Report - happywithvegas.com/landingpages/vv061

Report Overview

Submitted URL
happywithvegas.com/landingpages/vv061_mg/index.php
IP
172.67.172.46
ASN
#13335 CLOUDFLARENET
Submitted
2023-05-15 11:48:27
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
14

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
happywithvegas.com	385395	2020-10-27	2020-10-29	2023-05-13	18 kB	9.6 MB	172.67.172.46
ocsp.pki.goog	175	2016-06-13	2018-07-01	2023-05-15	1.7 kB	3.5 kB	142.250.74.131
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2023-05-15	1.1 kB	33 kB	142.250.74.35
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2023-05-15	460 B	5.2 kB	142.250.74.106

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator
2023-05-15	medium	happywithvegas.com/landingpages/vv061_mg/index.php
2023-05-15	medium	happywithvegas.com/vv061_mg/index.php
2023-05-15	medium	happywithvegas.com/vv061_mg/js/jquery-3.2.1.min.js
2023-05-15	medium	happywithvegas.com/vv061_mg/img/favicons/apple-icon-180x180.png?en
2023-05-15	medium	happywithvegas.com/vv061_mg/img/favicons/favicon16-24-32-48-64.ico?en
2023-05-15	medium	happywithvegas.com/vv061_mg/img/arrow-down.svg
2023-05-15	medium	happywithvegas.com/vv061_mg/img/world-grid.svg

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (2)

	URL	Size	First Seen	Last Seen
	happywithvegas.com/vv061_mg/js/jquery-3.2.1.min.js	87 kB	2023-03-07	2024-05-02
Pretty URL happywithvegas.com/vv061_mg/js/jquery-3.2.1.min.js IP 172.67.172.46 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:24 Last Seen2024-05-02 18:39:19 Times Seen2208 Hash 473957cfb255a781b42cb2af51d54a3b 67bdacbd077ee59f411109fd119ee9f58db15a5f 75b707d8761e2bfbd25fbd661f290a4f7fd11c48e1bf53a36dc6bd8a0034fa35 Loading...

	happywithvegas.com/vv061_mg/js/main.js?1	5.6 kB	2023-05-11	2023-05-28
Pretty URL happywithvegas.com/vv061_mg/js/main.js?1 IP 172.67.172.46 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-11 10:18:34 Last Seen2023-05-28 23:09:56 Times Seen8 Hash 5596de3ecb64f7d874891fd01bae9461 75abe7b2d883efcc1e186eb478f669a95beba278 24193a0891dd557f0a947badaa7a71aea23941a282663630ea5de8291f6bf36b Loading...

HTTP Transactions (42)

URL IP Response Size

happywithvegas.com/landingpages/vv061_mg/index.php

172.67.172.46

302 Found

480 kB

URL User Request GET HTTP/2
happywithvegas.com/landingpages/vv061_mg/index.php
IP
172.67.172.46:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint89:F8:9F:73:28:16:09:39:9D:54:00:5D:56:66:8F:4E:E4:2E:89:C8
ValiditySun, 28 Aug 2022 00:00:00 GMT - Mon, 28 Aug 2023 23:59:59 GMT

File type
data
Size
480 kB (480326 bytes)
Hash
059787ae5ecfbc0e8c6b9f939472cfbe
e03ed0ca4358b6201ced5d82defa05bfd74c125c
9c137980096d856c2bfafd1e35008b25ed5828d2f1b419c5122a4ac14d15212e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /landingpages/vv061_mg/index.php HTTP/1.1
Host: happywithvegas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Mon, 15 May 2023 11:48:08 GMT
content-type: text/html
location: https://happywithvegas.com/vv061_mg/index.php
x-xss-protection: 1; mode=block
strict-transport-security: max-age=300; includeSubDomains;
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hkk8yYjXcS%2BMSYmJXm0Y6Q0O3QSzk9sk%2FOLSQeBJMUttDPDt6bJ3r5FvQbSn9T2hsyR93fI6ek58vtugJz9r67rTeYq2I16oE%2B%2B1YEDAy0nNz%2FxPaWNCsE%2BwyW3QheORQyyJ1p8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c7b2671caceb523-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

happywithvegas.com/vv061_mg/img/wheel/ca.png

172.67.172.46

200 OK

380 kB

URL GET HTTP/3
happywithvegas.com/vv061_mg/img/wheel/ca.png
IP
172.67.172.46:443
ASN
#13335 CLOUDFLARENET

Requested by
https://happywithvegas.com/vv061_mg/index.php
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint89:F8:9F:73:28:16:09:39:9D:54:00:5D:56:66:8F:4E:E4:2E:89:C8
ValiditySun, 28 Aug 2022 00:00:00 GMT - Mon, 28 Aug 2023 23:59:59 GMT

File type
PNG image data, 872 x 872, 8-bit/color RGBA, non-interlaced\012- data
Size
380 kB (380243 bytes)
Hash
566868d4ec0bd709a9308075342c0d72
46521c9b98e39d678ce031b840e86fbf9089c6c7
930c0aba29d8feea477a49e548bb53a2aeb1c9b842ad831969b15eb753711097

HTTP Headers

GET /vv061_mg/img/wheel/ca.png HTTP/1.1
Host: happywithvegas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happywithvegas.com/vv061_mg/index.php
Cookie: mongo_sess=977b9d360c590729615f1a1124388b0b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 15 May 2023 11:48:08 GMT
content-type: image/png
content-length: 380243
last-modified: Thu, 29 Dec 2022 10:34:41 GMT
etag: "63ad6d41-5cd53"
cache-control: public, no-cache
x-xss-protection: 1; mode=block
strict-transport-security: max-age=300; includeSubDomains;
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0Wdrk%2BPYKc5lQhwxv%2FCkUSPlUOQHWwsPk4ectGQw6bRIqA2rR2JGpKMkw7IBXGdSPhSiUdx6TMOIbOubiuv6lrR4CJpuaf7FYNLQp4hgmpvYuoRDPdTdD%2FtIAusgJG3f7QYow3c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c7b2673ce85b503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

happywithvegas.com/vv061_mg/index.php

172.67.172.46

200 OK

17 kB

URL User Request GET HTTP/2
happywithvegas.com/vv061_mg/index.php
IP
172.67.172.46:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint89:F8:9F:73:28:16:09:39:9D:54:00:5D:56:66:8F:4E:E4:2E:89:C8
ValiditySun, 28 Aug 2022 00:00:00 GMT - Mon, 28 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Size
17 kB (17225 bytes)
Hash
22a75c4dc3074acc260d6641e6f62cb1
f3189ced0e414521e709b85fa66637714635dd38
b01639f92ea4174296c9a735f23b574c991acfac6a627bca5850ab2a79f407fa

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /vv061_mg/index.php HTTP/1.1
Host: happywithvegas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 15 May 2023 11:48:08 GMT
content-type: text/html; charset=UTF-8
set-cookie: mongo_sess=977b9d360c590729615f1a1124388b0b; expires=Tue, 16-May-2023 11:48:08 GMT; Max-Age=86400; path=/; HttpOnly
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-xss-protection: 1; mode=block
strict-transport-security: max-age=300; includeSubDomains;
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=W2Vj79kYrOsUswKk3Q3ZcBOWPy11q1dYr%2FYvS1FIhMZPikn0glffe2wLWTPnuDaM0eeEEA3fQgPXOHXrvL66kVis3cyq4Z0MyTH2jgoLq5zPWr5JndoxBqZNJaDK%2FwlbyJm3RDo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c7b26723b99b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

happywithvegas.com/vv061_mg/img/wheel/us.png

172.67.172.46

200 OK

374 kB

URL GET HTTP/3
happywithvegas.com/vv061_mg/img/wheel/us.png
IP
172.67.172.46:443
ASN
#13335 CLOUDFLARENET

Requested by
https://happywithvegas.com/vv061_mg/index.php
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint89:F8:9F:73:28:16:09:39:9D:54:00:5D:56:66:8F:4E:E4:2E:89:C8
ValiditySun, 28 Aug 2022 00:00:00 GMT - Mon, 28 Aug 2023 23:59:59 GMT

File type
PNG image data, 872 x 872, 8-bit/color RGBA, non-interlaced\012- data
Size
374 kB (374146 bytes)
Hash
8ee021b4bc0cc98ff9f2f50c952f694d
954753c522f41bf7b706903aaad4e86aa7dc936d
25574208155aed5871fa9c69ca6ad8206771d0ce05b8a36150959fb51228b568

HTTP Headers

GET /vv061_mg/img/wheel/us.png HTTP/1.1
Host: happywithvegas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happywithvegas.com/vv061_mg/index.php
Cookie: mongo_sess=977b9d360c590729615f1a1124388b0b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 15 May 2023 11:48:08 GMT
content-type: image/png
content-length: 374146
last-modified: Thu, 29 Dec 2022 10:21:59 GMT
etag: "63ad6a47-5b582"
cache-control: public, no-cache
x-xss-protection: 1; mode=block
strict-transport-security: max-age=300; includeSubDomains;
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2iTEqCdDsr%2BvJNMkkDGVvX1SVBdUG5IKg%2FyY0NlzJ7S%2FpL%2B3w%2FyZYzWT2dKPhaWr01FGKlFmvPzXlY2sU3XvZfult2nA%2FQWfujFTLYfnjDHAmqqEalao5VugQlO1ScT%2BQYXSQBQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c7b2673ce7fb503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

happywithvegas.com/vv061_mg/img/wheel/kz.png

172.67.172.46

200 OK

386 kB

URL GET HTTP/3
happywithvegas.com/vv061_mg/img/wheel/kz.png
IP
172.67.172.46:443
ASN
#13335 CLOUDFLARENET

Requested by
https://happywithvegas.com/vv061_mg/index.php
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint89:F8:9F:73:28:16:09:39:9D:54:00:5D:56:66:8F:4E:E4:2E:89:C8
ValiditySun, 28 Aug 2022 00:00:00 GMT - Mon, 28 Aug 2023 23:59:59 GMT

File type
PNG image data, 872 x 872, 8-bit/color RGBA, non-interlaced\012- data
Size
386 kB (386529 bytes)
Hash
115ddc36fc7d483051b36fc082eeadf2
b40b147ce09043db0ccc5be2dd56770fd86c0e1f
15fb1dedc07c29c2821203fea12967d25eb205db699855fa5c80ec3d395b8ffd

HTTP Headers

GET /vv061_mg/img/wheel/kz.png HTTP/1.1
Host: happywithvegas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happywithvegas.com/vv061_mg/index.php
Cookie: mongo_sess=977b9d360c590729615f1a1124388b0b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 15 May 2023 11:48:08 GMT
content-type: image/png
content-length: 386529
last-modified: Thu, 29 Dec 2022 10:37:41 GMT
etag: "63ad6df5-5e5e1"
cache-control: public, no-cache
x-xss-protection: 1; mode=block
strict-transport-security: max-age=300; includeSubDomains;
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NUH58lCvfNu2HJ4odoHs8jxTxE22zbLJUD7J%2FaXgFkhUc7mWraJ2yPoMdPwssH3vroyizRZjDDa0gQgH%2FQ%2Fl17aZoobDJUHTK0iqM71glVYzkFE97fWoEZ55H6woFL11Xef9D1M%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c7b2673de87b503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

happywithvegas.com/vv061_mg/img/wheel/dk.png

172.67.172.46

200 OK

378 kB

URL GET HTTP/3
happywithvegas.com/vv061_mg/img/wheel/dk.png
IP
172.67.172.46:443
ASN
#13335 CLOUDFLARENET

Requested by
https://happywithvegas.com/vv061_mg/index.php
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint89:F8:9F:73:28:16:09:39:9D:54:00:5D:56:66:8F:4E:E4:2E:89:C8
ValiditySun, 28 Aug 2022 00:00:00 GMT - Mon, 28 Aug 2023 23:59:59 GMT

File type
PNG image data, 872 x 872, 8-bit/color RGBA, non-interlaced\012- data
Size
378 kB (378120 bytes)
Hash
5001fd0a61b588a8901eb48bb4cc768a
73ac99f8226cc2160a802512a865d7839b8135aa
5f9145f649fd785d3b23f2face3fea00e58b4d723ca98811494b41c32627cabe

HTTP Headers

GET /vv061_mg/img/wheel/dk.png HTTP/1.1
Host: happywithvegas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happywithvegas.com/vv061_mg/index.php
Cookie: mongo_sess=977b9d360c590729615f1a1124388b0b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 15 May 2023 11:48:08 GMT
content-type: image/png
content-length: 378120
last-modified: Thu, 29 Dec 2022 09:45:21 GMT
etag: "63ad61b1-5c508"
cache-control: public, no-cache
x-xss-protection: 1; mode=block
strict-transport-security: max-age=300; includeSubDomains;
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VQsMx4Vx5SzdeNVCmLeQhmIe2vn8eM9p5DMASG4KHStFkz3xYGBkIXBCfV6s0406rN0ovOi5ARCAEzH0Hib82ImZuIbncv5qGaOvs2hCeCuxpljPYiTIFhy5cp7nOSB%2Bi7azgyg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c7b2673de8bb503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

happywithvegas.com/vv061_mg/img/wheel/en.png

172.67.172.46

200 OK

471 kB

URL GET HTTP/3
happywithvegas.com/vv061_mg/img/wheel/en.png
IP
172.67.172.46:443
ASN
#13335 CLOUDFLARENET

Requested by
https://happywithvegas.com/vv061_mg/index.php
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint89:F8:9F:73:28:16:09:39:9D:54:00:5D:56:66:8F:4E:E4:2E:89:C8
ValiditySun, 28 Aug 2022 00:00:00 GMT - Mon, 28 Aug 2023 23:59:59 GMT

File type
PNG image data, 872 x 872, 8-bit/color RGBA, non-interlaced\012- data
Size
471 kB (471230 bytes)
Hash
5d182bac3b1512b4d474a561c8fdd8cf
0ad109e33dc23301b6b6e44c7a57917e23ba8a9b
4bd71704bf79c2756e627e7961f5bf607073016ad9044efaef2cbfa6563f3288

HTTP Headers

GET /vv061_mg/img/wheel/en.png HTTP/1.1
Host: happywithvegas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happywithvegas.com/vv061_mg/index.php
Cookie: mongo_sess=977b9d360c590729615f1a1124388b0b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 15 May 2023 11:48:09 GMT
content-type: image/png
content-length: 471230
last-modified: Wed, 28 Dec 2022 11:52:41 GMT
etag: "63ac2e09-730be"
cache-control: public, no-cache
x-xss-protection: 1; mode=block
strict-transport-security: max-age=300; includeSubDomains;
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wRy2FOTkeTfRgSF1MXQAaS%2Fo4nrsujKzkBTEETkEZdmlCZm3EnULxLMebL13uQmj%2FT07oSbohB7zuwjnz%2B7kPCbO24anRJ9Jed4q8u4d%2Bey%2BXpQbFY1fQkvL1LF7jNd%2BAMcrD1k%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c7b2673ce83b503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

happywithvegas.com/vv061_mg/img/wheel/no.png

172.67.172.46

200 OK

369 kB

URL GET HTTP/3
happywithvegas.com/vv061_mg/img/wheel/no.png
IP
172.67.172.46:443
ASN
#13335 CLOUDFLARENET

Requested by
https://happywithvegas.com/vv061_mg/index.php
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint89:F8:9F:73:28:16:09:39:9D:54:00:5D:56:66:8F:4E:E4:2E:89:C8
ValiditySun, 28 Aug 2022 00:00:00 GMT - Mon, 28 Aug 2023 23:59:59 GMT

File type
PNG image data, 872 x 872, 8-bit/color RGBA, non-interlaced\012- data
Size
369 kB (369340 bytes)
Hash
ceb19a3c694a155cf47a57d368258894
c82c4a3cbafb6c86548bcdd236f8abd6946a0080
6603181d670cace75179f250b0532bfa1d8e74be2260aa6a5bd15d1cb3c5f90f

HTTP Headers

GET /vv061_mg/img/wheel/no.png HTTP/1.1
Host: happywithvegas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happywithvegas.com/vv061_mg/index.php
Cookie: mongo_sess=977b9d360c590729615f1a1124388b0b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 15 May 2023 11:48:09 GMT
content-type: image/png
content-length: 369340
last-modified: Thu, 29 Dec 2022 13:46:04 GMT
etag: "63ad9a1c-5a2bc"
cache-control: public, no-cache
x-xss-protection: 1; mode=block
strict-transport-security: max-age=300; includeSubDomains;
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FYRj7JdAjMN8QLeN95mVc6ua0I7GV4UAKFQ71qmKFdi2HaEZXgp6tWg2wJS6KTDk0ds4gRyJTTGleO5CRWyrh7XV7kNkwi3Ny1KrcW2Z0LqqaebCXtzEQJM98qAl2kLcUSX8%2FDE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c7b2673de8db503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

happywithvegas.com/vv061_mg/img/wheel/pl.png

172.67.172.46

200 OK

471 kB

URL GET HTTP/3
happywithvegas.com/vv061_mg/img/wheel/pl.png
IP
172.67.172.46:443
ASN
#13335 CLOUDFLARENET

Requested by
https://happywithvegas.com/vv061_mg/index.php
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint89:F8:9F:73:28:16:09:39:9D:54:00:5D:56:66:8F:4E:E4:2E:89:C8
ValiditySun, 28 Aug 2022 00:00:00 GMT - Mon, 28 Aug 2023 23:59:59 GMT

File type
PNG image data, 872 x 872, 8-bit/color RGBA, non-interlaced\012- data
Size
471 kB (470941 bytes)
Hash
65c948d554f12e01c158fcffbe38e220
c5307a94070147e53435d43ef732d0d388951b28
3dd4d9c56246d3863ca90096435ff1dfd225fd2cbfb740fd2868c776c08c84d7

HTTP Headers

GET /vv061_mg/img/wheel/pl.png HTTP/1.1
Host: happywithvegas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happywithvegas.com/vv061_mg/index.php
Cookie: mongo_sess=977b9d360c590729615f1a1124388b0b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 15 May 2023 11:48:08 GMT
content-type: image/png
content-length: 470941
last-modified: Wed, 28 Dec 2022 11:57:51 GMT
etag: "63ac2f3f-72f9d"
cache-control: public, no-cache
x-xss-protection: 1; mode=block
strict-transport-security: max-age=300; includeSubDomains;
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0EfXtBXg2AR7qCvEvCsj%2BPEwVPeEVaFxPcDqA6M4ZQ%2ByuZnYfLewsVWPQqBbvfBKSyS10V3hO8q%2BcWYcew693OGkJBdGnc0FUzsZjXaOkBKC3ADfYK08tpYk41VhGa9VQ6bo7Lk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c7b2673de91b503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

happywithvegas.com/vv061_mg/img/wheel/de.png

172.67.172.46

200 OK

469 kB

URL GET HTTP/3
happywithvegas.com/vv061_mg/img/wheel/de.png
IP
172.67.172.46:443
ASN
#13335 CLOUDFLARENET

Requested by
https://happywithvegas.com/vv061_mg/index.php
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint89:F8:9F:73:28:16:09:39:9D:54:00:5D:56:66:8F:4E:E4:2E:89:C8
ValiditySun, 28 Aug 2022 00:00:00 GMT - Mon, 28 Aug 2023 23:59:59 GMT

File type
PNG image data, 872 x 872, 8-bit/color RGBA, non-interlaced\012- data
Size
469 kB (468596 bytes)
Hash
947c9c0631ad30067711cccb1c27bfd8
524d69800dd951ca4b53f04bd139f61b21f080da
92e6cbb33883159752039dcc381c88989d08200408c47deaf1aa2fea1c66ba13

HTTP Headers

GET /vv061_mg/img/wheel/de.png HTTP/1.1
Host: happywithvegas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happywithvegas.com/vv061_mg/index.php
Cookie: mongo_sess=977b9d360c590729615f1a1124388b0b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 15 May 2023 11:48:08 GMT
content-type: image/png
content-length: 468596
last-modified: Wed, 28 Dec 2022 11:51:27 GMT
etag: "63ac2dbf-72674"
cache-control: public, no-cache
x-xss-protection: 1; mode=block
strict-transport-security: max-age=300; includeSubDomains;
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oapgVZmKrz91ksm3fyra6IOJ7KFWdo1VZREbrDlTFrUzOUWgj3LmZR68qQjUX5zIfCR9ZjSBYQptMHAal8cqu5OPfHuVkPLp9rL5fEh6mbf68A46fYttb%2FQz24gLN8vQmedZ8Hk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c7b2673de92b503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

happywithvegas.com/vv061_mg/img/wheel/ukr.png

172.67.172.46

200 OK

477 kB

URL GET HTTP/3
happywithvegas.com/vv061_mg/img/wheel/ukr.png
IP
172.67.172.46:443
ASN
#13335 CLOUDFLARENET

Requested by
https://happywithvegas.com/vv061_mg/index.php
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint89:F8:9F:73:28:16:09:39:9D:54:00:5D:56:66:8F:4E:E4:2E:89:C8
ValiditySun, 28 Aug 2022 00:00:00 GMT - Mon, 28 Aug 2023 23:59:59 GMT

File type
PNG image data, 872 x 872, 8-bit/color RGBA, non-interlaced\012- data
Size
477 kB (477203 bytes)
Hash
0d4aa1e612130900e31e6c6958a76532
82535215598ab642a46fb420bd2ec0520ee004f9
796ed330ac57937ab16b1b0fbd376ad714da111acbb102dfd695391ffc662012

HTTP Headers

GET /vv061_mg/img/wheel/ukr.png HTTP/1.1
Host: happywithvegas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happywithvegas.com/vv061_mg/index.php
Cookie: mongo_sess=977b9d360c590729615f1a1124388b0b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 15 May 2023 11:48:08 GMT
content-type: image/png
content-length: 477203
last-modified: Thu, 29 Dec 2022 11:22:28 GMT
etag: "63ad7874-74813"
cache-control: public, no-cache
x-xss-protection: 1; mode=block
strict-transport-security: max-age=300; includeSubDomains;
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=T5vrobGKYFz91ADT1sI7Ndv3%2BWIKSTghb081l8%2FmjoWA0h7n3R95Wdz%2Fj5VAN7rOlQMg6Mw8vU8WhRZPFnVTbnC5oUYvt6xQBvuVO%2FIl1fvLGPqhNO5ZAreviZp79oAQ9gm%2B9tI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c7b2673de94b503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

happywithvegas.com/vv061_mg/img/wheel/jp.png

172.67.172.46

200 OK

369 kB

URL GET HTTP/3
happywithvegas.com/vv061_mg/img/wheel/jp.png
IP
172.67.172.46:443
ASN
#13335 CLOUDFLARENET

Requested by
https://happywithvegas.com/vv061_mg/index.php
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint89:F8:9F:73:28:16:09:39:9D:54:00:5D:56:66:8F:4E:E4:2E:89:C8
ValiditySun, 28 Aug 2022 00:00:00 GMT - Mon, 28 Aug 2023 23:59:59 GMT

File type
PNG image data, 872 x 872, 8-bit/color RGBA, non-interlaced\012- data
Size
369 kB (368860 bytes)
Hash
df27083417e70e3ec4a4f4b0ec8573f7
8347b036a79309c71eb1b1d940cdf62bcaf57ccd
7b60dbbd5521fa3d91aab2581fe8116166b0d2a988a822f3c9f568c913b48f62

HTTP Headers

GET /vv061_mg/img/wheel/jp.png HTTP/1.1
Host: happywithvegas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happywithvegas.com/vv061_mg/index.php
Cookie: mongo_sess=977b9d360c590729615f1a1124388b0b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 15 May 2023 11:48:09 GMT
content-type: image/png
content-length: 368860
last-modified: Thu, 29 Dec 2022 10:48:40 GMT
etag: "63ad7088-5a0dc"
cache-control: public, no-cache
x-xss-protection: 1; mode=block
strict-transport-security: max-age=300; includeSubDomains;
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kZPR%2FOfIIpEv0qhIT5nkrh0KGXp5gHDbpXARmhmvlaO9fM9eWrmy3IIS%2FIuVdf2L9VxJG%2F%2BiN5viEqOBhR%2BvwvF8E2lO5X8OEHAd60uC1i7mxbjfbm%2FHJLlYbYhZcAdTFO%2Fy0%2B4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c7b2673de99b503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

happywithvegas.com/vv061_mg/img/wheel/ru.png

172.67.172.46

200 OK

384 kB

URL GET HTTP/3
happywithvegas.com/vv061_mg/img/wheel/ru.png
IP
172.67.172.46:443
ASN
#13335 CLOUDFLARENET

Requested by
https://happywithvegas.com/vv061_mg/index.php
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint89:F8:9F:73:28:16:09:39:9D:54:00:5D:56:66:8F:4E:E4:2E:89:C8
ValiditySun, 28 Aug 2022 00:00:00 GMT - Mon, 28 Aug 2023 23:59:59 GMT

File type
PNG image data, 872 x 872, 8-bit/color RGBA, non-interlaced\012- data
Size
384 kB (384006 bytes)
Hash
0b402cb8c2eeb17ea79e47843107c307
ae40d13a1d7b337c370b66d42b86621b6c5aaff3
6eb4539f6bc7cc568a430864447ff8a79cb77548bd83b6e0f7ad258db8948fed

HTTP Headers

GET /vv061_mg/img/wheel/ru.png HTTP/1.1
Host: happywithvegas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happywithvegas.com/vv061_mg/index.php
Cookie: mongo_sess=977b9d360c590729615f1a1124388b0b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 15 May 2023 11:48:09 GMT
content-type: image/png
content-length: 384006
last-modified: Thu, 29 Dec 2022 12:11:43 GMT
etag: "63ad83ff-5dc06"
cache-control: public, no-cache
x-xss-protection: 1; mode=block
strict-transport-security: max-age=300; includeSubDomains;
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jmmjOKNIUVwhGQFcEJnNPTQORfym%2B%2BVxE2BEvFA0h0dpoIBYsRixctY8JARnYRMSwc6gogz5G%2FJg3G%2BGUGN6c8CAwBZRz2QVc0yqzuKV1lVnMZVXhr36BChmP7unV467i6kGGQQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c7b2673ee9bb503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

happywithvegas.com/vv061_mg/img/wheel/fi.png

172.67.172.46

200 OK

367 kB

URL GET HTTP/3
happywithvegas.com/vv061_mg/img/wheel/fi.png
IP
172.67.172.46:443
ASN
#13335 CLOUDFLARENET

Requested by
https://happywithvegas.com/vv061_mg/index.php
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint89:F8:9F:73:28:16:09:39:9D:54:00:5D:56:66:8F:4E:E4:2E:89:C8
ValiditySun, 28 Aug 2022 00:00:00 GMT - Mon, 28 Aug 2023 23:59:59 GMT

File type
PNG image data, 872 x 872, 8-bit/color RGBA, non-interlaced\012- data
Size
367 kB (367350 bytes)
Hash
86f76caf91b758be025c1a3d0687e4aa
b8a2b4724d3753e02d65c7b70454d3d21b49a4c2
bcd01c336dd9da26c628e63927dbdfe95b2f34c959601eb95b1efea11e7c4964

HTTP Headers

GET /vv061_mg/img/wheel/fi.png HTTP/1.1
Host: happywithvegas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happywithvegas.com/vv061_mg/index.php
Cookie: mongo_sess=977b9d360c590729615f1a1124388b0b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 15 May 2023 11:48:09 GMT
content-type: image/png
content-length: 367350
last-modified: Thu, 29 Dec 2022 10:46:39 GMT
etag: "63ad700f-59af6"
cache-control: public, no-cache
x-xss-protection: 1; mode=block
strict-transport-security: max-age=300; includeSubDomains;
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vUBejnuZKwppZsn3IgB6eJ0zZypSE34lcwpv9XSa43XvDUjzFVxnmpyws4A%2Fy3%2FBc3gVz5CfdfrxJXHtl9pQ3KhDzboWKN22u8%2Ffp0isTMlxCdYnu5UXQHV1OHcCAEMdJnYDvIg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c7b2673ee9eb503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

happywithvegas.com/vv061_mg/img/wheel/br.png

172.67.172.46

200 OK

389 kB

URL GET HTTP/3
happywithvegas.com/vv061_mg/img/wheel/br.png
IP
172.67.172.46:443
ASN
#13335 CLOUDFLARENET

Requested by
https://happywithvegas.com/vv061_mg/index.php
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint89:F8:9F:73:28:16:09:39:9D:54:00:5D:56:66:8F:4E:E4:2E:89:C8
ValiditySun, 28 Aug 2022 00:00:00 GMT - Mon, 28 Aug 2023 23:59:59 GMT

File type
PNG image data, 872 x 872, 8-bit/color RGBA, non-interlaced\012- data
Size
389 kB (388940 bytes)
Hash
ae43406615557b78e557bb13aafa38fd
17b429c9b9c3768546c25ec38d2dc93c6c522746
e0d49572069378db5744f506325ee9cea0d425db6cb00026c9fd0a11fb34d55d

HTTP Headers

GET /vv061_mg/img/wheel/br.png HTTP/1.1
Host: happywithvegas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happywithvegas.com/vv061_mg/index.php
Cookie: mongo_sess=977b9d360c590729615f1a1124388b0b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 15 May 2023 11:48:09 GMT
content-type: image/png
content-length: 388940
last-modified: Thu, 29 Dec 2022 10:35:24 GMT
etag: "63ad6d6c-5ef4c"
cache-control: public, no-cache
x-xss-protection: 1; mode=block
strict-transport-security: max-age=300; includeSubDomains;
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0%2F2YFUU1MvmBJQkkFVXVLVIutEB5uS5%2FxRBmio2OOvSELijMDtpOvfu2jqY%2F%2B4X3ZEoeXiSI25Uin3HwME3DAgMXU5nt%2Fuf647ucU7nSN53lv2nNnSL4UxkCbvzM1sdPqQuTTJs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c7b2673ee9fb503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

happywithvegas.com/vv061_mg/img/wheel/pt.png

172.67.172.46

200 OK

473 kB

URL GET HTTP/3
happywithvegas.com/vv061_mg/img/wheel/pt.png
IP
172.67.172.46:443
ASN
#13335 CLOUDFLARENET

Requested by
https://happywithvegas.com/vv061_mg/index.php
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint89:F8:9F:73:28:16:09:39:9D:54:00:5D:56:66:8F:4E:E4:2E:89:C8
ValiditySun, 28 Aug 2022 00:00:00 GMT - Mon, 28 Aug 2023 23:59:59 GMT

File type
PNG image data, 872 x 872, 8-bit/color RGBA, non-interlaced\012- data
Size
473 kB (472702 bytes)
Hash
f2f13350ee0a9e80b4363f6c83eab71d
1107eede91a12f2123f54a30cbc9438003f1d050
497f46e18090e2a1cffa42913a553e6057f13c1d6026cd54e8a74ff43c4979be

HTTP Headers

GET /vv061_mg/img/wheel/pt.png HTTP/1.1
Host: happywithvegas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happywithvegas.com/vv061_mg/index.php
Cookie: mongo_sess=977b9d360c590729615f1a1124388b0b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 15 May 2023 11:48:09 GMT
content-type: image/png
content-length: 472702
last-modified: Wed, 28 Dec 2022 11:59:07 GMT
etag: "63ac2f8b-7367e"
cache-control: public, no-cache
x-xss-protection: 1; mode=block
strict-transport-security: max-age=300; includeSubDomains;
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AYrDIe6zhv69F%2FiwP%2FVAMmM1c9m964IxyEKFzF9OgnqGaBaBfp76V85aFzpvKturYpx4oN43xHsc77cecvg%2BRItBT0%2FtpUKkoxPV2xJ5b63ik385rsBv3ryxYgS%2F5PqX%2B7QEd6M%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c7b2673eea0b503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
da0bb922939fdb61a841c9c196c4df0f
9aab2b0ce4581d86e82988cab48ded50978c10f8
ff21dc0286eedf85f3887a830a287cb1598e19763714f157f848cf6c5b932923

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 15 May 2023 11:48:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

happywithvegas.com/vv061_mg/img/wheel/ro.png

172.67.172.46

200 OK

382 kB

URL GET HTTP/3
happywithvegas.com/vv061_mg/img/wheel/ro.png
IP
172.67.172.46:443
ASN
#13335 CLOUDFLARENET

Requested by
https://happywithvegas.com/vv061_mg/index.php
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint89:F8:9F:73:28:16:09:39:9D:54:00:5D:56:66:8F:4E:E4:2E:89:C8
ValiditySun, 28 Aug 2022 00:00:00 GMT - Mon, 28 Aug 2023 23:59:59 GMT

File type
PNG image data, 872 x 872, 8-bit/color RGBA, non-interlaced\012- data
Size
382 kB (382298 bytes)
Hash
a7439bc33c7d024a24b8ea7451b780d9
4c3865e56b2aa836501b89f021c7e3c84814c221
eb37df690441a02d9b99fdcad254fcda6d063c3bfc0e02efbed3f68b2beb41e7

HTTP Headers

GET /vv061_mg/img/wheel/ro.png HTTP/1.1
Host: happywithvegas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happywithvegas.com/vv061_mg/index.php
Cookie: mongo_sess=977b9d360c590729615f1a1124388b0b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 15 May 2023 11:48:09 GMT
content-type: image/png
content-length: 382298
last-modified: Thu, 29 Dec 2022 10:27:12 GMT
etag: "63ad6b80-5d55a"
cache-control: public, no-cache
x-xss-protection: 1; mode=block
strict-transport-security: max-age=300; includeSubDomains;
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AgUDTH2hC8I7faw5cfIGrDDppQU26qwSnW3nTiY%2Fep9sMAXjCdaeg%2BVtRrdRfC7B9hSNqt0tTOVtOEflHibjy3LxD6ceRhg00rRqbjPod7hyN7dHDIJVYrZrlS9S5G4Kq%2BSbzUo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c7b2673eea1b503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

happywithvegas.com/vv061_mg/img/wheel/hu.png

172.67.172.46

200 OK

383 kB

URL GET HTTP/3
happywithvegas.com/vv061_mg/img/wheel/hu.png
IP
172.67.172.46:443
ASN
#13335 CLOUDFLARENET

Requested by
https://happywithvegas.com/vv061_mg/index.php
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint89:F8:9F:73:28:16:09:39:9D:54:00:5D:56:66:8F:4E:E4:2E:89:C8
ValiditySun, 28 Aug 2022 00:00:00 GMT - Mon, 28 Aug 2023 23:59:59 GMT

File type
PNG image data, 872 x 872, 8-bit/color RGBA, non-interlaced\012- data
Size
383 kB (383378 bytes)
Hash
78dd0efd78f5e7cf805b5cae21f00366
8f14700d41ccac333e149987d3fe2cbcde7630e2
7b9cb491908789aea33b18ead956b3051797592d59bae28dc34f853906f3e574

HTTP Headers

GET /vv061_mg/img/wheel/hu.png HTTP/1.1
Host: happywithvegas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happywithvegas.com/vv061_mg/index.php
Cookie: mongo_sess=977b9d360c590729615f1a1124388b0b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 15 May 2023 11:48:09 GMT
content-type: image/png
content-length: 383378
last-modified: Thu, 29 Dec 2022 10:47:25 GMT
etag: "63ad703d-5d992"
cache-control: public, no-cache
x-xss-protection: 1; mode=block
strict-transport-security: max-age=300; includeSubDomains;
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2F1IuiqvruqAfINSpPtWYncx%2BZzV3CAuU6rgMdesi8NG%2FeVgEMhGuu%2FBoV4ucpSf%2BYz04XYF9vVon5DBpNNP1bzZlkMMug4k0bpR6GmyvJFaGK4foZ05MDzRnjFRRK7sxlpXPil8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c7b2673eea3b503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

happywithvegas.com/vv061_mg/img/wheel/es.png

172.67.172.46

200 OK

470 kB

URL GET HTTP/3
happywithvegas.com/vv061_mg/img/wheel/es.png
IP
172.67.172.46:443
ASN
#13335 CLOUDFLARENET

Requested by
https://happywithvegas.com/vv061_mg/index.php
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint89:F8:9F:73:28:16:09:39:9D:54:00:5D:56:66:8F:4E:E4:2E:89:C8
ValiditySun, 28 Aug 2022 00:00:00 GMT - Mon, 28 Aug 2023 23:59:59 GMT

File type
PNG image data, 872 x 872, 8-bit/color RGBA, non-interlaced\012- data
Size
470 kB (470312 bytes)
Hash
f76d4a922a9e7153da8635c6c45b9ef2
576e6cfda6aa7a25c4f77ed2e9df67913196cbad
72aa81176622cbc3aacf5cc0a8d687186807ff530fccaaf4cf1795f05aee6f7d

HTTP Headers

GET /vv061_mg/img/wheel/es.png HTTP/1.1
Host: happywithvegas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happywithvegas.com/vv061_mg/index.php
Cookie: mongo_sess=977b9d360c590729615f1a1124388b0b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 15 May 2023 11:48:09 GMT
content-type: image/png
content-length: 470312
last-modified: Thu, 29 Dec 2022 13:50:41 GMT
etag: "63ad9b31-72d28"
cache-control: public, no-cache
x-xss-protection: 1; mode=block
strict-transport-security: max-age=300; includeSubDomains;
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ohC7UhNYebh5RDfVQ0LVBVpRZzGp%2FMN6sKtkzPfQ2s6oapuscaI8ODEE9CkPO9cRV6qTa9y%2BcIsx0wqMn0BDSLR9Ukck14y6SFe9wUvy7IhF%2FHyydqsJebJk4tVnAegli4i%2B8mw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c7b2673eea4b503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

happywithvegas.com/vv061_mg/img/wheel/nz.png

172.67.172.46

200 OK

467 kB

URL GET HTTP/3
happywithvegas.com/vv061_mg/img/wheel/nz.png
IP
172.67.172.46:443
ASN
#13335 CLOUDFLARENET

Requested by
https://happywithvegas.com/vv061_mg/index.php
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint89:F8:9F:73:28:16:09:39:9D:54:00:5D:56:66:8F:4E:E4:2E:89:C8
ValiditySun, 28 Aug 2022 00:00:00 GMT - Mon, 28 Aug 2023 23:59:59 GMT

File type
PNG image data, 872 x 872, 8-bit/color RGBA, non-interlaced\012- data
Size
467 kB (467285 bytes)
Hash
8083747348d8816f0dcb3159442cd6df
acaa9306d992e82a40251f529b6085718f075c53
726706682ad7acf3ea1a7d42383b6fd785fa0cabb0a8c707a5cfff5e633fb885

HTTP Headers

GET /vv061_mg/img/wheel/nz.png HTTP/1.1
Host: happywithvegas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happywithvegas.com/vv061_mg/index.php
Cookie: mongo_sess=977b9d360c590729615f1a1124388b0b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 15 May 2023 11:48:09 GMT
content-type: image/png
content-length: 467285
last-modified: Thu, 29 Dec 2022 10:28:05 GMT
etag: "63ad6bb5-72155"
cache-control: public, no-cache
x-xss-protection: 1; mode=block
strict-transport-security: max-age=300; includeSubDomains;
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ykfNpFQX0lke4S4%2FxsHg5hvFzsKOIYwJT2KwKmYCUFEepKWrf04uDjww3pP%2BZGjGIAAXryvYqwjyp3KtfyDY%2BpIxaMm21CxiEQfEStkQxuzKdf7rAhCOONfu4Ew0OCZ3EYJJH5k%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c7b2673eea6b503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

happywithvegas.com/vv061_mg/img/jack.png

172.67.172.46

200 OK

301 kB

URL GET HTTP/3
happywithvegas.com/vv061_mg/img/jack.png
IP
172.67.172.46:443
ASN
#13335 CLOUDFLARENET

Requested by
https://happywithvegas.com/vv061_mg/index.php
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint89:F8:9F:73:28:16:09:39:9D:54:00:5D:56:66:8F:4E:E4:2E:89:C8
ValiditySun, 28 Aug 2022 00:00:00 GMT - Mon, 28 Aug 2023 23:59:59 GMT

File type
PNG image data, 804 x 475, 8-bit/color RGBA, non-interlaced\012- data
Size
301 kB (301439 bytes)
Hash
a42a974487afd9ffb90bf83fc12fe51c
3d40aa0b756d67d2ec41235554e713e0746727fc
9fa2c31eb783c68d344e0255d2fbcbb40f25cddcdd44255ba8f7de83594fdf66

HTTP Headers

GET /vv061_mg/img/jack.png HTTP/1.1
Host: happywithvegas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happywithvegas.com/vv061_mg/index.php
Cookie: mongo_sess=977b9d360c590729615f1a1124388b0b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 15 May 2023 11:48:09 GMT
content-type: image/png
content-length: 301439
last-modified: Thu, 07 Oct 2021 10:39:10 GMT
etag: "615ece4e-4997f"
cache-control: public, no-cache
x-xss-protection: 1; mode=block
strict-transport-security: max-age=300; includeSubDomains;
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sjsqkLnbkM45tHqdvgf0Twr16XTZwFZL%2FCggCIRlS0OVZm%2FAjIT8iqUaM66KqZ3KgUqClMPJAcfDzT2MR%2BOTMySawPfCpp45CPLb9tx%2FrF80hFvoE0Y%2BVcHCdOj%2FUrhRs4e%2ByoU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c7b2673eea8b503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
da0bb922939fdb61a841c9c196c4df0f
9aab2b0ce4581d86e82988cab48ded50978c10f8
ff21dc0286eedf85f3887a830a287cb1598e19763714f157f848cf6c5b932923

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 15 May 2023 11:48:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

happywithvegas.com/vv061_mg/img/try-bg.png

172.67.172.46

200 OK

25 kB

URL GET HTTP/3
happywithvegas.com/vv061_mg/img/try-bg.png
IP
172.67.172.46:443
ASN
#13335 CLOUDFLARENET

Requested by
https://happywithvegas.com/vv061_mg/index.php
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint89:F8:9F:73:28:16:09:39:9D:54:00:5D:56:66:8F:4E:E4:2E:89:C8
ValiditySun, 28 Aug 2022 00:00:00 GMT - Mon, 28 Aug 2023 23:59:59 GMT

File type
PNG image data, 200 x 71, 8-bit/color RGBA, non-interlaced\012- data
Size
25 kB (24726 bytes)
Hash
1559e7d30d4e5d9792da5a01e6b8c6f8
a92e9361b4ecdc747ca80c1eeaffcfcc9426f238
ea9090687e701a796c973cd4d8d30fcc634ecbcfa790ae95255103436bc3591a

HTTP Headers

GET /vv061_mg/img/try-bg.png HTTP/1.1
Host: happywithvegas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happywithvegas.com/vv061_mg/css/main.css
Cookie: mongo_sess=977b9d360c590729615f1a1124388b0b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 15 May 2023 11:48:09 GMT
content-type: image/png
content-length: 24726
last-modified: Thu, 07 Oct 2021 10:39:10 GMT
etag: "615ece4e-6096"
cache-control: public, no-cache
x-xss-protection: 1; mode=block
strict-transport-security: max-age=300; includeSubDomains;
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ck1WtiO%2FAN2OIChspclAn2Apjgy3m68Zjej1%2F3uZ%2Fa7j9NJ6RXQUWPQpn67AUGAZu3EM4Yw6d7wbx7aYZz%2FLOuIHQcq0kUddTVyBHybERF%2BaNbYK9OY9rzEHdpCXrEKfXzsH%2Ft4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c7b26769a0cb503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

happywithvegas.com/vv061_mg/img/btns.png

172.67.172.46

200 OK

24 kB

URL GET HTTP/3
happywithvegas.com/vv061_mg/img/btns.png
IP
172.67.172.46:443
ASN
#13335 CLOUDFLARENET

Requested by
https://happywithvegas.com/vv061_mg/index.php
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint89:F8:9F:73:28:16:09:39:9D:54:00:5D:56:66:8F:4E:E4:2E:89:C8
ValiditySun, 28 Aug 2022 00:00:00 GMT - Mon, 28 Aug 2023 23:59:59 GMT

File type
PNG image data, 274 x 137, 8-bit/color RGBA, non-interlaced\012- data
Size
24 kB (24104 bytes)
Hash
915579526ac65207ff32ad9d24094df2
b1b808b4ef8c52ee12e2451fd07ebb501dd30d03
4d688570ab514c8c4dea271868b6a1b0d1f41fd4d8f28615dcadde00d87bebe7

HTTP Headers

GET /vv061_mg/img/btns.png HTTP/1.1
Host: happywithvegas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happywithvegas.com/vv061_mg/css/main.css
Cookie: mongo_sess=977b9d360c590729615f1a1124388b0b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 15 May 2023 11:48:09 GMT
content-type: image/png
content-length: 24104
last-modified: Thu, 07 Oct 2021 10:39:10 GMT
etag: "615ece4e-5e28"
cache-control: public, no-cache
x-xss-protection: 1; mode=block
strict-transport-security: max-age=300; includeSubDomains;
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=C2mliOgtg7OW0ef7HR9Z%2FNglFrXOAPlKGzoUFEP96oF6Zrt0oJopBEahmrqa1IZ8%2F3%2B3p%2B4bBF5gjESLrgkZNKTmKu7BToFnHEMKF0axPX97Cyx3DU9Vem5C2s4TYraxs4ETr2U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c7b26769a0fb503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f4fea5cf544471669f24229f47d96622
e21aa81232c02d605863b3193c4ce0d27eba07ec
216eb082f9386c239a730dfe8d0414192c3af67ccba8db2865a250d2e13ed7d4

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 15 May 2023 11:48:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

142.250.74.35

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://happywithvegas.com/vv061_mg/index.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Size
16 kB (15920 bytes)
Hash
3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://happywithvegas.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 10 May 2023 00:16:36 GMT
expires: Thu, 09 May 2024 00:16:36 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
age: 473493
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

happywithvegas.com/vv061_mg/img/pointer.png

172.67.172.46

200 OK

17 kB

URL GET HTTP/3
happywithvegas.com/vv061_mg/img/pointer.png
IP
172.67.172.46:443
ASN
#13335 CLOUDFLARENET

Requested by
https://happywithvegas.com/vv061_mg/index.php
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint89:F8:9F:73:28:16:09:39:9D:54:00:5D:56:66:8F:4E:E4:2E:89:C8
ValiditySun, 28 Aug 2022 00:00:00 GMT - Mon, 28 Aug 2023 23:59:59 GMT

File type
PNG image data, 219 x 187, 8-bit/color RGBA, non-interlaced\012- data
Size
17 kB (17143 bytes)
Hash
1bc711b6f73fc74f3c87a9adf5ed32f3
3f7e0f9a1954291f3807f2bad41bd202845fdd53
a30a4aa33809d096dd5fa2aa88e0609f8de80a988e5512c22a6a070fd2b7075a

HTTP Headers

GET /vv061_mg/img/pointer.png HTTP/1.1
Host: happywithvegas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happywithvegas.com/vv061_mg/css/main.css
Cookie: mongo_sess=977b9d360c590729615f1a1124388b0b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 15 May 2023 11:48:09 GMT
content-type: image/png
content-length: 17143
last-modified: Thu, 07 Oct 2021 10:39:10 GMT
etag: "615ece4e-42f7"
cache-control: public, no-cache
x-xss-protection: 1; mode=block
strict-transport-security: max-age=300; includeSubDomains;
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=d7frLtis44%2B1Y9gMjcvjQgbb1jRGX1yQd1doi39T8U%2FE%2FC6%2Bitfh1N%2BtpE%2FLB8B6EoL1QfLS54qH4FU8u67%2BIsgCXM%2F89YleQ6UpAyNNXiVPZR5ujHGZyv992oFbRUvuB%2Bogpfg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c7b26769a13b503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f4fea5cf544471669f24229f47d96622
e21aa81232c02d605863b3193c4ce0d27eba07ec
216eb082f9386c239a730dfe8d0414192c3af67ccba8db2865a250d2e13ed7d4

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 15 May 2023 11:48:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

happywithvegas.com/vv061_mg/js/jquery-3.2.1.min.js

172.67.172.46

200 OK

366 kB

URL GET HTTP/3
happywithvegas.com/vv061_mg/js/jquery-3.2.1.min.js
IP
172.67.172.46:443
ASN
#13335 CLOUDFLARENET

Requested by
https://happywithvegas.com/vv061_mg/index.php
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint89:F8:9F:73:28:16:09:39:9D:54:00:5D:56:66:8F:4E:E4:2E:89:C8
ValiditySun, 28 Aug 2022 00:00:00 GMT - Mon, 28 Aug 2023 23:59:59 GMT

File type
ASCII text, with very long lines (32058), with CRLF line terminators
Size
366 kB (366066 bytes)
Hash
473957cfb255a781b42cb2af51d54a3b
67bdacbd077ee59f411109fd119ee9f58db15a5f
75b707d8761e2bfbd25fbd661f290a4f7fd11c48e1bf53a36dc6bd8a0034fa35

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /vv061_mg/js/jquery-3.2.1.min.js HTTP/1.1
Host: happywithvegas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happywithvegas.com/vv061_mg/index.php
Cookie: mongo_sess=977b9d360c590729615f1a1124388b0b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 15 May 2023 11:48:09 GMT
content-type: application/javascript
last-modified: Thu, 07 Oct 2021 10:39:10 GMT
etag: W/"615ece4e-15287"
cache-control: public, no-cache
x-xss-protection: 1; mode=block
strict-transport-security: max-age=300; includeSubDomains;
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tS5uwT61OEjNHuew33gWAtTnE%2FLOKkPAoId%2Ftcdyn56G0RZPa8EgS%2BXX5AEMlCw31n8CaPcrizdVNopZmfzko5GIQ6ZLg7JNMDH4VR76iWLxgxubndQ65dDd7qaXAz3AXkCix0c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c7b2673eeaab503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

142.250.74.35

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://happywithvegas.com/vv061_mg/index.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://happywithvegas.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 13 May 2023 07:44:41 GMT
expires: Sun, 12 May 2024 07:44:41 GMT
cache-control: public, max-age=31536000
age: 187408
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f4fea5cf544471669f24229f47d96622
e21aa81232c02d605863b3193c4ce0d27eba07ec
216eb082f9386c239a730dfe8d0414192c3af67ccba8db2865a250d2e13ed7d4

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 15 May 2023 11:48:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

happywithvegas.com/vv061_mg/img/favicons/apple-icon-180x180.png?en

172.67.172.46

200 OK

11 kB

URL GET HTTP/3
happywithvegas.com/vv061_mg/img/favicons/apple-icon-180x180.png?en
IP
172.67.172.46:443
ASN
#13335 CLOUDFLARENET

Requested by
https://happywithvegas.com/vv061_mg/index.php
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint89:F8:9F:73:28:16:09:39:9D:54:00:5D:56:66:8F:4E:E4:2E:89:C8
ValiditySun, 28 Aug 2022 00:00:00 GMT - Mon, 28 Aug 2023 23:59:59 GMT

File type
PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Size
11 kB (10657 bytes)
Hash
15c9f88028a568bbd00ca664c5d6bf59
5cc5aac79600dc08ee8f7569ac0f7c07cfe8ba4c
38ad67d0bf7c41bca8cccf5582e4932e454415afd3c4275072292b2734274d7f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /vv061_mg/img/favicons/apple-icon-180x180.png?en HTTP/1.1
Host: happywithvegas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happywithvegas.com/vv061_mg/index.php
Cookie: mongo_sess=977b9d360c590729615f1a1124388b0b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 15 May 2023 11:48:09 GMT
content-type: image/png
content-length: 10657
last-modified: Thu, 07 Oct 2021 10:39:10 GMT
etag: "615ece4e-29a1"
cache-control: public, no-cache
x-xss-protection: 1; mode=block
strict-transport-security: max-age=300; includeSubDomains;
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XWn41jJWNPcir%2FV2L8BRqo6F3LsPyBXEyST%2B7pKRa2wtUica8gF4jeqfrfldMbyjIu0ZLphFxIGQMfcwNrexSeX0Ljr8syy1ia93hXJn80nNVlk54IQNLAK2Jy2sDRMMl5bsEG0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c7b26773b0eb503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

happywithvegas.com/vv061_mg/img/gonzo.png

172.67.172.46

200 OK

480 kB

URL GET HTTP/3
happywithvegas.com/vv061_mg/img/gonzo.png
IP
172.67.172.46:443
ASN
#13335 CLOUDFLARENET

Requested by
https://happywithvegas.com/vv061_mg/index.php
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint89:F8:9F:73:28:16:09:39:9D:54:00:5D:56:66:8F:4E:E4:2E:89:C8
ValiditySun, 28 Aug 2022 00:00:00 GMT - Mon, 28 Aug 2023 23:59:59 GMT

File type
PNG image data, 454 x 824, 8-bit/color RGBA, non-interlaced\012- data
Size
480 kB (480172 bytes)
Hash
eda602aa84bac5edfd389b2236aa0c23
d26487872341c9ab62ba9ac3e839e101374ce7e7
6f028b0038e511dce43fdb13a0a822597884f03184bf4985a18a27cd0e4d87d2

HTTP Headers

GET /vv061_mg/img/gonzo.png HTTP/1.1
Host: happywithvegas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happywithvegas.com/vv061_mg/index.php
Cookie: mongo_sess=977b9d360c590729615f1a1124388b0b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 15 May 2023 11:48:08 GMT
content-type: image/png
content-length: 480172
last-modified: Thu, 07 Oct 2021 10:39:10 GMT
etag: "615ece4e-753ac"
cache-control: public, no-cache
x-xss-protection: 1; mode=block
strict-transport-security: max-age=300; includeSubDomains;
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J7G7iHDnTU%2B3wTi8YYpE3MwoBz6OzVoXRzgVBd5UaWBjVZwEhneS7smWigYUWJxrWRMPUBdnKDsA8GV2BJWxml2gncJfw3WOZ5rvNafIe5YmlfkaA4KlllCSZ5fRegRQLAtNNOU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c7b2673ce7bb503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

fonts.googleapis.com/css2?family=Roboto:wght@400;500&display=swap

142.250.74.106

200 OK

4.5 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Roboto:wght@400;500&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://happywithvegas.com/vv061_mg/index.php
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint9B:D0:53:C4:55:9D:41:A4:94:03:4A:2B:6A:5B:57:EB:EB:A5:F0:4A
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT

File type
ASCII text, with very long lines (4666), with no line terminators
Size
4.5 kB (4540 bytes)
Hash
d1743611338d9db8e2196c4d62cee363
e70282a2861f0cd3220aa5d97bd4f39701a99dac
3e5732002f64489541cc33e26687333a265d32cf5a30339a306e252362a4642c

HTTP Headers

GET /css2?family=Roboto:wght@400;500&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happywithvegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 15 May 2023 11:48:09 GMT
date: Mon, 15 May 2023 11:48:09 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

happywithvegas.com/vv061_mg/css/main.css

172.67.172.46

200 OK

42 kB

URL GET HTTP/3
happywithvegas.com/vv061_mg/css/main.css
IP
172.67.172.46:443
ASN
#13335 CLOUDFLARENET

Requested by
https://happywithvegas.com/vv061_mg/index.php
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint89:F8:9F:73:28:16:09:39:9D:54:00:5D:56:66:8F:4E:E4:2E:89:C8
ValiditySun, 28 Aug 2022 00:00:00 GMT - Mon, 28 Aug 2023 23:59:59 GMT

File type
ASCII text, with very long lines (322)
Size
42 kB (42115 bytes)
Hash
4d8a374a00ba2902e2a4f8c94198ffed
c12588bc826cf52da745ce9f6b3bcc9c23838f65
041e41dceb21b0977d344a35269f47cb7baa75ddfaea8c97481fe0624799718a

HTTP Headers

GET /vv061_mg/css/main.css HTTP/1.1
Host: happywithvegas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happywithvegas.com/vv061_mg/index.php
Cookie: mongo_sess=977b9d360c590729615f1a1124388b0b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 15 May 2023 11:48:08 GMT
content-type: text/css
last-modified: Thu, 29 Dec 2022 14:20:00 GMT
etag: W/"63ada210-a483"
cache-control: public, no-cache
x-xss-protection: 1; mode=block
strict-transport-security: max-age=300; includeSubDomains;
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xIYObIFlRVxCOMPPudHvmmvcIXmZ6NSa0YYSgxm07MJ7H5nOi0If%2BLZqqjLVIB3atHP71K%2FooXdWJ7oQ7jGqLP%2FzyjlzoJMy4RJMAwL%2FGi3DSZlkOkSbsf5F0nnVl%2BsJLQX2tr0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c7b2673ce71b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

happywithvegas.com/vv061_mg/img/logo_vv.png

172.67.172.46

200 OK

13 kB

URL GET HTTP/3
happywithvegas.com/vv061_mg/img/logo_vv.png
IP
172.67.172.46:443
ASN
#13335 CLOUDFLARENET

Requested by
https://happywithvegas.com/vv061_mg/index.php
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint89:F8:9F:73:28:16:09:39:9D:54:00:5D:56:66:8F:4E:E4:2E:89:C8
ValiditySun, 28 Aug 2022 00:00:00 GMT - Mon, 28 Aug 2023 23:59:59 GMT

File type
PNG image data, 263 x 111, 8-bit/color RGBA, non-interlaced\012- data
Size
13 kB (13292 bytes)
Hash
7efc0bdc40dd3abdfb252e5a9d795af0
cce0ab151ed38a67c83bacb042a243fed918ec40
61630f53f1515b0de35a2f93f67c8dfa31da551522b429e7b91b55a5e87506c1

HTTP Headers

GET /vv061_mg/img/logo_vv.png HTTP/1.1
Host: happywithvegas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happywithvegas.com/vv061_mg/index.php
Cookie: mongo_sess=977b9d360c590729615f1a1124388b0b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 15 May 2023 11:48:08 GMT
content-type: image/png
content-length: 13292
last-modified: Thu, 07 Oct 2021 10:39:10 GMT
etag: "615ece4e-33ec"
cache-control: public, no-cache
x-xss-protection: 1; mode=block
strict-transport-security: max-age=300; includeSubDomains;
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MFs%2FLWXCeNcvz18CJ7BNrJrNxaZwuj8R%2BKY%2B%2B7YfWIIjGAKWibRo9qJI0r6MhByEr3FPtZIuh6ySL5BjKqszudKR99WxpZ195CrGTHmBgVbex6M7Tggd2R%2BCbRFCqi5CvmnfHfw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c7b2673ce79b503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

happywithvegas.com/vv061_mg/img/favicons/favicon16-24-32-48-64.ico?en

172.67.172.46

200 OK

19 kB

URL GET HTTP/3
happywithvegas.com/vv061_mg/img/favicons/favicon16-24-32-48-64.ico?en
IP
172.67.172.46:443
ASN
#13335 CLOUDFLARENET

Requested by
https://happywithvegas.com/vv061_mg/index.php
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint89:F8:9F:73:28:16:09:39:9D:54:00:5D:56:66:8F:4E:E4:2E:89:C8
ValiditySun, 28 Aug 2022 00:00:00 GMT - Mon, 28 Aug 2023 23:59:59 GMT

File type
MS Windows icon resource - 6 icons, 64x64, 24 bits/pixel, 32x32, 8 bits/pixel\012- data
Size
19 kB (19094 bytes)
Hash
35af76324e042e0391bd4f481dff67b7
f12def9fbe721859e06a8e33ac263308207b3496
df81c027d74dca3113daa78994b9ddca71fa0ee35165ee03b0fd2a0ac5c09530

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /vv061_mg/img/favicons/favicon16-24-32-48-64.ico?en HTTP/1.1
Host: happywithvegas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happywithvegas.com/vv061_mg/index.php
Cookie: mongo_sess=977b9d360c590729615f1a1124388b0b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 15 May 2023 11:48:09 GMT
content-type: image/x-icon
last-modified: Thu, 07 Oct 2021 10:39:10 GMT
etag: W/"615ece4e-4a96"
cache-control: public, no-cache
x-xss-protection: 1; mode=block
strict-transport-security: max-age=300; includeSubDomains;
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ciXBVzPc9xwz9MfWt3ZdILw%2BvLqit24WX00q1Ad5BsBDatQPJQpl%2B1zvnhtxSp6PV8254TRmg1ChKF%2F%2BxX6JkJJyKD8Qp8BQOYKcWWL2GARiEneAJLyIvud7As9J9oJnAxEZbsk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c7b26773b11b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

happywithvegas.com/vv061_mg/img/decor_grass.jpg

172.67.172.46

200 OK

335 kB

URL GET HTTP/3
happywithvegas.com/vv061_mg/img/decor_grass.jpg
IP
172.67.172.46:443
ASN
#13335 CLOUDFLARENET

Requested by
https://happywithvegas.com/vv061_mg/index.php
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint89:F8:9F:73:28:16:09:39:9D:54:00:5D:56:66:8F:4E:E4:2E:89:C8
ValiditySun, 28 Aug 2022 00:00:00 GMT - Mon, 28 Aug 2023 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1920x1080, components 3\012- data
Size
335 kB (334814 bytes)
Hash
12b57b5473ad077383bbfe25fb5548dd
e3eb3261013b47bac423342cdf20e55b23054cf5
ef257a626f3e52de59b1ea91374ce1addd0fabcebec1a6b9d9a45f1ef0965fe1

HTTP Headers

GET /vv061_mg/img/decor_grass.jpg HTTP/1.1
Host: happywithvegas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happywithvegas.com/vv061_mg/css/main.css
Cookie: mongo_sess=977b9d360c590729615f1a1124388b0b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 15 May 2023 11:48:09 GMT
content-type: image/jpeg
content-length: 334814
last-modified: Thu, 07 Oct 2021 10:39:10 GMT
etag: "615ece4e-51bde"
cache-control: public, no-cache
x-xss-protection: 1; mode=block
strict-transport-security: max-age=300; includeSubDomains;
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9nF%2BPidZ%2FjOSCFsORBlx6gYqysJi%2BmfuDTqyK2C6P4xaTp8rF%2FPP%2FDFlZCl1J4JOkLtHMyAyTRKGXybwVSY9R4UFpReV3S85GQwITPb6EJ3lBEdTcPTG8CPxPikOfUkaKxx8v3E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c7b26769a0ab503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

happywithvegas.com/vv061_mg/img/arrow-down.svg

172.67.172.46

200 OK

1.2 kB

URL GET HTTP/3
happywithvegas.com/vv061_mg/img/arrow-down.svg
IP
172.67.172.46:443
ASN
#13335 CLOUDFLARENET

Requested by
https://happywithvegas.com/vv061_mg/index.php
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint89:F8:9F:73:28:16:09:39:9D:54:00:5D:56:66:8F:4E:E4:2E:89:C8
ValiditySun, 28 Aug 2022 00:00:00 GMT - Mon, 28 Aug 2023 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- SVG XML document\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1367), with no line terminators
Size
1.2 kB (1234 bytes)
Hash
76694e5b597ec26582880adf53ec0d64
5e4cd4d4e19a18fd81c32eb913ecd92263b5e818
6fbddd91e306bf9b6abea2031d2a1a77e0b2a76d0e6269e489a27b282c5f2529

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /vv061_mg/img/arrow-down.svg HTTP/1.1
Host: happywithvegas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happywithvegas.com/vv061_mg/index.php
Cookie: mongo_sess=977b9d360c590729615f1a1124388b0b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 15 May 2023 11:48:08 GMT
content-type: image/svg+xml
last-modified: Thu, 07 Oct 2021 10:39:10 GMT
etag: W/"615ece4e-4d2"
cache-control: public, no-cache
x-xss-protection: 1; mode=block
strict-transport-security: max-age=300; includeSubDomains;
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=x%2FA19rHgqoQMpuOCbZvokJuItHyAilh9UeWDg7kjJeHiZKqKS4nyHPhAlbWleXpbD4i%2BN5RxKK4uc3sY7n2e5nGMPO5fFUQM47ALQrOLrmpDTYUQ4B4Vyjbzz8yHdd5qgNyjXeE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c7b2673ce77b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

happywithvegas.com/vv061_mg/js/main.js?1

172.67.172.46

200 OK

5.6 kB

URL GET HTTP/3
happywithvegas.com/vv061_mg/js/main.js?1
IP
172.67.172.46:443
ASN
#13335 CLOUDFLARENET

Requested by
https://happywithvegas.com/vv061_mg/index.php
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint89:F8:9F:73:28:16:09:39:9D:54:00:5D:56:66:8F:4E:E4:2E:89:C8
ValiditySun, 28 Aug 2022 00:00:00 GMT - Mon, 28 Aug 2023 23:59:59 GMT

File type
ASCII text, with very long lines (5757), with no line terminators
Size
5.6 kB (5576 bytes)
Hash
1ed590fa9d12b82dd839464dd09c669d
aefba2d3ccd173e4f44e8082ce5dc29ef24e4bfc
49d0ef97b176e0d914e2d95eacc092e5219bf6be471b14e3367f47cd0cd4a02c

HTTP Headers

GET /vv061_mg/js/main.js?1 HTTP/1.1
Host: happywithvegas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happywithvegas.com/vv061_mg/index.php
Cookie: mongo_sess=977b9d360c590729615f1a1124388b0b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 15 May 2023 11:48:09 GMT
content-type: application/javascript
last-modified: Thu, 04 May 2023 07:40:58 GMT
etag: W/"6453618a-15c8"
cache-control: public, no-cache
x-xss-protection: 1; mode=block
strict-transport-security: max-age=300; includeSubDomains;
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EzYh88NcGUTWrgL9EdKIp947cwI6H8Txk66Mb6kqQlo24MXhSsPKkJc0SvUoMW9mjXfJnXWTw%2Bok%2FLBrxvCqO4gaYhqlQOcX%2Bw46eyKh%2BHkncalzCUhwNaL5d%2Fx8sfujnqaiCx4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c7b2673eeadb503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

happywithvegas.com/vv061_mg/img/world-grid.svg

172.67.172.46

200 OK

2.5 kB

URL GET HTTP/3
happywithvegas.com/vv061_mg/img/world-grid.svg
IP
172.67.172.46:443
ASN
#13335 CLOUDFLARENET

Requested by
https://happywithvegas.com/vv061_mg/index.php
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint89:F8:9F:73:28:16:09:39:9D:54:00:5D:56:66:8F:4E:E4:2E:89:C8
ValiditySun, 28 Aug 2022 00:00:00 GMT - Mon, 28 Aug 2023 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2517), with no line terminators
Size
2.5 kB (2501 bytes)
Hash
8e34eb7598e8ab160ea4c4826d860dc1
02a8a7770fa76c3e11a19602f7848aedf5d7aea6
14907a2d803127ee8a91f07d1dacaaf03a3c0d7cab462fc7eb5022cd3afd039d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /vv061_mg/img/world-grid.svg HTTP/1.1
Host: happywithvegas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happywithvegas.com/vv061_mg/index.php
Cookie: mongo_sess=977b9d360c590729615f1a1124388b0b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 15 May 2023 11:48:08 GMT
content-type: image/svg+xml
last-modified: Thu, 07 Oct 2021 10:39:10 GMT
etag: W/"615ece4e-9c5"
cache-control: public, no-cache
x-xss-protection: 1; mode=block
strict-transport-security: max-age=300; includeSubDomains;
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UF1yZuFVbDSl%2BbqB9SVhwirSLkTA1TKWZwXC3Ej1DO%2F%2BDzHw%2FY03oPPtkiQbeGbbW%2Bb4B9vD7WTtuXKyF0mxliXBt8NcPGvpGr43yVgsclr6HQzxILKEYG%2BEUB3c2gKmSSStNyc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c7b2673ce76b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (2)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (42)

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/3

IP

ASN