
ValidityThu, 13 Jun 2024 16:31:03 GMT - Thu, 05 Sep 2024 16:31:02 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15552, version 1.0
Size
16 kB (15552 bytes)
Hash
285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7

HTTP Headers

GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 28 Jun 2024 21:23:03 GMT
expires: Sat, 28 Jun 2025 21:23:03 GMT
cache-control: public, max-age=31536000
age: 74050
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.com/js/bg/YiMnlwYAPK-5JOvV4HgQVh4BjdfeuDlm7M1GgLf3u0w.js

142.250.74.132

200 OK

7.5 kB

URL GET HTTP/3
www.google.com/js/bg/YiMnlwYAPK-5JOvV4HgQVh4BjdfeuDlm7M1GgLf3u0w.js
IP
142.250.74.132:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdPYlIiAAAAAIIU-L2L9qPaqIVlZMBgugCw20qD&co=aHR0cHM6Ly9oZWxsc3Bpbi5jb206NDQz&hl=en&v=rKbTvxTxwcw5VqzrtN-ICwWt&size=invisible&cb=8tgp9arjr5yu
Certificate
IssuerGoogle Trust Services
Subject*.google.com
Fingerprint5E:16:23:DF:7D:42:8E:61:6E:AA:4A:CC:FB:08:1A:B9:8F:FA:E0:A2
ValidityThu, 13 Jun 2024 15:27:14 GMT - Thu, 05 Sep 2024 15:27:13 GMT

File type
JavaScript source, ASCII text, with very long lines (17693)
Size
7.5 kB (7515 bytes)
Hash
5d31f8563fd0092335680029470d6270
66f8eeecdfa6f440631eadfaf180260bd5254cac
6223279706003cafb924ebd5e07810561e018dd7deb83966eccd4680b7f7bb4c

HTTP Headers

GET /js/bg/YiMnlwYAPK-5JOvV4HgQVh4BjdfeuDlm7M1GgLf3u0w.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdPYlIiAAAAAIIU-L2L9qPaqIVlZMBgugCw20qD&co=aHR0cHM6Ly9oZWxsc3Bpbi5jb206NDQz&hl=en&v=rKbTvxTxwcw5VqzrtN-ICwWt&size=invisible&cb=8tgp9arjr5yu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 7515
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 28 Jun 2024 08:21:24 GMT
expires: Sat, 28 Jun 2025 08:21:24 GMT
cache-control: public, max-age=31536000
age: 120949
last-modified: Mon, 03 Jun 2024 09:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.com/recaptcha/api2/anchor?ar=1&k=6LdPYlIiAAAAAIIU-L2L9qPaqIVlZMBgugCw20qD&co=aHR0cHM6Ly9oZWxsc3Bpbi5jb206NDQz&hl=en&v=rKbTvxTxwcw5VqzrtN-ICwWt&size=invisible&cb=8tgp9arjr5yu

142.250.74.132

200 OK

33 kB

URL GET HTTP/3
www.google.com/recaptcha/api2/anchor?ar=1&k=6LdPYlIiAAAAAIIU-L2L9qPaqIVlZMBgugCw20qD&co=aHR0cHM6Ly9oZWxsc3Bpbi5jb206NDQz&hl=en&v=rKbTvxTxwcw5VqzrtN-ICwWt&size=invisible&cb=8tgp9arjr5yu
IP
142.250.74.132:443
ASN
#15169 GOOGLE

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subject*.google.com
Fingerprint5E:16:23:DF:7D:42:8E:61:6E:AA:4A:CC:FB:08:1A:B9:8F:FA:E0:A2
ValidityThu, 13 Jun 2024 15:27:14 GMT - Thu, 05 Sep 2024 15:27:13 GMT

File type
gzip compressed data
Size
33 kB (33353 bytes)
Hash
935183d98b9aac50790da2f53f9759f8
6d6d5a3bc768c02cb94e90f72703fc5d54f743b8
dc46528c6902700cfb621d8494e141284958dd918b426ac0a9fb00ceca91c642

HTTP Headers

GET /recaptcha/api2/anchor?ar=1&k=6LdPYlIiAAAAAIIU-L2L9qPaqIVlZMBgugCw20qD&co=aHR0cHM6Ly9oZWxsc3Bpbi5jb206NDQz&hl=en&v=rKbTvxTxwcw5VqzrtN-ICwWt&size=invisible&cb=8tgp9arjr5yu HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 29 Jun 2024 17:57:12 GMT
content-security-policy: script-src 'nonce-2t5UzSgI91PS-M3aypvJiA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/releases/rKbTvxTxwcw5VqzrtN-ICwWt/recaptcha__en.js

142.250.74.35

200 OK

216 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/rKbTvxTxwcw5VqzrtN-ICwWt/recaptcha__en.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcO0eQpAAAAAKabYSeOQdOq9axBOFHCMpmRNySZ&co=aHR0cHM6Ly95dGRsLmNhbmVoaWxsLmluZm86NDQz&hl=en&v=rKbTvxTxwcw5VqzrtN-ICwWt&size=invisible&cb=2ghcnua8h30c
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintC4:9C:27:09:1C:F7:14:C9:86:F0:B5:42:0B:8A:D2:AE:5E:AE:98:04
ValidityThu, 13 Jun 2024 16:31:03 GMT - Thu, 05 Sep 2024 16:31:02 GMT

File type
JavaScript source, ASCII text, with very long lines (636)
Size
216 kB (216123 bytes)
Hash
93e3f7248853ea26232278a54613f93c
16100c397972a415bfcfce1a470acad68c173375
0ec782544506a0aea967ea044659c633e1ee735b79e5172cb263797cc5cefe3a

HTTP Headers

GET /recaptcha/releases/rKbTvxTxwcw5VqzrtN-ICwWt/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 216123
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 29 Jun 2024 04:41:03 GMT
expires: Sun, 29 Jun 2025 04:41:03 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 23 Jun 2024 08:01:07 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 47770
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

platform.hellspin.com/api/v2/casino/last-winners?limit=1&has_live=0&include_images=196x147

104.26.8.227

204 No Content

0 B

URL OPTIONS HTTP/2
platform.hellspin.com/api/v2/casino/last-winners?limit=1&has_live=0&include_images=196x147
IP
104.26.8.227:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /api/v2/casino/last-winners?limit=1&has_live=0&include_images=196x147 HTTP/1.1
Host: platform.hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://hellspin.com/
Origin: https://hellspin.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 204 No Content
date: Sat, 29 Jun 2024 17:57:18 GMT
access-control-allow-origin: https://hellspin.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,ws-channel,ws-session-uuid,LOCATION-SMART-DEVICE-SESSION-ID,LOCATION-SMART-HTML-SESSION-ID,X-BFF
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ny4RnZ6Oq6zkBOgBtwCLenj8UFFhi%2BlQ2tjgU67yQQzllw135rokt3k3de4Wy2amtIUDwaDYD35cbX0RTvz0W5IpASv06e3RnzW32qVocR4V8OUQwE6WwnbREpWDXeyU0yAVBIybmg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc57ecc38d6c-HEL
X-Firefox-Spdy: h2

d3c3rwqla6qxaf.cloudfront.net/games-images/spinomenal/wildfirefruits/196x147/wildfire_fruits.webp

143.204.42.73

200 OK

7.4 kB

URL GET HTTP/2
d3c3rwqla6qxaf.cloudfront.net/games-images/spinomenal/wildfirefruits/196x147/wildfire_fruits.webp
IP
143.204.42.73:443
ASN
#16509 AMAZON-02

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 196x147, Scaling: [none]x[none], YUV color, decoders should clamp
Size
7.4 kB (7402 bytes)
Hash
6804bc366e5ce5f66cc67b50be460e55
ba20336ec4b7e57a21962971de15a3b9ff96ceb0
abb46e1e81029d24ca78b7bd0e0b7679dfd525066f223062853620e5af929be6

HTTP Headers

GET /games-images/spinomenal/wildfirefruits/196x147/wildfire_fruits.webp HTTP/1.1
Host: d3c3rwqla6qxaf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/webp
content-length: 7402
date: Fri, 28 Jun 2024 23:39:50 GMT
last-modified: Mon, 11 Apr 2022 17:57:28 GMT
etag: "6804bc366e5ce5f66cc67b50be460e55"
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: sC3Yl8Z99Fjj1nt-iDwG6teILjGQSPuLqbEiSe5ZCXvitOH3xtJyxw==
age: 65850
X-Firefox-Spdy: h2

platform.hellspin.com/api/v2/casino/last-winners?limit=1&has_live=0&include_images=196x147

104.26.8.227

204 No Content

0 B

URL OPTIONS HTTP/2
platform.hellspin.com/api/v2/casino/last-winners?limit=1&has_live=0&include_images=196x147
IP
104.26.8.227:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /api/v2/casino/last-winners?limit=1&has_live=0&include_images=196x147 HTTP/1.1
Host: platform.hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://hellspin.com/
Origin: https://hellspin.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 204 No Content
date: Sat, 29 Jun 2024 17:57:28 GMT
access-control-allow-origin: https://hellspin.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,ws-channel,ws-session-uuid,LOCATION-SMART-DEVICE-SESSION-ID,LOCATION-SMART-HTML-SESSION-ID,X-BFF
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XSqf2bjy7%2FTUUjcH%2Fe3d%2FjT7TANZHS9rA9DGdxms17ey6yCAVUPjDfpwX1EduuZKDN%2F7kPFF%2Fpl4iXHHTcoQlcpNd9f%2BYR4t7PfeWTSi9xpkrLJ9%2FCxv0oDamkv8vPbDhhX83JQcmQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc967ddd8d6c-HEL
X-Firefox-Spdy: h2

hellspin.com/assets/registration/one/bb-arrow.svg

172.67.73.88

200 OK

8.2 kB

URL GET HTTP/2
hellspin.com/assets/registration/one/bb-arrow.svg
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
SVG Scalable Vector Graphics image
Size
8.2 kB (8197 bytes)
Hash
046fb0dea7bae0bb25eac71edddf3fe9
2da01717262b9f9ff70f7ea42c376787e92ebb62
ff06c0857324abc31e18c40a19a1c387768d018c5d4db68c3432d26dcda128b6

HTTP Headers

GET /assets/registration/one/bb-arrow.svg HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2; _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:08 GMT
content-type: image/svg+xml
last-modified: Thu, 27 Jun 2024 09:12:56 GMT
etag: W/"667d2d18-333"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5838
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iQe61i0bJ3c1LjImCT7tfD6IKA2eDpkibShosjdJOTZ%2BDyzj0Oy9j38AaEEi%2F0tk5xDftsHTVlIZgI6XLxD%2BgcEuuD3E28q4%2FuoUPnPwtYbOZA1hKFTd1r7Enb%2BhEA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 89b7cc18ba528d7a-HEL
content-encoding: br
X-Firefox-Spdy: h2

r11.o.lencr.org/

2.23.172.203

504 B

URL
r11.o.lencr.org/
IP
2.23.172.203:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
11707e7b4e28987f370707b6212cfc56
87f86ad91c9e2a35d89e7770a2a545a2d07036ae
266217ac7c568f2396bf40920f2fd3a88afe643eb65702640314a4a62b7b0ff3

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "266217AC7C568F2396BF40920F2FD3A88AFE643EB65702640314A4A62B7B0FF3"
Last-Modified: Thu, 27 Jun 2024 04:01:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8524
Expires: Sat, 29 Jun 2024 20:19:33 GMT
Date: Sat, 29 Jun 2024 17:57:29 GMT
Connection: keep-alive

location.services.mozilla.com/v1/country?key=no-mozilla-api-key

35.190.72.216

45 B

URL
location.services.mozilla.com/v1/country?key=no-mozilla-api-key
IP
35.190.72.216:0
ASN
#15169 GOOGLE

File type
JSON text data
Size
45 B (45 bytes)
Hash
6aaea1b4e41c32104faa9a0ffb941938
396890ef2e1e114cb792d7cafdec0342b5a35b78
adaecf23a14a64db5915718f88d4e7679741121d8546937adc0fed553791246c

HTTP Headers

GET /v1/country?key=no-mozilla-api-key HTTP/1.1
Host: location.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 29 Jun 2024 17:57:29 GMT
content-type: application/json
content-length: 45
cache-control: max-age=0, no-cache, no-store, must-revalidate
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

hellspin.com/app/20739.b8d0a67c5f8709c7.js

172.67.73.88

200 OK

384 B

URL GET HTTP/2
hellspin.com/app/20739.b8d0a67c5f8709c7.js
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
ASCII text, with very long lines (386), with no line terminators
Size
384 B (384 bytes)
Hash
fa5ff0beb16e5c209be36ac5d71f0b43
24e5a6185e2398f1ee893b6e37eafe5b1eeaa3c8
fb21ad78f3a3359596894599b4e0317393b689cb7ce4c21f200c4014d551b534

HTTP Headers

GET /app/20739.b8d0a67c5f8709c7.js HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:06 GMT
content-type: application/javascript
last-modified: Thu, 27 Jun 2024 09:12:40 GMT
etag: W/"667d2d08-180"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4612
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fSo3OXt81t%2FQR%2FjjYyu3ocqu%2F%2FctkBaNpk8%2B10Y3vzS%2B87ykNj%2BDayMtm3FHydWVVeciYHPL6kRRjt%2BcG7A48mrmGBh7Ctb5SzSbTdUjVnJDXT3JPqsNN3NIcjxYPQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 89b7cc0d4a8f8d7a-HEL
content-encoding: br
X-Firefox-Spdy: h2

hellspin.com/app/3336.f2473f3ea52a2f1c.js

172.67.73.88

200 OK

1.0 kB

URL GET HTTP/2
hellspin.com/app/3336.f2473f3ea52a2f1c.js
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
ASCII text, with very long lines (1059), with no line terminators
Size
1.0 kB (1041 bytes)
Hash
7705ef9cc81239832d1e18245d92e139
a3f1febda6fc09d3732ba465404b8774d26bb582
8f8b63550bd80f6c99672177c755cacf9dec87fc9fb7c1640a0fccd5d3d67fdb

HTTP Headers

GET /app/3336.f2473f3ea52a2f1c.js HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2; _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:08 GMT
content-type: application/javascript
last-modified: Thu, 27 Jun 2024 09:12:34 GMT
etag: W/"667d2d02-411"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2501
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lege%2BoY9wKeYtm%2Fu7DcCfT5RF7pldCeIjgq%2BXcZg7Z2ePPpQrJREtL8%2BCgi8N0sz5gUkR%2B1TYZLyTIzNvYw7syfKVz97iV4qoOulFSljFUMqNw%2B5b9luk20uiNEWBQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 89b7cc1aabbe8d7a-HEL
content-encoding: br
X-Firefox-Spdy: h2

maithigloab.net/4/7629065

139.45.197.244

200 OK

30 kB

URL GET HTTP/2
maithigloab.net/4/7629065
IP
139.45.197.244:443
ASN
#9002 RETN Limited

Requested by
https://ytdl.canehill.info/mp3/ayc4Nv1fnZY
Certificate
IssuerLet's Encrypt
Subjectmaithigloab.net
Fingerprint54:B7:A4:88:69:15:69:FE:6F:C2:71:E6:68:91:93:80:25:7A:87:43
ValidityFri, 14 Jun 2024 05:24:36 GMT - Thu, 12 Sep 2024 05:24:35 GMT

File type
HTML document, ASCII text, with very long lines (18639)
Size
30 kB (30188 bytes)
Hash
bb39b9baecfa29a19d15dc531d2dcaac
c94899899b608df127cf748672e1f10448c61a4f
60abb8b4babf4e2c64a84ae6b8303c0e215ef2f81cdcdd35380e7377733dada0

HTTP Headers

GET /4/7629065 HTTP/1.1
Host: maithigloab.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 29 Jun 2024 17:57:04 GMT
content-type: text/html; charset=utf8
x-trace-id: 5b2049880761e0301386cde96d1070b5
link: <https://yonmewon.com>; rel="preconnect dns-prefetch",<https://my.rtmark.net>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=00808add24074ca1f4465773cf702f66; expires=Sun, 29 Jun 2025 17:57:04 GMT; path=/; secure; SameSite=None
oaidts=1719683824; expires=Sun, 29 Jun 2025 17:57:04 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

d3c3rwqla6qxaf.cloudfront.net/games-images/bgaming/fishingclub/315x236/fishingclub_1718117143.webp

143.204.42.73

200 OK

122 kB

URL GET HTTP/2
d3c3rwqla6qxaf.cloudfront.net/games-images/bgaming/fishingclub/315x236/fishingclub_1718117143.webp
IP
143.204.42.73:443
ASN
#16509 AMAZON-02

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
122 kB (122542 bytes)
Hash
c2a8b0470d236d6d4d00b98e8b73294a
260fbddc991263dcb604b7e5e3343b6ce7cfaef2
6aa707f5ad9802a913ebf2917c8f662bf1348e9d49592e899d915da81450da75

HTTP Headers

GET /games-images/bgaming/fishingclub/315x236/fishingclub_1718117143.webp HTTP/1.1
Host: d3c3rwqla6qxaf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
content-length: 122542
last-modified: Tue, 11 Jun 2024 14:45:44 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Fri, 28 Jun 2024 20:54:26 GMT
etag: "c2a8b0470d236d6d4d00b98e8b73294a"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: yxoDpOs_sDIC70F4txvOt4uePA1jf2ueEN87c2Mda7cPD23hDr5hQQ==
age: 75764
X-Firefox-Spdy: h2

d3c3rwqla6qxaf.cloudfront.net/producer/210_gamzix/colored/gamzix.svg

143.204.42.73

200 OK

2.2 kB

URL GET HTTP/2
d3c3rwqla6qxaf.cloudfront.net/producer/210_gamzix/colored/gamzix.svg
IP
143.204.42.73:443
ASN
#16509 AMAZON-02

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
2.2 kB (2214 bytes)
Hash
12377957feb640c6ec0acede11c0bbc0
48c5f6f6e5766b0557f00126047a20a881adf7d9
2cdb71982ed5843ad1e5018c20417f94e9ee9077ac528c1f579a2cffa4139d42

HTTP Headers

GET /producer/210_gamzix/colored/gamzix.svg HTTP/1.1
Host: d3c3rwqla6qxaf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/svg+xml
date: Fri, 28 Jun 2024 18:00:32 GMT
last-modified: Thu, 12 Oct 2023 08:31:12 GMT
etag: W/"fc17e61a2a3f04de0ff0f8dbe0450143"
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _MRVW2RwxWcqYFuV4Sh2waHcGt6gq-T76HIImCVueU1wfDgUsdIIZA==
age: 86198
X-Firefox-Spdy: h2

maxcdn.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css

104.18.10.207

200 OK

31 kB

URL GET HTTP/2
maxcdn.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
IP
104.18.10.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ssi.mp3juice.blog/dl/ayc4Nv1fnZY
Certificate
IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint93:87:98:7E:3F:62:5F:E6:68:1C:1C:8A:E4:9D:FB:A8:C3:72:4F:90
ValiditySat, 25 May 2024 01:51:52 GMT - Fri, 23 Aug 2024 01:51:51 GMT

File type
ASCII text, with very long lines (30837)
Size
31 kB (31000 bytes)
Hash
269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd

HTTP Headers

GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ssi.mp3juice.blog
DNT: 1
Connection: keep-alive
Referer: https://ssi.mp3juice.blog/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:01 GMT
content-type: text/css; charset=utf-8
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: US
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31919000
content-encoding: br
etag: W/"269550530cc127b6aa5a35925a7de6ce"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 03/18/2024 12:28:12
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1078
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: f2e6a14aba148b847e886862c8424fb6
cdn-cache: HIT
cf-cache-status: HIT
age: 733300
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 89b7cbed0f9abe38-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.onesignal.com/sdks/OneSignalSDK.js

104.17.111.223

200 OK

9.2 kB

URL GET HTTP/2
cdn.onesignal.com/sdks/OneSignalSDK.js
IP
104.17.111.223:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services LLC
Subjectonesignal.com
FingerprintAE:08:EA:86:C1:73:08:F2:42:19:8B:11:B0:03:8A:63:A0:EA:33:D0
ValidityFri, 31 May 2024 00:44:58 GMT - Thu, 29 Aug 2024 00:44:57 GMT

File type
JavaScript source, ASCII text, with very long lines (9410), with no line terminators
Size
9.2 kB (9204 bytes)
Hash
5eb2adfca36be15c8d4a206576132abd
f507beb2560693723f4b360af70bfe9bd8bed534
6ad1aa44625325d8e975bccee776e9a60ae134d2de1cb8d98852de9f3109aa4a

HTTP Headers

GET /sdks/OneSignalSDK.js HTTP/1.1
Host: cdn.onesignal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:05 GMT
content-type: application/javascript
etag: W/"a87c48d211877c49b878679b2e3cdab8"
access-control-allow-headers: OneSignal-Subscription-Id
via: 1.1 google
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 686
expires: Tue, 02 Jul 2024 17:57:05 GMT
cache-control: public, max-age=259200
set-cookie: __cf_bm=T4.m.abbxwAmcuXQflhr3tRf21Eq3FfhOzHwx_Jf.aY-1719683825-1.0.1.1-sWiUXOLqS_nStfuJ9xeE5dB1yVxw2By4QH70bhBrAFVSZgdVkuEQYGyIRkONV30roukCmowp4j.WBI7MRPyzHQ; path=/; expires=Sat, 29-Jun-24 18:27:05 GMT; domain=.onesignal.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains
server: cloudflare
cf-ray: 89b7cc06d85610c5-CPH
content-encoding: br
X-Firefox-Spdy: h2

hellspin.com/assets/registration/one/bb-bcg-background.svg

172.67.73.88

200 OK

357 B

URL GET HTTP/2
hellspin.com/assets/registration/one/bb-bcg-background.svg
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
SVG Scalable Vector Graphics image
Size
357 B (357 bytes)
Hash
b8ca8363f4b958ed48947164bfdf902d
81baea5cd323592181d73eb8d509038e715a1c78
19924d9f01bd6731ea3fe2a63d013c4d759949bb17f67aa6eb5422021ea56b4f

HTTP Headers

GET /assets/registration/one/bb-bcg-background.svg HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/app/1878.e77165d9aa0faec0.css
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2; _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:08 GMT
content-type: image/svg+xml
last-modified: Thu, 27 Jun 2024 09:12:38 GMT
etag: W/"667d2d06-165"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1891
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3dGoJ5zWeWRH7SLKnmVqKWKFZ1gwDHRWm3DF4qbNAwCmefQANfcAdzEQ8ZcWsrbjZf62hTWFwrWX%2BVCyw976eQxBKJO5C8mVbzFiwF8eq4NxNp6sZ2wV5dESEUTNDQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 89b7cc19bae58d7a-HEL
content-encoding: br
X-Firefox-Spdy: h2

hellspin.com/app/67551.86c6063d3f02ae10.js

172.67.73.88

200 OK

2.0 kB

URL GET HTTP/2
hellspin.com/app/67551.86c6063d3f02ae10.js
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
ASCII text, with very long lines (2011), with no line terminators
Size
2.0 kB (1991 bytes)
Hash
5fe868df667ae0cbedf01a6f995ea32a
b33b79f5569814274ddb8e6b3265e60e980b56d8
3119e7829fe89fff4bc1ff9b2e7ed28d6c1965a76513e1c44a308faf2c9a2fb3

HTTP Headers

GET /app/67551.86c6063d3f02ae10.js HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2; _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:08 GMT
content-type: application/javascript
last-modified: Thu, 27 Jun 2024 09:12:46 GMT
vary: Accept-Encoding
etag: W/"667d2d0e-7c7"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: HIT
age: 1642
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vs8iAfjwN41zNAWpq8OuvYotl%2F5cp49GbKDWEkGKXz9NsZw3s%2FjIvGW%2FVtC48lAVYClcNzsVcLlWuJvEtI9a%2B8zTFSMcrWOQr3wl9HYPDJIthfdUUshO%2BS34AIfl2w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc1a8ba48d7a-HEL
X-Firefox-Spdy: h2

d3c3rwqla6qxaf.cloudfront.net/games-images/felixgaming/itsajoker/315x236/it's_a_joker.webp

143.204.42.73

200 OK

95 kB

URL GET HTTP/2
d3c3rwqla6qxaf.cloudfront.net/games-images/felixgaming/itsajoker/315x236/it's_a_joker.webp
IP
143.204.42.73:443
ASN
#16509 AMAZON-02

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
95 kB (94848 bytes)
Hash
cec9d8f396292d98c56b34e180d40180
3793d808f93fbd35ab1ba4a4020bca03e37d07a3
ea63614a9e14328a0a0242ccf94beab644a090074b1cc5d80b40d643cbbea32c

HTTP Headers

GET /games-images/felixgaming/itsajoker/315x236/it's_a_joker.webp HTTP/1.1
Host: d3c3rwqla6qxaf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
content-length: 94848
date: Fri, 28 Jun 2024 23:28:12 GMT
last-modified: Tue, 19 Jul 2022 08:16:32 GMT
etag: "cec9d8f396292d98c56b34e180d40180"
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: mslfcfQ_I08Jxde2Q5OEHyFzZpq-QR1Cc_pu_zbne7nXA10POatH1g==
age: 66538
X-Firefox-Spdy: h2

d3c3rwqla6qxaf.cloudfront.net/games-images/bgaming/aztecmagicbonanza/315x236/aztec_magic_bonanza-9596.webp

143.204.42.73

200 OK

17 kB

URL GET HTTP/2
d3c3rwqla6qxaf.cloudfront.net/games-images/bgaming/aztecmagicbonanza/315x236/aztec_magic_bonanza-9596.webp
IP
143.204.42.73:443
ASN
#16509 AMAZON-02

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 315x236, Scaling: [none]x[none], YUV color, decoders should clamp
Size
17 kB (16564 bytes)
Hash
a1c7bcfdf4ec332996b71864bccc781a
e4d0d21c35d57f75aa0701177f12a62900d7e6d4
3b37b0bfec43b2a735e0d0f92963da533514562e8fa0b4d1ae114fac3196c8ad

HTTP Headers

GET /games-images/bgaming/aztecmagicbonanza/315x236/aztec_magic_bonanza-9596.webp HTTP/1.1
Host: d3c3rwqla6qxaf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
content-length: 16564
date: Fri, 28 Jun 2024 23:28:12 GMT
last-modified: Mon, 02 May 2022 18:36:41 GMT
etag: "a1c7bcfdf4ec332996b71864bccc781a"
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 9tUYaHCZs61YeUVgkswpYO3uPohJ5lSvMn9xxOWONuBEQCuuD0AMQg==
age: 66538
X-Firefox-Spdy: h2

hellspin.com/app/main.f895b5826c4ccae8.js

172.67.73.88

200 OK

177 kB

URL GET HTTP/2
hellspin.com/app/main.f895b5826c4ccae8.js
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
JavaScript source, ASCII text, with very long lines (65457)
Size
177 kB (177061 bytes)
Hash
f53bb121c7c85300d2f4569f9e827cc1
a8e69aab51130deb904b2b83b92f5a3076e29c3e
ce2e44f13933910a0d15b9a2106b94c01e42bc8fd64c162d59e9287289e83d8e

HTTP Headers

GET /app/main.f895b5826c4ccae8.js HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:06 GMT
content-type: application/javascript
last-modified: Thu, 27 Jun 2024 09:12:40 GMT
vary: Accept-Encoding
etag: W/"667d2d08-2b3a5"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: HIT
age: 4612
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3h%2FG1tW5DgTAlihOilT%2F7Uaq0mlHLjsP9myTBvzyZJ0QZZsxWLOLzXH7kzRkUMoMzhGRwUCz%2FeOkQFIlPYaDTt35lwVu4wi2dZ%2BwFJRm3v%2B7VcAQaLJaO0XAhj3NCQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc0cca458d7a-HEL
X-Firefox-Spdy: h2

hellspin.com/assets/images/flame/mobile-menu.webp

172.67.73.88

200 OK

1.8 kB

URL GET HTTP/2
hellspin.com/assets/images/flame/mobile-menu.webp
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
RIFF (little-endian) data, Web/P image
Size
1.8 kB (1826 bytes)
Hash
4c3d1e720977d4ed1bfec0f08b04b9f7
af90e0e7cb67047afadae3b78511a53ccbd23f11
0c7bc344a2ac98b0c1a8eb663ed14d76342e14b1d97dfe704e9185a314bf5231

HTTP Headers

GET /assets/images/flame/mobile-menu.webp HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2; _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:08 GMT
content-type: image/webp
content-length: 1826
last-modified: Thu, 27 Jun 2024 09:12:56 GMT
etag: "667d2d18-722"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5854
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=R2SGn6X4B6SUcxR3%2FTWdBjZy%2Fyxk7RE1VsKEIhyUTUFpSRDbrVBANfFnzJvIcUdjij%2FcPGyPPqy5lb7fzcvHYGjLxNs6mYJOZT0DuqbHhnvIcPZcw3j6aSX24TkFLQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 89b7cc1829f08d7a-HEL
X-Firefox-Spdy: h2

lil.sounddownmp3.com/ea3.php?link=ayc4Nv1fnZY&title=Crystal%20Castles%20-%20Crimewave%20(Crystal%20Castles%20vs.%20Health)

188.114.97.1

200 OK

434 B

URL GET HTTP/2
lil.sounddownmp3.com/ea3.php?link=ayc4Nv1fnZY&title=Crystal%20Castles%20-%20Crimewave%20(Crystal%20Castles%20vs.%20Health)
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ssi.mp3juice.blog/dl/ayc4Nv1fnZY
Certificate
IssuerGoogle Trust Services
Subjectsounddownmp3.com
Fingerprint78:7E:22:7F:07:92:1B:54:94:66:B2:EC:27:17:86:CE:53:BF:6D:E1
ValidityFri, 21 Jun 2024 05:27:23 GMT - Thu, 19 Sep 2024 05:27:22 GMT

File type
HTML document, ASCII text, with very long lines (468), with no line terminators
Size
434 B (434 bytes)
Hash
82058a2732c8d85ad8484105b42b48b7
0eb6deb8a5fc287d65b53a2f88e5916b40426ad3
7127325560a7fc38aa4235a0db61e8b1f0d539253e1499ba2961a8a673f0589a

HTTP Headers

GET /ea3.php?link=ayc4Nv1fnZY&title=Crystal%20Castles%20-%20Crimewave%20(Crystal%20Castles%20vs.%20Health) HTTP/1.1
Host: lil.sounddownmp3.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ssi.mp3juice.blog/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:02 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sXjDZpTT0nLVgPZCu0iLx1Dm5YQxl5Tw3UiATkEewFA0dLPa0E7ZHIh%2Fw%2FbXJpdmiDCLC%2FnMLTLcbfGSfRWDLPuR3WAygOx8d6cvAq3WtyHeFRHHUiGXwaqFLa41EYpsAxenpI8ngw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cbed7a431d22-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

platform.hellspin.com/api/v3/casino/game?is_desktop=1&category_id=27&per_page=10&perPage=10

172.67.73.88

200 OK

26 kB

URL GET HTTP/2
platform.hellspin.com/api/v3/casino/game?is_desktop=1&category_id=27&per_page=10&perPage=10
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
JSON text data
Size
26 kB (25952 bytes)
Hash
86492fe1993ce4cd8446b966ead9d827
002e13f8bb30b78d941bbe7d78af73905735033f
861197ca10dc86ad86088254e53a459ba5434a012ae6afd18235e0e3e09bce22

HTTP Headers

GET /api/v3/casino/game?is_desktop=1&category_id=27&per_page=10&perPage=10 HTTP/1.1
Host: platform.hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://hellspin.com
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Cookie: _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:09 GMT
content-type: application/json; charset=UTF-8
x-powered-by: PHP/7.4.33
access-control-allow-origin: https://hellspin.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,ws-channel,ws-session-uuid,LOCATION-SMART-DEVICE-SESSION-ID,LOCATION-SMART-HTML-SESSION-ID,X-BFF
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9%2Bo1fhrlVjIxEWEmHrfRLsKxMBJjaphSNeX%2F55Pxhvctx7JB8H8Gg2Q1USQjC%2F5tJwYH6hx%2F3t40F2jw7lslzwjKUnEwf7%2BidskB8HLWdREwTGvAmQCgvCZPzwt94BtNa9KWT93EVw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc1b0c018d7a-HEL
content-encoding: br
X-Firefox-Spdy: h2

d3c3rwqla6qxaf.cloudfront.net/producer/90_felixgaming/colored/felixgaming.svg

143.204.42.73

200 OK

1.7 kB

URL GET HTTP/2
d3c3rwqla6qxaf.cloudfront.net/producer/90_felixgaming/colored/felixgaming.svg
IP
143.204.42.73:443
ASN
#16509 AMAZON-02

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
1.7 kB (1661 bytes)
Hash
4a61d352dc4a3caf29b99b5db2c1b820
f4205f4d0687a8b7b73a90755043ef4d9ac7132c
970acd593a6f62802ec2e02a79a1a05852d8489a68f8e095f2ea812e64dd7919

HTTP Headers

GET /producer/90_felixgaming/colored/felixgaming.svg HTTP/1.1
Host: d3c3rwqla6qxaf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Thu, 12 Oct 2023 08:30:53 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Fri, 28 Jun 2024 19:44:16 GMT
etag: W/"8d7ade8c83209a81e538ad4411386de1"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: qNXNlpmkDnLI3i7z2Hn-dU3h62AI4AEtL0Rn2AglOsmYmBpk7oEhKw==
age: 79974
X-Firefox-Spdy: h2

www.google.com/recaptcha/api2/webworker.js?hl=en&v=rKbTvxTxwcw5VqzrtN-ICwWt

142.250.74.132

200 OK

102 B

URL GET HTTP/3
www.google.com/recaptcha/api2/webworker.js?hl=en&v=rKbTvxTxwcw5VqzrtN-ICwWt
IP
142.250.74.132:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcO0eQpAAAAAKabYSeOQdOq9axBOFHCMpmRNySZ&co=aHR0cHM6Ly95dGRsLmNhbmVoaWxsLmluZm86NDQz&hl=en&v=rKbTvxTxwcw5VqzrtN-ICwWt&size=invisible&cb=2ghcnua8h30c
Certificate
IssuerGoogle Trust Services
Subject*.google.com
Fingerprint5E:16:23:DF:7D:42:8E:61:6E:AA:4A:CC:FB:08:1A:B9:8F:FA:E0:A2
ValidityThu, 13 Jun 2024 15:27:14 GMT - Thu, 05 Sep 2024 15:27:13 GMT

File type
ASCII text, with no line terminators
Size
102 B (102 bytes)
Hash
f66834120faccb628f46eb0fc62f644c
15406e8ea9c7c2e6ef5c775be244fe166933bfcb
8f063ae681a530a407ea4d17859790d9e45fd81ce5b3bb6202fc9e30cef95996

HTTP Headers

GET /recaptcha/api2/webworker.js?hl=en&v=rKbTvxTxwcw5VqzrtN-ICwWt HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcO0eQpAAAAAKabYSeOQdOq9axBOFHCMpmRNySZ&co=aHR0cHM6Ly95dGRsLmNhbmVoaWxsLmluZm86NDQz&hl=en&v=rKbTvxTxwcw5VqzrtN-ICwWt&size=invisible&cb=2ghcnua8h30c
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/javascript; charset=utf-8
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Sat, 29 Jun 2024 17:57:04 GMT
date: Sat, 29 Jun 2024 17:57:04 GMT
cache-control: private, max-age=300
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

maxcdn.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css

104.18.10.207

200 OK

31 kB

URL GET HTTP/3
maxcdn.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
IP
104.18.10.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://aa.sounddownmp3.com/button-ytjarmp4.php?id=ayc4Nv1fnZY&title=Crystal%20Castles%20-%20Crimewave%20(Crystal%20Castles%20vs.%20Health)
Certificate
IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint93:87:98:7E:3F:62:5F:E6:68:1C:1C:8A:E4:9D:FB:A8:C3:72:4F:90
ValiditySat, 25 May 2024 01:51:52 GMT - Fri, 23 Aug 2024 01:51:51 GMT

File type
ASCII text, with very long lines (30837)
Size
31 kB (31000 bytes)
Hash
269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd

HTTP Headers

GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://aa.sounddownmp3.com
DNT: 1
Connection: keep-alive
Referer: https://aa.sounddownmp3.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 29 Jun 2024 17:57:03 GMT
content-type: text/css; charset=utf-8
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31919000
content-encoding: br
etag: W/"269550530cc127b6aa5a35925a7de6ce"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 03/18/2024 12:28:12
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1078
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 02eb915169222dcabaf197fe1cba28d2
cdn-cache: HIT
cf-cache-status: HIT
age: 5082608
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 89b7cbf75adabe38-CPH
alt-svc: h3=":443"; ma=86400

d16vnr1tync57h.cloudfront.net/site/upload/logohelltext.svg

143.204.42.37

200 OK

8.6 kB

URL GET HTTP/2
d16vnr1tync57h.cloudfront.net/site/upload/logohelltext.svg
IP
143.204.42.37:443
ASN
#16509 AMAZON-02

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
8.6 kB (8596 bytes)
Hash
6d9e8fcca84732ec66ce4d8aa3642969
fb606979bf34dd5b4d0ee794a69a1da506ab8651
bf3319df202c8df3e6b5df81084111a61d7df8fdb9059b589b9c169f03f6ae9d

HTTP Headers

GET /site/upload/logohelltext.svg HTTP/1.1
Host: d16vnr1tync57h.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/svg+xml
content-length: 8596
date: Fri, 28 Jun 2024 23:10:17 GMT
last-modified: Wed, 18 Jan 2023 11:14:21 GMT
etag: "e5f5f5aae50091d60e5c713932f18b1e"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: yxXH3OBE6ehl9kNsi4Z3jgSVSEIC5GaQD0BDH3BABqHUa54-M8_KvA==
age: 67612
X-Firefox-Spdy: h2

hellspin.com/app/81085.44a4e76794c8bf87.css

172.67.73.88

200 OK

45 kB

URL GET HTTP/2
hellspin.com/app/81085.44a4e76794c8bf87.css
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
ASCII text, with very long lines (9676)
Size
45 kB (45289 bytes)
Hash
c2e2b2e8d96fbe298285c5cc4b1c5eb3
35dbe26d52097f814ecbf179fb727d5b5b5ee791
2aff4648d843c47dcdc83d16549f96c158da1e6e919bba0bf75906d1a200ea18

HTTP Headers

GET /app/81085.44a4e76794c8bf87.css HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2; _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:08 GMT
content-type: text/css
last-modified: Thu, 27 Jun 2024 09:12:34 GMT
vary: Accept-Encoding
etag: W/"667d2d02-b0e9"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: HIT
age: 1313
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TOVLvADZB24bAfzhE0t%2BfaUw%2Bb6339pd8o1GZM6D5%2BK1nAEaD6ZR0h1IM3fKQy6P9JSaWlQwzXuvdlqJR9zQG977nsb7est0bmZ9osohFFyryANfy6colI4Dkg0mKw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc17e9c88d7a-HEL
X-Firefox-Spdy: h2

hellspin.com/assets/images/flame/mobile-menu.webp

0.0.0.0

0 B

URL GET
hellspin.com/assets/images/flame/mobile-menu.webp
IP
0.0.0.0:0
ASN
#0

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /assets/images/flame/mobile-menu.webp HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2; _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

hellspin.com/app/33242.178c79f16078f5dc.js

172.67.73.88

200 OK

9.1 kB

URL GET HTTP/2
hellspin.com/app/33242.178c79f16078f5dc.js
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
ASCII text, with very long lines (9140), with no line terminators
Size
9.1 kB (9112 bytes)
Hash
b8449a78f4ef370ac804bb44f1c51316
19e9d936a724191aab0e66afa8592b11294b8cac
0af836ba819e41a184a091f30ff7bb11711792d721fed53c594458a80187f884

HTTP Headers

GET /app/33242.178c79f16078f5dc.js HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2; _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:08 GMT
content-type: application/javascript
last-modified: Thu, 27 Jun 2024 09:12:27 GMT
vary: Accept-Encoding
etag: W/"667d2cfb-2398"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: HIT
age: 1642
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=F4z5PLg4%2B4vABWgTznD4QTqRLKYKnPkY5osnL9xuzMSq%2FhRUII7pf%2F%2Fz2hHMDLTY8Rz0tNcqxU689NdyI15gZDuY2ytY4KmsQmTZhvQygFNAFqZZHCmUDFXF9dopvQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc1a6b888d7a-HEL
X-Firefox-Spdy: h2

api.livechatinc.com/v3.4/customer/action/get_configuration?organization_id=0423be4a-3d48-484e-a65a-2228122b8c26&version=300650.0.14.51103.9461.4201.1623.18.3.3.3.253.1&group_id=50&jsonp=__lc_static_config

95.101.10.202

200 OK

4.6 kB

URL GET HTTP/2
api.livechatinc.com/v3.4/customer/action/get_configuration?organization_id=0423be4a-3d48-484e-a65a-2228122b8c26&version=300650.0.14.51103.9461.4201.1623.18.3.3.3.253.1&group_id=50&jsonp=__lc_static_config
IP
95.101.10.202:443
ASN
#20940 Akamai International B.V.

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerDigiCert Inc
Subjectlivechat.com
FingerprintAD:E9:73:3D:F9:98:EE:AF:EA:A1:C6:F0:07:27:92:13:66:F0:44:6E
ValidityWed, 31 Jan 2024 00:00:00 GMT - Fri, 31 Jan 2025 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (5159), with no line terminators
Size
4.6 kB (4610 bytes)
Hash
1613fbd62bebd146ce02fca5d4688eb3
cb75134241bd568a0743f433b5bf6dc4da7ce6d3
4545f564991c630ed0f8177852f51663682d56b79f855a3fb9119d9294c26af6

HTTP Headers

GET /v3.4/customer/action/get_configuration?organization_id=0423be4a-3d48-484e-a65a-2228122b8c26&version=300650.0.14.51103.9461.4201.1623.18.3.3.3.253.1&group_id=50&jsonp=__lc_static_config HTTP/1.1
Host: api.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-encoding: gzip
content-type: application/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
deprecation: 2024-11-30
vary: Accept-Encoding
content-length: 1616
cache-control: public, max-age=138
expires: Sat, 29 Jun 2024 17:59:27 GMT
date: Sat, 29 Jun 2024 17:57:09 GMT
X-Firefox-Spdy: h2

hellspin.com/app/65525.a7b568b3e610941c.js

172.67.73.88

200 OK

2.2 kB

URL GET HTTP/2
hellspin.com/app/65525.a7b568b3e610941c.js
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
ASCII text, with very long lines (2192), with no line terminators
Size
2.2 kB (2162 bytes)
Hash
d95bdcbe0b5d90202548c6adba3eb428
bd438a333e5ba3937e11b8fab4923419a68c4edb
ec62d2f59da0105c432fdd9cd576f8547ea462ff9959cbb881f7a444ddaea849

HTTP Headers

GET /app/65525.a7b568b3e610941c.js HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2; _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:08 GMT
content-type: application/javascript
last-modified: Thu, 27 Jun 2024 09:12:34 GMT
vary: Accept-Encoding
etag: W/"667d2d02-872"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: HIT
age: 1642
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bAX0n7SO11zmACGexQ4ZrL5Gdfq9CdgMzE8xUCpmtnb99UXaRiPjevE8eAOCgJD%2B5qolvybERSIFY18GPChd%2FwKt%2FjXEudrRiD15JPG0HDkBA3GckAt70K18GKh8yQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc1a8ba28d7a-HEL
X-Firefox-Spdy: h2

d3c3rwqla6qxaf.cloudfront.net/games-images/felixgaming/20boosthot/315x236/20_boost_hot.webp

143.204.42.73

200 OK

107 kB

URL GET HTTP/2
d3c3rwqla6qxaf.cloudfront.net/games-images/felixgaming/20boosthot/315x236/20_boost_hot.webp
IP
143.204.42.73:443
ASN
#16509 AMAZON-02

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
107 kB (106764 bytes)
Hash
16d6ded48ac4fe91391cc2dec6512a39
01229e009bd270b1eed2dd17425f0f8810252f3d
dc219af66c604bd34d4e048d9eb37ced5a035a9f3636386a3275e0fa55c0e5dc

HTTP Headers

GET /games-images/felixgaming/20boosthot/315x236/20_boost_hot.webp HTTP/1.1
Host: d3c3rwqla6qxaf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
content-length: 106764
date: Fri, 28 Jun 2024 23:28:12 GMT
last-modified: Tue, 19 Jul 2022 08:14:31 GMT
etag: "16d6ded48ac4fe91391cc2dec6512a39"
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: pb1EbzBI_j-mnK5kTPQV76vanAf-pOdU22cXm1AEQKiiZtBRX6oWRw==
age: 66538
X-Firefox-Spdy: h2

d3c3rwqla6qxaf.cloudfront.net/games-images/onlyplay/spacehorror/315x236/spacehorror.webp

143.204.42.73

200 OK

108 kB

URL GET HTTP/2
d3c3rwqla6qxaf.cloudfront.net/games-images/onlyplay/spacehorror/315x236/spacehorror.webp
IP
143.204.42.73:443
ASN
#16509 AMAZON-02

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
108 kB (108006 bytes)
Hash
7a9c2d3888eced4ecc1767d92ff346dd
2af8304224408f664b9a32e377f172c83e7f7242
1bb3dea725197ea44721741528dbcf1bbf0cd0cc5ac9d31880f0055f55fd0598

HTTP Headers

GET /games-images/onlyplay/spacehorror/315x236/spacehorror.webp HTTP/1.1
Host: d3c3rwqla6qxaf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
content-length: 108006
date: Fri, 28 Jun 2024 23:28:12 GMT
last-modified: Thu, 27 Jun 2024 11:06:56 GMT
etag: "7a9c2d3888eced4ecc1767d92ff346dd"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: tErt3rQdfRddc4qKL4KH1i1X6eiS94SM5D_2Z8_Vn-r3ftrR3BCfpg==
age: 66538
X-Firefox-Spdy: h2

cdn.livechatinc.com/widget/static/js/11.Gv78iMd6.chunk.js

104.69.222.203

200 OK

240 B

URL GET HTTP/2
cdn.livechatinc.com/widget/static/js/11.Gv78iMd6.chunk.js
IP
104.69.222.203:443
ASN
#20940 Akamai International B.V.

Requested by
https://secure.livechatinc.com/customer/action/open_chat?license_id=9054575&group=50&embedded=1&widget_version=3&unique_groups=1
Certificate
IssuerDigiCert Inc
Subjectlivechat.com
FingerprintAD:E9:73:3D:F9:98:EE:AF:EA:A1:C6:F0:07:27:92:13:66:F0:44:6E
ValidityWed, 31 Jan 2024 00:00:00 GMT - Fri, 31 Jan 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with no line terminators
Size
240 B (240 bytes)
Hash
de9a9a727224304caeacd3f6b7b44a49
62dc55ace7c5a4e0209ac03e238ed65212808fb2
a7f6797705782e89032c74753d69be636a73752ccfda0f92af6758621ea2a0ed

HTTP Headers

GET /widget/static/js/11.Gv78iMd6.chunk.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://secure.livechatinc.com
DNT: 1
Connection: keep-alive
Referer: https://cdn.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Mon, 24 Jun 2024 13:45:58 GMT
etag: "8ec94005c25c7e0874b7b048ea97dc00"
x-amz-server-side-encryption: AES256
x-amz-version-id: xSB.9g9YsFmJdl_frcZYgbkYwOyesiz6
accept-ranges: bytes
server: AmazonS3
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: FTAryC-giPcLGVuhweoNfYrN4Fu_Y6Kxl2oY28SbTEE5H1BgQ-tBUQ==
vary: Accept-Encoding
content-encoding: gzip
content-length: 166
cache-control: max-age=31536000
expires: Sun, 29 Jun 2025 17:57:10 GMT
date: Sat, 29 Jun 2024 17:57:10 GMT
content-type: application/javascript; charset=utf-8
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
X-Firefox-Spdy: h2

hellspin.com/api/configuration/data

172.67.73.88

200 OK

87 B

URL GET HTTP/2
hellspin.com/api/configuration/data
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
87 B (87 bytes)
Hash
f4bef9bd9fe61575e132758d51aca263
8a0bcf4124dd48dafd35acb59afa85f35f5674ab
ca3cd14338dc1fa34caa5137eed9f0c62f64d7e355b2f46cfe01dc057b8fdaba

HTTP Headers

GET /api/configuration/data HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2; _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:08 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, private
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
content-encoding: gzip
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BL8KS1tJYxyh7viiVxXpNLxBzzFIgirDTag9KsbTfZspLj%2FJodgpebtDBcgM5IUAfLsMlhX0a3G5fj7SY5K8XVu7weooI27xMs6OSfDCMWuuIDc72gJBNGjFEEUXEg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc14af7c8d7a-HEL
X-Firefox-Spdy: h2

hellspin.com/app/2447.43a7bd65768f7dcb.js

172.67.73.88

200 OK

1.1 kB

URL GET HTTP/2
hellspin.com/app/2447.43a7bd65768f7dcb.js
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
ASCII text, with very long lines (1085), with no line terminators
Size
1.1 kB (1071 bytes)
Hash
bbae3b7dfc67b888f72db719be5b2cad
9f4e8543e5a87e8581e3320cfce48a780cdc727e
61a0976b33e1f5620a608ddc8b02c41d08fbe2b67c8b133b4a9e48c8fab8eaa8

HTTP Headers

GET /app/2447.43a7bd65768f7dcb.js HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2; _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:08 GMT
content-type: application/javascript
last-modified: Thu, 27 Jun 2024 09:12:34 GMT
etag: W/"667d2d02-42f"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2501
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2Ttn5ZAYUrroD%2BQ9%2BgdgFqnvtHVFxsspciuLxuneISp9J0xJEVHU3FoIdk2Hq6ro%2BqRTlNBeIs05i8UHiU%2Fvr00rdL2wvYjWc55sXarUF1WC3uZDiPFKrsacV2FWWA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 89b7cc1aabc08d7a-HEL
content-encoding: br
X-Firefox-Spdy: h2

d16vnr1tync57h.cloudfront.net/site/upload/flag_icon/305e2c5c-7a7b-47b7-9332-2833fb4de279/1690372911_no.svg

143.204.42.37

200 OK

630 B

URL GET HTTP/2
d16vnr1tync57h.cloudfront.net/site/upload/flag_icon/305e2c5c-7a7b-47b7-9332-2833fb4de279/1690372911_no.svg
IP
143.204.42.37:443
ASN
#16509 AMAZON-02

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
630 B (630 bytes)
Hash
8b373ca69437b94028bab5c00145e8ea
eea2275bd5d6b4e298402d79b9bd32f2e0d7d3be
2f0e8c87f9d52c08e625fd6645321195dd58d1a95c2c8710302246b8b1c31eb6

HTTP Headers

GET /site/upload/flag_icon/305e2c5c-7a7b-47b7-9332-2833fb4de279/1690372911_no.svg HTTP/1.1
Host: d16vnr1tync57h.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/svg+xml
content-length: 630
date: Fri, 28 Jun 2024 23:28:10 GMT
last-modified: Wed, 26 Jul 2023 12:01:52 GMT
etag: "6bc7a719c5f9ab72cd04de00afdbcbc5"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 0dzdYkRiZaQ4YVkIJ3p3tyUM1MycsHU5_cITYPHy6v-SCswEuLWJkQ==
age: 66540
X-Firefox-Spdy: h2

hellspin.com/assets/casino/drops_and_wins.svg

172.67.73.88

200 OK

5.1 kB

URL GET HTTP/2
hellspin.com/assets/casino/drops_and_wins.svg
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
SVG Scalable Vector Graphics image
Size
5.1 kB (5058 bytes)
Hash
bb9e8c8f2be615936eaf40a178011917
c8ff0b6e9ab8542556158d578c633f1a4bbcbc46
5ae477f53dd1bc3f730609b931652108b52850491f8462aea7b047e1c36e4d32

HTTP Headers

GET /assets/casino/drops_and_wins.svg HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2; _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:09 GMT
content-type: image/svg+xml
last-modified: Thu, 27 Jun 2024 09:12:44 GMT
vary: Accept-Encoding
etag: W/"667d2d0c-13c2"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: HIT
age: 7155
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AocECOC7H2WxxDm3r6KH23Kuf%2BdN%2Ffx9%2BL3VeWAZ9qrNB89lW%2FYq4JWClH2PT2Tks9NA5LcQT2oRYL6TZk1gNBBROMLVB7szyI3FB2NpP2oM9hvStNTNzwOqMYepFw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc2098838d7a-HEL
X-Firefox-Spdy: h2

hellspin.com/api/translation/get?locale=nor_NO

172.67.73.88

200 OK

639 kB

URL GET HTTP/2
hellspin.com/api/translation/get?locale=nor_NO
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
JSON text data
Size
639 kB (639201 bytes)
Hash
9df7799d1c66effa391cbd1420152531
be4142e756f036e923c6c912cdf340843f9baa49
50179aacd5c36382d3bb4f2748b1feaa2496681497a3f5d80e424d08a638f364

HTTP Headers

GET /api/translation/get?locale=nor_NO HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:06 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, private
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
content-encoding: gzip
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gT0zK75ye08BCZpse8TvCf7PuDGg6tMhBMt3IawzwqposKWDnRHzVd6OLutaPtoH7%2FIDQXkw4ia9qyOePdfERhWnE8Qz4QthdBmImTDXSDQzqoHcB8mrIsjWwfnzyg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc08ae908d7a-HEL
X-Firefox-Spdy: h2

platform.hellspin.com/api/v2/configurations

104.26.8.227

200 OK

116 kB

URL GET HTTP/2
platform.hellspin.com/api/v2/configurations
IP
104.26.8.227:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
JSON text data
Size
116 kB (116425 bytes)
Hash
c2013222549874b79adf2c42d9e44aba
7d2723e7c54e713c67cb1ab74e979777233ee414
ede5932685c9cfdfc83fb67d4079b983ce3e3fd318e8d7fc4c7b6c474ab5f203

HTTP Headers

GET /api/v2/configurations HTTP/1.1
Host: platform.hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hellspin.com
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:06 GMT
content-type: application/json; charset=UTF-8
status: 200 OK
x-backend: rr
access-control-allow-origin: https://hellspin.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,ws-channel,ws-session-uuid,LOCATION-SMART-DEVICE-SESSION-ID,LOCATION-SMART-HTML-SESSION-ID,X-BFF
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aOQFCxiAqeYv%2BIKSMEYK5CaX%2B4HVecXKR0GZL5Ufu4R5oozX%2Bfcpk90ow%2Bn4zWbHcRccsoaMMmv2zarm269dQ7zXTWcitPnGCJGNd%2BhlplVE7szBWuUgsDJDg1ubhU39nDE4JvZFbg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc0b1f558d6c-HEL
content-encoding: br
X-Firefox-Spdy: h2

platform.hellspin.com/api/v3/casino/game?is_desktop=1&category_id=68&per_page=10&perPage=10

172.67.73.88

200 OK

27 kB

URL GET HTTP/2
platform.hellspin.com/api/v3/casino/game?is_desktop=1&category_id=68&per_page=10&perPage=10
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
JSON text data
Size
27 kB (26838 bytes)
Hash
9776f0d81ef8d03fd1ad7966245d5e3d
83ae5a3906bda6d693a960fbc00b8e86526a2883
e22777d51000d26c432f1250c0cf5d6b3f614399c89b556e22ac354401f3b20d

HTTP Headers

GET /api/v3/casino/game?is_desktop=1&category_id=68&per_page=10&perPage=10 HTTP/1.1
Host: platform.hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://hellspin.com
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Cookie: _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:09 GMT
content-type: application/json; charset=UTF-8
x-powered-by: PHP/7.4.33
access-control-allow-origin: https://hellspin.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,ws-channel,ws-session-uuid,LOCATION-SMART-DEVICE-SESSION-ID,LOCATION-SMART-HTML-SESSION-ID,X-BFF
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oQx8rYdQR%2Ba%2FXzyoGITLDlwhc8KgxImWngxMFfnHKcQJUCdgb8%2FqXUD7%2B1gos%2BH%2BpS5igT6IR21dgrI94stlALPRTglFxbg%2BHbKkmFmCAK4jtoykoH2O0FrrwkG0DC90sbt8FRlBvA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc1b3c448d7a-HEL
content-encoding: br
X-Firefox-Spdy: h2

cdn.seon.io/js/v4/agent.js

54.240.174.66

200 OK

317 kB

URL GET HTTP/2
cdn.seon.io/js/v4/agent.js
IP
54.240.174.66:443
ASN
#16509 AMAZON-02

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerAmazon
Subject*.seon.io
Fingerprint17:1B:00:AB:34:C8:55:7E:24:3B:96:D5:6B:FE:23:39:4A:C3:4A:26
ValidityThu, 20 Jun 2024 00:00:00 GMT - Sat, 19 Jul 2025 23:59:59 GMT

File type

Size
317 kB (317074 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /js/v4/agent.js HTTP/1.1
Host: cdn.seon.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 20 Dec 2022 16:00:08 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: oBwuMALhSWNlluJ4Z9BGO_.GELHIAD3H
server: AmazonS3
content-encoding: gzip
date: Sat, 29 Jun 2024 17:22:32 GMT
cache-control: max-age=3600
etag: W/"c34c3067f651e0fea2609171ab7bfec0"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: IzVfhBNxq14Uh3yhRkQoKpQJLFpMUP-g8Lx6ZafVh86-Ipm7jLsp9Q==
age: 2074
X-Firefox-Spdy: h2

hellspin.com/app/70519.d1425352fe3f051c.js

172.67.73.88

200 OK

36 kB

URL GET HTTP/2
hellspin.com/app/70519.d1425352fe3f051c.js
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
ASCII text, with very long lines (35776), with no line terminators
Size
36 kB (35776 bytes)
Hash
80d1e14866795ef3b111fb58ec4c909b
62eeea87bcbee22ce7f809b6bd4bda45e04d8b91
2108e68ac595ff83527779956192f6a9baaad040cfd8688bd45914f76af626a3

HTTP Headers

GET /app/70519.d1425352fe3f051c.js HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:06 GMT
content-type: application/javascript
last-modified: Thu, 27 Jun 2024 09:12:57 GMT
vary: Accept-Encoding
etag: W/"667d2d19-8bc0"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: HIT
age: 4612
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xSUufOEXc4A4QnfztY3BMg%2FjRkeQwN9Mulj9OorOIaweIsYJoVLFASxmYNFqw1h8IUswrNmm5FKp87pm8wnQic3RblDZBNpVHHeVBrICPQkDouFeam0AKbI5AJsHMg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc0d2a7f8d7a-HEL
X-Firefox-Spdy: h2

hellspin.com/assets/images/rocks.svg

172.67.73.88

200 OK

1.5 kB

URL GET HTTP/2
hellspin.com/assets/images/rocks.svg
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
SVG Scalable Vector Graphics image
Size
1.5 kB (1499 bytes)
Hash
69235670efb507817a293bfdc2820dd6
7be1839f2e4213e913e4bb751e12a1cf7736e6fe
55c90c114a925ecf29f8fa6363abaa7c7cf82679dfb43136ab7d68fe90cf54d5

HTTP Headers

GET /assets/images/rocks.svg HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/app/1878.e77165d9aa0faec0.css
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2; _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:08 GMT
content-type: image/svg+xml
last-modified: Thu, 27 Jun 2024 09:12:44 GMT
vary: Accept-Encoding
etag: W/"667d2d0c-5db"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: HIT
age: 1642
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1YWIn%2BRlsn670R4OfhiyIBvBxKpR%2BirZC9EgzeLJUkl%2FpzC78AehwOzuNGO71CY5QRM5PkQNjdb09EwVF7p9rhMviiBAx9dANsiHc4RCQkLH08l6uWkCsJQhb7dO9A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc19baeb8d7a-HEL
X-Firefox-Spdy: h2

centrifugo.platform-sys.net/connection/websocket

3.65.173.160

101 Switching Protocols

0 B

URL GET HTTP/1.1
centrifugo.platform-sys.net/connection/websocket
IP
3.65.173.160:443
ASN
#16509 AMAZON-02

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerLet's Encrypt
Subjectplatform-sys.net
FingerprintB3:47:DD:4D:94:0D:96:EA:2A:2B:C1:DB:7F:33:9A:EC:59:1C:BB:F2
ValiditySun, 16 Jun 2024 04:58:53 GMT - Sat, 14 Sep 2024 04:58:52 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /connection/websocket HTTP/1.1
Host: centrifugo.platform-sys.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://hellspin.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: IaBWmtSgC2qoFJOkTKdmYQ==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Server: nginx/1.25.3
Date: Sat, 29 Jun 2024 17:57:08 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: MaJ9Syk4eSD4WXoePdGQsRag3nQ=

d3c3rwqla6qxaf.cloudfront.net/games-images/booming/bangbangreloaded/315x236/bangbangreloaded.webp

143.204.42.73

200 OK

109 kB

URL GET HTTP/2
d3c3rwqla6qxaf.cloudfront.net/games-images/booming/bangbangreloaded/315x236/bangbangreloaded.webp
IP
143.204.42.73:443
ASN
#16509 AMAZON-02

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
109 kB (109246 bytes)
Hash
9c0911c719abd464fe6015c49a4e7cc1
2cc25a20b1d8e36ae0e3bd7cfb71f94695d1f06c
c145e17701ca9814da352dfc29a60c41df76aa2914b91a70c4688acc213a9a2a

HTTP Headers

GET /games-images/booming/bangbangreloaded/315x236/bangbangreloaded.webp HTTP/1.1
Host: d3c3rwqla6qxaf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
content-length: 109246
last-modified: Thu, 09 May 2024 11:01:09 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Fri, 28 Jun 2024 20:55:23 GMT
etag: "9c0911c719abd464fe6015c49a4e7cc1"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _8we_OOc6SMIiUggU36v5lLPYas0snjinawijRyOTSqhGFrHm9yrNQ==
age: 75708
X-Firefox-Spdy: h2

api.livechatinc.com/v3.4/customer/action/get_localization?organization_id=0423be4a-3d48-484e-a65a-2228122b8c26&version=470b74842e9d45ce9f156d1d5a957bad_40f169a0175ba66eee854031d16bc6bb&language=en&group_id=50&jsonp=__lc_localization

95.101.10.202

200 OK

11 kB

URL GET HTTP/2
api.livechatinc.com/v3.4/customer/action/get_localization?organization_id=0423be4a-3d48-484e-a65a-2228122b8c26&version=470b74842e9d45ce9f156d1d5a957bad_40f169a0175ba66eee854031d16bc6bb&language=en&group_id=50&jsonp=__lc_localization
IP
95.101.10.202:443
ASN
#20940 Akamai International B.V.

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerDigiCert Inc
Subjectlivechat.com
FingerprintAD:E9:73:3D:F9:98:EE:AF:EA:A1:C6:F0:07:27:92:13:66:F0:44:6E
ValidityWed, 31 Jan 2024 00:00:00 GMT - Fri, 31 Jan 2025 23:59:59 GMT

File type

Size
11 kB (11416 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /v3.4/customer/action/get_localization?organization_id=0423be4a-3d48-484e-a65a-2228122b8c26&version=470b74842e9d45ce9f156d1d5a957bad_40f169a0175ba66eee854031d16bc6bb&language=en&group_id=50&jsonp=__lc_localization HTTP/1.1
Host: api.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-encoding: gzip
content-type: application/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
deprecation: 2024-11-30
vary: Accept-Encoding
cache-control: public, max-age=327
expires: Sat, 29 Jun 2024 18:02:36 GMT
date: Sat, 29 Jun 2024 17:57:09 GMT
content-length: 3961
X-Firefox-Spdy: h2

hellspin.com/app/19479.6ca6441f69165c53.js

172.67.73.88

200 OK

3.8 kB

URL GET HTTP/2
hellspin.com/app/19479.6ca6441f69165c53.js
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
ASCII text, with very long lines (4008), with no line terminators
Size
3.8 kB (3829 bytes)
Hash
28e0bcd50847370b61523d9a04d441f6
85baa9b00a45096daba23226df62fbe438efe5db
72c16439149c575afc019402562cd784b4c2a26ba55f176d37f87c106647bdbb

HTTP Headers

GET /app/19479.6ca6441f69165c53.js HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2; _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:10 GMT
content-type: application/javascript
last-modified: Thu, 27 Jun 2024 09:12:40 GMT
vary: Accept-Encoding
etag: W/"667d2d08-ef5"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: HIT
age: 1643
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IA2Xae7Cu2CCFZGAA9tZ75RvnQeMFrFsrR3Yo%2ByKighiM6BLefhbPz1AgzCd%2FfTa5pH4SUW%2B57a3HIBvTEo0xdHCAwsvFU3FIexm7C7PCJ44j2WwIKWMCLqIwTSKpg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc262dee8d7a-HEL
X-Firefox-Spdy: h2

maithigloab.net/?z=7629065&syncedCookie=true&rhd=false

139.45.197.244

302 Found

32 kB

URL POST HTTP/2
maithigloab.net/?z=7629065&syncedCookie=true&rhd=false
IP
139.45.197.244:443
ASN
#9002 RETN Limited

Requested by
https://ytdl.canehill.info/mp3/ayc4Nv1fnZY
Certificate
IssuerLet's Encrypt
Subjectmaithigloab.net
Fingerprint54:B7:A4:88:69:15:69:FE:6F:C2:71:E6:68:91:93:80:25:7A:87:43
ValidityFri, 14 Jun 2024 05:24:36 GMT - Thu, 12 Sep 2024 05:24:35 GMT

File type

Size
32 kB (31651 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /?z=7629065&syncedCookie=true&rhd=false HTTP/1.1
Host: maithigloab.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 521
Origin: https://maithigloab.net
DNT: 1
Connection: keep-alive
Referer: https://maithigloab.net/afu.php?zoneid=7629065&var=7629065&rid=mnhKzS_wDF_SW3g2Y1iWsw%3D%3D&rhd=false&ab2r=0&sf=1
Cookie: OAID=00808add24074ca1f4465773cf702f66; oaidts=1719683824
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
server: nginx
date: Sat, 29 Jun 2024 17:57:04 GMT
content-length: 0
location: https://media.hellpartners.com/redirect.aspx?pid=22335&bid=1466&lpid=6
x-trace-id: 8afb61a29f95bc89f3dbe4a24e63913e
link: <https://media.hellpartners.com>; rel="preconnect dns-prefetch",<https://yonmewon.com>; rel="preconnect dns-prefetch",<https://sr7pv7n5x.com>; rel="preconnect dns-prefetch"
referrer-policy: no-referrer
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://maithigloab.net
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=00808add24074ca1f4465773cf702f66; expires=Sun, 29 Jun 2025 17:57:04 GMT; path=/; secure; SameSite=None
oaidts=1719683824; expires=Sun, 29 Jun 2025 17:57:04 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Sat, 06 Jul 2024 17:57:04 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

d3c3rwqla6qxaf.cloudfront.net/producer/79_booming/colored/booming.svg

143.204.42.73

200 OK

2.2 kB

URL GET HTTP/2
d3c3rwqla6qxaf.cloudfront.net/producer/79_booming/colored/booming.svg
IP
143.204.42.73:443
ASN
#16509 AMAZON-02

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
2.2 kB (2210 bytes)
Hash
a5fae86c6a83a78d360a7c2bf08148f5
d2d341f4ec8966f286ba9210f0a022085e9ae7fa
d8599708a4bb4f6c86929481ed7d04e91433a4838241f16fc24aa262a4969a76

HTTP Headers

GET /producer/79_booming/colored/booming.svg HTTP/1.1
Host: d3c3rwqla6qxaf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Thu, 12 Oct 2023 08:30:45 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sat, 29 Jun 2024 16:43:49 GMT
etag: W/"e9bc357d58f76d83d25a2ff82ce9e1f8"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: tvPQBJ-ySqY9aCRAdc34-MNjDcEd7y69unL2OpCUTE2ffKTU4_7rAg==
age: 4402
X-Firefox-Spdy: h2

maxcdn.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css

104.18.10.207

200 OK

31 kB

URL GET HTTP/3
maxcdn.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
IP
104.18.10.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ytjar.downloader-ytjar.online/13.php?id=ayc4Nv1fnZY&title=Crystal%20Castles%20-%20Crimewave%20(Crystal%20Castles%20vs.%20Health)
Certificate
IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint93:87:98:7E:3F:62:5F:E6:68:1C:1C:8A:E4:9D:FB:A8:C3:72:4F:90
ValiditySat, 25 May 2024 01:51:52 GMT - Fri, 23 Aug 2024 01:51:51 GMT

File type
ASCII text, with very long lines (30837)
Size
31 kB (31000 bytes)
Hash
269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd

HTTP Headers

GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ytjar.downloader-ytjar.online/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 29 Jun 2024 17:57:03 GMT
content-type: text/css; charset=utf-8
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31919000
content-encoding: br
etag: W/"269550530cc127b6aa5a35925a7de6ce"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 03/18/2024 12:28:12
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1078
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 5e4d53437a90cba0ca0545e9504ae32b
cdn-cache: HIT
cf-cache-status: HIT
age: 5089840
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 89b7cbfa3d131d12-CPH
alt-svc: h3=":443"; ma=86400

hellspin.com/app/75105.9ddca62c1c96fdd6.js

172.67.73.88

200 OK

3.1 MB

URL GET HTTP/2
hellspin.com/app/75105.9ddca62c1c96fdd6.js
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type

Size
3.1 MB (3075613 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /app/75105.9ddca62c1c96fdd6.js HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:06 GMT
content-type: application/javascript
last-modified: Thu, 27 Jun 2024 09:12:34 GMT
vary: Accept-Encoding
etag: W/"667d2d02-2eee1d"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: HIT
age: 4612
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=URKWD%2F8zl3lgERiJ0YmWYEbGHAC1AWFRSTyKgaBYtgF6IVB%2BEzRzJgkG7i1IwFqawnAHIi0o%2FM7%2F3Aug1cjdXlUxf0M0kSF5suJ2cYEvL3M87MZDB81sOr2g23MOFA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc0d2a7e8d7a-HEL
X-Firefox-Spdy: h2

cdn.livechatinc.com/widget/static/js/9.DNvb5pV8.chunk.js

104.69.222.203

200 OK

307 B

URL GET HTTP/2
cdn.livechatinc.com/widget/static/js/9.DNvb5pV8.chunk.js
IP
104.69.222.203:443
ASN
#20940 Akamai International B.V.

Requested by
https://secure.livechatinc.com/customer/action/open_chat?license_id=9054575&group=50&embedded=1&widget_version=3&unique_groups=1
Certificate
IssuerDigiCert Inc
Subjectlivechat.com
FingerprintAD:E9:73:3D:F9:98:EE:AF:EA:A1:C6:F0:07:27:92:13:66:F0:44:6E
ValidityWed, 31 Jan 2024 00:00:00 GMT - Fri, 31 Jan 2025 23:59:59 GMT

File type
ASCII text, with very long lines (308), with no line terminators
Size
307 B (307 bytes)
Hash
b6e8b4449d3ba446fcbddbaac1cbc09b
f5e854079c24c744b4e0e5775b61a8b60c9b4aa4
3149373acf1dbb6a57f90e1b2c7bf77ec0aaaeb6c04c1ed804708d9a714394b4

HTTP Headers

GET /widget/static/js/9.DNvb5pV8.chunk.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://secure.livechatinc.com
DNT: 1
Connection: keep-alive
Referer: https://cdn.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-length: 307
last-modified: Mon, 24 Jun 2024 09:50:11 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: TqW8wsqynsczuypXWOGvNdQWO1xcKhMn
accept-ranges: bytes
server: AmazonS3
etag: "a611e384114ceb76e510a16b37f9738c"
vary: Accept-Encoding
x-amz-cf-pop: AMS58-P4
x-amz-cf-id: hnb-NwaM8Iv2Y-vG80uxQDJcYsDcKjOWPIKq7Jpl7RQkL_mHnfXGKg==
cache-control: max-age=31536000
expires: Sun, 29 Jun 2025 17:57:10 GMT
date: Sat, 29 Jun 2024 17:57:10 GMT
content-type: application/javascript; charset=utf-8
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
X-Firefox-Spdy: h2

hellspin.com/app/65002.8add12e7fadf30e8.js

172.67.73.88

200 OK

2.4 kB

URL GET HTTP/2
hellspin.com/app/65002.8add12e7fadf30e8.js
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
ASCII text, with very long lines (2452), with no line terminators
Size
2.4 kB (2436 bytes)
Hash
8faff5829904f1c790204cc9f402a9f5
bb49023b79e5039be810b21e6762a35c84ae0537
9fda5ce9a13469aad04507e2ffc83b32d9cd4eec7418229878c720c1fe2a1ecf

HTTP Headers

GET /app/65002.8add12e7fadf30e8.js HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2; _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:08 GMT
content-type: application/javascript
last-modified: Thu, 27 Jun 2024 09:12:46 GMT
vary: Accept-Encoding
etag: W/"667d2d0e-984"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: HIT
age: 1642
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BdwBmrKcRD7mR1f%2FGHY0SM7U7SLmso5Q6Q6ZgJq1Xo7BWYoU3x54N4CBbjRc0vNTlU3xk13YO5OOG2Yol2ugAlRqGExeW%2BrvoYYWPzCSc2QMH0GWOg7Caa5U350DAA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc1a8ba08d7a-HEL
X-Firefox-Spdy: h2

ssi.mp3juice.blog/dl/ayc4Nv1fnZY

104.21.36.134

200 OK

13 kB

URL User Request GET HTTP/2
ssi.mp3juice.blog/dl/ayc4Nv1fnZY
IP
104.21.36.134:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectmp3juice.blog
Fingerprint4D:7D:B7:99:D7:46:52:0F:CB:A3:6E:A1:D3:A3:07:69:D5:A6:9B:C1
ValidityFri, 17 May 2024 15:16:57 GMT - Thu, 15 Aug 2024 15:16:56 GMT

File type

Size
13 kB (12779 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /dl/ayc4Nv1fnZY HTTP/1.1
Host: ssi.mp3juice.blog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:01 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: max-age=7200
cf-cache-status: MISS
last-modified: Sat, 29 Jun 2024 17:57:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ebnm82XMWTV7n7YjnrpDVCPhHOiZVHtKFoXNRDYG9MeenHqUGo8BFseTHKQtTEFajzcqGtelXqe2FVWxbKO7Gbs10T6FSIogVs9NiI0Tw1iK6YW8h%2Fdl4ARcQDkzfJyKz3yLUg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cbe79f3b6df0-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

accounts.livechatinc.com/v2/customer/0423be4a-3d48-484e-a65a-2228122b8c26/50/token

95.101.10.202

200 OK

195 B

URL POST HTTP/2
accounts.livechatinc.com/v2/customer/0423be4a-3d48-484e-a65a-2228122b8c26/50/token
IP
95.101.10.202:443
ASN
#20940 Akamai International B.V.

Requested by
https://secure.livechatinc.com/customer/action/open_chat?license_id=9054575&group=50&embedded=1&widget_version=3&unique_groups=1
Certificate
IssuerDigiCert Inc
Subjectlivechat.com
FingerprintAD:E9:73:3D:F9:98:EE:AF:EA:A1:C6:F0:07:27:92:13:66:F0:44:6E
ValidityWed, 31 Jan 2024 00:00:00 GMT - Fri, 31 Jan 2025 23:59:59 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
195 B (195 bytes)
Hash
a7281d59f7000241480b66cb5f9b5fa9
785fc4a754f96effeaea5a3236251536e53fe6f4
f9f84533324c7cb428c45c178918408888e43d99e5bb9c3a973db24ea7596a3f

HTTP Headers

POST /v2/customer/0423be4a-3d48-484e-a65a-2228122b8c26/50/token HTTP/1.1
Host: accounts.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 225
Origin: https://secure.livechatinc.com
DNT: 1
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://secure.livechatinc.com
cache-control: no-cache, no-store, max-age=0, must-revalidate
content-type: application/json
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
content-length: 195
date: Sat, 29 Jun 2024 17:57:11 GMT
set-cookie: __lc_cid=8877177a-41d4-4685-8d5b-3bd95d4c0e79; Path=/v2/customer/0423be4a-3d48-484e-a65a-2228122b8c26/50/token; Domain=accounts.livechatinc.com; Expires=Mon, 29 Jun 2026 17:57:10 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None; Partitioned
__lc_cst=68e45f0f4e3ab6e814637f08d34c11fac69ea9ff0efddb49f91ee27e7ba20e279f1e10a6e8478e50a2740e1e69f8668efcfca98843d577bb092e49a1f07f; Path=/v2/customer/0423be4a-3d48-484e-a65a-2228122b8c26/50/token; Domain=accounts.livechatinc.com; Expires=Mon, 29 Jun 2026 17:57:10 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None; Partitioned
__lc_cid=8877177a-41d4-4685-8d5b-3bd95d4c0e79; Path=/licence/g9054575_50/; Domain=accounts.livechatinc.com; Expires=Mon, 29 Jun 2026 17:57:10 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None; Partitioned
__lc_cst=68e45f0f4e3ab6e814637f08d34c11fac69ea9ff0efddb49f91ee27e7ba20e279f1e10a6e8478e50a2740e1e69f8668efcfca98843d577bb092e49a1f07f; Path=/licence/g9054575_50/; Domain=accounts.livechatinc.com; Expires=Mon, 29 Jun 2026 17:57:10 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None; Partitioned
__oauth_redirect_detector=counter=1&t=1719683860&tag=2c5d6007a46dd7b1c52d0fa08f5120a9587e0f93; Path=/; Expires=Sat, 29 Jun 2024 17:57:40 GMT; HttpOnly; Secure; SameSite=None
X-Firefox-Spdy: h2

d3c3rwqla6qxaf.cloudfront.net/producer/313_hacksawgaming/colored/hacksaw.svg

143.204.42.73

200 OK

501 B

URL GET HTTP/2
d3c3rwqla6qxaf.cloudfront.net/producer/313_hacksawgaming/colored/hacksaw.svg
IP
143.204.42.73:443
ASN
#16509 AMAZON-02

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
501 B (501 bytes)
Hash
82109f26104d759b7b9700540317905c
259831512aa65d4d19cb31e1da9516e0885acbe2
2bd6ab1bb82dd7f36f05bbbe4b2721195c6ff302166b8eb721f1ee2308df63fa

HTTP Headers

GET /producer/313_hacksawgaming/colored/hacksaw.svg HTTP/1.1
Host: d3c3rwqla6qxaf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/svg+xml
content-length: 501
date: Fri, 28 Jun 2024 23:28:11 GMT
last-modified: Thu, 12 Oct 2023 08:31:05 GMT
etag: "f23a639b2ab1aff6f03e751da9e200d3"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: yIfiNUibs9c_mBy81ykj1gvehu_lsU9q6Kr3v6vW-5U9c0mQNSqA1A==
age: 66539
X-Firefox-Spdy: h2

d3c3rwqla6qxaf.cloudfront.net/producer/30_playtech/colored/playtech.svg

143.204.42.73

200 OK

1.3 kB

URL GET HTTP/2
d3c3rwqla6qxaf.cloudfront.net/producer/30_playtech/colored/playtech.svg
IP
143.204.42.73:443
ASN
#16509 AMAZON-02

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
1.3 kB (1277 bytes)
Hash
437646bd0ed4a564d2396095183baca1
ff5c2f5a87e04d21a47a847575298370e0c8096a
d8a9061ba660fe3b5279fe3fc5cad728c936bc522a47bf63fc36767cb2d640df

HTTP Headers

GET /producer/30_playtech/colored/playtech.svg HTTP/1.1
Host: d3c3rwqla6qxaf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/svg+xml
date: Fri, 28 Jun 2024 23:28:11 GMT
last-modified: Thu, 12 Oct 2023 08:30:44 GMT
etag: W/"9b61bea5641ec40bb8ae2fdd955708f6"
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 02E_1QALhXZowvF28k1sz6ue2j4q4Au5_XCqFBGqqNsr9jhIjmWc_A==
age: 66539
X-Firefox-Spdy: h2

aswpsdkus.com/notify/v1/ua-sdk.min.js

34.160.158.95

200 OK

232 kB

URL GET HTTP/2
aswpsdkus.com/notify/v1/ua-sdk.min.js
IP
34.160.158.95:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerDigiCert Inc
Subjectaswpsdkus.com
Fingerprint85:D4:67:3F:D3:8F:9E:2B:80:51:79:AE:A7:E8:9D:68:F4:20:D7:7C
ValidityWed, 10 Jan 2024 00:00:00 GMT - Thu, 09 Jan 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
232 kB (231821 bytes)
Hash
9b6496067b47d14a0f05a39d279b9b1b
e801fc737f00bfd15992faf062b59438616ac444
098acc59a1d47b64272d65ebe22d3b1bfc4f4b655d1c60509e92b4c22fdf21a5

HTTP Headers

GET /notify/v1/ua-sdk.min.js HTTP/1.1
Host: aswpsdkus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-goog-generation: 1716544116465362
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 42883
content-encoding: gzip
x-goog-hash: crc32c=2KsRLA==, md5=wggC78tkyTAwsWVHN8+KhA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 42883
x-guploader-uploadid: ACJd0No6DEAabk9L1y9Z3nY1MZXPUJXp3DgC-Pv0bU0X-knJiIpPGctLHdBTLf7iA8LQH7b2Fs-WCE1GvA
server: UploadServer
date: Sat, 29 Jun 2024 17:55:40 GMT
expires: Sat, 29 Jun 2024 18:00:40 GMT
cache-control: public,max-age=300,no-transform
age: 86
last-modified: Fri, 24 May 2024 09:48:36 GMT
etag: "c20802efcb64c93030b1654737cf8a84"
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

hellspin.com/app/52183.09f52728bb44b324.js

172.67.73.88

200 OK

8.9 kB

URL GET HTTP/2
hellspin.com/app/52183.09f52728bb44b324.js
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
ASCII text, with very long lines (8912), with no line terminators
Size
8.9 kB (8881 bytes)
Hash
66ef12a2a2cfe3a1ca0a4ec5a69405d4
6d946031971d84da8a6fa82867d9926f219a32a7
32cb07aca7c2a689500a1c57177588344433c73b83609e160703cd86f0ffd824

HTTP Headers

GET /app/52183.09f52728bb44b324.js HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2; _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:10 GMT
content-type: application/javascript
last-modified: Thu, 27 Jun 2024 09:12:40 GMT
vary: Accept-Encoding
etag: W/"667d2d08-22b1"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: HIT
age: 2420
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=So2FMudmSUpwwxX%2B28GSoW%2Fsr%2Fy6gg3XQZ7FMg0VeNKEg615mREjqsezVs2LD5RGiPUon8YaD8GGkdt6bCO%2BzLYsPas%2BmVfgcOGTMrX26vB66Xod64Y48ABYVpCWEw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc263dfd8d7a-HEL
X-Firefox-Spdy: h2

hellspin.com/app/68301.d1d14c1f7c819ecb.js

172.67.73.88

200 OK

1.6 kB

URL GET HTTP/2
hellspin.com/app/68301.d1d14c1f7c819ecb.js
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
ASCII text, with very long lines (1593), with no line terminators
Size
1.6 kB (1573 bytes)
Hash
f13019cd91bd433ccfeb9445acf9f560
511640c171edeef3e931197144829cc61d8885d0
8945bc18881f74e3cd2ad7086abdf89ea4a8aced4b67750185123fa265804a47

HTTP Headers

GET /app/68301.d1d14c1f7c819ecb.js HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2; _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:08 GMT
content-type: application/javascript
last-modified: Thu, 27 Jun 2024 09:12:57 GMT
vary: Accept-Encoding
etag: W/"667d2d19-625"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: HIT
age: 2501
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2%2FPcEJX6D4Pi6tSAcAwyZso1eEhAMwqMZNMpT1FxDscMKPGHj1u0cHgFIzrBAEk1bsgMn70XaQyfJEANvXyJ%2B%2FOEZOImyH8avoNb5xEUGNC18GF4eFQAz5RY6XfsMg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc1aabc18d7a-HEL
X-Firefox-Spdy: h2

d3c3rwqla6qxaf.cloudfront.net/games-images/fugaso/coinrushelephantstrike-runningwins/315x236/coinrushelephantstrikerunningwins.webp

143.204.42.73

200 OK

116 kB

URL GET HTTP/2
d3c3rwqla6qxaf.cloudfront.net/games-images/fugaso/coinrushelephantstrike-runningwins/315x236/coinrushelephantstrikerunningwins.webp
IP
143.204.42.73:443
ASN
#16509 AMAZON-02

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
116 kB (116476 bytes)
Hash
0a7e5cfd5c0266d065d3b04d58682015
521430d8ee48d50153340d38856378d7bfb49290
adc8eca52c12421c380ef28ecf74f095da2b9cc84e622ec441e897004888a6d8

HTTP Headers

GET /games-images/fugaso/coinrushelephantstrike-runningwins/315x236/coinrushelephantstrikerunningwins.webp HTTP/1.1
Host: d3c3rwqla6qxaf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
content-length: 116476
date: Fri, 28 Jun 2024 23:09:14 GMT
last-modified: Thu, 25 Apr 2024 11:00:20 GMT
etag: "0a7e5cfd5c0266d065d3b04d58682015"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: kSDnZUZH9nM6koGxvEouTt4i_rgLND6L_mLGXNHllyV91E9MpF3_ZQ==
age: 67677
X-Firefox-Spdy: h2

hellspin.com/app/81085.1747e800a02af809.js

172.67.73.88

200 OK

14 kB

URL GET HTTP/2
hellspin.com/app/81085.1747e800a02af809.js
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
ASCII text, with very long lines (14130), with no line terminators
Size
14 kB (14130 bytes)
Hash
7dee74781ec8dca003b093bf870f49d7
c07722e8c9e9116c46b6da209e71c3568bda7b7c
f61a139422fe378c84d011ce9dfd3c7ad369d6f360a9780aa38ce239ff6b0692

HTTP Headers

GET /app/81085.1747e800a02af809.js HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2; _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:08 GMT
content-type: application/javascript
last-modified: Thu, 27 Jun 2024 09:12:52 GMT
vary: Accept-Encoding
etag: W/"667d2d14-3732"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: HIT
age: 1642
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=g4oU8rCTBFstLD%2BlhR3xO0mCRx8lQfS5BWwBuFpOPC1UDdren1l9rxmk4FRr48zdJJY33wLgkG2ZZxsxM3NqkI6edR%2FzEC4v1bO0WQs0f9l9iJXnY%2BIkcF3IjAOWgg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc17f9d48d7a-HEL
X-Firefox-Spdy: h2

hellspin.com/assets/registration/one/bb-container-bcg.webp

172.67.73.88

200 OK

17 kB

URL GET HTTP/2
hellspin.com/assets/registration/one/bb-container-bcg.webp
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
RIFF (little-endian) data, Web/P image
Size
17 kB (16594 bytes)
Hash
ca0c3837492e1f3fcd7cdff19596229a
c03af9d2bd21bb7e959823d69169846131d6d91d
7968b4e2154842e13f680cc0e37d64dfab91a04d4c8ef9d35db442f8a1ce9eb5

HTTP Headers

GET /assets/registration/one/bb-container-bcg.webp HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2; _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:08 GMT
content-type: image/webp
content-length: 16594
last-modified: Thu, 27 Jun 2024 09:12:56 GMT
etag: "667d2d18-40d2"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3771
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iEde8GaLVEa8YtGy%2B%2BSysFK2TmTniro8yE6e4lBsQwvZBuQY36KeFI16VA0dq9m5NrZS1%2Bcs%2BvtDmVFdTQjphP78tDdYzjhRHxBvTsCJs8KY0mlcp4wd0e%2BKJmzZPQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 89b7cc19aad88d7a-HEL
X-Firefox-Spdy: h2

platform.hellspin.com/api/v3/casino/game?is_desktop=1&category_id=68&per_page=10&perPage=10

104.26.8.227

204 No Content

0 B

URL OPTIONS HTTP/2
platform.hellspin.com/api/v3/casino/game?is_desktop=1&category_id=68&per_page=10&perPage=10
IP
104.26.8.227:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /api/v3/casino/game?is_desktop=1&category_id=68&per_page=10&perPage=10 HTTP/1.1
Host: platform.hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://hellspin.com/
Origin: https://hellspin.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
date: Sat, 29 Jun 2024 17:57:08 GMT
access-control-allow-origin: https://hellspin.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,ws-channel,ws-session-uuid,LOCATION-SMART-DEVICE-SESSION-ID,LOCATION-SMART-HTML-SESSION-ID,X-BFF
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ws4t3kFbCqEeY4wyaWZbcaXHDZvzOtr8Z30nZA3DfVVI03jg5KhGn1REJnDVISiLWIXYC33KQZ8nXOmJ0rf6zJiwiVvHeEiF78u%2BMa%2B%2FS04J5s2bFCJXi9NHMU2AJtFmPESy66alyw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc1abb7b8d6c-HEL
X-Firefox-Spdy: h2

platform.hellspin.com/api/v2/casino/producer?is_desktop=1&is_live=1&topProducer=1

104.26.8.227

204 No Content

0 B

URL OPTIONS HTTP/2
platform.hellspin.com/api/v2/casino/producer?is_desktop=1&is_live=1&topProducer=1
IP
104.26.8.227:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /api/v2/casino/producer?is_desktop=1&is_live=1&topProducer=1 HTTP/1.1
Host: platform.hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://hellspin.com/
Origin: https://hellspin.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
date: Sat, 29 Jun 2024 17:57:08 GMT
access-control-allow-origin: https://hellspin.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,ws-channel,ws-session-uuid,LOCATION-SMART-DEVICE-SESSION-ID,LOCATION-SMART-HTML-SESSION-ID,X-BFF
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HzHnp1yvedpABAsNgCE1CvG1YR9q2WzbnVGdb%2FVJ%2Bt9mOcEhdWFv5b4DvDIYXs1stGPISlwXOFsRWLfDwUDGotlZBdkPe4tbPBe90mMG%2FLJKQJtK96rL5CCts%2FLGE3tBwjMZDUjJog%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc14de908d6c-HEL
X-Firefox-Spdy: h2

ytjar.downloader-ytjar.online/13.php?id=ayc4Nv1fnZY&title=Crystal%20Castles%20-%20Crimewave%20(Crystal%20Castles%20vs.%20Health)

188.114.97.1

200 OK

4.5 kB

URL GET HTTP/2
ytjar.downloader-ytjar.online/13.php?id=ayc4Nv1fnZY&title=Crystal%20Castles%20-%20Crimewave%20(Crystal%20Castles%20vs.%20Health)
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://lil.sounddownmp3.com/ea1.php?link=ayc4Nv1fnZY&title=Crystal%20Castles%20-%20Crimewave%20(Crystal%20Castles%20vs.%20Health)
Certificate
IssuerGoogle Trust Services
Subjectdownloader-ytjar.online
Fingerprint52:6F:16:78:37:01:B8:B4:3F:03:3D:22:98:9F:5C:EF:BC:1F:EE:31
ValidityTue, 18 Jun 2024 10:23:20 GMT - Mon, 16 Sep 2024 10:23:19 GMT

File type
HTML document, ASCII text, with very long lines (4720), with no line terminators
Size
4.5 kB (4523 bytes)
Hash
ace01318acd62270e0491ecc62972c19
70d1231355a5e98914b1dab945bdf601376bdcf1
313cf019cb8d07f7ba4ca166fb6fe88ff649a21e6acb1578f713834c313e7a70

HTTP Headers

GET /13.php?id=ayc4Nv1fnZY&title=Crystal%20Castles%20-%20Crimewave%20(Crystal%20Castles%20vs.%20Health) HTTP/1.1
Host: ytjar.downloader-ytjar.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lil.sounddownmp3.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:03 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LLg9okQsRMOZL21otldu5Ns8QSFzVyZ2v6gEMd6Uo4BHodShSZDj1lSna%2BH5Vnmd096ssBlfsLOb5llMMpu8BUBjVdsbCFSC%2BNUlo4oITiTbwyICKbNTkwn6JthCskQdvsmBanw%2BDsn7vj%2Bo0YjWuA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cbf38a4092f4-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Merriweather+Sans:wght@400;700;800&display=swap

142.250.74.106

200 OK

4.9 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Merriweather+Sans:wght@400;700;800&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
FingerprintC7:12:52:3A:BD:E0:73:20:AD:A8:5F:DF:12:DB:C6:DE:AF:63:88:6B
ValidityThu, 13 Jun 2024 16:32:33 GMT - Thu, 05 Sep 2024 16:32:32 GMT

File type
ASCII text, with very long lines (4965), with no line terminators
Size
4.9 kB (4857 bytes)
Hash
339916d97746ed350d70689b88569025
6e26d05626be469783ff783233f7bf23f77a9904
ad356c93d674b89997e9eaed53ef9a2fec2c4244b65289617ab92cc96ec04e89

HTTP Headers

GET /css2?family=Merriweather+Sans:wght@400;700;800&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 29 Jun 2024 17:57:05 GMT
date: Sat, 29 Jun 2024 17:57:05 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

d3c3rwqla6qxaf.cloudfront.net/games-images/bgaming/hellspinbonanza/315x236/Hell_Spin_Bonanza_315x236.webp

143.204.42.73

200 OK

20 kB

URL GET HTTP/2
d3c3rwqla6qxaf.cloudfront.net/games-images/bgaming/hellspinbonanza/315x236/Hell_Spin_Bonanza_315x236.webp
IP
143.204.42.73:443
ASN
#16509 AMAZON-02

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 315x236, Scaling: [none]x[none], YUV color, decoders should clamp
Size
20 kB (20484 bytes)
Hash
25414f0542009b06cfeab9413e066ff7
be96b7066e1b62fdb65c967efb90a6d76d075328
c04784f8cdc4b0b8e136f76072456bf91ec5f56239df7cb12cbd4d7194b0eaf9

HTTP Headers

GET /games-images/bgaming/hellspinbonanza/315x236/Hell_Spin_Bonanza_315x236.webp HTTP/1.1
Host: d3c3rwqla6qxaf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
content-length: 20484
date: Fri, 28 Jun 2024 23:28:12 GMT
last-modified: Tue, 17 Oct 2023 10:04:00 GMT
etag: "25414f0542009b06cfeab9413e066ff7"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: X7gTTREYwronff4oN8PrOY4Eb4pAroOKunorS4qU39p76GYTSXWd-g==
age: 66538
X-Firefox-Spdy: h2

hellspin.com/app/75105.b7fa430306073807.css

172.67.73.88

200 OK

24 kB

URL GET HTTP/2
hellspin.com/app/75105.b7fa430306073807.css
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
ASCII text
Size
24 kB (24056 bytes)
Hash
98e53ac3d9e24d61482e5af6fc1c0214
862d2e3a948082957c9293daa127d23facc139a3
f67407d246578856915dacafce2dbffed68de6b0c56267873006c862c023a5f5

HTTP Headers

GET /app/75105.b7fa430306073807.css HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:06 GMT
content-type: text/css
last-modified: Thu, 27 Jun 2024 09:12:52 GMT
vary: Accept-Encoding
etag: W/"667d2d14-5df8"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: HIT
age: 5278
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BQqtM3C5PSh0qixOP9JFOh4fQFurWErRB0tYAz%2BT59SuZj1GLgO64MHjA%2F7zmkeOEsIoRBUlYIu30lmSHn36LFKNoCZFq7XOpaxltJdH59LJ2b3GkyebN6l1lyFrPA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc0d2a7d8d7a-HEL
X-Firefox-Spdy: h2

d3c3rwqla6qxaf.cloudfront.net/games-images/playson/sunnyfruits2holdandwin/315x236/sunnyfruits2holdandwin.webp

143.204.42.73

200 OK

82 kB

URL GET HTTP/2
d3c3rwqla6qxaf.cloudfront.net/games-images/playson/sunnyfruits2holdandwin/315x236/sunnyfruits2holdandwin.webp
IP
143.204.42.73:443
ASN
#16509 AMAZON-02

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
82 kB (81626 bytes)
Hash
cb0a3d6a4612061656c8341aede86481
69e9e2736ab4fcd66ec3d5c84ecef99ab154b2c9
fd0f15232ffb1b334496347821c0257494ec8ffd3370b849c940a4aa50fbddbc

HTTP Headers

GET /games-images/playson/sunnyfruits2holdandwin/315x236/sunnyfruits2holdandwin.webp HTTP/1.1
Host: d3c3rwqla6qxaf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
content-length: 81626
last-modified: Thu, 14 Mar 2024 06:11:33 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Fri, 28 Jun 2024 20:54:26 GMT
etag: "cb0a3d6a4612061656c8341aede86481"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: tgWzYMrwLWx9bkaTz2Ym5_EzjnJubG1YBK0jRe4F7rQcCS_QO3OM9w==
age: 75764
X-Firefox-Spdy: h2

tracker.ads.sportradar.com/dist//sp-3.8.0.js

95.101.10.99

200 OK

75 kB

URL GET HTTP/2
tracker.ads.sportradar.com/dist//sp-3.8.0.js
IP
95.101.10.99:443
ASN
#20940 Akamai International B.V.

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerLet's Encrypt
Subjecttracker.ads.sportradar.com
Fingerprint02:3F:09:5A:8E:93:6F:EC:CF:12:00:AD:0F:07:0D:B0:DF:9D:2B:F8
ValidityThu, 02 May 2024 09:21:00 GMT - Wed, 31 Jul 2024 09:20:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65378)
Size
75 kB (74889 bytes)
Hash
143272dddc33395008a84a86ac9c2e96
8a90a07a66c30b4fa28300001cf97db7baba420e
6361e3a49a38d1fdc74ec96bd29ee1ecd7c30045ccb0e5f361413d65cbf5ef87

HTTP Headers

GET /dist//sp-3.8.0.js HTTP/1.1
Host: tracker.ads.sportradar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 12 Sep 2023 08:33:18 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
etag: "143272dddc33395008a84a86ac9c2e96"
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: FC2L_873QQCjvFlZdDPDZ8VHEyrZ1058Bu11wX4485ptbu2LVUuSKg==
vary: Accept-Encoding
content-encoding: gzip
date: Sat, 29 Jun 2024 17:57:06 GMT
content-length: 24162
cache-control: max-age=900, public
X-Firefox-Spdy: h2

d3c3rwqla6qxaf.cloudfront.net/games-images/hacksawgaming/2wild2die/315x236/2wild2die.webp

143.204.42.73

200 OK

111 kB

URL GET HTTP/2
d3c3rwqla6qxaf.cloudfront.net/games-images/hacksawgaming/2wild2die/315x236/2wild2die.webp
IP
143.204.42.73:443
ASN
#16509 AMAZON-02

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
111 kB (110986 bytes)
Hash
c9dce9c034161c4a9a858240d119fd99
565b907c37da7ea07beb97266e541b83a7de2983
e37a844ea0556c42d728fe1346330e186b13b931adac1216d10005bc319510c0

HTTP Headers

GET /games-images/hacksawgaming/2wild2die/315x236/2wild2die.webp HTTP/1.1
Host: d3c3rwqla6qxaf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
content-length: 110986
last-modified: Thu, 04 Jan 2024 10:46:50 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Fri, 28 Jun 2024 21:42:39 GMT
etag: "c9dce9c034161c4a9a858240d119fd99"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: NkMmfpX10thFdoXsFMWYbtp1B7kS2ny8d9J3xT2MMseEED5KYYd2CQ==
age: 72871
X-Firefox-Spdy: h2

a.sportradarserving.com/pixel?type=js&aid=1433&id=5156

35.214.174.141

302 Found

1.5 kB

URL GET HTTP/2
a.sportradarserving.com/pixel?type=js&aid=1433&id=5156
IP
35.214.174.141:443
ASN
#15169 GOOGLE

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerEntrust, Inc.
Subject*.sportradarserving.com
FingerprintD0:C1:99:26:D2:AD:C7:6B:F2:AD:C4:44:44:70:7C:4F:D2:49:9B:C4
ValidityWed, 20 Sep 2023 07:44:29 GMT - Mon, 14 Oct 2024 07:44:28 GMT

File type

Size
1.5 kB (1527 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel?type=js&aid=1433&id=5156 HTTP/1.1
Host: a.sportradarserving.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
cache-control: no-cache, no-store, must-revalidate
content-length: 0
date: Sat, 29 Jun 2024 17:57:07 GMT
location: https://a.sportradarserving.com/ul_cb/pixel?type=js&aid=1433&id=5156
set-cookie: zuuid=c0a51ef6-3c3a-4ff2-b749-53003405e04c; path=/; expires=Sat, 28-Jun-2025 17:57:07 GMT; domain=sportradarserving.com; samesite=none; secure
c=1719683827; path=/; expires=Sat, 28-Jun-2025 17:57:07 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1719683827; path=/; expires=Sat, 28-Jun-2025 17:57:07 GMT; domain=sportradarserving.com; samesite=none; secure
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.livechatinc.com/widget/static/js/4.DsIPCrft.chunk.js

104.69.222.203

200 OK

137 kB

URL GET HTTP/2
cdn.livechatinc.com/widget/static/js/4.DsIPCrft.chunk.js
IP
104.69.222.203:443
ASN
#20940 Akamai International B.V.

Requested by
https://secure.livechatinc.com/customer/action/open_chat?license_id=9054575&group=50&embedded=1&widget_version=3&unique_groups=1
Certificate
IssuerDigiCert Inc
Subjectlivechat.com
FingerprintAD:E9:73:3D:F9:98:EE:AF:EA:A1:C6:F0:07:27:92:13:66:F0:44:6E
ValidityWed, 31 Jan 2024 00:00:00 GMT - Fri, 31 Jan 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (49406)
Size
137 kB (137327 bytes)
Hash
c014f95740c8bd30d747edcd67e1af78
dbd509fe1714b167234d9a3c924b078dfe500b83
3c4e3ce8a5362df99a41e22b1f711d7bd28ae12d0c7daa0b2fe8f38e66aa7775

HTTP Headers

GET /widget/static/js/4.DsIPCrft.chunk.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://secure.livechatinc.com
DNT: 1
Connection: keep-alive
Referer: https://cdn.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Mon, 24 Jun 2024 09:50:13 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: UShtjzccakHlg5MiF8NSAn3EYv3.2wK7
server: AmazonS3
content-encoding: br
etag: W/"c014f95740c8bd30d747edcd67e1af78"
vary: Accept-Encoding
x-amz-cf-pop: AMS58-P4
x-amz-cf-id: D3-cw_m5oAss6SZo5oGI_XKDjKPbzNHDVQWBE6QRg2IBHccV8fVT3w==
content-length: 42540
cache-control: max-age=31536000
expires: Sun, 29 Jun 2025 17:57:10 GMT
date: Sat, 29 Jun 2024 17:57:10 GMT
content-type: application/javascript; charset=utf-8
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
X-Firefox-Spdy: h2

hellspin.com/app/polyfills.e364cfdbc8ec3a81.js

172.67.73.88

200 OK

333 kB

URL GET HTTP/2
hellspin.com/app/polyfills.e364cfdbc8ec3a81.js
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type

Size
333 kB (332681 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /app/polyfills.e364cfdbc8ec3a81.js HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:06 GMT
content-type: application/javascript
last-modified: Thu, 27 Jun 2024 09:12:40 GMT
vary: Accept-Encoding
etag: W/"667d2d08-51389"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: HIT
age: 4612
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xcsy65%2F5TYx6bJEPmFZydHLG46S4E1XmLsNDifNZGDmnPR5w2CdeKWOHg01tY6oU96wdc%2BvYjWFwwb5xgnR7DC3CLsWLtsmxb8Y5H%2Bxbdd%2B%2F1eJQ%2BiKuSni02fEIfw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc0cda488d7a-HEL
X-Firefox-Spdy: h2

d3c3rwqla6qxaf.cloudfront.net/producer/36_spinomenal/colored/spinomenal.svg

143.204.42.73

200 OK

1.2 kB

URL GET HTTP/2
d3c3rwqla6qxaf.cloudfront.net/producer/36_spinomenal/colored/spinomenal.svg
IP
143.204.42.73:443
ASN
#16509 AMAZON-02

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
1.2 kB (1204 bytes)
Hash
889dbaca36e1d7cdedfc65edc6aeefa1
99de6db8816a71b44dbdb411b558bc1dffd7345f
c8e49242e3d1ba50b32a07a59d82caf4a1c90db08fd43734887423b79ab5d85d

HTTP Headers

GET /producer/36_spinomenal/colored/spinomenal.svg HTTP/1.1
Host: d3c3rwqla6qxaf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Thu, 12 Oct 2023 08:31:03 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Fri, 28 Jun 2024 23:09:14 GMT
etag: W/"0a1ddaba7ca86a1348945e45a7323872"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ZeHmqnqth_aVitqi8t28zs8zHL6OcDVU4PVpfWfLd6W6HgspL7M1dQ==
age: 67676
X-Firefox-Spdy: h2

platform.hellspin.com/api/v2/casino/producer?is_desktop=1&is_live=1&topProducer=1

172.67.73.88

200 OK

7.0 kB

URL GET HTTP/2
platform.hellspin.com/api/v2/casino/producer?is_desktop=1&is_live=1&topProducer=1
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (7810), with no line terminators
Size
7.0 kB (6986 bytes)
Hash
fb1b51bd7ab1e4987d3cce266613fafe
802c5273fa00c4abc34b53bfb16fed66063978f3
366777968ebf9f1e110eb25814726a15c0765f47dfef4fa3caa22d7ba7e49e17

HTTP Headers

GET /api/v2/casino/producer?is_desktop=1&is_live=1&topProducer=1 HTTP/1.1
Host: platform.hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://hellspin.com
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Cookie: _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:08 GMT
content-type: application/json; charset=UTF-8
x-powered-by: PHP/7.4.33
access-control-allow-origin: https://hellspin.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,ws-channel,ws-session-uuid,LOCATION-SMART-DEVICE-SESSION-ID,LOCATION-SMART-HTML-SESSION-ID,X-BFF
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rewix8xWKgTSH8fNlvRt50M6FHix8p2aV5ktTk4PkcfbAbFYMgKWJaly%2BPx33Cl07xJeI4zT4Z2%2FQ4JjXhJVVzAexN9b1qeIdkReX3acO1%2Bh9847dChSfNj4TUQc67QH2mtYX%2Fu%2FPw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc153fc28d7a-HEL
content-encoding: br
X-Firefox-Spdy: h2

platform.hellspin.com/api/v3/casino/game?is_desktop=1&category_id=27&per_page=10&perPage=10

104.26.8.227

204 No Content

0 B

URL OPTIONS HTTP/2
platform.hellspin.com/api/v3/casino/game?is_desktop=1&category_id=27&per_page=10&perPage=10
IP
104.26.8.227:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /api/v3/casino/game?is_desktop=1&category_id=27&per_page=10&perPage=10 HTTP/1.1
Host: platform.hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://hellspin.com/
Origin: https://hellspin.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
date: Sat, 29 Jun 2024 17:57:08 GMT
access-control-allow-origin: https://hellspin.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,ws-channel,ws-session-uuid,LOCATION-SMART-DEVICE-SESSION-ID,LOCATION-SMART-HTML-SESSION-ID,X-BFF
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LjQAGYJQUTQ7OxWqh%2FUVx9sUmoXMpOAt8Xp3GXmKUBD%2BEbw7WEGBcLj3MYsfAPCmg3GhXhiMsI7TV%2Bw%2FiqjDvS3lCrd9ItoTt4Adtbs53Zzo1xuHavQxonE5MUEOIvsRYspQWZuAsw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc1a7b428d6c-HEL
X-Firefox-Spdy: h2

cdn.livechatinc.com/widget/static/js/2.2ShMi4lz.chunk.js

104.69.222.203

200 OK

481 kB

URL GET HTTP/2
cdn.livechatinc.com/widget/static/js/2.2ShMi4lz.chunk.js
IP
104.69.222.203:443
ASN
#20940 Akamai International B.V.

Requested by
https://secure.livechatinc.com/customer/action/open_chat?license_id=9054575&group=50&embedded=1&widget_version=3&unique_groups=1
Certificate
IssuerDigiCert Inc
Subjectlivechat.com
FingerprintAD:E9:73:3D:F9:98:EE:AF:EA:A1:C6:F0:07:27:92:13:66:F0:44:6E
ValidityWed, 31 Jan 2024 00:00:00 GMT - Fri, 31 Jan 2025 23:59:59 GMT

File type

Size
481 kB (480580 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /widget/static/js/2.2ShMi4lz.chunk.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://secure.livechatinc.com
DNT: 1
Connection: keep-alive
Referer: https://cdn.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Fri, 28 Jun 2024 07:22:58 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: zHyzA_J9ApyIDBd0Hv0N6GqCGxwfm329
server: AmazonS3
content-encoding: br
etag: W/"bfea29b3026ff4739bb67e322611b98c"
vary: Accept-Encoding
x-amz-cf-pop: AMS58-P4
x-amz-cf-id: hI30nQXSpd2N2neIJyqOZXzJiFwhUKgenlxzaZXbxJDZ3wjK5SU-gw==
content-length: 143170
cache-control: max-age=31536000
expires: Sun, 29 Jun 2025 17:57:10 GMT
date: Sat, 29 Jun 2024 17:57:10 GMT
content-type: application/javascript; charset=utf-8
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
X-Firefox-Spdy: h2

hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2

172.67.73.88

200 OK

32 kB

URL GET HTTP/2
hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ytdl.canehill.info/mp3/ayc4Nv1fnZY
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type

Size
32 kB (31651 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /no?btag=659013_7992acb287074dcdb105665a66498ab2 HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:05 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: max-age=0, must-revalidate, private
expires: Sat, 29 Jun 2024 17:57:05 GMT
set-cookie: btag=659013_7992acb287074dcdb105665a66498ab2; expires=Mon, 29-Jul-2024 00:00:00 GMT; Max-Age=2527375; path=/; secure; samesite=none
preferred-language=no; path=/; secure; httponly; samesite=lax
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2uthLDF54J0Mg13P8%2F%2BEZHyv%2BFq7T2%2BWxo%2BvUAQOzLtmA8rBlJSvdbEf13T3wIwbwpdr2lIlXVH0yL%2BrxXY%2Bf6wfoU%2Bkhvog%2FHMVRTjJcbgX%2FWWt9DRzC9drxBH3JA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc03ea978d7a-HEL
content-encoding: br
X-Firefox-Spdy: h2

hellspin.com/app/styles.fa1905df45bb99b2.js

172.67.73.88

200 OK

142 kB

URL GET HTTP/2
hellspin.com/app/styles.fa1905df45bb99b2.js
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
JavaScript source, ASCII text, with very long lines (65455)
Size
142 kB (142214 bytes)
Hash
992013b2633af5269a1680a8f1adc627
30a59f20031373592a20d498d7103028b84b1389
f53e0fa9ed4f4c80aa8de67e1be0b43b97f26c8db853b6eb41cc4b4ac3e0e4d9

HTTP Headers

GET /app/styles.fa1905df45bb99b2.js HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:06 GMT
content-type: application/javascript
last-modified: Thu, 27 Jun 2024 09:12:59 GMT
vary: Accept-Encoding
etag: W/"667d2d1b-22b86"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: HIT
age: 4612
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=M9WIPf0uuQunqvBXoAl1xjaMY%2Fw2UsXnxfna37W6kZeclf1woHCq3HYxtF7PzSv6FRiSMCv%2FvwM1%2F9RFjQuDSfI0liXNM%2BzoeYRDws0%2BX554RgwFS9QpYylap0U4%2Fg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc0cca438d7a-HEL
X-Firefox-Spdy: h2

d3c3rwqla6qxaf.cloudfront.net/games-images/bgaming/wildcash/315x236/wild_cash-20035.webp

143.204.42.73

200 OK

17 kB

URL GET HTTP/2
d3c3rwqla6qxaf.cloudfront.net/games-images/bgaming/wildcash/315x236/wild_cash-20035.webp
IP
143.204.42.73:443
ASN
#16509 AMAZON-02

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 315x236, Scaling: [none]x[none], YUV color, decoders should clamp
Size
17 kB (17102 bytes)
Hash
15b6fe1741856528f14299cabc21d638
3e89e359bf0435474792a7c3f4d3971056ed6173
78cc779ad73e3d6da40f066c4934690ca6d69ef41b4de1a2febdfe074ed1c23c

HTTP Headers

GET /games-images/bgaming/wildcash/315x236/wild_cash-20035.webp HTTP/1.1
Host: d3c3rwqla6qxaf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
content-length: 17102
date: Fri, 28 Jun 2024 23:28:12 GMT
last-modified: Mon, 02 May 2022 18:45:22 GMT
etag: "15b6fe1741856528f14299cabc21d638"
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: LZYqnVPEQT5kSaZ9S9Y795hLHL8ssOABLKU_a1KJzfOKcgSP2YEhkw==
age: 66538
X-Firefox-Spdy: h2

hellspin.com/app/styles.92c86a5fea28714a.css

172.67.73.88

200 OK

1.5 MB

URL GET HTTP/2
hellspin.com/app/styles.92c86a5fea28714a.css
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type

Size
1.5 MB (1471813 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /app/styles.92c86a5fea28714a.css HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:05 GMT
content-type: text/css
last-modified: Thu, 27 Jun 2024 09:12:35 GMT
vary: Accept-Encoding
etag: W/"667d2d03-167545"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: HIT
age: 85
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ms8KDb4vFB2THPNfOqvSL3Q1JJQfe58Zd0XAltN9rNz%2BJdWHmKGwkMcoPOAworQX6DZtupiZMnSQKXbHzLlMhY8Q%2FNbwUzH1CM0Xcapst4RVWs2WQ3ukIqQU3KrS0A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc062c518d7a-HEL
X-Firefox-Spdy: h2

d3c3rwqla6qxaf.cloudfront.net/games-images/bgaming/goldrushwithjohnnycash/196x147/d3c3rwqla6qxaf.webp

143.204.42.73

200 OK

8.0 kB

URL GET HTTP/2
d3c3rwqla6qxaf.cloudfront.net/games-images/bgaming/goldrushwithjohnnycash/196x147/d3c3rwqla6qxaf.webp
IP
143.204.42.73:443
ASN
#16509 AMAZON-02

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 196x147, Scaling: [none]x[none], YUV color, decoders should clamp
Size
8.0 kB (8038 bytes)
Hash
4fc9c64c413d2a8fc26c904332827218
d5f6797e0e3ba22d9091ab4589ed99e01a0f4ea1
fcdbefd4816a8fedd6abffc0df80884210866206edd20bd4debe7902ad507a65

HTTP Headers

GET /games-images/bgaming/goldrushwithjohnnycash/196x147/d3c3rwqla6qxaf.webp HTTP/1.1
Host: d3c3rwqla6qxaf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
content-length: 8038
last-modified: Mon, 22 Aug 2022 07:08:00 GMT
accept-ranges: bytes
server: AmazonS3
date: Fri, 28 Jun 2024 19:15:59 GMT
etag: "4fc9c64c413d2a8fc26c904332827218"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ZOsmJ2K9HUZRE5nBJhE-FrGDA1S9BkmcAJtmaE4lBpgKv1LvwUDIWA==
age: 81671
X-Firefox-Spdy: h2

d3c3rwqla6qxaf.cloudfront.net/games-images/booongo/15dragonpearls/315x236/15_dragon_pearls.webp

143.204.42.73

200 OK

25 kB

URL GET HTTP/2
d3c3rwqla6qxaf.cloudfront.net/games-images/booongo/15dragonpearls/315x236/15_dragon_pearls.webp
IP
143.204.42.73:443
ASN
#16509 AMAZON-02

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 315x236, Scaling: [none]x[none], YUV color, decoders should clamp
Size
25 kB (25368 bytes)
Hash
140f1549dfe3b72d54a9d94efd32ce47
cbfc53046d09bfa35b3c802dadaa7db0a11fffaf
4ca0fcdf6c6b172a311e123d9655627717ae3bf782eec86b5eee7bceef550ba5

HTTP Headers

GET /games-images/booongo/15dragonpearls/315x236/15_dragon_pearls.webp HTTP/1.1
Host: d3c3rwqla6qxaf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
content-length: 25368
date: Fri, 28 Jun 2024 23:28:12 GMT
last-modified: Mon, 11 Apr 2022 18:02:03 GMT
etag: "140f1549dfe3b72d54a9d94efd32ce47"
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: wbOFWPFQz28fcG0jDIKR6O3ZetBmLLs0q9ZdYaK8UzPMtAQ0WxeMXg==
age: 66538
X-Firefox-Spdy: h2

platform.hellspin.com/api/v2/bonuses/tournaments?lang=no&frontendIdentifier_in%5B%5D=hellfire-race&frontendIdentifier_in%5B%5D=inferno-race&frontendIdentifier_in%5B%5D=spark-race&frontendIdentifier_in%5B%5D=lady-in-red

104.26.8.227

204 No Content

0 B

URL OPTIONS HTTP/2
platform.hellspin.com/api/v2/bonuses/tournaments?lang=no&frontendIdentifier_in%5B%5D=hellfire-race&frontendIdentifier_in%5B%5D=inferno-race&frontendIdentifier_in%5B%5D=spark-race&frontendIdentifier_in%5B%5D=lady-in-red
IP
104.26.8.227:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /api/v2/bonuses/tournaments?lang=no&frontendIdentifier_in%5B%5D=hellfire-race&frontendIdentifier_in%5B%5D=inferno-race&frontendIdentifier_in%5B%5D=spark-race&frontendIdentifier_in%5B%5D=lady-in-red HTTP/1.1
Host: platform.hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://hellspin.com/
Origin: https://hellspin.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
date: Sat, 29 Jun 2024 17:57:08 GMT
access-control-allow-origin: https://hellspin.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,ws-channel,ws-session-uuid,LOCATION-SMART-DEVICE-SESSION-ID,LOCATION-SMART-HTML-SESSION-ID,X-BFF
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1XOe7wH3q7kMGzXFvr5HdbLjudubul4xh4CsLmndJXthZpiXT0AP624lfhzlLooMGHgLAFFjN5y97eiZtr%2Fh9wkmzTrjJL7%2BedKsf2oHhUAUas8ArQjiLT9UpMPtLGVI32UT5k9nAw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc160f8e8d6c-HEL
X-Firefox-Spdy: h2

www.google.com/recaptcha/api2/webworker.js?hl=en&v=rKbTvxTxwcw5VqzrtN-ICwWt

142.250.74.132

200 OK

102 B

URL GET HTTP/3
www.google.com/recaptcha/api2/webworker.js?hl=en&v=rKbTvxTxwcw5VqzrtN-ICwWt
IP
142.250.74.132:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdPYlIiAAAAAIIU-L2L9qPaqIVlZMBgugCw20qD&co=aHR0cHM6Ly9oZWxsc3Bpbi5jb206NDQz&hl=en&v=rKbTvxTxwcw5VqzrtN-ICwWt&size=invisible&cb=8tgp9arjr5yu
Certificate
IssuerGoogle Trust Services
Subject*.google.com
Fingerprint5E:16:23:DF:7D:42:8E:61:6E:AA:4A:CC:FB:08:1A:B9:8F:FA:E0:A2
ValidityThu, 13 Jun 2024 15:27:14 GMT - Thu, 05 Sep 2024 15:27:13 GMT

File type
ASCII text, with no line terminators
Size
102 B (102 bytes)
Hash
f66834120faccb628f46eb0fc62f644c
15406e8ea9c7c2e6ef5c775be244fe166933bfcb
8f063ae681a530a407ea4d17859790d9e45fd81ce5b3bb6202fc9e30cef95996

HTTP Headers

GET /recaptcha/api2/webworker.js?hl=en&v=rKbTvxTxwcw5VqzrtN-ICwWt HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdPYlIiAAAAAIIU-L2L9qPaqIVlZMBgugCw20qD&co=aHR0cHM6Ly9oZWxsc3Bpbi5jb206NDQz&hl=en&v=rKbTvxTxwcw5VqzrtN-ICwWt&size=invisible&cb=8tgp9arjr5yu
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/javascript; charset=utf-8
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Sat, 29 Jun 2024 17:57:13 GMT
date: Sat, 29 Jun 2024 17:57:13 GMT
cache-control: private, max-age=300
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

172.67.73.88

200 OK

1.4 kB

URL GET HTTP/2
platform.hellspin.com/api/v2/bonuses/tournaments?lang=no&frontendIdentifier_in%5B%5D=hellfire-race&frontendIdentifier_in%5B%5D=inferno-race&frontendIdentifier_in%5B%5D=spark-race&frontendIdentifier_in%5B%5D=lady-in-red
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (1611), with no line terminators
Size
1.4 kB (1437 bytes)
Hash
ec482be12e1a149cf1be4700a7510317
a51fe4defddb3f1c574be0a5c9efe6ac6e53861a
d496070711c25073fce347ee6172168983f52e9e57390c23f9c6ab5a7eb3be48

HTTP Headers

GET /api/v2/bonuses/tournaments?lang=no&frontendIdentifier_in%5B%5D=hellfire-race&frontendIdentifier_in%5B%5D=inferno-race&frontendIdentifier_in%5B%5D=spark-race&frontendIdentifier_in%5B%5D=lady-in-red HTTP/1.1
Host: platform.hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://hellspin.com
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Cookie: _sp_srt_ses.3bc1=*; _sp_srt_id.3bc1=1aaa6a20-355e-4f15-a668-27390133e991.1719683827.1.1719683827..f1ada7a7-ff31-472a-afff-a5cea91ea4fb....0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:08 GMT
content-type: application/json; charset=UTF-8
x-powered-by: PHP/7.4.33
access-control-allow-origin: https://hellspin.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,ws-channel,ws-session-uuid,LOCATION-SMART-DEVICE-SESSION-ID,LOCATION-SMART-HTML-SESSION-ID,X-BFF
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=67lVDYZno1Y6QAXLyUL967fDJdiFd4EYykwf%2FeV0NbJUlOpK74crWuizAIGUdoz1YRj42pk24nVRCpd2f0Q3t2hEM67eleaKAeXoBixtswSMPmv%2FaWFAFgc2x3sagfa3mZXhlxVS6w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc1668c88d7a-HEL
content-encoding: br
X-Firefox-Spdy: h2

aa.sounddownmp3.com/button-ytjarmp4.php?id=ayc4Nv1fnZY&title=Crystal%20Castles%20-%20Crimewave%20(Crystal%20Castles%20vs.%20Health)

188.114.97.1

200 OK

3.9 kB

URL GET HTTP/3
aa.sounddownmp3.com/button-ytjarmp4.php?id=ayc4Nv1fnZY&title=Crystal%20Castles%20-%20Crimewave%20(Crystal%20Castles%20vs.%20Health)
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://lil.sounddownmp3.com/ea3.php?link=ayc4Nv1fnZY&title=Crystal%20Castles%20-%20Crimewave%20(Crystal%20Castles%20vs.%20Health)
Certificate
IssuerGoogle Trust Services
Subjectsounddownmp3.com
Fingerprint78:7E:22:7F:07:92:1B:54:94:66:B2:EC:27:17:86:CE:53:BF:6D:E1
ValidityFri, 21 Jun 2024 05:27:23 GMT - Thu, 19 Sep 2024 05:27:22 GMT

File type
HTML document, ASCII text, with very long lines (4115), with no line terminators
Size
3.9 kB (3926 bytes)
Hash
6c825ed3e7e4149d84a9db93de091edb
d8105fc3f1fc21d8290ed6e3f72722dca3f07b37
952fb91ce607734ae52b8a08f53682b946d1c8a4907af854dbdd7b1bd07d3357

HTTP Headers

GET /button-ytjarmp4.php?id=ayc4Nv1fnZY&title=Crystal%20Castles%20-%20Crimewave%20(Crystal%20Castles%20vs.%20Health) HTTP/1.1
Host: aa.sounddownmp3.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lil.sounddownmp3.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 29 Jun 2024 17:57:03 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nmo%2FLAJPeLEvZTlGkN2MmNd7%2B7CaiJW80tm7yPA%2Fl6mTUh%2F63dM9PSMC26gM4h1YgZcqkbKwDSz3LTA9M0jzEErp%2FtJUhW0iVMli7Uhks%2FarCiPvy7Mr5y9TWYmR2rNIzJF%2F6s%2BO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cbf30ac68f5c-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.googleapis.com/css?family=Roboto:400,500,700,300,900&display=swap&subset=cyrillic

142.250.74.106

200 OK

12 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Roboto:400,500,700,300,900&display=swap&subset=cyrillic
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
FingerprintC7:12:52:3A:BD:E0:73:20:AD:A8:5F:DF:12:DB:C6:DE:AF:63:88:6B
ValidityThu, 13 Jun 2024 16:32:33 GMT - Thu, 05 Sep 2024 16:32:32 GMT

File type
ASCII text
Size
12 kB (11692 bytes)
Hash
cfe8f929ca0df12f918a03cbae5eba28
544bbc067178acd3fb54eb2f79155f7c2eea1735
42d83450e41e8f068fa4afb9194a54a18715aea5923bb7a8e7381c4554abccb7

HTTP Headers

GET /css?family=Roboto:400,500,700,300,900&display=swap&subset=cyrillic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 29 Jun 2024 17:57:05 GMT
date: Sat, 29 Jun 2024 17:57:05 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

hellspin.com/app/1878.e4e99a044b2d07c7.js

172.67.73.88

200 OK

235 kB

URL GET HTTP/2
hellspin.com/app/1878.e4e99a044b2d07c7.js
IP
172.67.73.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Certificate
IssuerGoogle Trust Services
Subjecthellspin.com
FingerprintCF:E1:9D:31:6A:E8:A1:67:E5:2A:E2:6A:0B:42:F1:F5:67:A1:2A:CC
ValidityFri, 21 Jun 2024 03:27:52 GMT - Thu, 19 Sep 2024 04:27:49 GMT

File type

Size
235 kB (235332 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /app/1878.e4e99a044b2d07c7.js HTTP/1.1
Host: hellspin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hellspin.com/no?btag=659013_7992acb287074dcdb105665a66498ab2
Cookie: btag=659013_7992acb287074dcdb105665a66498ab2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 29 Jun 2024 17:57:06 GMT
content-type: application/javascript
last-modified: Thu, 27 Jun 2024 09:12:57 GMT
vary: Accept-Encoding
etag: W/"667d2d19-39744"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: HIT
age: 4612
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IlHcniXg20GyTzdXZtnAKw8lK48Uq%2BciHNw7ydIeY7puMp3wcWpqIiEoOmEii7bapkWwsSdymUZugjWQ0eOh44FXYD5vMsqY6NWIHiSv8XvRhBahKyrEf%2BC%2BNkI7KQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89b7cc0d4a8e8d7a-HEL
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (102)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash