Report - kivirun.com/L6tPYq?extra_param_1=48971&external

Report Overview

Visited public
2025-03-07 06:45:56
Tags
URL
kivirun.com/L6tPYq?extra_param_1=48971&external_id=w8jm0u9lcs4s7688jbef3qm6
Finishing URL
78crystalroll45.com/not-allowed
IP / ASN
172.67.147.99
#13335 CLOUDFLARENET
Title
78crystalroll45.com/not-allowed#register

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
90crystalroll67.com	unknown	2024-09-11	2024-12-12	2025-03-05	1.5 kB	271 B	3.69.248.113
kivirun.com	unknown	2024-04-05	2024-04-06	2025-03-04	2.5 kB	2.6 kB	172.67.147.99
fonts.gstatic.com	unknown	2008-02-11	2014-04-02	2025-03-05	1.1 kB	104 kB	142.250.74.35
api.livechatinc.com	5353	2005-10-31	2013-12-20	2025-03-06	1.8 kB	18 kB	23.36.77.179
78crystalroll45.com	unknown	2024-09-11	2024-12-09	2025-03-05	35 kB	1.2 MB	3.69.248.113
static.cloudflareinsights.com	1294	2019-08-30	2019-09-24	2025-03-05	469 B	20 kB	104.16.79.73
sentry.marfa-tech.net	unknown	2021-06-03	2021-10-05	2025-03-03	1.9 kB	1.5 kB	176.9.53.66
12crystalroll34.com	unknown	2024-09-11	2024-12-07	2025-01-29	1.5 kB	813 B	3.69.248.113
accounts.livechatinc.com	7698	2005-10-31	2017-07-31	2025-03-06	575 B	1.9 kB	23.36.77.179
cdn.livechatinc.com	6288	2005-10-31	2012-06-22	2025-03-06	7.7 kB	928 kB	23.36.77.179
secure.livechatinc.com	6541	2005-10-31	2012-08-20	2025-03-06	700 B	2.0 kB	23.36.77.179
cdnwl.crystal-static.com	unknown	2024-11-08	2025-03-01	2025-03-01	955 B	24 kB	104.26.1.19
crystalroll.aramuz.net	unknown	2020-09-08	2024-12-01	2025-03-01	8.4 kB	11 kB	104.22.34.217
auth.betonliga.com	unknown	2022-11-24	2023-01-15	2025-03-03	524 B	1.1 kB	172.67.68.177
bi-metrics.aramuz.net	unknown	2020-09-08	2023-08-10	2025-03-03	1.2 kB	1.1 kB	142.132.243.105
cdn.crystal-static.com	unknown	2024-11-08	2025-03-01	2025-03-01	1.5 kB	274 kB	104.26.1.19
wss	unknown	unknown	2025-03-02	2025-03-02	637 B	267 B	23.36.77.241
fonts.googleapis.com	8877	2005-01-25	2012-05-23	2025-03-05	499 B	16 kB	142.250.74.10
go.maroonaffs.com	unknown	2024-03-13	2024-04-28	2025-03-01	746 B	72 kB	35.234.86.61
go2crystalroll.com	unknown	2024-09-11	2024-12-07	2025-03-05	2.1 kB	109 kB	104.26.4.80

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-03-07	medium	wss	Sinkholed

ThreatFox

No alerts detected

JavaScript (74)

	URL	From	Size	First Seen	Last Seen
	cdn.livechatinc.com/widget/static/js/livechat.ggOigcnE.js	ScriptElement	463 B	2025-03-06	2025-03-10
Pretty URL cdn.livechatinc.com/widget/static/js/livechat.ggOigcnE.js IP 23.36.77.179 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-06 10:44 Last Seen2025-03-10 05:50 Times Seen480 Hash 7de23639430c7627f2f742cb7723ed70 848374c92bbd1e506dc05d1cb80bb0e749ba5310 b7b97cacf85353fae0eb6400d9235abe8222da44b6aa0809c0e5317b61963ef4 Loading...

	cdn.livechatinc.com/widget/static/js/10.B9w-_AZn.chunk.js	ImportedModule	307 B	2025-03-06	2025-03-17
Pretty URL cdn.livechatinc.com/widget/static/js/10.B9w-_AZn.chunk.js IP 23.36.77.179 ASN #20940 Akamai International B.V. Introduced by importedModule Embedded in HTML false Observations First Seen2025-03-06 10:44 Last Seen2025-03-17 10:41 Times Seen1021 Hash 5e984445573850c6e38e17d5205ccfe1 b0a97183efd3d09ef952a15e0b2b34868511506c 175eb4c997e2172c0a58749d681c9bebd80f60916b43f39596c16f103d0a5b58 Loading...

	static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015	ScriptElement	20 kB	2024-06-07	2025-06-10
Pretty URL static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015 IP 104.16.79.73 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-07 09:21 Last Seen2025-06-10 03:41 Times Seen57839 Hash ec18af6d41f6f278b6aed3bdabffa7bc 62c9e2cab76b888829f3c5335e91c320b22329ae 8a18d13015336bc184819a5a768447462202ef3105ec511bf42ed8304a7ed94f Loading...

	78crystalroll45.com/assets/main.fb124585db53ddcc7fa3.js	ScriptElement	68 kB	2025-02-08	2025-05-20
Pretty URL 78crystalroll45.com/assets/main.fb124585db53ddcc7fa3.js IP 3.69.248.113 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-02-08 11:45 Last Seen2025-05-20 16:39 Times Seen131 Hash ff4f8b4819cce17f748254ac39bdb80d 981235419c2945a197c2dadb29e9250d556d6ef9 89cd0ca23581f2b441981039f5072672b6038a3a49f2f9000fd199879cfed22b Loading...

	78crystalroll45.com/assets/main.250bb832d65a21590dce.js	ScriptElement	86 kB	2025-02-08	2025-05-20
Pretty URL 78crystalroll45.com/assets/main.250bb832d65a21590dce.js IP 3.69.248.113 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-02-08 11:45 Last Seen2025-05-20 16:39 Times Seen131 Hash 4051f1854a12a4646ccdc87043742507 9d511dc2f7e6c0b0051d44686a6d1fbe633b745a 46ba8bf620500661b38351481ac4a93418afe8035db617290cf0862dbd00c5b0 Loading...

	78crystalroll45.com/assets/main.8e03a0689d1bfe77feb0.js	ScriptElement	48 kB	2025-03-04	2025-03-07
Pretty URL 78crystalroll45.com/assets/main.8e03a0689d1bfe77feb0.js IP 3.69.248.113 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-04 23:22 Last Seen2025-03-07 06:46 Times Seen6 Hash 7ff9358720e9116ac1e44651130283f1 4bf1bc30551050bb2b87680fa1e646f78a21da94 9208896dd4ec130860527dc5be8c3f5a44b58656dcd5f7ba0a291a0b15a16325 Loading...

	78crystalroll45.com/assets/main.01604291761e9b518df6.js	ScriptElement	1.4 kB	2025-01-25	2025-03-29
Pretty URL 78crystalroll45.com/assets/main.01604291761e9b518df6.js IP 3.69.248.113 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-01-25 14:40 Last Seen2025-03-29 22:12 Times Seen108 Hash 35cce0e6a286b124dde61e05d7a379b7 3ae2587741bc34b95a9b3162fb6a5877aa75667b c4f4b11840724e17ebf12cc972d3facab41b71bb0ce2368744f4f7465f87b1a0 Loading...

	cdn.livechatinc.com/tracking.js	ScriptElement	90 kB	2025-03-06	2025-03-10
Pretty URL cdn.livechatinc.com/tracking.js IP 23.36.77.179 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-06 10:44 Last Seen2025-03-10 05:50 Times Seen492 Hash b582d8ab9171af74b89bf01a0851e92e 5cdce11fe8e966f790999f1a3817eece84153755 358f3fa260121ea6f3660b7bd7cf96b9017b0390411fa7042fa0583bc5970c3c Loading...

	78crystalroll45.com/not-allowed	Function	178 B	2025-03-07	2025-04-11
Pretty URL 78crystalroll45.com/not-allowed IP 0.0.0.0 ASN #0 Introduced by Function Embedded in HTML false Observations First Seen2025-03-07 06:46 Last Seen2025-04-11 21:48 Times Seen10 Hash d82888950496f1b0b49e8f54883694b3 eecff53eef0691bf7b2036ec8e2f34baff0df150 5e815738548f2c371492d3a0863b4b091888290e4ed63379cf5efea94e761886 Loading...

	78crystalroll45.com/not-allowed	Function	139 B	2025-03-07	2025-04-11
Pretty URL 78crystalroll45.com/not-allowed IP 0.0.0.0 ASN #0 Introduced by Function Embedded in HTML false Observations First Seen2025-03-07 06:46 Last Seen2025-04-11 21:48 Times Seen10 Hash 10aaae5a56c31534c15eb9d1b8b765f3 cfaefbfac3ef519165316b925c3971b527abb166 60fd2eb67213df2363c5e9f025e714e65795ebc5e55752b785ac577239b080e8 Loading...

	78crystalroll45.com/assets/main.e64b4a73554c19744e44.js	ScriptElement	935 B	2025-02-08	2025-03-19
Pretty URL 78crystalroll45.com/assets/main.e64b4a73554c19744e44.js IP 3.69.248.113 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-02-08 11:45 Last Seen2025-03-19 10:42 Times Seen52 Hash b1414410a86f14db62780d0c3f849953 c1e3972d44a6634f6970868ce533bf8e364866ff b392186e5d3ac6d701620623d094aac08d0bf6ef4e21ce6483d4ab540e2bf921 Loading...

	78crystalroll45.com/assets/main.217ebfe67469ed214e8a.js	ScriptElement	2.7 kB	2025-03-03	2025-03-19
Pretty URL 78crystalroll45.com/assets/main.217ebfe67469ed214e8a.js IP 3.69.248.113 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-03 03:01 Last Seen2025-03-19 10:42 Times Seen44 Hash 154c969c2c87a7b050182e4219be5aba c0e675f3c7ff05583cf3f27ab229298c3ab7c531 0459a5c3b3a48b07522dae36c1384e62c54628db2689065b8b112489f3f6e14f Loading...

	cdn.livechatinc.com/widget/static/js/5.D_uKc_ak.chunk.js	ImportedModule	138 kB	2024-11-21	2025-06-10
Pretty URL cdn.livechatinc.com/widget/static/js/5.D_uKc_ak.chunk.js IP 23.36.77.179 ASN #20940 Akamai International B.V. Introduced by importedModule Embedded in HTML false Observations First Seen2024-11-21 16:15 Last Seen2025-06-10 03:15 Times Seen3839 Hash c58db33f04cbae29096de56af87c3284 2e574d1c0f61df6d1011b3f7420f64781b4e1317 cc9af994a65e2deac1f388408504e6a4059652a5c652bcbfd0898731b9153be0 Loading...

	78crystalroll45.com/assets/main.1584e87908484b5d1c11.js	ScriptElement	44 kB	2024-10-24	2025-05-20
Pretty URL 78crystalroll45.com/assets/main.1584e87908484b5d1c11.js IP 3.69.248.113 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-10-24 22:55 Last Seen2025-05-20 16:39 Times Seen225 Hash f0c68038c86f5b2deb911d6fdfd19fee e39259a61f5c2c4736e0d23f27d195a3d0754fd2 564af152d05892683f6fa117bb599058d33fc2f2170d8925cd2e6597f4cdcf69 Loading...

	78crystalroll45.com/not-allowed	Function	138 B	2023-10-29	2025-05-20
Pretty URL 78crystalroll45.com/not-allowed IP 0.0.0.0 ASN #0 Introduced by Function Embedded in HTML false Observations First Seen2023-10-29 04:01 Last Seen2025-05-20 16:39 Times Seen39 Hash 7b43dee336ea718b98fcf30894198b6a dc2e0492a762dd963ef67b7ebaa2bbfd073c3e44 2f9b810aee115865aee3d79e31ef50f2a27d82e57ff446d668f3bd28b3a9ba6c Loading...

	78crystalroll45.com/assets/main.2cac7c687e07b6f236fc.js	ScriptElement	3.8 kB	2025-03-03	2025-03-10
Pretty URL 78crystalroll45.com/assets/main.2cac7c687e07b6f236fc.js IP 3.69.248.113 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-03 03:01 Last Seen2025-03-10 03:02 Times Seen17 Hash c1331ff7818e66234045f4d11d1b6b04 eb71e0aac75851383debc793603f1f8d48da2b99 b90170669c99c98a69091f959d5cd9511d4aafc2f79b7a24af86647830cac0c8 Loading...

	78crystalroll45.com/modernizr.client.js	ScriptElement	3.1 kB	2025-02-08	2025-05-20
Pretty URL 78crystalroll45.com/modernizr.client.js IP 3.69.248.113 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-02-08 11:45 Last Seen2025-05-20 16:39 Times Seen120 Hash a9c51ecb59a527337da28f29e8d06805 29337b93ac0ba252daa2491e7d53fc8f5555a823 b1f8aa1b40cb5d1b75c8c7c847d5bafd192281c870474e27eedec3d981f67e80 Loading...

	78crystalroll45.com/not-allowed	Function	145 B	2025-03-07	2025-04-11
Pretty URL 78crystalroll45.com/not-allowed IP 0.0.0.0 ASN #0 Introduced by Function Embedded in HTML false Observations First Seen2025-03-07 06:46 Last Seen2025-04-11 21:48 Times Seen10 Hash c8a158dd7d7bf72f1258f92e1e3f3e9c 62fd266dc234f285fdab769b1d89ab2db26628e0 118725f1a9f7179c89b20515aa1854d6f0b74eb729979092bbb1a597473ba139 Loading...

	auth.betonliga.com/script.js	ScriptElement	0 B	0001-01-01	2025-06-10
Pretty URL auth.betonliga.com/script.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen0001-01-01 00:00 Last Seen2025-06-10 03:59 Times Seen4904549 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	secure.livechatinc.com/customer/action/open_chat?license_id=12226866&group=259&embedded=1&widget_version=3&unique_groups=1&organizationId=3e26eee1-3f49-4911-97b0-72c1ffb60600&use_parent_storage=1	ScriptElement	105 B	2025-03-02	2025-06-10
Pretty URL secure.livechatinc.com/customer/action/open_chat?license_id=12226866&group=259&embedded=1&widget_version=3&unique_groups=1&organizationId=3e26eee1-3f49-4911-97b0-72c1ffb60600&use_parent_storage=1 IP 23.36.77.179 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML true Observations First Seen2025-03-02 06:33 Last Seen2025-06-10 03:15 Times Seen2742 Hash d30bfddcdb3764a782b7c8584021d1d6 64ed02149d0db57e6c1d68992361d7c1330a663a 5a8894efd9ef253bc344f5587ea4fb4f4b8da39d4dbd49a390c2302898411623 Loading...

	cdn.livechatinc.com/widget/static/js/3.B5sHuEdG.chunk.js	ImportedModule	193 kB	2025-03-06	2025-03-17
Pretty URL cdn.livechatinc.com/widget/static/js/3.B5sHuEdG.chunk.js IP 23.36.77.179 ASN #20940 Akamai International B.V. Introduced by importedModule Embedded in HTML false Observations First Seen2025-03-06 10:44 Last Seen2025-03-17 10:41 Times Seen1022 Hash f86596c8708cd1da16bb5134482b9908 007802ccfe35fa6b3ae9ba8e405b03a4e831eaa8 26c379286a4f94806654b5c3ac7e1264833f8248dea1ce764207ff92c30ba985 Loading...

	go2crystalroll.com/casino?cxd=35055_372433_\|afp1:1sjos4feu04ja\|afp10:&af_dev_key=BDREFvBLEZQKVYEhZafc85&af_id=&af_sub1=&af_sub2=&af_sub3=&af_sub4=&af_sub5=&afp1=1sjos4feu04ja&afp10=&bta=35055&click_id=1sjos4feu04ja&keitaro_country=NO&keitaro_platform=Windows&keitaro_stream_id=635793&nci=5356&store_id=&utm_campaign=Onclick#register	ScriptElement	60 kB	2025-03-03	2025-03-12
Pretty URL go2crystalroll.com/casino?cxd=35055_372433_\|afp1:1sjos4feu04ja\|afp10:&af_dev_key=BDREFvBLEZQKVYEhZafc85&af_id=&af_sub1=&af_sub2=&af_sub3=&af_sub4=&af_sub5=&afp1=1sjos4feu04ja&afp10=&bta=35055&click_id=1sjos4feu04ja&keitaro_country=NO&keitaro_platform=Windows&keitaro_stream_id=635793&nci=5356&store_id=&utm_campaign=Onclick#register IP 104.26.4.80 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-03-03 03:01 Last Seen2025-03-12 00:20 Times Seen28 Hash 50a6b31aecd462358838dca6e3a47cf9 19c6986c0c57ace8f9dd0be909a7838e6e6bf57e 1d94f0a64aefba0723f2021d57d6ced906d4d6b913847f95272f4f169a93e738 Loading...

	78crystalroll45.com/assets/main.ac08365fae35b083655d.js	ScriptElement	57 kB	2025-03-04	2025-03-10
Pretty URL 78crystalroll45.com/assets/main.ac08365fae35b083655d.js IP 3.69.248.113 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-04 23:22 Last Seen2025-03-10 03:02 Times Seen14 Hash 654b550d6fed47324e7a31dcea1a5b23 d90eff3676d95e209533a93249a3017ea9324791 959fb99de7766f33914a1aedda39b4f18c536d4b5ce198917e54b1b2644c9433 Loading...

	78crystalroll45.com/assets/main.86adbf54ef5d174c36f4.js	ScriptElement	14 kB	2025-03-07	2025-03-07
Pretty URL 78crystalroll45.com/assets/main.86adbf54ef5d174c36f4.js IP 3.69.248.113 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-07 06:46 Last Seen2025-03-07 20:45 Times Seen2 Hash cbb5fbfd156e56d439ee0b1d47d528ee cbd3b1dd4f41134c1eedd1635b5a0e1ce1355270 1e5c1520c8d1379a032f53a2edf1a877f6300baa1503c1ffb0713d497da953c1 Loading...

	78crystalroll45.com/not-allowed	Function	258 B	2024-12-20	2025-05-20
Pretty URL 78crystalroll45.com/not-allowed IP 0.0.0.0 ASN #0 Introduced by Function Embedded in HTML false Observations First Seen2024-12-20 15:34 Last Seen2025-05-20 16:39 Times Seen46 Hash 89dfe967ac1b04218a208843e34ee0b7 d7df714018156d7a56ebcb54c121d329f3a7b8d2 06b968ab44d9b4c5c728296b1d4f80e5d47dba9d4895a554f4bef9b65d90b85e Loading...

	78crystalroll45.com/not-allowed	Function	160 B	2025-03-07	2025-04-11
Pretty URL 78crystalroll45.com/not-allowed IP 0.0.0.0 ASN #0 Introduced by Function Embedded in HTML false Observations First Seen2025-03-07 06:46 Last Seen2025-04-11 21:48 Times Seen10 Hash 0e8168deeb887c875eefc20f98e6d423 5b53fd3aa501fd9b08fef03231193d00976571c2 261f12296ae299938ad623ce59e7155d6ee4c11cc1b89261436bb53ac92c6f38 Loading...

	78crystalroll45.com/assets/register/build/8ac7ab9437063f0ee81c.js	ScriptElement	37 kB	2025-02-16	2025-03-10
Pretty URL 78crystalroll45.com/assets/register/build/8ac7ab9437063f0ee81c.js IP 3.69.248.113 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-02-16 08:00 Last Seen2025-03-10 03:02 Times Seen23 Hash 3f4aab1dbd0baf1ac257c9242635d38e e041ce840962a26eb617efe45c1ab686d13a52de 57ee2f0815cdc4cd15b407eb858b7a06929a343d4235bc7e71c990352373fc6e Loading...

	78crystalroll45.com/assets/main.5c823e64090d9f496111.js	ScriptElement	6.8 kB	2025-03-04	2025-03-27
Pretty URL 78crystalroll45.com/assets/main.5c823e64090d9f496111.js IP 3.69.248.113 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-04 23:22 Last Seen2025-03-27 06:01 Times Seen72 Hash 9ec18e5b8065144f8dfdc0847fbf4fcf 3274cef641c3648a3f929fdeae23249f52d104e0 022a88173b8d491afc3d383c8c262e088dc2d4d93ad75acca47271766d298e11 Loading...

	78crystalroll45.com/assets/main.48eaed04e816755f2a83.js	ScriptElement	592 B	2024-11-28	2025-05-20
Pretty URL 78crystalroll45.com/assets/main.48eaed04e816755f2a83.js IP 3.69.248.113 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-11-28 18:30 Last Seen2025-05-20 16:39 Times Seen220 Hash a5cf7283732e3fbd4700dbbec966912f cb1caa26fab37310c14d3c6cd6941af488d214e0 ae42cd2a13dd9ffbe4781a720ee87c243747bb1a9081a677e4d478d8a6884e1b Loading...

	cdn.livechatinc.com/widget/static/js/0.B6ByiV9S.chunk.js	ImportedModule	68 kB	2025-03-06	2025-03-10
Pretty URL cdn.livechatinc.com/widget/static/js/0.B6ByiV9S.chunk.js IP 23.36.77.179 ASN #20940 Akamai International B.V. Introduced by importedModule Embedded in HTML false Observations First Seen2025-03-06 10:44 Last Seen2025-03-10 05:50 Times Seen480 Hash 514e35066c1e20e1ec766f9c54f61013 ee0a7ce869eb602c8d8d453d7710830849828f14 4ef3a698b64378c2e2050369105c4c534dc19ae9aea9924023ab544f5c5a5402 Loading...

	cdn.livechatinc.com/widget/static/js/7.xhyEK0_l.chunk.js	ImportedModule	74 B	2024-06-24	2025-06-10
Pretty URL cdn.livechatinc.com/widget/static/js/7.xhyEK0_l.chunk.js IP 23.36.77.179 ASN #20940 Akamai International B.V. Introduced by importedModule Embedded in HTML false Observations First Seen2024-06-24 12:34 Last Seen2025-06-10 03:15 Times Seen5747 Hash c96a39460d2b0a92409b2b92f3da88f9 c1ad7e3c7f38743ebadf589676726dad6799a9d5 af2012b0cdfa449f186df2f8dc9b3e64b48b8c5c630cc8d3c4df61973499e7c4 Loading...

	cdn.livechatinc.com/widget/static/js/9.BlxeDT_0.chunk.js	ImportedModule	21 kB	2025-03-06	2025-03-13
Pretty URL cdn.livechatinc.com/widget/static/js/9.BlxeDT_0.chunk.js IP 23.36.77.179 ASN #20940 Akamai International B.V. Introduced by importedModule Embedded in HTML false Observations First Seen2025-03-06 10:44 Last Seen2025-03-13 10:22 Times Seen667 Hash d685ddd1468d3a2400e03c8c118c70f0 fc65d6d71640e2d3182b90befa7a05053ae64a68 bf2406ee5eabdd62ded07a5f9ca89a085624d97278ad52631744a86adac01302 Loading...

	78crystalroll45.com/assets/main.2ea1b485ab08220d8c63.js	ScriptElement	37 kB	2025-02-08	2025-05-20
Pretty URL 78crystalroll45.com/assets/main.2ea1b485ab08220d8c63.js IP 3.69.248.113 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-02-08 11:45 Last Seen2025-05-20 16:39 Times Seen131 Hash dc0070ce6bc80ba059f45734b89ba3af 77ba43c9242b68b94310d9effdc9a46167ad7e14 0b3f13606fe5eb8b9a85ab36c964cf3d27a3e1e3e5e3bc5c99e81ac753f8ae60 Loading...

	78crystalroll45.com/assets/register/build/1525a4c177e0ff3b58be.js	ScriptElement	875 B	2025-01-31	2025-04-03
Pretty URL 78crystalroll45.com/assets/register/build/1525a4c177e0ff3b58be.js IP 3.69.248.113 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-01-31 03:37 Last Seen2025-04-03 08:02 Times Seen104 Hash 5f3648a0b7fb5c4e37c5d71f623024ec 5dcce386bf1bed59b85d4a62386ca91a78ad1a7c 3a856787c24d9921d204ff6b4d81b27c2ed54aac5afe5c26ece7eee8c43b1fdd Loading...

	api.livechatinc.com/v3.6/customer/action/get_dynamic_configuration?license_id=12226866&client_id=c5e4f61e1a6c3b1521b541bc5c5a2ac5&url=https%3A%2F%2F78crystalroll45.com%2Fnot-allowed&group_id=259&channel_type=code&jsonp=__r46ggttd8rj	ScriptElement	1.4 kB	2025-03-07	2025-03-07
Pretty URL api.livechatinc.com/v3.6/customer/action/get_dynamic_configuration?license_id=12226866&client_id=c5e4f61e1a6c3b1521b541bc5c5a2ac5&url=https%3A%2F%2F78crystalroll45.com%2Fnot-allowed&group_id=259&channel_type=code&jsonp=__r46ggttd8rj IP 23.36.77.179 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-07 06:46 Last Seen2025-03-07 06:46 Times Seen1 Hash 19ef3430beb62538316034740d36c874 d982ae10758a169f4bfbb1536a57f276ba0b3e45 99c2fa6059951eb27be49c1f0d6d6aa67a09927fa66adaacf8622474c8bbfaac Loading...

	cdn.livechatinc.com/widget/static/js/4.C_rgEAoe.chunk.js	ImportedModule	193 B	2024-06-24	2025-06-10
Pretty URL cdn.livechatinc.com/widget/static/js/4.C_rgEAoe.chunk.js IP 23.36.77.179 ASN #20940 Akamai International B.V. Introduced by importedModule Embedded in HTML false Observations First Seen2024-06-24 12:34 Last Seen2025-06-10 03:15 Times Seen5742 Hash 1771376dc07da48b3f03339d86d57b7b a5861ebfff23a92ccd1ce6b8a517b6f877d50a63 6e148df31d721a0ff08563f2d676751786e01418c86ee54ee8f0e88aa46ae26a Loading...

	go2crystalroll.com/casino?cxd=35055_372433_\|afp1:1sjos4feu04ja\|afp10:&af_dev_key=BDREFvBLEZQKVYEhZafc85&af_id=&af_sub1=&af_sub2=&af_sub3=&af_sub4=&af_sub5=&afp1=1sjos4feu04ja&afp10=&bta=35055&click_id=1sjos4feu04ja&keitaro_country=NO&keitaro_platform=Windows&keitaro_stream_id=635793&nci=5356&store_id=&utm_campaign=Onclick#register	ScriptElement	11 kB	2025-03-07	2025-03-07
Pretty URL go2crystalroll.com/casino?cxd=35055_372433_\|afp1:1sjos4feu04ja\|afp10:&af_dev_key=BDREFvBLEZQKVYEhZafc85&af_id=&af_sub1=&af_sub2=&af_sub3=&af_sub4=&af_sub5=&afp1=1sjos4feu04ja&afp10=&bta=35055&click_id=1sjos4feu04ja&keitaro_country=NO&keitaro_platform=Windows&keitaro_stream_id=635793&nci=5356&store_id=&utm_campaign=Onclick#register IP 104.26.4.80 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-03-07 06:46 Last Seen2025-03-07 06:46 Times Seen1 Hash 76e1cd1ce1dfdddbd2a2c64c761f9a23 113bc34dfba73969c7408e81593724d188768be8 4f49d92a73e277ff98c05f81f3bd2b48e1f8bbf3770b5540f83280f5030d4de6 Loading...

	78crystalroll45.com/assets/main.68f0c391f7ed1b3950b9.js	ScriptElement	82 kB	2025-02-08	2025-05-20
Pretty URL 78crystalroll45.com/assets/main.68f0c391f7ed1b3950b9.js IP 3.69.248.113 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-02-08 11:45 Last Seen2025-05-20 16:39 Times Seen131 Hash d18138838c7afcdcb85342e904e5efaf ddc2f7feb120315ae6bc4ebb0d4cfaf0c354e070 6469e617fa4021e97c2c6e4ff41097ae265f1c6c203236b9ad05b8838f602835 Loading...

	78crystalroll45.com/not-allowed	Function	147 B	2025-03-07	2025-04-11
Pretty URL 78crystalroll45.com/not-allowed IP 0.0.0.0 ASN #0 Introduced by Function Embedded in HTML false Observations First Seen2025-03-07 06:46 Last Seen2025-04-11 21:48 Times Seen10 Hash 6e1f88613c90f2edc79a2d8ec6caafd3 05f71fd30cf9e080bbb93ac3ca0632d499a4847b 97fa68336c21984821298b0816855ed67b8c810cf6e8f58370790b0973d49bc0 Loading...

	78crystalroll45.com/assets/register/build/remoteEntry.js?0.07583778730762525	ScriptElement	9.1 kB	2025-03-03	2025-03-10
Pretty URL 78crystalroll45.com/assets/register/build/remoteEntry.js?0.07583778730762525 IP 3.69.248.113 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-03 03:01 Last Seen2025-03-10 03:02 Times Seen17 Hash 0979adcf499c5e31e1c677004a6643d7 230026da3bceb3b0dfba76cf58fc60f3248b50a6 076671e370b36eaf3bd40ce3a422ed2b0100fedb459c1fa8d6a4caf736393ad1 Loading...

	api.livechatinc.com/v3.4/customer/action/get_configuration?organization_id=3e26eee1-3f49-4911-97b0-72c1ffb60600&version=6741.0.116.42187.12209.19298.1313.124.4.1.3.76.29&group_id=259&jsonp=__lc_static_config	ScriptElement	4.1 kB	2025-03-07	2025-03-07
Pretty URL api.livechatinc.com/v3.4/customer/action/get_configuration?organization_id=3e26eee1-3f49-4911-97b0-72c1ffb60600&version=6741.0.116.42187.12209.19298.1313.124.4.1.3.76.29&group_id=259&jsonp=__lc_static_config IP 23.36.77.179 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-07 06:46 Last Seen2025-03-07 06:46 Times Seen1 Hash 1b3b64a826e2dfbf83a8086284822841 e6767fbc5f4c93978e5b783deb49ab24b74cb498 d2d6ae5fa38ae33adb98219391ebe6438c6830bf0088c3d425f52982cbc3ecec Loading...

	api.livechatinc.com/v3.4/customer/action/get_localization?organization_id=3e26eee1-3f49-4911-97b0-72c1ffb60600&version=acfe0cc3bdca3a685b168491bbee4cfb_392dd9a3e95e5eb7b9a4f7b382807b59&language=en&group_id=259&jsonp=__lc_localization	ScriptElement	12 kB	2025-03-07	2025-03-07
Pretty URL api.livechatinc.com/v3.4/customer/action/get_localization?organization_id=3e26eee1-3f49-4911-97b0-72c1ffb60600&version=acfe0cc3bdca3a685b168491bbee4cfb_392dd9a3e95e5eb7b9a4f7b382807b59&language=en&group_id=259&jsonp=__lc_localization IP 23.36.77.179 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-07 06:46 Last Seen2025-03-07 06:46 Times Seen1 Hash c05483f7732a67b4b2c920aa619b9489 f8fef96f7aba9bcf186a5abbab6ece931888cf6c a1fbbbd54d69298c5a4de4df4a15ec96920edf9a5bb7708e72c7bc3e7d4d69b2 Loading...

	go2crystalroll.com/casino?cxd=35055_372433_\|afp1:1sjos4feu04ja\|afp10:&af_dev_key=BDREFvBLEZQKVYEhZafc85&af_id=&af_sub1=&af_sub2=&af_sub3=&af_sub4=&af_sub5=&afp1=1sjos4feu04ja&afp10=&bta=35055&click_id=1sjos4feu04ja&keitaro_country=NO&keitaro_platform=Windows&keitaro_stream_id=635793&nci=5356&store_id=&utm_campaign=Onclick#register	ScriptElement	307 B	2025-03-05	2025-04-21
Pretty URL go2crystalroll.com/casino?cxd=35055_372433_\|afp1:1sjos4feu04ja\|afp10:&af_dev_key=BDREFvBLEZQKVYEhZafc85&af_id=&af_sub1=&af_sub2=&af_sub3=&af_sub4=&af_sub5=&afp1=1sjos4feu04ja&afp10=&bta=35055&click_id=1sjos4feu04ja&keitaro_country=NO&keitaro_platform=Windows&keitaro_stream_id=635793&nci=5356&store_id=&utm_campaign=Onclick#register IP 104.26.4.80 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-03-05 14:08 Last Seen2025-04-21 09:28 Times Seen7 Hash 09d9295c127617d0534bf16302028ccc 399d32252adb846a9ab88fe9afcab2335f9aa475 b0e48f797cae7ab08acaf2fc75266f7db529a6951b254c356088d4d0a73d85c8 Loading...

	78crystalroll45.com/assets/register/build/b1f06021138dc7f7fe0c.js	ScriptElement	42 kB	2025-03-03	2025-03-10
Pretty URL 78crystalroll45.com/assets/register/build/b1f06021138dc7f7fe0c.js IP 3.69.248.113 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-03 03:01 Last Seen2025-03-10 03:02 Times Seen17 Hash 261804b0d3767567af22b94be43f38a0 cff23b621fee5bf8319d34a2675a3d36d29068e4 d2e64ef53ae63248debf7a2b0cb98eaaa60a7d131b1329b62d591a86d1b027c6 Loading...

	78crystalroll45.com/assets/main.a33f5b1f4fe8f8d0c368.js	ScriptElement	4.8 kB	2025-03-03	2025-03-10
Pretty URL 78crystalroll45.com/assets/main.a33f5b1f4fe8f8d0c368.js IP 3.69.248.113 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-03 03:01 Last Seen2025-03-10 03:02 Times Seen17 Hash 37556a5932128834ecfea66c1de4b3a3 2530e1dc1f5ac5a106a8a3666f0935227ed60c5d 7980515009a5450a686b1cc2e2816a1f2768e43f4b89414c20becb8676bd35fa Loading...

	78crystalroll45.com/assets/register/build/1079a5421f861f5d670e.js	ScriptElement	14 kB	2025-03-03	2025-03-29
Pretty URL 78crystalroll45.com/assets/register/build/1079a5421f861f5d670e.js IP 3.69.248.113 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-03 03:01 Last Seen2025-03-29 22:12 Times Seen78 Hash 2da009ae26f0b249697ba6447e96b2ab 93c7a9e16349f26902e3cb49467859b7d63831c7 abc6bd26b5ff549b0b514e4ad4ee21a39702b4069925b862573b37fac65e6bbf Loading...

	78crystalroll45.com/assets/register/build/1ee2eeb529606f4882aa.js	ScriptElement	30 kB	2025-03-03	2025-03-19
Pretty URL 78crystalroll45.com/assets/register/build/1ee2eeb529606f4882aa.js IP 3.69.248.113 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-03 03:01 Last Seen2025-03-19 10:42 Times Seen43 Hash 4f10b19000f3eb08105febbe5af441d6 1212d37bcc3eb70c5fd9e0424ed8e630c35e5640 fb7effb5587e1587dc7aac565cf0989284c73696f97ccb5067f75a8b895d35a2 Loading...

	78crystalroll45.com/not-allowed#register	ScriptElement	104 B	2023-03-14	2025-05-27
Pretty URL 78crystalroll45.com/not-allowed#register IP 3.69.248.113 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-14 01:02 Last Seen2025-05-27 07:47 Times Seen370 Hash 21ac9cc7bc6350f0ef91cf15f5fcd0c4 a59118fe5f9e1b1b9b6b74f9f21936c0a65b950f f0cf1f9b2124dfea1706498e57be0f0a665203035d3a4a58955a550ece6ee2c4 Loading...

	78crystalroll45.com/assets/main.fc4e8fdbb3cc91b78448.js	ScriptElement	22 kB	2025-02-08	2025-05-20
Pretty URL 78crystalroll45.com/assets/main.fc4e8fdbb3cc91b78448.js IP 3.69.248.113 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-02-08 11:45 Last Seen2025-05-20 16:39 Times Seen131 Hash eeab60d1eea08f96de2fba079d327063 75731e2dbad9ca0985e1600c9703be52debbbf21 bef3d6ecdbf2c7b9b34bcbd110c819b79d64580e4ccc36188d0baa13db8b32ad Loading...

	78crystalroll45.com/assets/main.9fe08ec6ff6b4a7e4e01.js	ScriptElement	1.1 kB	2025-01-25	2025-03-29
Pretty URL 78crystalroll45.com/assets/main.9fe08ec6ff6b4a7e4e01.js IP 3.69.248.113 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-01-25 14:40 Last Seen2025-03-29 22:12 Times Seen108 Hash de433505a5b09a3f26262d158f555f5d fb48ec4d1a889233d1453d72344d88d4b2e9d845 04da9be71ff7754cca579732149d4bf3a2330ae1337fee4def5ac7d3b1341b93 Loading...

	78crystalroll45.com/not-allowed	Function	181 B	2025-03-07	2025-04-11
Pretty URL 78crystalroll45.com/not-allowed IP 0.0.0.0 ASN #0 Introduced by Function Embedded in HTML false Observations First Seen2025-03-07 06:46 Last Seen2025-04-11 21:48 Times Seen10 Hash a61e42807f5bd20ae49766b8f7dfa088 0f7c2c3fe56194074675189c4a596afbfbb9725f 43145c7601d080c95da786428332de050640f36d95e90c165e69947e665e66f4 Loading...

	78crystalroll45.com/assets/main.79a623c57a4aed6b4f12.js	ScriptElement	1.7 kB	2025-03-03	2025-03-19
Pretty URL 78crystalroll45.com/assets/main.79a623c57a4aed6b4f12.js IP 3.69.248.113 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-03 03:01 Last Seen2025-03-19 10:42 Times Seen44 Hash 5eb7fea35ba417453ca52bcda06ac918 17f0059e2fe25595b1ba42711cf3a1e32b7586f5 067f01f637a0713d8bea5ec44b7887a8a448042691786c50bc9996f2938bf3cd Loading...

	cdn.livechatinc.com/widget/static/js/6.D_CKFAbE.chunk.js	ImportedModule	782 B	2024-08-27	2025-06-10
Pretty URL cdn.livechatinc.com/widget/static/js/6.D_CKFAbE.chunk.js IP 23.36.77.179 ASN #20940 Akamai International B.V. Introduced by importedModule Embedded in HTML false Observations First Seen2024-08-27 15:26 Last Seen2025-06-10 03:15 Times Seen4644 Hash a7bc1343fb84da3f27616cc8d8edcce0 302aa551f1cd366c36eccada74d0bac2c85db43d 62ceb8a88b98bbe24a3b9fd8d65f58988e3b424bdb754e8d3effcc2d18e6d6c2 Loading...

	cdn.livechatinc.com/widget/static/js/1.CkzesxBC.chunk.js	ImportedModule	52 kB	2025-03-06	2025-03-10
Pretty URL cdn.livechatinc.com/widget/static/js/1.CkzesxBC.chunk.js IP 23.36.77.179 ASN #20940 Akamai International B.V. Introduced by importedModule Embedded in HTML false Observations First Seen2025-03-06 10:44 Last Seen2025-03-10 05:50 Times Seen480 Hash a4dec16f8f873d42cbfb2cddac9013c1 fb30d32adcd1a0ea7bcf9c73596575da349cced4 c6c66658766687f0fe5e4d11c535f32142064b642ada30a6b75285dd5d392c9f Loading...

	cdn.livechatinc.com/widget/static/js/2.Dt3945Qy.chunk.js	ImportedModule	355 kB	2025-03-06	2025-03-10
Pretty URL cdn.livechatinc.com/widget/static/js/2.Dt3945Qy.chunk.js IP 23.36.77.179 ASN #20940 Akamai International B.V. Introduced by importedModule Embedded in HTML false Observations First Seen2025-03-06 10:44 Last Seen2025-03-10 05:50 Times Seen480 Hash ceb22493f0f1701e8fb006c50eada966 e28a48e9176db21219a809aeb53a5bd409778036 3892f796a8d3e4bd1b0f8bf96a719610fb4dfaf7dbb9d769b8d5452463b73bc2 Loading...

	78crystalroll45.com/assets/main.f5edbb3a8994a5ae1432.js	ScriptElement	52 kB	2025-03-06	2025-03-07
Pretty URL 78crystalroll45.com/assets/main.f5edbb3a8994a5ae1432.js IP 3.69.248.113 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-06 11:16 Last Seen2025-03-07 06:46 Times Seen4 Hash d2b7b3b8148adc4b82cf3316d43a598e c2f63f9c2e0cd888f5c3b544d55708f5ab5d555b 275c0241a635a9a68493be403cd003a25f2c9e6c108b329d1bc80c0c964b8826 Loading...

	78crystalroll45.com/not-allowed	Function	147 B	2025-03-07	2025-04-11
Pretty URL 78crystalroll45.com/not-allowed IP 0.0.0.0 ASN #0 Introduced by Function Embedded in HTML false Observations First Seen2025-03-07 06:46 Last Seen2025-04-11 21:48 Times Seen10 Hash dd14c72ca53e6d5252fc8ac14a6041d4 40e269f21309078db1a3fe1fcff94d1bc285f5ea b782c7d04ff61c59e288d9a2ee2ce0586590da915ad43bf384789cef6477d63a Loading...

	78crystalroll45.com/assets/main.fa82552e3763c284c997.js	ScriptElement	1.9 kB	2024-07-12	2025-05-20
Pretty URL 78crystalroll45.com/assets/main.fa82552e3763c284c997.js IP 3.69.248.113 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-07-12 08:59 Last Seen2025-05-20 16:39 Times Seen283 Hash 7a34b69319c63a8fdbcddd16321f26f3 d3d8b9f54e636fbac1f1bdf9a0ddd07d5bc00729 0a042a7627dbe9721cec7c8aa5be7f0cecaa7931706de9de346ebcaa3eea8654 Loading...

	78crystalroll45.com/liveChat.js	ScriptElement	617 B	2024-08-30	2025-05-20
Pretty URL 78crystalroll45.com/liveChat.js IP 3.69.248.113 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-30 08:29 Last Seen2025-05-20 16:39 Times Seen215 Hash af39fe86393de851d25e9aa64641bd8d 4e491fd1ff0eb75124ba1a87fe5841262fe067b8 f1f18b2c24ebbf090b52e0abe0bcd8a6e824840ca7ba61cafa29b8445847b262 Loading...

	78crystalroll45.com/assets/main.57086ad1a78679155a33.js	ScriptElement	343 B	2025-03-03	2025-03-19
Pretty URL 78crystalroll45.com/assets/main.57086ad1a78679155a33.js IP 3.69.248.113 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-03 03:01 Last Seen2025-03-19 10:42 Times Seen43 Hash e691ae47f05cb6ce4d719713173134ba f2b2d26ac41d4b1b3a7b2f5e88fb898aabd13937 34948af0c5fcaec253dec86de25b80c8fbd0bfc80397d1909ed5253a5f52ba44 Loading...

	78crystalroll45.com/assets/register/build/c45b6498e53c62954230.js	ScriptElement	35 kB	2025-03-03	2025-03-19
Pretty URL 78crystalroll45.com/assets/register/build/c45b6498e53c62954230.js IP 3.69.248.113 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-03 03:01 Last Seen2025-03-19 10:42 Times Seen43 Hash 3c81fba4bd34380f72cc2b81f5b984c1 e3a74c2ef2f43665240003ed3921aae8ec562402 353fa685fa7cef580795b6732ed2c63c69efd6b66289a7ed10bcc8c262718a95 Loading...

	cdn.livechatinc.com/widget/static/js/8.qYTqns9Q.chunk.js	ImportedModule	40 B	2024-07-04	2025-06-10
Pretty URL cdn.livechatinc.com/widget/static/js/8.qYTqns9Q.chunk.js IP 23.36.77.179 ASN #20940 Akamai International B.V. Introduced by importedModule Embedded in HTML false Observations First Seen2024-07-04 09:32 Last Seen2025-06-10 03:15 Times Seen5610 Hash d541ce2d754402b833cc65b76eaea2c6 c36a92a0f5cef497ce42b1e8b4c72c8d9bd3786b 80353503e48ebf6c2ae9f70184d3e758f64bacf48afe147e039df807509200cb Loading...

	cdn.livechatinc.com/widget/static/js/11.Gv78iMd6.chunk.js	ImportedModule	240 B	2024-06-24	2025-06-10
Pretty URL cdn.livechatinc.com/widget/static/js/11.Gv78iMd6.chunk.js IP 23.36.77.179 ASN #20940 Akamai International B.V. Introduced by importedModule Embedded in HTML false Observations First Seen2024-06-24 12:34 Last Seen2025-06-10 03:15 Times Seen5755 Hash 8ec94005c25c7e0874b7b048ea97dc00 2649e6120dff6489d15cf68a590e6e73e153aae3 d3b76fb03a7607b5da00fc0252be26fef8c76a0b68feb2ff19b439eeeab3f705 Loading...

	78crystalroll45.com/assets/main.e58d3cf412adfa2fce23.js	ScriptElement	2.0 kB	2025-03-07	2025-03-18
Pretty URL 78crystalroll45.com/assets/main.e58d3cf412adfa2fce23.js IP 3.69.248.113 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-07 06:46 Last Seen2025-03-18 22:00 Times Seen7 Hash 7c894c48a7d0873137ae8eeedfe8881b 9d67701343dfdc2d2a39fd932ea67619a7619dc6 3499c942a895654539cc6194ae4d9ae58490fe4cf3623969bcf094b919d8e19b Loading...

	78crystalroll45.com/assets/main.85c7fc08416b94216111.js	ScriptElement	2.5 kB	2025-03-03	2025-03-10
Pretty URL 78crystalroll45.com/assets/main.85c7fc08416b94216111.js IP 3.69.248.113 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-03 03:01 Last Seen2025-03-10 03:02 Times Seen17 Hash 4934633427af803a267affe846f9429d 78faa15ce7ae492681fa5b9330a519ee195df2dd 0313f67fdfdb7396af205826b6dc61e5e57db0afd0b07ed41a6ae5d2e3583fef Loading...

	78crystalroll45.com/assets/register/build/b8e2d4154d4540503cd9.js	ScriptElement	22 kB	2025-03-03	2025-03-19
Pretty URL 78crystalroll45.com/assets/register/build/b8e2d4154d4540503cd9.js IP 3.69.248.113 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-03 03:01 Last Seen2025-03-19 10:42 Times Seen43 Hash d080af811d5f407803a40ad92aec8686 77f96c83840abb6613a5a262e24d71fde238a69e 038b7bd01825aa63c723266ddb7c75bf34f92c96e5f99c24f73b7520464e4162 Loading...

	78crystalroll45.com/not-allowed#register	ScriptElement	28 kB	2025-03-07	2025-03-07
Pretty URL 78crystalroll45.com/not-allowed#register IP 3.69.248.113 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2025-03-07 06:46 Last Seen2025-03-07 06:46 Times Seen1 Hash c62f0b3cb13552ca8f47ba0ce2412b09 b60cdc9aefd728c249933281cb7344030416125b 73ff51e16f0768c99f7be62cb860ff091a51bb730d152c6bb0f97bc5e7781920 Loading...

	78crystalroll45.com/assets/main.bd15da43dc107ad2e47f.js	ScriptElement	50 kB	2025-03-06	2025-03-07
Pretty URL 78crystalroll45.com/assets/main.bd15da43dc107ad2e47f.js IP 3.69.248.113 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-06 11:16 Last Seen2025-03-07 06:46 Times Seen4 Hash a65c7976033dfb5411ba43a885429dfc 69b60f5d258570ef0850fb24c0ccc8f2a1ecefd8 ca963e17a4852ded6c53df24cec28fff77d68be89ab4d10ecf36b0f5864f3041 Loading...

	78crystalroll45.com/assets/main.acdab924f4eea4997d3c.js	ScriptElement	2.4 kB	2025-03-03	2025-03-10
Pretty URL 78crystalroll45.com/assets/main.acdab924f4eea4997d3c.js IP 3.69.248.113 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-03 03:01 Last Seen2025-03-10 03:02 Times Seen17 Hash 5a6bc1d71a590672dfbdc39f4cead7c6 e77833d704c90a34657700d9752de745f7999eb4 811b1bb11095b34246b10738be93d0c21ad26f31165411f4ea805875400ff77d Loading...

	78crystalroll45.com/not-allowed	Function	141 B	2024-12-23	2025-05-20
Pretty URL 78crystalroll45.com/not-allowed IP 0.0.0.0 ASN #0 Introduced by Function Embedded in HTML false Observations First Seen2024-12-23 09:56 Last Seen2025-05-20 16:39 Times Seen34 Hash 80703a30038e1daa5fb29446555a5fed 286d2405f4523ed8acbe2740e036f92f001619ad 7f2f4aaad2d7133a7ec6f6cb4aa1754e3f61deca06121dffe00cd219ba7ef2de Loading...

	cdn.livechatinc.com/widget/static/js/12.DJPUQwQu.chunk.js	ImportedModule	300 B	2024-08-27	2025-06-10
Pretty URL cdn.livechatinc.com/widget/static/js/12.DJPUQwQu.chunk.js IP 23.36.77.179 ASN #20940 Akamai International B.V. Introduced by importedModule Embedded in HTML false Observations First Seen2024-08-27 15:26 Last Seen2025-06-10 03:15 Times Seen4658 Hash 640caab52100a1e9dfe618aaeb79838f 4654776a82e5405614a595d40cb33ca2b5bae0b5 fb8eb817d7251014c136b441bd4004fa6567908059013edbb938925f23b67ceb Loading...

	cdn.livechatinc.com/widget/static/js/13.Du4z9uvj.chunk.js	ImportedModule	231 B	2024-08-27	2025-06-10
Pretty URL cdn.livechatinc.com/widget/static/js/13.Du4z9uvj.chunk.js IP 23.36.77.179 ASN #20940 Akamai International B.V. Introduced by importedModule Embedded in HTML false Observations First Seen2024-08-27 15:26 Last Seen2025-06-10 03:15 Times Seen4656 Hash c77c70c8570694d5e20553711a6d1b28 72e8a99d408cca32977b7c54d2210d53188e94e7 bc125921b5e4dde1c19d4fbc0a6ef3ea616eee9577822c96b29789b7f69ba5fd Loading...

	78crystalroll45.com/sw-installer.js	ScriptElement	119 B	2024-10-24	2025-04-11
Pretty URL 78crystalroll45.com/sw-installer.js IP 3.69.248.113 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-10-24 22:55 Last Seen2025-04-11 21:48 Times Seen101 Hash 124d5c53ac158e9c86397719cd6e11cb 6c554d044122b75795c16e3bcef27f80aab8e3e7 16859b7cd7e71c1809421f222841de088c861d90df5e7476238570a96028aacf Loading...

		Size	First Seen	Last Seen
	#1 Write - ca961ef9c762d0646e4d6a217d494aab	6.7 kB	2025-03-07 06:46	2025-03-07 06:46
Pretty Observations First Seen2025-03-07 06:46 Last Seen2025-03-07 06:46 Times Seen1 Hash ca961ef9c762d0646e4d6a217d494aab f85a25556d19797a1fc3fbd70f5ba02456e966db 927a0f896c77a0b6226f6b9d798b9206a2df4038d57c6b72673a2748ef13acde Loading...

HTTP Transactions (116)

URL IP Response Size

api.livechatinc.com/v3.4/customer/action/get_localization?organization_id=3e26eee1-3f49-4911-97b0-72c1ffb60600&version=acfe0cc3bdca3a685b168491bbee4cfb_392dd9a3e95e5eb7b9a4f7b382807b59&language=en&group_id=259&jsonp=__lc_localization

23.36.77.179

200 OK

12 kB

URL GET
api.livechatinc.com/v3.4/customer/action/get_localization?organization_id=3e26eee1-3f49-4911-97b0-72c1ffb60600&version=acfe0cc3bdca3a685b168491bbee4cfb_392dd9a3e95e5eb7b9a4f7b382807b59&language=en&group_id=259&jsonp=__lc_localization
IP
23.36.77.179:443
ASN
#20940 Akamai International B.V.

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerDigiCert Inc
Subjectlivechat.com
FingerprintA9:A2:B2:15:09:CC:34:E7:F9:94:88:21:E7:5A:86:A1:30:A3:B6:DC
ValidityWed, 10 Jul 2024 00:00:00 GMT - Thu, 10 Jul 2025 23:59:59 GMT

File type

Size
12 kB (11478 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /v3.4/customer/action/get_localization?organization_id=3e26eee1-3f49-4911-97b0-72c1ffb60600&version=acfe0cc3bdca3a685b168491bbee4cfb_392dd9a3e95e5eb7b9a4f7b382807b59&language=en&group_id=259&jsonp=__lc_localization HTTP/1.1
Host: api.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-encoding: gzip
content-type: application/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
deprecation: 2024-11-30
vary: Accept-Encoding
cache-control: public, max-age=600
expires: Fri, 07 Mar 2025 06:55:40 GMT
date: Fri, 07 Mar 2025 06:45:40 GMT
content-length: 3990
X-Firefox-Spdy: h2

cdn.livechatinc.com/widget/static/js/0.B6ByiV9S.chunk.js

23.36.77.179

200 OK

68 kB

URL GET
cdn.livechatinc.com/widget/static/js/0.B6ByiV9S.chunk.js
IP
23.36.77.179:443
ASN
#20940 Akamai International B.V.

Requested by
https://secure.livechatinc.com/customer/action/open_chat?license_id=12226866&group=259&embedded=1&widget_version=3&unique_groups=1&organizationId=3e26eee1-3f49-4911-97b0-72c1ffb60600&use_parent_storage=1
Certificate
IssuerDigiCert Inc
Subjectlivechat.com
FingerprintA9:A2:B2:15:09:CC:34:E7:F9:94:88:21:E7:5A:86:A1:30:A3:B6:DC
ValidityWed, 10 Jul 2024 00:00:00 GMT - Thu, 10 Jul 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
68 kB (67584 bytes)
Hash
514e35066c1e20e1ec766f9c54f61013
ee0a7ce869eb602c8d8d453d7710830849828f14
4ef3a698b64378c2e2050369105c4c534dc19ae9aea9924023ab544f5c5a5402

HTTP Headers

GET /widget/static/js/0.B6ByiV9S.chunk.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://secure.livechatinc.com
DNT: 1
Connection: keep-alive
Referer: https://cdn.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Thu, 06 Mar 2025 10:39:57 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
x-amz-version-id: VMIO7t.nK63tzuiBdhWNMpO7tJe.mQqR
server: AmazonS3
etag: W/"514e35066c1e20e1ec766f9c54f61013"
vary: accept-encoding
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: MRNi8XVbvkPpXPBVzB9Y1kpAWrM7T7ql5hQst5z_fgpSoXDpJ98j8A==
content-length: 21281
cache-control: max-age=31536000
expires: Sat, 07 Mar 2026 06:45:41 GMT
date: Fri, 07 Mar 2025 06:45:41 GMT
content-type: application/javascript; charset=utf-8
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
X-Firefox-Spdy: h2

78crystalroll45.com/assets/main.fc4e8fdbb3cc91b78448.js

3.69.248.113

200 OK

22 kB

URL GET
78crystalroll45.com/assets/main.fc4e8fdbb3cc91b78448.js
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type
JavaScript source, ASCII text, with very long lines (22346)
Size
22 kB (22429 bytes)
Hash
eeab60d1eea08f96de2fba079d327063
75731e2dbad9ca0985e1600c9703be52debbbf21
bef3d6ecdbf2c7b9b34bcbd110c819b79d64580e4ccc36188d0baa13db8b32ad

HTTP Headers

GET /assets/main.fc4e8fdbb3cc91b78448.js HTTP/1.1
Host: 78crystalroll45.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/not-allowed
Cookie: referer=https%3A%2F%2Fgo2crystalroll.com%2F; UUID=56a0cc79-122b-418a-b78e-1fed5cfc43b0; UGID=258385916780386686; lastActivityTime=1741329937451; entryTime=1741329937487; i18n_redirected=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:38 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=31536
Last-Modified: Wed, 05 Mar 2025 14:24:16 GMT
ETag: W/"579d-19566b163c1"
Content-Encoding: gzip

78crystalroll45.com/assets/main.2cac7c687e07b6f236fc.js

3.69.248.113

200 OK

3.8 kB

URL GET
78crystalroll45.com/assets/main.2cac7c687e07b6f236fc.js
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (3866), with no line terminators
Size
3.8 kB (3754 bytes)
Hash
9dda7d3a615c75b6b4947932f0a4808f
0605ceb04758aa7f5622e7abc248032e15f83858
37c9c1a0de7ae7b08fd933ce93e684ae47e2542a97db0d45fef6d6736ffe0dd3

HTTP Headers

GET /assets/main.2cac7c687e07b6f236fc.js HTTP/1.1
Host: 78crystalroll45.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/not-allowed
Cookie: referer=https%3A%2F%2Fgo2crystalroll.com%2F; UUID=56a0cc79-122b-418a-b78e-1fed5cfc43b0; UGID=258385916780386686; lastActivityTime=1741329937451; entryTime=1741329937487; i18n_redirected=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:39 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=31536
Last-Modified: Wed, 05 Mar 2025 14:24:16 GMT
ETag: W/"eaa-19566b163a1"
Content-Encoding: gzip

78crystalroll45.com/assets/main.79a623c57a4aed6b4f12.js

3.69.248.113

200 OK

1.7 kB

URL GET
78crystalroll45.com/assets/main.79a623c57a4aed6b4f12.js
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (1761), with no line terminators
Size
1.7 kB (1749 bytes)
Hash
b5a23591849a3d2299c4d8596205de5f
b9e7dba27c28848c1384753c1aa17c65c965e42b
6621535e96aab66fb8e59015ec9503698951bff6d01f21e5af8010c1ed3c1a55

HTTP Headers

GET /assets/main.79a623c57a4aed6b4f12.js HTTP/1.1
Host: 78crystalroll45.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/not-allowed
Cookie: referer=https%3A%2F%2Fgo2crystalroll.com%2F; UUID=56a0cc79-122b-418a-b78e-1fed5cfc43b0; UGID=258385916780386686; lastActivityTime=1741329937451; entryTime=1741329937487; i18n_redirected=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:39 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=31536
Last-Modified: Wed, 05 Mar 2025 14:24:16 GMT
ETag: W/"6d5-19566b163ad"
Content-Encoding: gzip

crystalroll.aramuz.net/frontapi/crystalroll/analyticsEvent?locale=en

104.22.34.217

200 OK

0 B

URL OPTIONS
crystalroll.aramuz.net/frontapi/crystalroll/analyticsEvent?locale=en
IP
104.22.34.217:443
ASN
#13335 CLOUDFLARENET

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subjectaramuz.net
Fingerprint9C:02:46:99:AD:75:1B:6A:5B:78:52:0C:E3:CD:7E:8F:93:22:44:58
ValidityTue, 28 Jan 2025 09:48:13 GMT - Mon, 28 Apr 2025 09:48:12 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /frontapi/crystalroll/analyticsEvent?locale=en HTTP/1.1
Host: crystalroll.aramuz.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,visitor-uuid
Referer: https://78crystalroll45.com/
Origin: https://78crystalroll45.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 07 Mar 2025 06:45:40 GMT
content-type: application/octet-stream
content-length: 0
access-control-expose-headers: x-meta-count, x-meta-next-page-token, Content-Location, Visitor-Uuid, x-meta-prev-page-token
access-control-allow-origin: *
access-control-allow-methods: OPTIONS, GET, HEAD, POST, PUT, DELETE, PATCH
access-control-allow-headers: Authorization, Content-Type, X-Auth-Token, cache-control, x-requested-with, Visitor-Uuid, x-meta-prev-page-token, x-user-origin, x-color-depth, x-language, x-screen-height, x-screen-width, x-time-zone, x-time-zone-offset, x-java-enabled, x-java-script-enabled
access-control-allow-credentials: true
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 91c8219dcd5692a9-CPH
X-Firefox-Spdy: h2

78crystalroll45.com/assets/style.9097a691.css

3.69.248.113

200 OK

179 B

URL GET
78crystalroll45.com/assets/style.9097a691.css
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type
ASCII text, with no line terminators
Size
179 B (179 bytes)
Hash
ad06c1020d673bb6771c442e32b28494
4b1d8a2555e6483f519e313beef18e10c7c1311b
ccf82621324bc52afcc96f5d72747f9fd9a57929ea0dc2ce50a1a882b2aa912e

HTTP Headers

GET /assets/style.9097a691.css HTTP/1.1
Host: 78crystalroll45.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/not-allowed
Cookie: referer=https%3A%2F%2Fgo2crystalroll.com%2F; UUID=56a0cc79-122b-418a-b78e-1fed5cfc43b0; UGID=258385916780386686; lastActivityTime=1741329937451; entryTime=1741329937487; i18n_redirected=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:37 GMT
Content-Type: text/css; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=31536
Last-Modified: Wed, 05 Mar 2025 14:24:16 GMT
ETag: W/"b3-19566b163cd"
Content-Encoding: gzip

78crystalroll45.com/casino?cxd=35055_372433_%7Cafp1%3A1sjos4feu04ja%7Cafp10%3A&af_dev_key=BDREFvBLEZQKVYEhZafc85&af_id=&af_sub1=&af_sub2=&af_sub3=&af_sub4=&af_sub5=&afp1=1sjos4feu04ja&afp10=&bta=35055&click_id=1sjos4feu04ja&keitaro_country=NO&keitaro_platform=Windows&keitaro_stream_id=635793&nci=5356&store_id=&utm_campaign=Onclick&_rd=eyJyb3RhdG9ySWQiOiIzZjIyMGMxNjIwZWM3MGNkMTc4OWZiMzcwNjhlYTg1OWNmY2E2NjM4MTVlNjU4NDhiYjcwZDFiMmU3M2M3YzM5Iiwicm90YXRvclJvdXRlciI6ImdvMmNyeXN0YWxyb2xsLmNvbSJ9#register

3.69.248.113

302 Found

35 kB

URL User Request GET
78crystalroll45.com/casino?cxd=35055_372433_%7Cafp1%3A1sjos4feu04ja%7Cafp10%3A&af_dev_key=BDREFvBLEZQKVYEhZafc85&af_id=&af_sub1=&af_sub2=&af_sub3=&af_sub4=&af_sub5=&afp1=1sjos4feu04ja&afp10=&bta=35055&click_id=1sjos4feu04ja&keitaro_country=NO&keitaro_platform=Windows&keitaro_stream_id=635793&nci=5356&store_id=&utm_campaign=Onclick&_rd=eyJyb3RhdG9ySWQiOiIzZjIyMGMxNjIwZWM3MGNkMTc4OWZiMzcwNjhlYTg1OWNmY2E2NjM4MTVlNjU4NDhiYjcwZDFiMmU3M2M3YzM5Iiwicm90YXRvclJvdXRlciI6ImdvMmNyeXN0YWxyb2xsLmNvbSJ9#register
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type

Size
35 kB (34628 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /casino?cxd=35055_372433_%7Cafp1%3A1sjos4feu04ja%7Cafp10%3A&af_dev_key=BDREFvBLEZQKVYEhZafc85&af_id=&af_sub1=&af_sub2=&af_sub3=&af_sub4=&af_sub5=&afp1=1sjos4feu04ja&afp10=&bta=35055&click_id=1sjos4feu04ja&keitaro_country=NO&keitaro_platform=Windows&keitaro_stream_id=635793&nci=5356&store_id=&utm_campaign=Onclick&_rd=eyJyb3RhdG9ySWQiOiIzZjIyMGMxNjIwZWM3MGNkMTc4OWZiMzcwNjhlYTg1OWNmY2E2NjM4MTVlNjU4NDhiYjcwZDFiMmU3M2M3YzM5Iiwicm90YXRvclJvdXRlciI6ImdvMmNyeXN0YWxyb2xsLmNvbSJ9 HTTP/1.1
Host: 78crystalroll45.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://go2crystalroll.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:37 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Set-Cookie: referer=https%3A%2F%2Fgo2crystalroll.com%2F; Max-Age=31556952; Path=/; Expires=Sat, 07 Mar 2026 12:34:49 GMT
UUID=56a0cc79-122b-418a-b78e-1fed5cfc43b0; Max-Age=31556952; Path=/; Expires=Sat, 07 Mar 2026 12:34:49 GMT
UGID=258385916780386686; Path=/
lastActivityTime=1741329937342; Path=/
entryTime=1741329937411; Max-Age=31556952; Path=/; Expires=Sat, 07 Mar 2026 12:34:49 GMT
Location: /not-allowed

78crystalroll45.com/assets/main.48eaed04e816755f2a83.js

3.69.248.113

200 OK

592 B

URL GET
78crystalroll45.com/assets/main.48eaed04e816755f2a83.js
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (596), with no line terminators
Size
592 B (592 bytes)
Hash
dc410c92cea4d063b07a52b363f573be
b05a57b1b9beee2c86ebffca6c41515ca80725f5
be1b78a91a7b8b82fae7bbb862c5789d96e728beb1c07e9ee3a4dc0572acc580

HTTP Headers

GET /assets/main.48eaed04e816755f2a83.js HTTP/1.1
Host: 78crystalroll45.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/not-allowed
Cookie: referer=https%3A%2F%2Fgo2crystalroll.com%2F; UUID=56a0cc79-122b-418a-b78e-1fed5cfc43b0; UGID=258385916780386686; lastActivityTime=1741329937451; entryTime=1741329937487; i18n_redirected=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:39 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=31536
Last-Modified: Wed, 05 Mar 2025 14:24:16 GMT
ETag: W/"250-19566b163a5"
Content-Encoding: gzip

78crystalroll45.com/assets/main.01604291761e9b518df6.js

3.69.248.113

200 OK

1.4 kB

URL GET
78crystalroll45.com/assets/main.01604291761e9b518df6.js
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (1414), with no line terminators
Size
1.4 kB (1382 bytes)
Hash
499c3df5c439cb120ce54b32de4a1dc9
bdbe1795b63699c65f15006c4668b5acc0fca19b
1f2d7c64653c6928eeea0c96a0f49a34c2ad47761ba0e2e2794796552d5d2e30

HTTP Headers

GET /assets/main.01604291761e9b518df6.js HTTP/1.1
Host: 78crystalroll45.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/not-allowed
Cookie: referer=https%3A%2F%2Fgo2crystalroll.com%2F; UUID=56a0cc79-122b-418a-b78e-1fed5cfc43b0; UGID=258385916780386686; lastActivityTime=1741329937451; entryTime=1741329937487; i18n_redirected=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:39 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=31536
Last-Modified: Wed, 05 Mar 2025 14:24:16 GMT
ETag: W/"566-19566b16399"
Content-Encoding: gzip

cdn.livechatinc.com/widget/static/js/6.D_CKFAbE.chunk.js

23.36.77.179

200 OK

782 B

URL GET
cdn.livechatinc.com/widget/static/js/6.D_CKFAbE.chunk.js
IP
23.36.77.179:443
ASN
#20940 Akamai International B.V.

Requested by
https://secure.livechatinc.com/customer/action/open_chat?license_id=12226866&group=259&embedded=1&widget_version=3&unique_groups=1&organizationId=3e26eee1-3f49-4911-97b0-72c1ffb60600&use_parent_storage=1
Certificate
IssuerDigiCert Inc
Subjectlivechat.com
FingerprintA9:A2:B2:15:09:CC:34:E7:F9:94:88:21:E7:5A:86:A1:30:A3:B6:DC
ValidityWed, 10 Jul 2024 00:00:00 GMT - Thu, 10 Jul 2025 23:59:59 GMT

File type
ASCII text, with very long lines (837), with no line terminators
Size
782 B (782 bytes)
Hash
f64c12b6fd614654b7502a8fc20dd225
dcb8b62737d5126354e93c8095ed9e45cf8fdbb4
8409a7f800b0349a9cddb666a65beb110ec67529f66919cf269eb8a1a52a3440

HTTP Headers

GET /widget/static/js/6.D_CKFAbE.chunk.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://secure.livechatinc.com
DNT: 1
Connection: keep-alive
Referer: https://cdn.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Thu, 29 Aug 2024 11:11:44 GMT
etag: "a7bc1343fb84da3f27616cc8d8edcce0"
x-amz-server-side-encryption: AES256
x-amz-version-id: RISafw8.fBWwQ3jhFA50JpdKbdTY8l5c
accept-ranges: bytes
server: AmazonS3
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: z7Y8bVu8cNHvO0m-GM3hVCi8yi8XHXt-iNuPuhtivon3b11bAHxmHg==
vary: Accept-Encoding
content-encoding: gzip
content-length: 488
cache-control: max-age=31536000
expires: Sat, 07 Mar 2026 06:45:41 GMT
date: Fri, 07 Mar 2025 06:45:41 GMT
content-type: application/javascript; charset=utf-8
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn.livechatinc.com/widget/static/js/8.qYTqns9Q.chunk.js

23.36.77.179

200 OK

40 B

URL GET
cdn.livechatinc.com/widget/static/js/8.qYTqns9Q.chunk.js
IP
23.36.77.179:443
ASN
#20940 Akamai International B.V.

Requested by
https://secure.livechatinc.com/customer/action/open_chat?license_id=12226866&group=259&embedded=1&widget_version=3&unique_groups=1&organizationId=3e26eee1-3f49-4911-97b0-72c1ffb60600&use_parent_storage=1
Certificate
IssuerDigiCert Inc
Subjectlivechat.com
FingerprintA9:A2:B2:15:09:CC:34:E7:F9:94:88:21:E7:5A:86:A1:30:A3:B6:DC
ValidityWed, 10 Jul 2024 00:00:00 GMT - Thu, 10 Jul 2025 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
7e52a399c848d69ce8f46de048d65818
04edadbe38b55f2bc90a9b8208629ea83cad73ad
d0bbdb2fd6d32b3abeb08e1ebb30d5e60f116b7fedc8e103c654be8faf9e893f

HTTP Headers

GET /widget/static/js/8.qYTqns9Q.chunk.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://secure.livechatinc.com
DNT: 1
Connection: keep-alive
Referer: https://cdn.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Mon, 20 Jan 2025 06:34:58 GMT
etag: "d541ce2d754402b833cc65b76eaea2c6"
x-amz-server-side-encryption: AES256
x-amz-version-id: CCfqOA8mhA5xinMzg93FYb2qTWHBN.4k
accept-ranges: bytes
server: AmazonS3
x-amz-cf-pop: ARN53-P2
x-amz-cf-id: rV5k9DZRL8x_JA_367TQIV6QCToRb0QQwjEZwpKdYPoMdLHkqzY47A==
vary: Accept-Encoding
content-encoding: gzip
content-length: 60
cache-control: max-age=31536000
expires: Sat, 07 Mar 2026 06:45:41 GMT
date: Fri, 07 Mar 2025 06:45:41 GMT
content-type: application/javascript; charset=utf-8
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn.livechatinc.com/widget/static/js/9.BlxeDT_0.chunk.js

23.36.77.179

200 OK

21 kB

URL GET
cdn.livechatinc.com/widget/static/js/9.BlxeDT_0.chunk.js
IP
23.36.77.179:443
ASN
#20940 Akamai International B.V.

Requested by
https://secure.livechatinc.com/customer/action/open_chat?license_id=12226866&group=259&embedded=1&widget_version=3&unique_groups=1&organizationId=3e26eee1-3f49-4911-97b0-72c1ffb60600&use_parent_storage=1
Certificate
IssuerDigiCert Inc
Subjectlivechat.com
FingerprintA9:A2:B2:15:09:CC:34:E7:F9:94:88:21:E7:5A:86:A1:30:A3:B6:DC
ValidityWed, 10 Jul 2024 00:00:00 GMT - Thu, 10 Jul 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (20911)
Size
21 kB (20912 bytes)
Hash
d685ddd1468d3a2400e03c8c118c70f0
fc65d6d71640e2d3182b90befa7a05053ae64a68
bf2406ee5eabdd62ded07a5f9ca89a085624d97278ad52631744a86adac01302

HTTP Headers

GET /widget/static/js/9.BlxeDT_0.chunk.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://secure.livechatinc.com
DNT: 1
Connection: keep-alive
Referer: https://cdn.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Thu, 06 Mar 2025 10:39:57 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
x-amz-version-id: Qom.7qrUsvuhiMTGfc.su8aN8oQMNezG
server: AmazonS3
etag: W/"d685ddd1468d3a2400e03c8c118c70f0"
vary: accept-encoding
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: GAX7-0tB2lZKv-EWFZeOCXg4wQ4F36DL_nXhyj-PWdbmv3k_G6X-HA==
content-length: 6547
cache-control: max-age=31536000
expires: Sat, 07 Mar 2026 06:45:41 GMT
date: Fri, 07 Mar 2025 06:45:41 GMT
content-type: application/javascript; charset=utf-8
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
X-Firefox-Spdy: h2

78crystalroll45.com/assets/main.fb124585db53ddcc7fa3.js

3.69.248.113

200 OK

68 kB

URL GET
78crystalroll45.com/assets/main.fb124585db53ddcc7fa3.js
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
68 kB (67505 bytes)
Hash
ff4f8b4819cce17f748254ac39bdb80d
981235419c2945a197c2dadb29e9250d556d6ef9
89cd0ca23581f2b441981039f5072672b6038a3a49f2f9000fd199879cfed22b

HTTP Headers

GET /assets/main.fb124585db53ddcc7fa3.js HTTP/1.1
Host: 78crystalroll45.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/not-allowed
Cookie: referer=https%3A%2F%2Fgo2crystalroll.com%2F; UUID=56a0cc79-122b-418a-b78e-1fed5cfc43b0; UGID=258385916780386686; lastActivityTime=1741329937451; entryTime=1741329937487; i18n_redirected=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:38 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=31536
Last-Modified: Wed, 05 Mar 2025 14:24:16 GMT
ETag: W/"107b1-19566b163c1"
Content-Encoding: gzip

cdn.livechatinc.com/widget/static/js/4.C_rgEAoe.chunk.js

23.36.77.179

200 OK

193 B

URL GET
cdn.livechatinc.com/widget/static/js/4.C_rgEAoe.chunk.js
IP
23.36.77.179:443
ASN
#20940 Akamai International B.V.

Requested by
https://secure.livechatinc.com/customer/action/open_chat?license_id=12226866&group=259&embedded=1&widget_version=3&unique_groups=1&organizationId=3e26eee1-3f49-4911-97b0-72c1ffb60600&use_parent_storage=1
Certificate
IssuerDigiCert Inc
Subjectlivechat.com
FingerprintA9:A2:B2:15:09:CC:34:E7:F9:94:88:21:E7:5A:86:A1:30:A3:B6:DC
ValidityWed, 10 Jul 2024 00:00:00 GMT - Thu, 10 Jul 2025 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
193 B (193 bytes)
Hash
888857dd09626a3a8d1a5e5e5d295dd7
11d112915e6794be6d36fad76f174f88232bf07d
590f381f217d89276b6837d551c926be1196cf57737c82f30da0e4c2f007f383

HTTP Headers

GET /widget/static/js/4.C_rgEAoe.chunk.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://secure.livechatinc.com
DNT: 1
Connection: keep-alive
Referer: https://cdn.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Tue, 03 Sep 2024 09:43:31 GMT
etag: "1771376dc07da48b3f03339d86d57b7b"
x-amz-server-side-encryption: AES256
x-amz-version-id: FYqIglfK_Tse58SVRo900KYOsHC8qkt.
accept-ranges: bytes
server: AmazonS3
x-amz-cf-pop: ARN53-P2
x-amz-cf-id: 7zzVoPpNaxIGl5i_54j1jePYhux_ciZ3vMnB3htzuICDR_k5_1vt0w==
vary: Accept-Encoding
content-encoding: gzip
content-length: 159
cache-control: max-age=31536000
expires: Sat, 07 Mar 2026 06:45:41 GMT
date: Fri, 07 Mar 2025 06:45:41 GMT
content-type: application/javascript; charset=utf-8
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
X-Firefox-Spdy: h2

78crystalroll45.com/assets/main.250bb832d65a21590dce.js

3.69.248.113

200 OK

86 kB

URL GET
78crystalroll45.com/assets/main.250bb832d65a21590dce.js
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type
JavaScript source, ASCII text, with very long lines (65453)
Size
86 kB (85665 bytes)
Hash
4051f1854a12a4646ccdc87043742507
9d511dc2f7e6c0b0051d44686a6d1fbe633b745a
46ba8bf620500661b38351481ac4a93418afe8035db617290cf0862dbd00c5b0

HTTP Headers

GET /assets/main.250bb832d65a21590dce.js HTTP/1.1
Host: 78crystalroll45.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/not-allowed
Cookie: referer=https%3A%2F%2Fgo2crystalroll.com%2F; UUID=56a0cc79-122b-418a-b78e-1fed5cfc43b0; UGID=258385916780386686; lastActivityTime=1741329937451; entryTime=1741329937487; i18n_redirected=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:38 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=31536
Last-Modified: Wed, 05 Mar 2025 14:24:16 GMT
ETag: W/"14ea1-19566b163a1"
Content-Encoding: gzip

crystalroll.aramuz.net/frontapi/crystalroll/analyticsEvent?locale=en

104.22.34.217

200 OK

59 B

URL POST
crystalroll.aramuz.net/frontapi/crystalroll/analyticsEvent?locale=en
IP
104.22.34.217:443
ASN
#13335 CLOUDFLARENET

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subjectaramuz.net
Fingerprint9C:02:46:99:AD:75:1B:6A:5B:78:52:0C:E3:CD:7E:8F:93:22:44:58
ValidityTue, 28 Jan 2025 09:48:13 GMT - Mon, 28 Apr 2025 09:48:12 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
59 B (59 bytes)
Hash
25c1643acb5ac68359b3ab095c81069d
6f93dc2993e088ed9b77b531ef1496ba76832270
243516a315c628313dc7767c3f5d951f57eb7d14e262012c99c687e942d8af0e

HTTP Headers

POST /frontapi/crystalroll/analyticsEvent?locale=en HTTP/1.1
Host: crystalroll.aramuz.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Visitor-Uuid: 56a0cc79-122b-418a-b78e-1fed5cfc43b0
Content-Length: 2673
Origin: https://78crystalroll45.com
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 07 Mar 2025 06:45:39 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, private
pragma: no-cache
expires: -1
access-control-expose-headers: x-meta-count, x-meta-next-page-token, Content-Location, Visitor-Uuid, x-meta-prev-page-token
access-control-allow-origin: *
access-control-allow-methods: *
access-control-allow-headers: Authorization, Content-Type, X-Auth-Token, cache-control, x-requested-with, Visitor-Uuid, x-meta-prev-page-token, x-user-origin, x-color-depth, x-language, x-screen-height, x-screen-width, x-time-zone, x-time-zone-offset, x-java-enabled, x-java-script-enabled
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 91c82199da2192a9-CPH
content-encoding: br
X-Firefox-Spdy: h2

cdn.livechatinc.com/widget/static/js/livechat.ggOigcnE.js

23.36.77.179

200 OK

463 B

URL GET
cdn.livechatinc.com/widget/static/js/livechat.ggOigcnE.js
IP
23.36.77.179:443
ASN
#20940 Akamai International B.V.

Requested by
https://secure.livechatinc.com/customer/action/open_chat?license_id=12226866&group=259&embedded=1&widget_version=3&unique_groups=1&organizationId=3e26eee1-3f49-4911-97b0-72c1ffb60600&use_parent_storage=1
Certificate
IssuerDigiCert Inc
Subjectlivechat.com
FingerprintA9:A2:B2:15:09:CC:34:E7:F9:94:88:21:E7:5A:86:A1:30:A3:B6:DC
ValidityWed, 10 Jul 2024 00:00:00 GMT - Thu, 10 Jul 2025 23:59:59 GMT

File type
ASCII text, with very long lines (492), with no line terminators
Size
463 B (463 bytes)
Hash
04a386fb68009e5f42c3c05d79d326a0
0d815c3b220f0a25d010cb2381b9244fe1f9e116
545145669572848ccaed340647ca37849adb17246e7bbff450f4347156db5960

HTTP Headers

GET /widget/static/js/livechat.ggOigcnE.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://secure.livechatinc.com
DNT: 1
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-length: 463
last-modified: Thu, 06 Mar 2025 10:39:54 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: WS13qFY4u9aDMcrGAu.wh4Y.5xhvlnjr
accept-ranges: bytes
server: AmazonS3
etag: "7de23639430c7627f2f742cb7723ed70"
vary: accept-encoding
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: PcfIZK0JcnrGbgvxklIpOGNMW7AfqGE711tUYBXsAbTxItL8fRpSMQ==
cache-control: max-age=31536000
expires: Sat, 07 Mar 2026 06:45:41 GMT
date: Fri, 07 Mar 2025 06:45:41 GMT
content-type: application/javascript; charset=utf-8
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
X-Firefox-Spdy: h2

crystalroll.aramuz.net/frontapi/crystalroll/analyticsEvent?locale=en

104.22.34.217

200 OK

59 B

URL POST
crystalroll.aramuz.net/frontapi/crystalroll/analyticsEvent?locale=en
IP
104.22.34.217:443
ASN
#13335 CLOUDFLARENET

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subjectaramuz.net
Fingerprint9C:02:46:99:AD:75:1B:6A:5B:78:52:0C:E3:CD:7E:8F:93:22:44:58
ValidityTue, 28 Jan 2025 09:48:13 GMT - Mon, 28 Apr 2025 09:48:12 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
59 B (59 bytes)
Hash
25c1643acb5ac68359b3ab095c81069d
6f93dc2993e088ed9b77b531ef1496ba76832270
243516a315c628313dc7767c3f5d951f57eb7d14e262012c99c687e942d8af0e

HTTP Headers

POST /frontapi/crystalroll/analyticsEvent?locale=en HTTP/1.1
Host: crystalroll.aramuz.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Visitor-Uuid: 56a0cc79-122b-418a-b78e-1fed5cfc43b0
Content-Length: 1438
Origin: https://78crystalroll45.com
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 07 Mar 2025 06:45:43 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, private
pragma: no-cache
expires: -1
access-control-expose-headers: x-meta-count, x-meta-next-page-token, Content-Location, Visitor-Uuid, x-meta-prev-page-token
access-control-allow-origin: *
access-control-allow-methods: *
access-control-allow-headers: Authorization, Content-Type, X-Auth-Token, cache-control, x-requested-with, Visitor-Uuid, x-meta-prev-page-token, x-user-origin, x-color-depth, x-language, x-screen-height, x-screen-width, x-time-zone, x-time-zone-offset, x-java-enabled, x-java-script-enabled
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 91c821b46f2b92a9-CPH
content-encoding: br
X-Firefox-Spdy: h2

static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015

104.16.79.73

200 OK

20 kB

URL GET
static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015
IP
104.16.79.73:443
ASN
#13335 CLOUDFLARENET

Requested by
https://kivirun.com/L6tPYq?extra_param_1=48971&external_id=w8jm0u9lcs4s7688jbef3qm6
Certificate
IssuerGoogle Trust Services
Subjectcloudflareinsights.com
FingerprintAD:90:D1:30:C9:77:BF:DE:1F:AB:8C:0D:6E:67:CB:6A:E8:42:DB:18
ValidityThu, 27 Feb 2025 14:42:34 GMT - Wed, 28 May 2025 15:42:17 GMT

File type
JavaScript source, ASCII text, with very long lines (19948), with no line terminators
Size
20 kB (19948 bytes)
Hash
ec18af6d41f6f278b6aed3bdabffa7bc
62c9e2cab76b888829f3c5335e91c320b22329ae
8a18d13015336bc184819a5a768447462202ef3105ec511bf42ed8304a7ed94f

HTTP Headers

GET /beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://kivirun.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 07 Mar 2025 06:45:35 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/"2024.6.1"
last-modified: Thu, 06 Jun 2024 15:52:56 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 91c82180dc86b500-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

78crystalroll45.com/api/setCookie

3.69.248.113

200 OK

0 B

URL POST
78crystalroll45.com/api/setCookie
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /api/setCookie HTTP/1.1
Host: 78crystalroll45.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 26
Origin: https://78crystalroll45.com
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/not-allowed
Cookie: referer=https%3A%2F%2Fgo2crystalroll.com%2F; UUID=56a0cc79-122b-418a-b78e-1fed5cfc43b0; UGID=258385916780386686; lastActivityTime=1741329937451; entryTime=1741329937487; i18n_redirected=en; isPwa=false
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:39 GMT
Content-Length: 0
Connection: keep-alive
X-Powered-By: Express
Set-Cookie: width=1280; Max-Age=31556952; Path=/; Expires=Sat, 07 Mar 2026 12:34:51 GMT

secure.livechatinc.com/customer/action/open_chat?license_id=12226866&group=259&embedded=1&widget_version=3&unique_groups=1&organizationId=3e26eee1-3f49-4911-97b0-72c1ffb60600&use_parent_storage=1

23.36.77.179

200 OK

1.8 kB

URL GET
secure.livechatinc.com/customer/action/open_chat?license_id=12226866&group=259&embedded=1&widget_version=3&unique_groups=1&organizationId=3e26eee1-3f49-4911-97b0-72c1ffb60600&use_parent_storage=1
IP
23.36.77.179:443
ASN
#20940 Akamai International B.V.

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerDigiCert Inc
Subjectlivechat.com
FingerprintA9:A2:B2:15:09:CC:34:E7:F9:94:88:21:E7:5A:86:A1:30:A3:B6:DC
ValidityWed, 10 Jul 2024 00:00:00 GMT - Thu, 10 Jul 2025 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (1852), with no line terminators
Size
1.8 kB (1776 bytes)
Hash
23dbb59cffd337e81ca426251094078b
437196745a0502814e3b9c81a9a49efcb10ce58b
12cdc5823b45a1b0e1439aa5b909f9b5f279f95647cdf88de57f19665bc127e6

HTTP Headers

GET /customer/action/open_chat?license_id=12226866&group=259&embedded=1&widget_version=3&unique_groups=1&organizationId=3e26eee1-3f49-4911-97b0-72c1ffb60600&use_parent_storage=1 HTTP/1.1
Host: secure.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-encoding: gzip
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
content-length: 756
date: Fri, 07 Mar 2025 06:45:40 GMT
X-Firefox-Spdy: h2

cdn.livechatinc.com/widget/static/js/13.Du4z9uvj.chunk.js

23.36.77.179

200 OK

231 B

URL GET
cdn.livechatinc.com/widget/static/js/13.Du4z9uvj.chunk.js
IP
23.36.77.179:443
ASN
#20940 Akamai International B.V.

Requested by
https://secure.livechatinc.com/customer/action/open_chat?license_id=12226866&group=259&embedded=1&widget_version=3&unique_groups=1&organizationId=3e26eee1-3f49-4911-97b0-72c1ffb60600&use_parent_storage=1
Certificate
IssuerDigiCert Inc
Subjectlivechat.com
FingerprintA9:A2:B2:15:09:CC:34:E7:F9:94:88:21:E7:5A:86:A1:30:A3:B6:DC
ValidityWed, 10 Jul 2024 00:00:00 GMT - Thu, 10 Jul 2025 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
231 B (231 bytes)
Hash
51ffb42e380faa86f92711728f9a184e
2115ae8b17284548145746d8690f92379b2dd9bf
1c0b882b7741a6e4436d57cbcd35522c5cee69ad157aa8add3c7bb9f042625b7

HTTP Headers

GET /widget/static/js/13.Du4z9uvj.chunk.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://secure.livechatinc.com
DNT: 1
Connection: keep-alive
Referer: https://cdn.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Fri, 13 Dec 2024 08:43:37 GMT
etag: "c77c70c8570694d5e20553711a6d1b28"
x-amz-server-side-encryption: AES256
x-amz-version-id: 7HVRu3TVHaEjkSVXKl60Dfs2KviUYw9Y
accept-ranges: bytes
server: AmazonS3
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: 9YL3_wDLMuZtF5-gROCNsTUFm8QctNGT-VHWGgA9Y8FK8R1XNNySpg==
vary: Accept-Encoding
content-encoding: gzip
content-length: 185
cache-control: max-age=31536000
expires: Sat, 07 Mar 2026 06:45:41 GMT
date: Fri, 07 Mar 2025 06:45:41 GMT
content-type: application/javascript; charset=utf-8
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
X-Firefox-Spdy: h2

78crystalroll45.com/modernizr.client.js

3.69.248.113

200 OK

3.1 kB

URL GET
78crystalroll45.com/modernizr.client.js
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type
JavaScript source, ASCII text, with very long lines (3189), with no line terminators
Size
3.1 kB (3114 bytes)
Hash
b12b8a3188ae6a64073b8274c415666d
70aba86f0068b7a138dd42b4fcb33ac8b59279f9
9f5f9c9b5839375752796502e8af84f7b4fdeee4fd832dd607a39818be6cff65

HTTP Headers

GET /modernizr.client.js HTTP/1.1
Host: 78crystalroll45.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/not-allowed
Cookie: referer=https%3A%2F%2Fgo2crystalroll.com%2F; UUID=56a0cc79-122b-418a-b78e-1fed5cfc43b0; UGID=258385916780386686; lastActivityTime=1741329937451; entryTime=1741329937487; i18n_redirected=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:37 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=0
Last-Modified: Wed, 05 Mar 2025 14:24:16 GMT
ETag: W/"c2a-19566b16489"
Content-Encoding: gzip

auth.betonliga.com/

172.67.68.177

200 OK

310 B

URL GET
auth.betonliga.com/
IP
172.67.68.177:443
ASN
#13335 CLOUDFLARENET

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerGoogle Trust Services
Subjectbetonliga.com
Fingerprint34:87:11:ED:1A:55:CB:0C:16:15:ED:23:4E:34:6F:84:42:FD:44:EB
ValidityTue, 21 Jan 2025 05:20:16 GMT - Mon, 21 Apr 2025 06:20:15 GMT

File type
HTML document, ASCII text, with very long lines (335), with no line terminators
Size
310 B (310 bytes)
Hash
b713fa9c48720e5b04080f6948d64afc
dd8a9795e5edb7f622d428b846a76b66fa02b58f
d6bc931432d40fa0413b6c09a2220331084b1b7c5dfa5d3d2f24285d67c6ce15

HTTP Headers

GET / HTTP/1.1
Host: auth.betonliga.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 07 Mar 2025 06:45:39 GMT
content-type: text/html
last-modified: Mon, 09 Sep 2024 10:48:19 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=t%2FnVIHP56yMiACmv6ATPxaJXSdRpUE%2F5p98%2FkGCOD8tvT%2BUPQ1LYHL%2B8KO2d0a%2BPjE84pfdjOiKGIOBpKZZY3iiN1aRX505WfpbJbrtzrrd6llHwR74RGbF5sA%2Fg7PRXL7VyEA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 91c821984834b527-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=TCP&rtt=493&min_rtt=414&rtt_var=153&sent=7&recv=10&lost=0&retrans=0&sent_bytes=3207&recv_bytes=1148&delivery_rate=7634446&cwnd=254&unsent_bytes=0&cid=707b930ef41a2679&ts=74&x=0"
X-Firefox-Spdy: h2

sentry.marfa-tech.net/api/11/envelope/?sentry_key=204271b68b8b41c6b6ff8453b0fa31ae&sentry_version=7&sentry_client=sentry.javascript.vue%2F7.73.0

176.9.53.66

200 OK

2 B

URL POST
sentry.marfa-tech.net/api/11/envelope/?sentry_key=204271b68b8b41c6b6ff8453b0fa31ae&sentry_version=7&sentry_client=sentry.javascript.vue%2F7.73.0
IP
176.9.53.66:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subjectsentry.marfa-tech.net
Fingerprint42:9F:42:97:E2:B5:87:5E:0B:AB:92:29:62:7E:64:89:85:05:D1:5F
ValidityFri, 21 Feb 2025 22:54:58 GMT - Thu, 22 May 2025 22:54:57 GMT

File type
JSON text data
Size
2 B (2 bytes)
Hash
99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

HTTP Headers

POST /api/11/envelope/?sentry_key=204271b68b8b41c6b6ff8453b0fa31ae&sentry_version=7&sentry_client=sentry.javascript.vue%2F7.73.0 HTTP/1.1
Host: sentry.marfa-tech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://78crystalroll45.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 476
Origin: https://78crystalroll45.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:39 GMT
Content-Type: application/json
Content-Length: 2
Connection: keep-alive
vary: origin, access-control-request-method, access-control-request-headers
access-control-allow-origin: *
access-control-expose-headers: x-sentry-error,x-sentry-rate-limits,retry-after
cross-origin-resource-policy: cross-origin

78crystalroll45.com/assets/register/build/b1f06021138dc7f7fe0c.js

3.69.248.113

200 OK

42 kB

URL GET
78crystalroll45.com/assets/register/build/b1f06021138dc7f7fe0c.js
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type
JavaScript source, ASCII text, with very long lines (42032), with no line terminators
Size
42 kB (42032 bytes)
Hash
261804b0d3767567af22b94be43f38a0
cff23b621fee5bf8319d34a2675a3d36d29068e4
d2e64ef53ae63248debf7a2b0cb98eaaa60a7d131b1329b62d591a86d1b027c6

HTTP Headers

GET /assets/register/build/b1f06021138dc7f7fe0c.js HTTP/1.1
Host: 78crystalroll45.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/not-allowed
Cookie: referer=https%3A%2F%2Fgo2crystalroll.com%2F; UUID=56a0cc79-122b-418a-b78e-1fed5cfc43b0; UGID=258385916780386686; lastActivityTime=1741329937451; entryTime=1741329937487; i18n_redirected=en; isPwa=false; width=1280
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:39 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
etag: W/"67bdbc28-a430"
last-modified: Tue, 25 Feb 2025 12:48:40 GMT
Cache-control: public, max-age=31536000
Content-Encoding: gzip

78crystalroll45.com/assets/style.1d029e9c.css

3.69.248.113

200 OK

1.5 kB

URL GET
78crystalroll45.com/assets/style.1d029e9c.css
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type
ASCII text, with very long lines (1461), with no line terminators
Size
1.5 kB (1461 bytes)
Hash
e89509a6219114950832940e5df20765
a62b4f93e2fdb31fa25bfab67271775edb21dff9
f9a10f7b2dfa5f502188b22d5f801bae9b430e6feb116c92e7c52601d4793a89

HTTP Headers

GET /assets/style.1d029e9c.css HTTP/1.1
Host: 78crystalroll45.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/not-allowed
Cookie: referer=https%3A%2F%2Fgo2crystalroll.com%2F; UUID=56a0cc79-122b-418a-b78e-1fed5cfc43b0; UGID=258385916780386686; lastActivityTime=1741329937451; entryTime=1741329937487; i18n_redirected=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:37 GMT
Content-Type: text/css; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=31536
Last-Modified: Wed, 05 Mar 2025 14:24:16 GMT
ETag: W/"5b5-19566b163c1"
Content-Encoding: gzip

78crystalroll45.com/assets/main.e58d3cf412adfa2fce23.js

3.69.248.113

200 OK

2.0 kB

URL GET
78crystalroll45.com/assets/main.e58d3cf412adfa2fce23.js
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (2017), with no line terminators
Size
2.0 kB (1987 bytes)
Hash
cd9bf029a8124b574b7794d6b4bddde7
f4522fef04c3b5c536d97adc897a0df09fb7a854
4f4f739c1535482a222aa630462634fffcb8f51e0fa1919dd611edfe1f8ef800

HTTP Headers

GET /assets/main.e58d3cf412adfa2fce23.js HTTP/1.1
Host: 78crystalroll45.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/not-allowed
Cookie: referer=https%3A%2F%2Fgo2crystalroll.com%2F; UUID=56a0cc79-122b-418a-b78e-1fed5cfc43b0; UGID=258385916780386686; lastActivityTime=1741329937451; entryTime=1741329937487; i18n_redirected=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:38 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=31536
Last-Modified: Wed, 05 Mar 2025 14:24:16 GMT
ETag: W/"7c3-19566b163bd"
Content-Encoding: gzip

crystalroll.aramuz.net/frontapi/crystalroll/geoInfo?mobile=0&affiliate=0&locale=en

104.22.34.217

200 OK

180 B

URL GET
crystalroll.aramuz.net/frontapi/crystalroll/geoInfo?mobile=0&affiliate=0&locale=en
IP
104.22.34.217:443
ASN
#13335 CLOUDFLARENET

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subjectaramuz.net
Fingerprint9C:02:46:99:AD:75:1B:6A:5B:78:52:0C:E3:CD:7E:8F:93:22:44:58
ValidityTue, 28 Jan 2025 09:48:13 GMT - Mon, 28 Apr 2025 09:48:12 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
180 B (180 bytes)
Hash
9592e04959b8f368f819514e52340e0e
9f5feac831e96c4a679ed51c9fe63d0d62395e4a
ac3d0c4cbcfb42afc6911f57e14187b1ad1da07e8fb420d4c695aa4ebcfe471e

HTTP Headers

GET /frontapi/crystalroll/geoInfo?mobile=0&affiliate=0&locale=en HTTP/1.1
Host: crystalroll.aramuz.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Visitor-Uuid: 56a0cc79-122b-418a-b78e-1fed5cfc43b0
X-User-Origin: 78crystalroll45.com
Origin: https://78crystalroll45.com
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 07 Mar 2025 06:45:40 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, private
pragma: no-cache
expires: -1
access-control-expose-headers: x-meta-count, x-meta-next-page-token, Content-Location, Visitor-Uuid, x-meta-prev-page-token
access-control-allow-origin: *
access-control-allow-methods: *
access-control-allow-headers: Authorization, Content-Type, X-Auth-Token, cache-control, x-requested-with, Visitor-Uuid, x-meta-prev-page-token, x-user-origin, x-color-depth, x-language, x-screen-height, x-screen-width, x-time-zone, x-time-zone-offset, x-java-enabled, x-java-script-enabled
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 91c8219e1d8d92a9-CPH
content-encoding: br
X-Firefox-Spdy: h2

cdn.livechatinc.com/widget/static/js/5.D_uKc_ak.chunk.js

23.36.77.179

200 OK

138 kB

URL GET
cdn.livechatinc.com/widget/static/js/5.D_uKc_ak.chunk.js
IP
23.36.77.179:443
ASN
#20940 Akamai International B.V.

Requested by
https://secure.livechatinc.com/customer/action/open_chat?license_id=12226866&group=259&embedded=1&widget_version=3&unique_groups=1&organizationId=3e26eee1-3f49-4911-97b0-72c1ffb60600&use_parent_storage=1
Certificate
IssuerDigiCert Inc
Subjectlivechat.com
FingerprintA9:A2:B2:15:09:CC:34:E7:F9:94:88:21:E7:5A:86:A1:30:A3:B6:DC
ValidityWed, 10 Jul 2024 00:00:00 GMT - Thu, 10 Jul 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (49245)
Size
138 kB (137495 bytes)
Hash
c58db33f04cbae29096de56af87c3284
2e574d1c0f61df6d1011b3f7420f64781b4e1317
cc9af994a65e2deac1f388408504e6a4059652a5c652bcbfd0898731b9153be0

HTTP Headers

GET /widget/static/js/5.D_uKc_ak.chunk.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://secure.livechatinc.com
DNT: 1
Connection: keep-alive
Referer: https://cdn.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Thu, 21 Nov 2024 11:40:56 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
x-amz-version-id: ZJUJFnVU68XPPBMfSR99ugOFErhtj870
server: AmazonS3
etag: W/"c58db33f04cbae29096de56af87c3284"
vary: accept-encoding
x-amz-cf-pop: ARN53-P2
x-amz-cf-id: gfxSY8-KSW14Amzymb5YkVjS0eooyHkfXLO0I66JST4nq3prLMBazg==
content-length: 45402
cache-control: max-age=31536000
expires: Sat, 07 Mar 2026 06:45:41 GMT
date: Fri, 07 Mar 2025 06:45:41 GMT
content-type: application/javascript; charset=utf-8
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdnwl.crystal-static.com/front/components/not-allowed/bg-image.webp

104.26.1.19

200 OK

19 kB

URL GET
cdnwl.crystal-static.com/front/components/not-allowed/bg-image.webp
IP
104.26.1.19:443
ASN
#13335 CLOUDFLARENET

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerGoogle Trust Services
Subjectcrystal-static.com
FingerprintDB:43:30:44:34:AB:BA:16:63:6A:35:10:B2:BE:72:1E:AC:B3:10:C6
ValidityThu, 27 Feb 2025 15:46:10 GMT - Wed, 28 May 2025 16:46:09 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1111x745, Scaling: [none]x[none], YUV color, decoders should clamp
Size
19 kB (19346 bytes)
Hash
23c807c057c06892008b7ea78ac19e77
750ca4ba79b0c4f1c7b232caf50d4d0a94c24552
d698e4dacc95dce34685fc31dd5dd025b4a6b568a585ebdea7cdf6ecc55bd48f

HTTP Headers

GET /front/components/not-allowed/bg-image.webp HTTP/1.1
Host: cdnwl.crystal-static.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 07 Mar 2025 06:45:38 GMT
content-type: image/webp
content-length: 19346
last-modified: Tue, 28 Jan 2025 13:06:18 GMT
etag: "23c807c057c06892008b7ea78ac19e77"
x-amz-server-side-encryption: AES256
x-cache: Miss from cloudfront
via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: L5uI2oAMWsEB5RNbAMp178xb-jx4joOUhZd8bWP9YzRwlCFKtCGjAg==
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
vary: Origin, Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 2214
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FIlXhbDoO%2FYpf%2BtSMqHlceVnCYViyNASe%2Ft%2BWloCz5t26D6RfSicxxQTrki0xuTEiR964mamZtrlY2BntJUk9f%2FD84FVYwB%2FhA8sSjsWUoiC9p37c%2Bd2tm9iI%2F3OeB%2FiLMxwp5UDzyDv8w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 91c821926d1bb51b-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=1349&min_rtt=428&rtt_var=1417&sent=15&recv=14&lost=0&retrans=1&sent_bytes=8287&recv_bytes=1438&delivery_rate=8883435&cwnd=254&unsent_bytes=0&cid=cdf7a9c11fa07e9a&ts=253&x=0"
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Roboto%20Condensed:wght@400;500;600;700;800;900&display=swap

142.250.74.10

200 OK

16 kB

URL GET
fonts.googleapis.com/css2?family=Roboto%20Condensed:wght@400;500;600;700;800;900&display=swap
IP
142.250.74.10:443
ASN
#15169 GOOGLE

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
FingerprintF1:11:17:AF:9C:89:34:EE:D5:CB:84:40:84:EA:01:19:A9:F6:ED:C2
ValidityWed, 26 Feb 2025 15:33:59 GMT - Wed, 21 May 2025 15:33:58 GMT

File type
ASCII text
Size
16 kB (15588 bytes)
Hash
281280a38cb5588adbc5272869d51e45
2757f0b2ea0313e51d4e023ccc1216ae9680e3a0
b8fc9fd1d9f537bc083d967dced2d78de468353780b0187abe2c05404f0e30a3

HTTP Headers

GET /css2?family=Roboto%20Condensed:wght@400;500;600;700;800;900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 07 Mar 2025 06:45:38 GMT
date: Fri, 07 Mar 2025 06:45:38 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

78crystalroll45.com/dot.png

3.69.248.113

200 OK

103 B

URL GET
78crystalroll45.com/dot.png
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type
PNG image data, 1 x 1, 8-bit colormap, non-interlaced
Size
103 B (103 bytes)
Hash
4c72112678cfc11ef740718fe64d288e
c30d81cf759c0a5e59995d979cd4f3084439b31a
9c20ab7a739c77d2e21c9271970d6b70c2c917a76c1295eb2efa3337ab7ee99f

HTTP Headers

GET /dot.png HTTP/1.1
Host: 78crystalroll45.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/not-allowed
Cookie: referer=https%3A%2F%2Fgo2crystalroll.com%2F; UUID=56a0cc79-122b-418a-b78e-1fed5cfc43b0; UGID=258385916780386686; lastActivityTime=1741329937451; entryTime=1741329937487; i18n_redirected=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:38 GMT
Content-Type: image/png
Content-Length: 103
Connection: keep-alive
X-Powered-By: Express
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Wed, 05 Mar 2025 14:24:16 GMT
ETag: W/"67-19566b16489"

78crystalroll45.com/assets/main.57086ad1a78679155a33.js

3.69.248.113

200 OK

343 B

URL GET
78crystalroll45.com/assets/main.57086ad1a78679155a33.js
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (349), with no line terminators
Size
343 B (343 bytes)
Hash
f9f109f53ef430ffd8febfa64fa7c5cb
6ecda2c98ffbecb142a23b974a4d9ec580852742
fcd35e58e0c15ec90469f1cf0b069fb51849d2bcf6b588e5282b1fedeace14d6

HTTP Headers

GET /assets/main.57086ad1a78679155a33.js HTTP/1.1
Host: 78crystalroll45.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/not-allowed
Cookie: referer=https%3A%2F%2Fgo2crystalroll.com%2F; UUID=56a0cc79-122b-418a-b78e-1fed5cfc43b0; UGID=258385916780386686; lastActivityTime=1741329937451; entryTime=1741329937487; i18n_redirected=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:39 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=31536
Last-Modified: Wed, 05 Mar 2025 14:24:16 GMT
ETag: W/"157-19566b163a5"
Content-Encoding: gzip

crystalroll.aramuz.net/frontapi/crystalroll/feedback?locale=en

104.22.34.217

200 OK

59 B

URL GET
crystalroll.aramuz.net/frontapi/crystalroll/feedback?locale=en
IP
104.22.34.217:443
ASN
#13335 CLOUDFLARENET

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subjectaramuz.net
Fingerprint9C:02:46:99:AD:75:1B:6A:5B:78:52:0C:E3:CD:7E:8F:93:22:44:58
ValidityTue, 28 Jan 2025 09:48:13 GMT - Mon, 28 Apr 2025 09:48:12 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
59 B (59 bytes)
Hash
bf2e6c027e00fdde6c25f0bb81aa9e14
f732a8ce2f7bb961622d40fd34dfb7c5f762a058
543c6b6169f04499b0350e274d1616d0391ea322343311d0965d3a783b6c357f

HTTP Headers

GET /frontapi/crystalroll/feedback?locale=en HTTP/1.1
Host: crystalroll.aramuz.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Visitor-Uuid: 56a0cc79-122b-418a-b78e-1fed5cfc43b0
Origin: https://78crystalroll45.com
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 07 Mar 2025 06:45:39 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, private
pragma: no-cache
expires: -1
access-control-expose-headers: x-meta-count, x-meta-next-page-token, Content-Location, Visitor-Uuid, x-meta-prev-page-token
access-control-allow-origin: *
access-control-allow-methods: *
access-control-allow-headers: Authorization, Content-Type, X-Auth-Token, cache-control, x-requested-with, Visitor-Uuid, x-meta-prev-page-token, x-user-origin, x-color-depth, x-language, x-screen-height, x-screen-width, x-time-zone, x-time-zone-offset, x-java-enabled, x-java-script-enabled
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 91c82198d8f992a9-CPH
content-encoding: br
X-Firefox-Spdy: h2

78crystalroll45.com/assets/register/build/c45b6498e53c62954230.js

3.69.248.113

200 OK

35 kB

URL GET
78crystalroll45.com/assets/register/build/c45b6498e53c62954230.js
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type
JavaScript source, ASCII text, with very long lines (34856), with no line terminators
Size
35 kB (34856 bytes)
Hash
3c81fba4bd34380f72cc2b81f5b984c1
e3a74c2ef2f43665240003ed3921aae8ec562402
353fa685fa7cef580795b6732ed2c63c69efd6b66289a7ed10bcc8c262718a95

HTTP Headers

GET /assets/register/build/c45b6498e53c62954230.js HTTP/1.1
Host: 78crystalroll45.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/not-allowed
Cookie: referer=https%3A%2F%2Fgo2crystalroll.com%2F; UUID=56a0cc79-122b-418a-b78e-1fed5cfc43b0; UGID=258385916780386686; lastActivityTime=1741329937451; entryTime=1741329937487; i18n_redirected=en; isPwa=false; width=1280
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:40 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
etag: W/"67bdbc28-8828"
last-modified: Tue, 25 Feb 2025 12:48:40 GMT
Cache-control: public, max-age=31536000
Content-Encoding: gzip

12crystalroll34.com/ping?t=1741329936735

3.69.248.113

200 OK

13 B

URL GET
12crystalroll34.com/ping?t=1741329936735
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://go2crystalroll.com/casino?cxd=35055_372433_|afp1:1sjos4feu04ja|afp10:&af_dev_key=BDREFvBLEZQKVYEhZafc85&af_id=&af_sub1=&af_sub2=&af_sub3=&af_sub4=&af_sub5=&afp1=1sjos4feu04ja&afp10=&bta=35055&click_id=1sjos4feu04ja&keitaro_country=NO&keitaro_platform=Windows&keitaro_stream_id=635793&nci=5356&store_id=&utm_campaign=Onclick#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type
ASCII text, with no line terminators
Size
13 B (13 bytes)
Hash
b3a94469b9d18f4224e875357dd5bde1
1b5d9a5c6aa889995822b270decf5c75942908dd
7a8c953b4726befeb5f0f21c38b57780caf3f2de992211c3560244dc4568bae4

HTTP Headers

GET /ping?t=1741329936735 HTTP/1.1
Host: 12crystalroll34.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://go2crystalroll.com/
Content-Type: text/plain
Origin: https://go2crystalroll.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:36 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 13
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
ETag: W/"d-G12aXGqoiZlYIrJw3s9cdZQpCN0"

78crystalroll45.com/assets/style.c9752e59.css

3.69.248.113

200 OK

837 B

URL GET
78crystalroll45.com/assets/style.c9752e59.css
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type
ASCII text, with very long lines (837), with no line terminators
Size
837 B (837 bytes)
Hash
2e9ee8797f279d274cd516cabf7d070f
585c0ef0d51348c48210d8cd8621808845dc5d11
86a1af7fd28fca8b763cf6db0e7832261e02cbc96a9f2df8bb5fd64cb7876288

HTTP Headers

GET /assets/style.c9752e59.css HTTP/1.1
Host: 78crystalroll45.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/not-allowed
Cookie: referer=https%3A%2F%2Fgo2crystalroll.com%2F; UUID=56a0cc79-122b-418a-b78e-1fed5cfc43b0; UGID=258385916780386686; lastActivityTime=1741329937451; entryTime=1741329937487; i18n_redirected=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:37 GMT
Content-Type: text/css; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=31536
Last-Modified: Wed, 05 Mar 2025 14:24:16 GMT
ETag: W/"345-19566b163d5"
Content-Encoding: gzip

78crystalroll45.com/favicons/favicon-32x32.png

3.69.248.113

200 OK

631 B

URL GET
78crystalroll45.com/favicons/favicon-32x32.png
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type
PNG image data, 32 x 32, 8-bit colormap, non-interlaced
Size
631 B (631 bytes)
Hash
12dc78ad3dcc360cb031474c698eaed8
a2c083baf33f6c60eafe14b8332902133808bb76
5a6669fa453e4fcf4d81cd0294bab96de629cd274c685cd8f1bad05120951b83

HTTP Headers

GET /favicons/favicon-32x32.png HTTP/1.1
Host: 78crystalroll45.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/not-allowed
Cookie: referer=https%3A%2F%2Fgo2crystalroll.com%2F; UUID=56a0cc79-122b-418a-b78e-1fed5cfc43b0; UGID=258385916780386686; lastActivityTime=1741329937451; entryTime=1741329937487; i18n_redirected=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:38 GMT
Content-Type: image/png
Content-Length: 631
Connection: keep-alive
X-Powered-By: Express
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Wed, 05 Mar 2025 14:24:16 GMT
ETag: W/"277-19566b16489"

cdn.livechatinc.com/widget/static/js/2.Dt3945Qy.chunk.js

23.36.77.179

200 OK

355 kB

URL GET
cdn.livechatinc.com/widget/static/js/2.Dt3945Qy.chunk.js
IP
23.36.77.179:443
ASN
#20940 Akamai International B.V.

Requested by
https://secure.livechatinc.com/customer/action/open_chat?license_id=12226866&group=259&embedded=1&widget_version=3&unique_groups=1&organizationId=3e26eee1-3f49-4911-97b0-72c1ffb60600&use_parent_storage=1
Certificate
IssuerDigiCert Inc
Subjectlivechat.com
FingerprintA9:A2:B2:15:09:CC:34:E7:F9:94:88:21:E7:5A:86:A1:30:A3:B6:DC
ValidityWed, 10 Jul 2024 00:00:00 GMT - Thu, 10 Jul 2025 23:59:59 GMT

File type

Size
355 kB (355005 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /widget/static/js/2.Dt3945Qy.chunk.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://secure.livechatinc.com
DNT: 1
Connection: keep-alive
Referer: https://cdn.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Thu, 06 Mar 2025 10:39:58 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
x-amz-version-id: 0SnH7cqi9FrPj6YgoP8so6w88F7unwzo
server: AmazonS3
etag: W/"ceb22493f0f1701e8fb006c50eada966"
vary: accept-encoding
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: YFcHNNUAGTOzQL0EggENg3u3_YLBnAzW6DLOl2dugXGmAGvHmrmMkg==
content-length: 102077
cache-control: max-age=31536000
expires: Sat, 07 Mar 2026 06:45:41 GMT
date: Fri, 07 Mar 2025 06:45:41 GMT
content-type: application/javascript; charset=utf-8
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
X-Firefox-Spdy: h2

78crystalroll45.com/assets/style.d89ab206.css

3.69.248.113

200 OK

157 B

URL GET
78crystalroll45.com/assets/style.d89ab206.css
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type
ASCII text, with no line terminators
Size
157 B (157 bytes)
Hash
3be69171d6034256957ff51fe7fa48fb
e2660d8dea72451bc6840e56ee3c5e5e3edcf2e8
2f59f7d6135e5da7dbf8a7fd301311a5f0a6b8b3252a72835bb7c7afe78d74f0

HTTP Headers

GET /assets/style.d89ab206.css HTTP/1.1
Host: 78crystalroll45.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/not-allowed
Cookie: referer=https%3A%2F%2Fgo2crystalroll.com%2F; UUID=56a0cc79-122b-418a-b78e-1fed5cfc43b0; UGID=258385916780386686; lastActivityTime=1741329937451; entryTime=1741329937487; i18n_redirected=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:38 GMT
Content-Type: text/css; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=31536
Last-Modified: Wed, 05 Mar 2025 14:24:16 GMT
ETag: W/"9d-19566b163d5"
Content-Encoding: gzip

90crystalroll67.com/ping?t=1741329936743

3.69.248.113

0 B

URL GET
90crystalroll67.com/ping?t=1741329936743
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://go2crystalroll.com/casino?cxd=35055_372433_|afp1:1sjos4feu04ja|afp10:&af_dev_key=BDREFvBLEZQKVYEhZafc85&af_id=&af_sub1=&af_sub2=&af_sub3=&af_sub4=&af_sub5=&afp1=1sjos4feu04ja&afp10=&bta=35055&click_id=1sjos4feu04ja&keitaro_country=NO&keitaro_platform=Windows&keitaro_stream_id=635793&nci=5356&store_id=&utm_campaign=Onclick#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ping?t=1741329936743 HTTP/1.1
Host: 90crystalroll67.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://go2crystalroll.com/
Content-Type: text/plain
Origin: https://go2crystalroll.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

78crystalroll45.com/assets/style.2f69ca92.css

3.69.248.113

200 OK

158 kB

URL GET
78crystalroll45.com/assets/style.2f69ca92.css
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type

Size
158 kB (157481 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /assets/style.2f69ca92.css HTTP/1.1
Host: 78crystalroll45.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/not-allowed
Cookie: referer=https%3A%2F%2Fgo2crystalroll.com%2F; UUID=56a0cc79-122b-418a-b78e-1fed5cfc43b0; UGID=258385916780386686; lastActivityTime=1741329937451; entryTime=1741329937487; i18n_redirected=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:37 GMT
Content-Type: text/css; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=31536
Last-Modified: Wed, 05 Mar 2025 14:24:16 GMT
ETag: W/"26729-19566b163c5"
Content-Encoding: gzip

78crystalroll45.com/assets/main.85c7fc08416b94216111.js

3.69.248.113

200 OK

2.5 kB

URL GET
78crystalroll45.com/assets/main.85c7fc08416b94216111.js
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (2523), with no line terminators
Size
2.5 kB (2481 bytes)
Hash
6f32a19458cd7313caa9c193de8e1a0a
35187234e0f2815c27adf17aaf5413751d06ae5d
ffc87feec9fa8596999dbc7fa77eae4784cd56e111035382240c9321ef6f301a

HTTP Headers

GET /assets/main.85c7fc08416b94216111.js HTTP/1.1
Host: 78crystalroll45.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/not-allowed
Cookie: referer=https%3A%2F%2Fgo2crystalroll.com%2F; UUID=56a0cc79-122b-418a-b78e-1fed5cfc43b0; UGID=258385916780386686; lastActivityTime=1741329937451; entryTime=1741329937487; i18n_redirected=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:39 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=31536
Last-Modified: Wed, 05 Mar 2025 14:24:16 GMT
ETag: W/"9b1-19566b163ad"
Content-Encoding: gzip

kivirun.com/L6tPYq?extra_param_1=48971&external_id=w8jm0u9lcs4s7688jbef3qm6

172.67.147.99

200 OK

916 B

URL User Request GET
kivirun.com/L6tPYq?extra_param_1=48971&external_id=w8jm0u9lcs4s7688jbef3qm6
IP
172.67.147.99:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectkivirun.com
Fingerprint46:80:0D:88:F5:42:81:1A:9A:30:DB:F4:91:F5:78:15:5B:6D:41:14
ValidityTue, 28 Jan 2025 07:16:27 GMT - Mon, 28 Apr 2025 08:14:49 GMT

File type
HTML document, ASCII text, with very long lines (963), with no line terminators
Size
916 B (916 bytes)
Hash
90988cfcaa06ecd354795ae872343667
7546fe1fe2da59a0d5f91308fb0e63f61202c1db
adbf3fd208728d1916c88d1059198e7feb5e1a0d30bec424c4c0af2c21341c45

HTTP Headers

GET /L6tPYq?extra_param_1=48971&external_id=w8jm0u9lcs4s7688jbef3qm6 HTTP/1.1
Host: kivirun.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 07 Mar 2025 06:45:35 GMT
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, must-revalidate
expires: Fri, 07 Mar 2025 06:45:35 GMT
vary: Accept-Encoding
access-control-allow-origin: *
cf-cache-status: DYNAMIC
server-timing: cfCacheStatus;desc="DYNAMIC"
set-cookie: _subid=1sjos4feu04ja; expires=Mon, 07 Apr 2025 06:45:35 GMT; path=/
4d606=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjYzNTc5M1wiOjE3NDEzMjk5MzV9LFwiY2FtcGFpZ25zXCI6e1wiMTAwMTJcIjoxNzQxMzI5OTM1fSxcInRpbWVcIjoxNzQxMzI5OTM1fSJ9.WL6xEwCnnK8LqJjaS7amcfWgybBFiC7iqJvZDlf8biI; expires=Sat, 08 Mar 2025 06:45:35 GMT; path=/
_token=uuid_1sjos4feu04ja_1sjos4feu04ja67ca960f05cae1.05398980; expires=Mon, 07 Apr 2025 06:45:35 GMT; path=/
__cf_bm=rZZa05DyBDZfCrqKTZQ_Y.8BckBHnxgubL98s4MgWXQ-1741329935-1.0.1.1-RRBDVCkh9ZU4MjVuqjXcAM89aq4K95QyCA8rjPcYkjC8kj_TgGhA3PiF.qIzf6MFiVeGf9TqjC3xw0vM4RQUg7Y.UH.GQBAi6Ikjos9klhc; path=/; expires=Fri, 07-Mar-25 07:15:35 GMT; domain=.kivirun.com; HttpOnly; Secure; SameSite=None
_cfuvid=PGdkK0jzDfJioXVcF6dy6mMxpa0MfMkYAmoRgtnOa30-1741329935037-0.0.1.1-604800000; path=/; domain=.kivirun.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 91c8217d6ea4b51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

crystalroll.aramuz.net/frontapi/crystalroll/currencyList?locale=en

104.22.34.217

200 OK

81 B

URL GET
crystalroll.aramuz.net/frontapi/crystalroll/currencyList?locale=en
IP
104.22.34.217:443
ASN
#13335 CLOUDFLARENET

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subjectaramuz.net
Fingerprint9C:02:46:99:AD:75:1B:6A:5B:78:52:0C:E3:CD:7E:8F:93:22:44:58
ValidityTue, 28 Jan 2025 09:48:13 GMT - Mon, 28 Apr 2025 09:48:12 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
81 B (81 bytes)
Hash
c1075c9864547a3815f3e30374340bc2
b97acc8d48a632e2e4b36e307f4a6079c04568a1
e1a07b29559b4ea6a3b1aec45680242c68603936db66aed0239a8737a75a9fa7

HTTP Headers

GET /frontapi/crystalroll/currencyList?locale=en HTTP/1.1
Host: crystalroll.aramuz.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Visitor-Uuid: 56a0cc79-122b-418a-b78e-1fed5cfc43b0
Origin: https://78crystalroll45.com
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 07 Mar 2025 06:45:39 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, private
pragma: no-cache
expires: -1
access-control-expose-headers: x-meta-count, x-meta-next-page-token, Content-Location, Visitor-Uuid, x-meta-prev-page-token
access-control-allow-origin: *
access-control-allow-methods: *
access-control-allow-headers: Authorization, Content-Type, X-Auth-Token, cache-control, x-requested-with, Visitor-Uuid, x-meta-prev-page-token, x-user-origin, x-color-depth, x-language, x-screen-height, x-screen-width, x-time-zone, x-time-zone-offset, x-java-enabled, x-java-script-enabled
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 91c8219989e592a9-CPH
content-encoding: br
X-Firefox-Spdy: h2

cdn.livechatinc.com/widget/static/js/7.xhyEK0_l.chunk.js

23.36.77.179

200 OK

74 B

URL GET
cdn.livechatinc.com/widget/static/js/7.xhyEK0_l.chunk.js
IP
23.36.77.179:443
ASN
#20940 Akamai International B.V.

Requested by
https://secure.livechatinc.com/customer/action/open_chat?license_id=12226866&group=259&embedded=1&widget_version=3&unique_groups=1&organizationId=3e26eee1-3f49-4911-97b0-72c1ffb60600&use_parent_storage=1
Certificate
IssuerDigiCert Inc
Subjectlivechat.com
FingerprintA9:A2:B2:15:09:CC:34:E7:F9:94:88:21:E7:5A:86:A1:30:A3:B6:DC
ValidityWed, 10 Jul 2024 00:00:00 GMT - Thu, 10 Jul 2025 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
74 B (74 bytes)
Hash
21b7a59cc31bfdcb9c6f5f4dc99d2a5c
95862457b1e89a06c8419959c0c45ab6237832bf
a401c33318a371db3b11b0ec189d894d54c1527b250b35745834b77ca4893e13

HTTP Headers

GET /widget/static/js/7.xhyEK0_l.chunk.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://secure.livechatinc.com
DNT: 1
Connection: keep-alive
Referer: https://cdn.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Mon, 20 Jan 2025 06:34:58 GMT
etag: "c96a39460d2b0a92409b2b92f3da88f9"
x-amz-server-side-encryption: AES256
x-amz-version-id: enAVP6XlpXcI5EJrZjKveOyKQXAj_jTW
accept-ranges: bytes
server: AmazonS3
x-amz-cf-pop: ARN53-P2
x-amz-cf-id: To1yZrCWbOaAjeBUknnOWLWUw76ehcFAoqwIbNH28H5kh2dAxAJYwQ==
vary: Accept-Encoding
content-encoding: gzip
content-length: 92
cache-control: max-age=31536000
expires: Sat, 07 Mar 2026 06:45:41 GMT
date: Fri, 07 Mar 2025 06:45:41 GMT
content-type: application/javascript; charset=utf-8
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
X-Firefox-Spdy: h2

crystalroll.aramuz.net/frontapi/crystalroll/analyticsEvent?locale=en

104.22.34.217

200 OK

59 B

URL POST
crystalroll.aramuz.net/frontapi/crystalroll/analyticsEvent?locale=en
IP
104.22.34.217:443
ASN
#13335 CLOUDFLARENET

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subjectaramuz.net
Fingerprint9C:02:46:99:AD:75:1B:6A:5B:78:52:0C:E3:CD:7E:8F:93:22:44:58
ValidityTue, 28 Jan 2025 09:48:13 GMT - Mon, 28 Apr 2025 09:48:12 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
59 B (59 bytes)
Hash
25c1643acb5ac68359b3ab095c81069d
6f93dc2993e088ed9b77b531ef1496ba76832270
243516a315c628313dc7767c3f5d951f57eb7d14e262012c99c687e942d8af0e

HTTP Headers

POST /frontapi/crystalroll/analyticsEvent?locale=en HTTP/1.1
Host: crystalroll.aramuz.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Visitor-Uuid: 56a0cc79-122b-418a-b78e-1fed5cfc43b0
Content-Length: 1438
Origin: https://78crystalroll45.com
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 07 Mar 2025 06:45:44 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, private
pragma: no-cache
expires: -1
access-control-expose-headers: x-meta-count, x-meta-next-page-token, Content-Location, Visitor-Uuid, x-meta-prev-page-token
access-control-allow-origin: *
access-control-allow-methods: *
access-control-allow-headers: Authorization, Content-Type, X-Auth-Token, cache-control, x-requested-with, Visitor-Uuid, x-meta-prev-page-token, x-user-origin, x-color-depth, x-language, x-screen-height, x-screen-width, x-time-zone, x-time-zone-offset, x-java-enabled, x-java-script-enabled
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 91c821b5c89392a9-CPH
content-encoding: br
X-Firefox-Spdy: h2

78crystalroll45.com/assets/main.ac08365fae35b083655d.js

3.69.248.113

200 OK

57 kB

URL GET
78crystalroll45.com/assets/main.ac08365fae35b083655d.js
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type
JavaScript source, ASCII text, with very long lines (57139), with no line terminators
Size
57 kB (57139 bytes)
Hash
654b550d6fed47324e7a31dcea1a5b23
d90eff3676d95e209533a93249a3017ea9324791
959fb99de7766f33914a1aedda39b4f18c536d4b5ce198917e54b1b2644c9433

HTTP Headers

GET /assets/main.ac08365fae35b083655d.js HTTP/1.1
Host: 78crystalroll45.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/not-allowed
Cookie: referer=https%3A%2F%2Fgo2crystalroll.com%2F; UUID=56a0cc79-122b-418a-b78e-1fed5cfc43b0; UGID=258385916780386686; lastActivityTime=1741329937451; entryTime=1741329937487; i18n_redirected=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:38 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=31536
Last-Modified: Wed, 05 Mar 2025 14:24:16 GMT
ETag: W/"df33-19566b163b5"
Content-Encoding: gzip

78crystalroll45.com/api/setCookie

3.69.248.113

200 OK

0 B

URL POST
78crystalroll45.com/api/setCookie
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /api/setCookie HTTP/1.1
Host: 78crystalroll45.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 27
Origin: https://78crystalroll45.com
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/not-allowed
Cookie: referer=https%3A%2F%2Fgo2crystalroll.com%2F; UUID=56a0cc79-122b-418a-b78e-1fed5cfc43b0; UGID=258385916780386686; lastActivityTime=1741329937451; entryTime=1741329937487; i18n_redirected=en
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:39 GMT
Content-Length: 0
Connection: keep-alive
X-Powered-By: Express
Set-Cookie: isPwa=false; Max-Age=31556952; Path=/; Expires=Sat, 07 Mar 2026 12:34:51 GMT

78crystalroll45.com/assets/register/build/remoteEntry.js?0.07583778730762525

3.69.248.113

200 OK

9.1 kB

URL GET
78crystalroll45.com/assets/register/build/remoteEntry.js?0.07583778730762525
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type
JavaScript source, ASCII text, with very long lines (9523), with no line terminators
Size
9.1 kB (9144 bytes)
Hash
fa066b9ccb258bb90a2d494352feb7af
8432a2e286b6110eff4b754fcc828643ce4d1e4c
e9b99cdae12b781fbf8ee814ab45aad3cbaa77fdbea719d8074e9d649b512043

HTTP Headers

GET /assets/register/build/remoteEntry.js?0.07583778730762525 HTTP/1.1
Host: 78crystalroll45.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/not-allowed
Cookie: referer=https%3A%2F%2Fgo2crystalroll.com%2F; UUID=56a0cc79-122b-418a-b78e-1fed5cfc43b0; UGID=258385916780386686; lastActivityTime=1741329937451; entryTime=1741329937487; i18n_redirected=en; isPwa=false
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:39 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
etag: W/"67bdbc28-23b8"
last-modified: Tue, 25 Feb 2025 12:48:40 GMT
Cache-control: public, no-cache
Content-Encoding: gzip

bi-metrics.aramuz.net/topics/aramuz_fe_crystalroll

142.132.243.105

200 OK

47 B

URL POST
bi-metrics.aramuz.net/topics/aramuz_fe_crystalroll
IP
142.132.243.105:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subjectbi-metrics.aramuz.net
Fingerprint28:88:66:68:EC:B9:26:3D:1E:80:B1:FB:35:90:57:AB:EC:D0:03:41
ValidityWed, 22 Jan 2025 07:08:36 GMT - Tue, 22 Apr 2025 07:08:35 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
47 B (47 bytes)
Hash
faf9d5a226a9b768ca57e6b8291d2713
88ce50ae48523cd5a1fe73946a16222b83ad4c9f
ec071143852c2912e4a1ba6bd6e1558255d8ab69a2b3522bf70ad0572a9b0642

HTTP Headers

POST /topics/aramuz_fe_crystalroll HTTP/1.1
Host: bi-metrics.aramuz.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://78crystalroll45.com/
Content-Type: application/vnd.kafka.json.v2+json
Authorization: Basic dWk6d0t2NzJCcThpWDBIbkhXbWphcGdQbEhx
Content-Length: 400
Origin: https://78crystalroll45.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 07 Mar 2025 06:45:39 GMT
content-type: application/vnd.kafka.v2+json
content-length: 47
strict-transport-security: max-age=31536000; includeSubDomains
access-control-allow-origin: https://78crystalroll45.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
X-Firefox-Spdy: h2

kivirun.com/favicon.ico

0.0.0.0

0 B

URL GET
kivirun.com/favicon.ico
IP
0.0.0.0:0
ASN
#0

Requested by
https://kivirun.com/L6tPYq?extra_param_1=48971&external_id=w8jm0u9lcs4s7688jbef3qm6
Certificate
IssuerGoogle Trust Services
Subjectkivirun.com
Fingerprint46:80:0D:88:F5:42:81:1A:9A:30:DB:F4:91:F5:78:15:5B:6D:41:14
ValidityTue, 28 Jan 2025 07:16:27 GMT - Mon, 28 Apr 2025 08:14:49 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: kivirun.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: _subid=1sjos4feu04ja; 4d606=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjYzNTc5M1wiOjE3NDEzMjk5MzV9LFwiY2FtcGFpZ25zXCI6e1wiMTAwMTJcIjoxNzQxMzI5OTM1fSxcInRpbWVcIjoxNzQxMzI5OTM1fSJ9.WL6xEwCnnK8LqJjaS7amcfWgybBFiC7iqJvZDlf8biI; _token=uuid_1sjos4feu04ja_1sjos4feu04ja67ca960f05cae1.05398980; __cf_bm=rZZa05DyBDZfCrqKTZQ_Y.8BckBHnxgubL98s4MgWXQ-1741329935-1.0.1.1-RRBDVCkh9ZU4MjVuqjXcAM89aq4K95QyCA8rjPcYkjC8kj_TgGhA3PiF.qIzf6MFiVeGf9TqjC3xw0vM4RQUg7Y.UH.GQBAi6Ikjos9klhc; _cfuvid=PGdkK0jzDfJioXVcF6dy6mMxpa0MfMkYAmoRgtnOa30-1741329935037-0.0.1.1-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

78crystalroll45.com/assets/main.e64b4a73554c19744e44.js

3.69.248.113

200 OK

935 B

URL GET
78crystalroll45.com/assets/main.e64b4a73554c19744e44.js
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (955), with no line terminators
Size
935 B (935 bytes)
Hash
355ec81f6d55d39ebc21b2da0532b6b0
d24f0996123946a1389bf28c58005bf4debe9972
78e7c9598373987f3442fd381ca996ee50f8512de35eee6212699b76bc5e52fb

HTTP Headers

GET /assets/main.e64b4a73554c19744e44.js HTTP/1.1
Host: 78crystalroll45.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/not-allowed
Cookie: referer=https%3A%2F%2Fgo2crystalroll.com%2F; UUID=56a0cc79-122b-418a-b78e-1fed5cfc43b0; UGID=258385916780386686; lastActivityTime=1741329937451; entryTime=1741329937487; i18n_redirected=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:39 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=31536
Last-Modified: Wed, 05 Mar 2025 14:24:16 GMT
ETag: W/"3a7-19566b163bd"
Content-Encoding: gzip

crystalroll.aramuz.net/frontapi/crystalroll/currencyList?locale=en

104.22.34.217

200 OK

0 B

URL OPTIONS
crystalroll.aramuz.net/frontapi/crystalroll/currencyList?locale=en
IP
104.22.34.217:443
ASN
#13335 CLOUDFLARENET

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subjectaramuz.net
Fingerprint9C:02:46:99:AD:75:1B:6A:5B:78:52:0C:E3:CD:7E:8F:93:22:44:58
ValidityTue, 28 Jan 2025 09:48:13 GMT - Mon, 28 Apr 2025 09:48:12 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /frontapi/crystalroll/currencyList?locale=en HTTP/1.1
Host: crystalroll.aramuz.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: visitor-uuid
Referer: https://78crystalroll45.com/
Origin: https://78crystalroll45.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 07 Mar 2025 06:45:39 GMT
content-type: application/octet-stream
content-length: 0
access-control-expose-headers: x-meta-count, x-meta-next-page-token, Content-Location, Visitor-Uuid, x-meta-prev-page-token
access-control-allow-origin: *
access-control-allow-methods: OPTIONS, GET, HEAD, POST, PUT, DELETE, PATCH
access-control-allow-headers: Authorization, Content-Type, X-Auth-Token, cache-control, x-requested-with, Visitor-Uuid, x-meta-prev-page-token, x-user-origin, x-color-depth, x-language, x-screen-height, x-screen-width, x-time-zone, x-time-zone-offset, x-java-enabled, x-java-script-enabled
access-control-allow-credentials: true
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 91c8219868a892a9-CPH
X-Firefox-Spdy: h2

go.maroonaffs.com/visit/?bta=35055&nci=5356&afp1=1sjos4feu04ja&afp10=&utm_campaign=Onclick&store_id=&af_id=&af_dev_key=BDREFvBLEZQKVYEhZafc85&keitaro_stream_id=635793&keitaro_country=NO&keitaro_platform=Windows&click_id=1sjos4feu04ja&af_sub1=&af_sub2=&af_sub3=&af_sub4=&af_sub5=

35.234.86.61

302 Moved Temporarily

72 kB

URL User Request GET
go.maroonaffs.com/visit/?bta=35055&nci=5356&afp1=1sjos4feu04ja&afp10=&utm_campaign=Onclick&store_id=&af_id=&af_dev_key=BDREFvBLEZQKVYEhZafc85&keitaro_stream_id=635793&keitaro_country=NO&keitaro_platform=Windows&click_id=1sjos4feu04ja&af_sub1=&af_sub2=&af_sub3=&af_sub4=&af_sub5=
IP
35.234.86.61:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Certificate
IssuerLet's Encrypt
Subjectgo.maroonaffs.com
FingerprintE8:86:80:88:F7:95:33:57:E5:8E:19:AA:BE:91:6C:30:3F:EB:30:B5
ValiditySun, 19 Jan 2025 03:02:24 GMT - Sat, 19 Apr 2025 03:02:23 GMT

File type

Size
72 kB (71554 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /visit/?bta=35055&nci=5356&afp1=1sjos4feu04ja&afp10=&utm_campaign=Onclick&store_id=&af_id=&af_dev_key=BDREFvBLEZQKVYEhZafc85&keitaro_stream_id=635793&keitaro_country=NO&keitaro_platform=Windows&click_id=1sjos4feu04ja&af_sub1=&af_sub2=&af_sub3=&af_sub4=&af_sub5= HTTP/1.1
Host: go.maroonaffs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Moved Temporarily
Server: rhino-core-shield
Date: Fri, 07 Mar 2025 06:45:36 GMT
Content-Type: application/octet-stream
Content-Length: 3
Connection: keep-alive
Set-cookie: crystalroll-v=372433; Max-Age=2678400; Path=/; Expires=Mon, 07 Apr 2025 06:45:36 GMT; HttpOnly
expires: 0
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate
surrogate-control: no-store
location: https://go2crystalroll.com/casino?cxd=35055_372433_|afp1:1sjos4feu04ja|afp10:&af_dev_key=BDREFvBLEZQKVYEhZafc85&af_id=&af_sub1=&af_sub2=&af_sub3=&af_sub4=&af_sub5=&afp1=1sjos4feu04ja&afp10=&bta=35055&click_id=1sjos4feu04ja&keitaro_country=NO&keitaro_platform=Windows&keitaro_stream_id=635793&nci=5356&store_id=&utm_campaign=Onclick#register
referer: 
X-Cache-Status: MISS
access-control-allow-origin: *, *

78crystalroll45.com/assets/style.bb4a53c6.css

3.69.248.113

200 OK

751 B

URL GET
78crystalroll45.com/assets/style.bb4a53c6.css
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type
ASCII text, with very long lines (751), with no line terminators
Size
751 B (751 bytes)
Hash
5c147eece0f80816f975b73ae0329221
71672fd74109308570c4d4346f132e5293093a18
2557b52af7852a29b9dd9030bb686030bcef4987ebc5783c4474d2dc7dea660d

HTTP Headers

GET /assets/style.bb4a53c6.css HTTP/1.1
Host: 78crystalroll45.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/not-allowed
Cookie: referer=https%3A%2F%2Fgo2crystalroll.com%2F; UUID=56a0cc79-122b-418a-b78e-1fed5cfc43b0; UGID=258385916780386686; lastActivityTime=1741329937451; entryTime=1741329937487; i18n_redirected=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:39 GMT
Content-Type: text/css; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=31536
Last-Modified: Wed, 05 Mar 2025 14:24:16 GMT
ETag: W/"2ef-19566b163d1"
Content-Encoding: gzip

78crystalroll45.com/assets/main.fa82552e3763c284c997.js

3.69.248.113

200 OK

1.9 kB

URL GET
78crystalroll45.com/assets/main.fa82552e3763c284c997.js
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (1931), with no line terminators
Size
1.9 kB (1889 bytes)
Hash
6cc64a3bb5ca4c0b71b265902db585b8
e6f1db1f620f02f06634e54dc49ce639607d2fab
3ec697664ea973003c3284ba838d3377becf3732638758481ac20759ec94561c

HTTP Headers

GET /assets/main.fa82552e3763c284c997.js HTTP/1.1
Host: 78crystalroll45.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/not-allowed
Cookie: referer=https%3A%2F%2Fgo2crystalroll.com%2F; UUID=56a0cc79-122b-418a-b78e-1fed5cfc43b0; UGID=258385916780386686; lastActivityTime=1741329937451; entryTime=1741329937487; i18n_redirected=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:39 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=31536
Last-Modified: Wed, 05 Mar 2025 14:24:16 GMT
ETag: W/"761-19566b163bd"
Content-Encoding: gzip

78crystalroll45.com/assets/main.9fe08ec6ff6b4a7e4e01.js

3.69.248.113

200 OK

1.1 kB

URL GET
78crystalroll45.com/assets/main.9fe08ec6ff6b4a7e4e01.js
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (1077), with no line terminators
Size
1.1 kB (1061 bytes)
Hash
80f58417ce11478cea57e9e2509ff6c4
c18db52c430a1c7da35ca0d0bdcadb0303729377
8e1527dba1f193dbeef0a56b34ada81499ccf6da6de604e5feaf0e61466f77b0

HTTP Headers

GET /assets/main.9fe08ec6ff6b4a7e4e01.js HTTP/1.1
Host: 78crystalroll45.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/not-allowed
Cookie: referer=https%3A%2F%2Fgo2crystalroll.com%2F; UUID=56a0cc79-122b-418a-b78e-1fed5cfc43b0; UGID=258385916780386686; lastActivityTime=1741329937451; entryTime=1741329937487; i18n_redirected=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:38 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=31536
Last-Modified: Wed, 05 Mar 2025 14:24:16 GMT
ETag: W/"425-19566b163b1"
Content-Encoding: gzip

cdn.livechatinc.com/widget/static/js/10.B9w-_AZn.chunk.js

23.36.77.179

200 OK

307 B

URL GET
cdn.livechatinc.com/widget/static/js/10.B9w-_AZn.chunk.js
IP
23.36.77.179:443
ASN
#20940 Akamai International B.V.

Requested by
https://secure.livechatinc.com/customer/action/open_chat?license_id=12226866&group=259&embedded=1&widget_version=3&unique_groups=1&organizationId=3e26eee1-3f49-4911-97b0-72c1ffb60600&use_parent_storage=1
Certificate
IssuerDigiCert Inc
Subjectlivechat.com
FingerprintA9:A2:B2:15:09:CC:34:E7:F9:94:88:21:E7:5A:86:A1:30:A3:B6:DC
ValidityWed, 10 Jul 2024 00:00:00 GMT - Thu, 10 Jul 2025 23:59:59 GMT

File type
ASCII text, with very long lines (313), with no line terminators
Size
307 B (307 bytes)
Hash
0c5797436f9eaad410d81a7b9683f397
f10b1a8120359a1cc382ea4e80ed99b754722a55
daaaa4e291bf8b7e23b6bc01bb24a1fe5eb72d9dd54a0bed77205c0e2e45d890

HTTP Headers

GET /widget/static/js/10.B9w-_AZn.chunk.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://secure.livechatinc.com
DNT: 1
Connection: keep-alive
Referer: https://cdn.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Thu, 06 Mar 2025 10:39:56 GMT
etag: "5e984445573850c6e38e17d5205ccfe1"
x-amz-server-side-encryption: AES256
x-amz-version-id: IaqKlgjO_0ywGDqFBUBV1.mK.u6kF.yB
accept-ranges: bytes
server: AmazonS3
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: _KfgUzGsJHZiC0m3n-sl_lIprDQt-Z2lSw8G8P8if4vSatVGzgMlLA==
vary: Accept-Encoding
content-encoding: gzip
content-length: 237
cache-control: max-age=31536000
expires: Sat, 07 Mar 2026 06:45:41 GMT
date: Fri, 07 Mar 2025 06:45:41 GMT
content-type: application/javascript; charset=utf-8
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
X-Firefox-Spdy: h2

90crystalroll67.com/ping?t=1741329936743

3.69.248.113

0 B

URL GET
90crystalroll67.com/ping?t=1741329936743
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://go2crystalroll.com/casino?cxd=35055_372433_|afp1:1sjos4feu04ja|afp10:&af_dev_key=BDREFvBLEZQKVYEhZafc85&af_id=&af_sub1=&af_sub2=&af_sub3=&af_sub4=&af_sub5=&afp1=1sjos4feu04ja&afp10=&bta=35055&click_id=1sjos4feu04ja&keitaro_country=NO&keitaro_platform=Windows&keitaro_stream_id=635793&nci=5356&store_id=&utm_campaign=Onclick#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ping?t=1741329936743 HTTP/1.1
Host: 90crystalroll67.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://go2crystalroll.com/
Content-Type: text/plain
Origin: https://go2crystalroll.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

78crystalroll45.com/ping?t=1741329936738

3.69.248.113

200 OK

13 B

URL GET
78crystalroll45.com/ping?t=1741329936738
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://go2crystalroll.com/casino?cxd=35055_372433_|afp1:1sjos4feu04ja|afp10:&af_dev_key=BDREFvBLEZQKVYEhZafc85&af_id=&af_sub1=&af_sub2=&af_sub3=&af_sub4=&af_sub5=&afp1=1sjos4feu04ja&afp10=&bta=35055&click_id=1sjos4feu04ja&keitaro_country=NO&keitaro_platform=Windows&keitaro_stream_id=635793&nci=5356&store_id=&utm_campaign=Onclick#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type
ASCII text, with no line terminators
Size
13 B (13 bytes)
Hash
9d37e4f22b2fd47b013c45dc36354351
9694bfb67393a589f78576ad3b3abea34e318322
8c28141665b507d3c2e52b10ef25115cc03e36d98fe0ebf51e27c6e8250f3fdf

HTTP Headers

GET /ping?t=1741329936738 HTTP/1.1
Host: 78crystalroll45.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://go2crystalroll.com/
Content-Type: text/plain
Origin: https://go2crystalroll.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:36 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 13
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
ETag: W/"d-lpS/tnOTpYn3hXatOzq+o04xgyI"

bi-metrics.aramuz.net/topics/aramuz_fe_crystalroll

142.132.243.105

204 No Content

0 B

URL OPTIONS
bi-metrics.aramuz.net/topics/aramuz_fe_crystalroll
IP
142.132.243.105:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subjectbi-metrics.aramuz.net
Fingerprint28:88:66:68:EC:B9:26:3D:1E:80:B1:FB:35:90:57:AB:EC:D0:03:41
ValidityWed, 22 Jan 2025 07:08:36 GMT - Tue, 22 Apr 2025 07:08:35 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /topics/aramuz_fe_crystalroll HTTP/1.1
Host: bi-metrics.aramuz.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type
Referer: https://78crystalroll45.com/
Origin: https://78crystalroll45.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
date: Fri, 07 Mar 2025 06:45:39 GMT
strict-transport-security: max-age=31536000; includeSubDomains
access-control-allow-origin: https://78crystalroll45.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-max-age: 1728000
content-type: text/plain charset=UTF-8
content-length: 0
X-Firefox-Spdy: h2

api.livechatinc.com/v3.6/customer/action/get_dynamic_configuration?license_id=12226866&client_id=c5e4f61e1a6c3b1521b541bc5c5a2ac5&url=https%3A%2F%2F78crystalroll45.com%2Fnot-allowed&group_id=259&channel_type=code&jsonp=__r46ggttd8rj

23.36.77.179

200 OK

1.4 kB

URL GET
api.livechatinc.com/v3.6/customer/action/get_dynamic_configuration?license_id=12226866&client_id=c5e4f61e1a6c3b1521b541bc5c5a2ac5&url=https%3A%2F%2F78crystalroll45.com%2Fnot-allowed&group_id=259&channel_type=code&jsonp=__r46ggttd8rj
IP
23.36.77.179:443
ASN
#20940 Akamai International B.V.

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerDigiCert Inc
Subjectlivechat.com
FingerprintA9:A2:B2:15:09:CC:34:E7:F9:94:88:21:E7:5A:86:A1:30:A3:B6:DC
ValidityWed, 10 Jul 2024 00:00:00 GMT - Thu, 10 Jul 2025 23:59:59 GMT

File type
ASCII text, with very long lines (1425), with no line terminators
Size
1.4 kB (1393 bytes)
Hash
2d421b188bc5fa511281bdd49008a6a8
47b4254c439691e9e7f501354b91b5f49b01728d
9ae5b8bc274d6c9264466d26011f1dd3cd7dffccf7a8790a74885f022ecb024e

HTTP Headers

GET /v3.6/customer/action/get_dynamic_configuration?license_id=12226866&client_id=c5e4f61e1a6c3b1521b541bc5c5a2ac5&url=https%3A%2F%2F78crystalroll45.com%2Fnot-allowed&group_id=259&channel_type=code&jsonp=__r46ggttd8rj HTTP/1.1
Host: api.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-security-policy: frame-ancestors https://78crystalroll45.com/;
content-type: application/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-frame-options: allow-from https://78crystalroll45.com/
content-length: 1393
date: Fri, 07 Mar 2025 06:45:40 GMT
X-Firefox-Spdy: h2

crystalroll.aramuz.net/frontapi/crystalroll/analyticsEvent?locale=en

104.22.34.217

200 OK

0 B

URL OPTIONS
crystalroll.aramuz.net/frontapi/crystalroll/analyticsEvent?locale=en
IP
104.22.34.217:443
ASN
#13335 CLOUDFLARENET

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subjectaramuz.net
Fingerprint9C:02:46:99:AD:75:1B:6A:5B:78:52:0C:E3:CD:7E:8F:93:22:44:58
ValidityTue, 28 Jan 2025 09:48:13 GMT - Mon, 28 Apr 2025 09:48:12 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /frontapi/crystalroll/analyticsEvent?locale=en HTTP/1.1
Host: crystalroll.aramuz.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,visitor-uuid
Referer: https://78crystalroll45.com/
Origin: https://78crystalroll45.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 07 Mar 2025 06:45:43 GMT
content-type: application/octet-stream
content-length: 0
access-control-expose-headers: x-meta-count, x-meta-next-page-token, Content-Location, Visitor-Uuid, x-meta-prev-page-token
access-control-allow-origin: *
access-control-allow-methods: OPTIONS, GET, HEAD, POST, PUT, DELETE, PATCH
access-control-allow-headers: Authorization, Content-Type, X-Auth-Token, cache-control, x-requested-with, Visitor-Uuid, x-meta-prev-page-token, x-user-origin, x-color-depth, x-language, x-screen-height, x-screen-width, x-time-zone, x-time-zone-offset, x-java-enabled, x-java-script-enabled
access-control-allow-credentials: true
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 91c821b5684292a9-CPH
X-Firefox-Spdy: h2

go2crystalroll.com/casino?cxd=35055_372433_|afp1:1sjos4feu04ja|afp10:&af_dev_key=BDREFvBLEZQKVYEhZafc85&af_id=&af_sub1=&af_sub2=&af_sub3=&af_sub4=&af_sub5=&afp1=1sjos4feu04ja&afp10=&bta=35055&click_id=1sjos4feu04ja&keitaro_country=NO&keitaro_platform=Windows&keitaro_stream_id=635793&nci=5356&store_id=&utm_campaign=Onclick#register

104.26.4.80

200 OK

72 kB

URL User Request GET
go2crystalroll.com/casino?cxd=35055_372433_|afp1:1sjos4feu04ja|afp10:&af_dev_key=BDREFvBLEZQKVYEhZafc85&af_id=&af_sub1=&af_sub2=&af_sub3=&af_sub4=&af_sub5=&afp1=1sjos4feu04ja&afp10=&bta=35055&click_id=1sjos4feu04ja&keitaro_country=NO&keitaro_platform=Windows&keitaro_stream_id=635793&nci=5356&store_id=&utm_campaign=Onclick#register
IP
104.26.4.80:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectgo2crystalroll.com
FingerprintFD:36:67:FF:41:2A:C2:68:38:B0:BA:AD:77:35:02:74:EC:42:80:B9
ValidityTue, 07 Jan 2025 12:27:57 GMT - Mon, 07 Apr 2025 13:27:31 GMT

File type
HTML document, ASCII text, with very long lines (59410)
Size
72 kB (71554 bytes)
Hash
6db2e8008e33b7779862c2b885082c9c
9c463158685cf70f3e88c457189e899923983a15
c40b2adfe8fca4292a99a2f3502d1a3b73d40593a4ddd414f84db6d3d5bf9511

HTTP Headers

GET /casino?cxd=35055_372433_|afp1:1sjos4feu04ja|afp10:&af_dev_key=BDREFvBLEZQKVYEhZafc85&af_id=&af_sub1=&af_sub2=&af_sub3=&af_sub4=&af_sub5=&afp1=1sjos4feu04ja&afp10=&bta=35055&click_id=1sjos4feu04ja&keitaro_country=NO&keitaro_platform=Windows&keitaro_stream_id=635793&nci=5356&store_id=&utm_campaign=Onclick HTTP/1.1
Host: go2crystalroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 07 Mar 2025 06:45:36 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: no-cache, private
access-control-expose-headers: x-meta-count
access-control-allow-origin: *
access-control-allow-methods: *
access-control-allow-headers: Authorization, Content-Type, X-Auth-Token, cache-control, x-requested-with
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZI86hFDbj%2BEqC8AJ5JfgEo8wTDz1Uk9W7sOtLS3BI1AOuCFGWWg2M7kTDOv7brnlpr29gqjf937KQbk8AWct%2F1%2BeoUvqiIHnVQEsyAZp3j5Wot6QuywJuEYVlSKnEOUI5V2neQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 91c8218629c0712a-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=TCP&rtt=6289&min_rtt=502&rtt_var=11605&sent=7&recv=11&lost=0&retrans=0&sent_bytes=3219&recv_bytes=1354&delivery_rate=7133004&cwnd=254&unsent_bytes=0&cid=d2c38249c1c63dfb&ts=121&x=0"
X-Firefox-Spdy: h2

cdn.crystal-static.com/front/flags/NO.svg

104.26.1.19

200 OK

1.3 kB

URL GET
cdn.crystal-static.com/front/flags/NO.svg
IP
104.26.1.19:443
ASN
#13335 CLOUDFLARENET

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerGoogle Trust Services
Subjectcrystal-static.com
FingerprintDB:43:30:44:34:AB:BA:16:63:6A:35:10:B2:BE:72:1E:AC:B3:10:C6
ValidityThu, 27 Feb 2025 15:46:10 GMT - Wed, 28 May 2025 16:46:09 GMT

File type
SVG Scalable Vector Graphics image
Size
1.3 kB (1265 bytes)
Hash
f194f0a0ced1c2f3b423cbbea745e2a9
88485b953a1b0c7f64b47066256d70a702268fa7
09aa3dc8738b90c0ee38b682dbb6c4ffcafdf617a9b1db67c67e2b7d6c49a20c

HTTP Headers

GET /front/flags/NO.svg HTTP/1.1
Host: cdn.crystal-static.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 07 Mar 2025 06:45:38 GMT
content-type: image/svg+xml
last-modified: Thu, 12 Oct 2023 04:49:35 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-server-side-encryption: AES256
x-amz-version-id: null
etag: W/"3a8a59d0dd39d16d148b0b6e03e47d44"
vary: accept-encoding, Origin
x-cache: Miss from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: LDnUyfVvC_QhYsucDqF39ckctFM69lOytB-NY6eHyxAa-TEMs5EDqw==
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
cache-control: max-age=14400
cf-cache-status: HIT
age: 2214
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NFM7y62TD0sEQDYm3NnAdo%2BrjJ%2FVAnggOA8egzWrM2sP5A2WdJ9d0X%2Fx5UIESSr%2BZzk71Z41uqoaiKpUfe3hXa%2BXmHVwn8eyjEiW0TsZ%2BJdLJHC%2FSy76%2Fp%2B3S8bqXGlTMNqzcAjMSQA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 91c821921cefb51b-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=TCP&rtt=827&min_rtt=428&rtt_var=499&sent=11&recv=12&lost=0&retrans=0&sent_bytes=6952&recv_bytes=1322&delivery_rate=8883435&cwnd=254&unsent_bytes=0&cid=cdf7a9c11fa07e9a&ts=206&x=0"
X-Firefox-Spdy: h2

78crystalroll45.com/assets/main.68f0c391f7ed1b3950b9.js

3.69.248.113

200 OK

82 kB

URL GET
78crystalroll45.com/assets/main.68f0c391f7ed1b3950b9.js
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type

Size
82 kB (81684 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /assets/main.68f0c391f7ed1b3950b9.js HTTP/1.1
Host: 78crystalroll45.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/not-allowed
Cookie: referer=https%3A%2F%2Fgo2crystalroll.com%2F; UUID=56a0cc79-122b-418a-b78e-1fed5cfc43b0; UGID=258385916780386686; lastActivityTime=1741329937451; entryTime=1741329937487; i18n_redirected=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:38 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=31536
Last-Modified: Wed, 05 Mar 2025 14:24:16 GMT
ETag: W/"13f14-19566b163a9"
Content-Encoding: gzip

crystalroll.aramuz.net/frontapi/crystalroll/analyticsEvent?locale=en

104.22.34.217

200 OK

59 B

URL POST
crystalroll.aramuz.net/frontapi/crystalroll/analyticsEvent?locale=en
IP
104.22.34.217:443
ASN
#13335 CLOUDFLARENET

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subjectaramuz.net
Fingerprint9C:02:46:99:AD:75:1B:6A:5B:78:52:0C:E3:CD:7E:8F:93:22:44:58
ValidityTue, 28 Jan 2025 09:48:13 GMT - Mon, 28 Apr 2025 09:48:12 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
59 B (59 bytes)
Hash
25c1643acb5ac68359b3ab095c81069d
6f93dc2993e088ed9b77b531ef1496ba76832270
243516a315c628313dc7767c3f5d951f57eb7d14e262012c99c687e942d8af0e

HTTP Headers

POST /frontapi/crystalroll/analyticsEvent?locale=en HTTP/1.1
Host: crystalroll.aramuz.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Visitor-Uuid: 56a0cc79-122b-418a-b78e-1fed5cfc43b0
Content-Length: 1379
Origin: https://78crystalroll45.com
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 07 Mar 2025 06:45:40 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, private
pragma: no-cache
expires: -1
access-control-expose-headers: x-meta-count, x-meta-next-page-token, Content-Location, Visitor-Uuid, x-meta-prev-page-token
access-control-allow-origin: *
access-control-allow-methods: *
access-control-allow-headers: Authorization, Content-Type, X-Auth-Token, cache-control, x-requested-with, Visitor-Uuid, x-meta-prev-page-token, x-user-origin, x-color-depth, x-language, x-screen-height, x-screen-width, x-time-zone, x-time-zone-offset, x-java-enabled, x-java-script-enabled
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 91c8219e3da592a9-CPH
content-encoding: br
X-Firefox-Spdy: h2

fonts.gstatic.com/s/robotocondensed/v27/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2

142.250.74.35

200 OK

51 kB

URL GET
fonts.gstatic.com/s/robotocondensed/v27/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintA4:5F:89:8D:68:B4:5F:99:BE:F5:66:6F:C1:5E:A5:8C:72:BF:1E:D5
ValidityWed, 26 Feb 2025 15:33:59 GMT - Wed, 21 May 2025 15:33:58 GMT

File type
Web Open Font Format (Version 2), TrueType, length 51404, version 1.0
Size
51 kB (51404 bytes)
Hash
b904fcdf1c4c6059fadd6893a7bc7619
f41d1674f02616f03ef77d4e84b3ad8ba28a36fc
517edd119c5b2719e6ac4b30bf1fd864a6395179a41d273c0afc0696e7495d8e

HTTP Headers

GET /s/robotocondensed/v27/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://78crystalroll45.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 51404
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 28 Feb 2025 19:32:42 GMT
expires: Sat, 28 Feb 2026 19:32:42 GMT
cache-control: public, max-age=31536000
age: 558776
last-modified: Wed, 18 Oct 2023 17:52:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

78crystalroll45.com/assets/register/build/1079a5421f861f5d670e.js

3.69.248.113

200 OK

14 kB

URL GET
78crystalroll45.com/assets/register/build/1079a5421f861f5d670e.js
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type
JavaScript source, ASCII text, with very long lines (14510), with no line terminators
Size
14 kB (14510 bytes)
Hash
2da009ae26f0b249697ba6447e96b2ab
93c7a9e16349f26902e3cb49467859b7d63831c7
abc6bd26b5ff549b0b514e4ad4ee21a39702b4069925b862573b37fac65e6bbf

HTTP Headers

GET /assets/register/build/1079a5421f861f5d670e.js HTTP/1.1
Host: 78crystalroll45.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/not-allowed
Cookie: referer=https%3A%2F%2Fgo2crystalroll.com%2F; UUID=56a0cc79-122b-418a-b78e-1fed5cfc43b0; UGID=258385916780386686; lastActivityTime=1741329937451; entryTime=1741329937487; i18n_redirected=en; isPwa=false; width=1280
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:40 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
etag: W/"67bdbc28-38ae"
last-modified: Tue, 25 Feb 2025 12:48:40 GMT
Cache-control: public, max-age=31536000
Content-Encoding: gzip

78crystalroll45.com/assets/register/build/1ee2eeb529606f4882aa.js

3.69.248.113

200 OK

30 kB

URL GET
78crystalroll45.com/assets/register/build/1ee2eeb529606f4882aa.js
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type
JavaScript source, ASCII text, with very long lines (29536), with no line terminators
Size
30 kB (29536 bytes)
Hash
4f10b19000f3eb08105febbe5af441d6
1212d37bcc3eb70c5fd9e0424ed8e630c35e5640
fb7effb5587e1587dc7aac565cf0989284c73696f97ccb5067f75a8b895d35a2

HTTP Headers

GET /assets/register/build/1ee2eeb529606f4882aa.js HTTP/1.1
Host: 78crystalroll45.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/not-allowed
Cookie: referer=https%3A%2F%2Fgo2crystalroll.com%2F; UUID=56a0cc79-122b-418a-b78e-1fed5cfc43b0; UGID=258385916780386686; lastActivityTime=1741329937451; entryTime=1741329937487; i18n_redirected=en; isPwa=false; width=1280
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:40 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
etag: W/"67bdbc28-7360"
last-modified: Tue, 25 Feb 2025 12:48:40 GMT
Cache-control: public, max-age=31536000
Content-Encoding: gzip

api.livechatinc.com/v3.4/customer/action/get_configuration?organization_id=3e26eee1-3f49-4911-97b0-72c1ffb60600&version=6741.0.116.42187.12209.19298.1313.124.4.1.3.76.29&group_id=259&jsonp=__lc_static_config

23.36.77.179

200 OK

4.1 kB

URL GET
api.livechatinc.com/v3.4/customer/action/get_configuration?organization_id=3e26eee1-3f49-4911-97b0-72c1ffb60600&version=6741.0.116.42187.12209.19298.1313.124.4.1.3.76.29&group_id=259&jsonp=__lc_static_config
IP
23.36.77.179:443
ASN
#20940 Akamai International B.V.

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerDigiCert Inc
Subjectlivechat.com
FingerprintA9:A2:B2:15:09:CC:34:E7:F9:94:88:21:E7:5A:86:A1:30:A3:B6:DC
ValidityWed, 10 Jul 2024 00:00:00 GMT - Thu, 10 Jul 2025 23:59:59 GMT

File type
ASCII text, with very long lines (4565), with no line terminators
Size
4.1 kB (4117 bytes)
Hash
1e1764d42eeec9eb50581c0b8e742455
47d6d769e70b3ac43c8c2a7494398ce0767ce506
c86c7443784cfe7cf3c1d5fedfa4a515dcfe9c1ecddcd266a93f85dd30774e7d

HTTP Headers

GET /v3.4/customer/action/get_configuration?organization_id=3e26eee1-3f49-4911-97b0-72c1ffb60600&version=6741.0.116.42187.12209.19298.1313.124.4.1.3.76.29&group_id=259&jsonp=__lc_static_config HTTP/1.1
Host: api.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-encoding: gzip
content-type: application/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
deprecation: 2024-11-30
vary: Accept-Encoding
content-length: 1396
cache-control: public, max-age=600
expires: Fri, 07 Mar 2025 06:55:40 GMT
date: Fri, 07 Mar 2025 06:45:40 GMT
X-Firefox-Spdy: h2

go2crystalroll.com/casino?cxd=35055_372433_%7Cafp1%3A1sjos4feu04ja%7Cafp10%3A&af_dev_key=BDREFvBLEZQKVYEhZafc85&af_id=&af_sub1=&af_sub2=&af_sub3=&af_sub4=&af_sub5=&afp1=1sjos4feu04ja&afp10=&bta=35055&click_id=1sjos4feu04ja&keitaro_country=NO&keitaro_platform=Windows&keitaro_stream_id=635793&nci=5356&store_id=&utm_campaign=Onclick&successMirror=78crystalroll45.com&stt=9818248547&rlc=1&__tRid=3f220c1620ec70cd1789fb37068ea859cfca663815e65848bb70d1b2e73c7c39&cookieEnabled=1&_fetchWrk=1#register

104.26.4.80

302 Found

35 kB

URL User Request GET
go2crystalroll.com/casino?cxd=35055_372433_%7Cafp1%3A1sjos4feu04ja%7Cafp10%3A&af_dev_key=BDREFvBLEZQKVYEhZafc85&af_id=&af_sub1=&af_sub2=&af_sub3=&af_sub4=&af_sub5=&afp1=1sjos4feu04ja&afp10=&bta=35055&click_id=1sjos4feu04ja&keitaro_country=NO&keitaro_platform=Windows&keitaro_stream_id=635793&nci=5356&store_id=&utm_campaign=Onclick&successMirror=78crystalroll45.com&stt=9818248547&rlc=1&__tRid=3f220c1620ec70cd1789fb37068ea859cfca663815e65848bb70d1b2e73c7c39&cookieEnabled=1&_fetchWrk=1#register
IP
104.26.4.80:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectgo2crystalroll.com
FingerprintFD:36:67:FF:41:2A:C2:68:38:B0:BA:AD:77:35:02:74:EC:42:80:B9
ValidityTue, 07 Jan 2025 12:27:57 GMT - Mon, 07 Apr 2025 13:27:31 GMT

File type

Size
35 kB (34628 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /casino?cxd=35055_372433_%7Cafp1%3A1sjos4feu04ja%7Cafp10%3A&af_dev_key=BDREFvBLEZQKVYEhZafc85&af_id=&af_sub1=&af_sub2=&af_sub3=&af_sub4=&af_sub5=&afp1=1sjos4feu04ja&afp10=&bta=35055&click_id=1sjos4feu04ja&keitaro_country=NO&keitaro_platform=Windows&keitaro_stream_id=635793&nci=5356&store_id=&utm_campaign=Onclick&successMirror=78crystalroll45.com&stt=9818248547&rlc=1&__tRid=3f220c1620ec70cd1789fb37068ea859cfca663815e65848bb70d1b2e73c7c39&cookieEnabled=1&_fetchWrk=1 HTTP/1.1
Host: go2crystalroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://go2crystalroll.com/casino?cxd=35055_372433_|afp1:1sjos4feu04ja|afp10:&af_dev_key=BDREFvBLEZQKVYEhZafc85&af_id=&af_sub1=&af_sub2=&af_sub3=&af_sub4=&af_sub5=&afp1=1sjos4feu04ja&afp10=&bta=35055&click_id=1sjos4feu04ja&keitaro_country=NO&keitaro_platform=Windows&keitaro_stream_id=635793&nci=5356&store_id=&utm_campaign=Onclick
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Fri, 07 Mar 2025 06:45:37 GMT
content-type: text/html; charset=UTF-8
location: https://78crystalroll45.com/casino?cxd=35055_372433_%7Cafp1%3A1sjos4feu04ja%7Cafp10%3A&af_dev_key=BDREFvBLEZQKVYEhZafc85&af_id=&af_sub1=&af_sub2=&af_sub3=&af_sub4=&af_sub5=&afp1=1sjos4feu04ja&afp10=&bta=35055&click_id=1sjos4feu04ja&keitaro_country=NO&keitaro_platform=Windows&keitaro_stream_id=635793&nci=5356&store_id=&utm_campaign=Onclick&_rd=eyJyb3RhdG9ySWQiOiIzZjIyMGMxNjIwZWM3MGNkMTc4OWZiMzcwNjhlYTg1OWNmY2E2NjM4MTVlNjU4NDhiYjcwZDFiMmU3M2M3YzM5Iiwicm90YXRvclJvdXRlciI6ImdvMmNyeXN0YWxyb2xsLmNvbSJ9
cache-control: no-cache, private
set-cookie: rotatorId=3f220c1620ec70cd1789fb37068ea859cfca663815e65848bb70d1b2e73c7c39; expires=Sat, 07 Mar 2026 06:45:37 GMT; Max-Age=31536000; path=/; secure; httponly; samesite=lax
access-control-expose-headers: x-meta-count
access-control-allow-origin: *
access-control-allow-methods: *
access-control-allow-headers: Authorization, Content-Type, X-Auth-Token, cache-control, x-requested-with
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ygA0uKJ%2FJCnmGkyrBMgxRozgDDn%2Bi5f1AotgcmSzW1M3%2Ft7%2BYVwmkQNKOtzWp%2BBpAdZ46vQz7Cvnm5iQsdQn3w9kKHYZ3sPAvS42857DdtXHF0wIepH62Ac6%2FFkTrjZLd5hYLg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 91c8218b5de7712a-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=1533&min_rtt=494&rtt_var=1641&sent=29&recv=26&lost=0&retrans=0&sent_bytes=28172&recv_bytes=2022&delivery_rate=16066574&cwnd=257&unsent_bytes=0&cid=d2c38249c1c63dfb&ts=921&x=0"
X-Firefox-Spdy: h2

78crystalroll45.com/theme.css?v=^0.1.129

3.69.248.113

200 OK

168 kB

URL GET
78crystalroll45.com/theme.css?v=^0.1.129
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type

Size
168 kB (167593 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /theme.css?v=^0.1.129 HTTP/1.1
Host: 78crystalroll45.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/not-allowed
Cookie: referer=https%3A%2F%2Fgo2crystalroll.com%2F; UUID=56a0cc79-122b-418a-b78e-1fed5cfc43b0; UGID=258385916780386686; lastActivityTime=1741329937451; entryTime=1741329937487; i18n_redirected=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:37 GMT
Content-Type: text/css; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-control: public, max-age=2400000
Last-Modified: Tue, 04 Mar 2025 08:52:34 GMT
ETag: W/"28ea9-195605b5bb1"
Content-Encoding: gzip

78crystalroll45.com/assets/main.2ea1b485ab08220d8c63.js

3.69.248.113

200 OK

37 kB

URL GET
78crystalroll45.com/assets/main.2ea1b485ab08220d8c63.js
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type

Size
37 kB (37011 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /assets/main.2ea1b485ab08220d8c63.js HTTP/1.1
Host: 78crystalroll45.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/not-allowed
Cookie: referer=https%3A%2F%2Fgo2crystalroll.com%2F; UUID=56a0cc79-122b-418a-b78e-1fed5cfc43b0; UGID=258385916780386686; lastActivityTime=1741329937451; entryTime=1741329937487; i18n_redirected=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:38 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=31536
Last-Modified: Wed, 05 Mar 2025 14:24:16 GMT
ETag: W/"9093-19566b163a1"
Content-Encoding: gzip

crystalroll.aramuz.net/frontapi/crystalroll/feedback?locale=en

104.22.34.217

200 OK

0 B

URL OPTIONS
crystalroll.aramuz.net/frontapi/crystalroll/feedback?locale=en
IP
104.22.34.217:443
ASN
#13335 CLOUDFLARENET

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subjectaramuz.net
Fingerprint9C:02:46:99:AD:75:1B:6A:5B:78:52:0C:E3:CD:7E:8F:93:22:44:58
ValidityTue, 28 Jan 2025 09:48:13 GMT - Mon, 28 Apr 2025 09:48:12 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /frontapi/crystalroll/feedback?locale=en HTTP/1.1
Host: crystalroll.aramuz.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: visitor-uuid
Referer: https://78crystalroll45.com/
Origin: https://78crystalroll45.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 07 Mar 2025 06:45:39 GMT
content-type: application/octet-stream
content-length: 0
access-control-expose-headers: x-meta-count, x-meta-next-page-token, Content-Location, Visitor-Uuid, x-meta-prev-page-token
access-control-allow-origin: *
access-control-allow-methods: OPTIONS, GET, HEAD, POST, PUT, DELETE, PATCH
access-control-allow-headers: Authorization, Content-Type, X-Auth-Token, cache-control, x-requested-with, Visitor-Uuid, x-meta-prev-page-token, x-user-origin, x-color-depth, x-language, x-screen-height, x-screen-width, x-time-zone, x-time-zone-offset, x-java-enabled, x-java-script-enabled
access-control-allow-credentials: true
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 91c82197d85592a9-CPH
X-Firefox-Spdy: h2

78crystalroll45.com/assets/main.acdab924f4eea4997d3c.js

3.69.248.113

200 OK

2.4 kB

URL GET
78crystalroll45.com/assets/main.acdab924f4eea4997d3c.js
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (2374), with no line terminators
Size
2.4 kB (2358 bytes)
Hash
f00fd8602492ae4e4dbdb04ab4328991
ed7ae472372d9b1e2f80cd9eaecb20458bdafa26
c37d8a69ec1bd5784f5f5d27b07d4ddefed1f12e2ad527c0948c8dfe46bef316

HTTP Headers

GET /assets/main.acdab924f4eea4997d3c.js HTTP/1.1
Host: 78crystalroll45.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/not-allowed
Cookie: referer=https%3A%2F%2Fgo2crystalroll.com%2F; UUID=56a0cc79-122b-418a-b78e-1fed5cfc43b0; UGID=258385916780386686; lastActivityTime=1741329937451; entryTime=1741329937487; i18n_redirected=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:39 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=31536
Last-Modified: Wed, 05 Mar 2025 14:24:16 GMT
ETag: W/"936-19566b163b5"
Content-Encoding: gzip

78crystalroll45.com/ping?t=1741329936740

3.69.248.113

200 OK

13 B

URL GET
78crystalroll45.com/ping?t=1741329936740
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://go2crystalroll.com/casino?cxd=35055_372433_|afp1:1sjos4feu04ja|afp10:&af_dev_key=BDREFvBLEZQKVYEhZafc85&af_id=&af_sub1=&af_sub2=&af_sub3=&af_sub4=&af_sub5=&afp1=1sjos4feu04ja&afp10=&bta=35055&click_id=1sjos4feu04ja&keitaro_country=NO&keitaro_platform=Windows&keitaro_stream_id=635793&nci=5356&store_id=&utm_campaign=Onclick#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type
ASCII text, with no line terminators
Size
13 B (13 bytes)
Hash
24ab50926ed1aac913c9bccd2fe738de
7b7d0552e92c9a7e0971ea170bb627ea44ec2889
0d4eb01afbcde66019295238abc188ef096fdfee05becae3ae367b6ee4bd8499

HTTP Headers

GET /ping?t=1741329936740 HTTP/1.1
Host: 78crystalroll45.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://go2crystalroll.com/
Content-Type: text/plain
Origin: https://go2crystalroll.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:36 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 13
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
ETag: W/"d-e30FUuksmn4JceoXC7Yn6kTsKIk"

cdn.crystal-static.com/front/logos/crystalroll/logo-main.svg

104.26.1.19

200 OK

6.5 kB

URL GET
cdn.crystal-static.com/front/logos/crystalroll/logo-main.svg
IP
104.26.1.19:443
ASN
#13335 CLOUDFLARENET

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerGoogle Trust Services
Subjectcrystal-static.com
FingerprintDB:43:30:44:34:AB:BA:16:63:6A:35:10:B2:BE:72:1E:AC:B3:10:C6
ValidityThu, 27 Feb 2025 15:46:10 GMT - Wed, 28 May 2025 16:46:09 GMT

File type
SVG Scalable Vector Graphics image
Size
6.5 kB (6465 bytes)
Hash
36e839eb5d9b3b6fd42238dbd276649f
db05c95ab4d7a2301e9847997de41a8951e6eb89
7a4bce902b6b896adff718a8f847955569c720ace71380effffeae0258e3020a

HTTP Headers

GET /front/logos/crystalroll/logo-main.svg HTTP/1.1
Host: cdn.crystal-static.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 07 Mar 2025 06:45:38 GMT
content-type: image/svg+xml
last-modified: Fri, 13 Sep 2024 12:40:23 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: BX.zoTP3fpFYj4MRvn0lnmGBS5cIcNoO
etag: W/"78de0ae1c96adc9cd30e30c9f5611bd4"
vary: accept-encoding, Origin
x-cache: Miss from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2OZAZYDhmF_gUeUC0dJxfxG7xxIm6mCS2SjjnKHMn6_ML1U6NJTnLw==
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
cache-control: max-age=14400
cf-cache-status: HIT
age: 2214
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jADhNpk8Mep5b0pdHhrM09iLTblFJX1I%2FaBM57szuWdrYZMOOfuZ1QxZ6d%2Bc8Stw3CWdMwU0mN881bL5qIK5g%2FhKUv8W8IrBAy8%2F9s2FaS1ULdy%2BPC6LuaZkmvabIjWaq0lfhkT89OQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 91c821911c42b51b-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=TCP&rtt=852&min_rtt=428&rtt_var=598&sent=7&recv=10&lost=0&retrans=0&sent_bytes=3295&recv_bytes=1242&delivery_rate=4121442&cwnd=254&unsent_bytes=0&cid=cdf7a9c11fa07e9a&ts=44&x=0"
X-Firefox-Spdy: h2

accounts.livechatinc.com/v2/customer/3e26eee1-3f49-4911-97b0-72c1ffb60600/259/token

23.36.77.179

200 OK

195 B

URL POST
accounts.livechatinc.com/v2/customer/3e26eee1-3f49-4911-97b0-72c1ffb60600/259/token
IP
23.36.77.179:443
ASN
#20940 Akamai International B.V.

Requested by
https://secure.livechatinc.com/customer/action/open_chat?license_id=12226866&group=259&embedded=1&widget_version=3&unique_groups=1&organizationId=3e26eee1-3f49-4911-97b0-72c1ffb60600&use_parent_storage=1
Certificate
IssuerDigiCert Inc
Subjectlivechat.com
FingerprintA9:A2:B2:15:09:CC:34:E7:F9:94:88:21:E7:5A:86:A1:30:A3:B6:DC
ValidityWed, 10 Jul 2024 00:00:00 GMT - Thu, 10 Jul 2025 23:59:59 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
195 B (195 bytes)
Hash
3410d3280cdbc874904294312fe20aa8
671b035e401c8227e758be4e63fae9ac10afd2c7
692060ec25a66f3ea96f4e78bac3254cdd762308691a8e3e0ce82112192d3375

HTTP Headers

POST /v2/customer/3e26eee1-3f49-4911-97b0-72c1ffb60600/259/token HTTP/1.1
Host: accounts.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 225
Origin: https://secure.livechatinc.com
DNT: 1
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://secure.livechatinc.com
cache-control: no-cache, no-store, max-age=0, must-revalidate
content-type: application/json
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
content-length: 195
date: Fri, 07 Mar 2025 06:45:41 GMT
set-cookie: __lc_cid=ce60900b-2c8e-4d58-a776-35ff4bff0be1; Path=/v2/customer/3e26eee1-3f49-4911-97b0-72c1ffb60600/259/token; Domain=accounts.livechatinc.com; Expires=Sun, 07 Mar 2027 06:45:41 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None; Partitioned
__lc_cst=07a0a7691e09d7b1366cd63bf5e6153998eb709a45e7b4c200089cf3b40c8dd600b2ac77e6c2a28b13e33af460287324df958f8c26d67246fe9e19c78d66; Path=/v2/customer/3e26eee1-3f49-4911-97b0-72c1ffb60600/259/token; Domain=accounts.livechatinc.com; Expires=Sun, 07 Mar 2027 06:45:41 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None; Partitioned
__lc_cid=ce60900b-2c8e-4d58-a776-35ff4bff0be1; Path=/licence/g12226866_259/; Domain=accounts.livechatinc.com; Expires=Sun, 07 Mar 2027 06:45:41 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None; Partitioned
__lc_cst=07a0a7691e09d7b1366cd63bf5e6153998eb709a45e7b4c200089cf3b40c8dd600b2ac77e6c2a28b13e33af460287324df958f8c26d67246fe9e19c78d66; Path=/licence/g12226866_259/; Domain=accounts.livechatinc.com; Expires=Sun, 07 Mar 2027 06:45:41 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None; Partitioned
__oauth_redirect_detector=counter=1&t=1741329971&tag=2f1919b84edc42859ae5029bad55e56e5feee07b; Path=/; Expires=Fri, 07 Mar 2025 06:46:11 GMT; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=86400 ; includeSubDomains
X-Firefox-Spdy: h2

78crystalroll45.com/assets/main.bd15da43dc107ad2e47f.js

3.69.248.113

200 OK

50 kB

URL GET
78crystalroll45.com/assets/main.bd15da43dc107ad2e47f.js
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type
JavaScript source, ASCII text, with very long lines (50258), with no line terminators
Size
50 kB (50258 bytes)
Hash
a65c7976033dfb5411ba43a885429dfc
69b60f5d258570ef0850fb24c0ccc8f2a1ecefd8
ca963e17a4852ded6c53df24cec28fff77d68be89ab4d10ecf36b0f5864f3041

HTTP Headers

GET /assets/main.bd15da43dc107ad2e47f.js HTTP/1.1
Host: 78crystalroll45.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/not-allowed
Cookie: referer=https%3A%2F%2Fgo2crystalroll.com%2F; UUID=56a0cc79-122b-418a-b78e-1fed5cfc43b0; UGID=258385916780386686; lastActivityTime=1741329937451; entryTime=1741329937487; i18n_redirected=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:37 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=31536
Last-Modified: Wed, 05 Mar 2025 14:24:16 GMT
ETag: W/"c452-19566b163b5"
Content-Encoding: gzip

cdn.crystal-static.com/lokalise/crystalroll/en.json?timestamp=1741323608

104.26.1.19

200 OK

262 kB

URL GET
cdn.crystal-static.com/lokalise/crystalroll/en.json?timestamp=1741323608
IP
104.26.1.19:443
ASN
#13335 CLOUDFLARENET

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerGoogle Trust Services
Subjectcrystal-static.com
FingerprintDB:43:30:44:34:AB:BA:16:63:6A:35:10:B2:BE:72:1E:AC:B3:10:C6
ValidityThu, 27 Feb 2025 15:46:10 GMT - Wed, 28 May 2025 16:46:09 GMT

File type
JSON text data
Size
262 kB (262312 bytes)
Hash
c286fe14557ec470a51f009ff90d98fa
0638a7fb1b42a9f675d24f9cae89278711634a51
91594bed6bec2a6107f31e665ed504d65f2fb9e4b9f035a7cc743b73b913515d

HTTP Headers

GET /lokalise/crystalroll/en.json?timestamp=1741323608 HTTP/1.1
Host: cdn.crystal-static.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://78crystalroll45.com
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 07 Mar 2025 06:45:38 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Thu, 06 Mar 2025 19:46:59 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: Rd._spnkwxuvcVDsfvidSv_cBblB5C0Y
etag: W/"c286fe14557ec470a51f009ff90d98fa"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 235bf7a65ed49d73ef3ff61018265510.cloudfront.net (CloudFront)
x-amz-cf-pop: HEL51-P2
x-amz-cf-id: fCykvnqP7EhMlRIaVFhsjoBizO7Cc-nDcTwYtP5pvvfj1SHPblIJRQ==
age: 408
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=h7%2BiGEUaqtXHrKWZL8c7Q1LAs6CL93sI0cimdKbnHZsHtih3Z%2Fz6%2BqhfGwjESAUwR%2BRO6I%2Fe7fn%2FK6k8rs0aGqUF97RSpci9Xl%2FRhEerhIDUM%2B9kQy5P0%2FG9IknGMKJSGXyNYb5H%2BA4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 91c82195e836b51b-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=TCP&rtt=2055&min_rtt=428&rtt_var=2476&sent=34&recv=16&lost=0&retrans=2&sent_bytes=28694&recv_bytes=1606&delivery_rate=8883435&cwnd=254&unsent_bytes=0&cid=cdf7a9c11fa07e9a&ts=886&x=0"
X-Firefox-Spdy: h2

78crystalroll45.com/assets/main.217ebfe67469ed214e8a.js

3.69.248.113

200 OK

2.7 kB

URL GET
78crystalroll45.com/assets/main.217ebfe67469ed214e8a.js
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (2776), with no line terminators
Size
2.7 kB (2730 bytes)
Hash
a55c63dfaa7a1423118f1c2f521e2455
cedf6b1d54541fc4edf564552f48504710a8fc23
5c81b593d3629db458d95cdaaccf570d2603f745bbec853832b7e36bb938c371

HTTP Headers

GET /assets/main.217ebfe67469ed214e8a.js HTTP/1.1
Host: 78crystalroll45.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/not-allowed
Cookie: referer=https%3A%2F%2Fgo2crystalroll.com%2F; UUID=56a0cc79-122b-418a-b78e-1fed5cfc43b0; UGID=258385916780386686; lastActivityTime=1741329937451; entryTime=1741329937487; i18n_redirected=en; isPwa=false
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:39 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=31536
Last-Modified: Wed, 05 Mar 2025 14:24:16 GMT
ETag: W/"aaa-19566b1639d"
Content-Encoding: gzip

78crystalroll45.com/favicons/apple-touch-icon.png

3.69.248.113

200 OK

2.1 kB

URL GET
78crystalroll45.com/favicons/apple-touch-icon.png
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type
PNG image data, 180 x 180, 8-bit colormap, non-interlaced
Size
2.1 kB (2074 bytes)
Hash
fe04da6a72145375ebbb772bfb1617d4
7352b69350c19afa8e616e751a27ac4d05f293fb
25fdadd028928e1ff214990ff9b6d1eb7cb25e12395bcdfae9e0173c7ea61a2b

HTTP Headers

GET /favicons/apple-touch-icon.png HTTP/1.1
Host: 78crystalroll45.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/not-allowed
Cookie: referer=https%3A%2F%2Fgo2crystalroll.com%2F; UUID=56a0cc79-122b-418a-b78e-1fed5cfc43b0; UGID=258385916780386686; lastActivityTime=1741329937451; entryTime=1741329937487; i18n_redirected=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:38 GMT
Content-Type: image/png
Content-Length: 2074
Connection: keep-alive
X-Powered-By: Express
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Wed, 05 Mar 2025 14:24:16 GMT
ETag: W/"81a-19566b16489"

78crystalroll45.com/assets/main.f5edbb3a8994a5ae1432.js

3.69.248.113

200 OK

52 kB

URL GET
78crystalroll45.com/assets/main.f5edbb3a8994a5ae1432.js
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type
JavaScript source, ASCII text, with very long lines (51704), with no line terminators
Size
52 kB (51704 bytes)
Hash
d2b7b3b8148adc4b82cf3316d43a598e
c2f63f9c2e0cd888f5c3b544d55708f5ab5d555b
275c0241a635a9a68493be403cd003a25f2c9e6c108b329d1bc80c0c964b8826

HTTP Headers

GET /assets/main.f5edbb3a8994a5ae1432.js HTTP/1.1
Host: 78crystalroll45.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/not-allowed
Cookie: referer=https%3A%2F%2Fgo2crystalroll.com%2F; UUID=56a0cc79-122b-418a-b78e-1fed5cfc43b0; UGID=258385916780386686; lastActivityTime=1741329937451; entryTime=1741329937487; i18n_redirected=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:38 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=31536
Last-Modified: Wed, 05 Mar 2025 14:24:16 GMT
ETag: W/"c9f8-19566b163bd"
Content-Encoding: gzip

cdn.livechatinc.com/widget/static/js/3.B5sHuEdG.chunk.js

23.36.77.179

200 OK

193 kB

URL GET
cdn.livechatinc.com/widget/static/js/3.B5sHuEdG.chunk.js
IP
23.36.77.179:443
ASN
#20940 Akamai International B.V.

Requested by
https://secure.livechatinc.com/customer/action/open_chat?license_id=12226866&group=259&embedded=1&widget_version=3&unique_groups=1&organizationId=3e26eee1-3f49-4911-97b0-72c1ffb60600&use_parent_storage=1
Certificate
IssuerDigiCert Inc
Subjectlivechat.com
FingerprintA9:A2:B2:15:09:CC:34:E7:F9:94:88:21:E7:5A:86:A1:30:A3:B6:DC
ValidityWed, 10 Jul 2024 00:00:00 GMT - Thu, 10 Jul 2025 23:59:59 GMT

File type

Size
193 kB (192932 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /widget/static/js/3.B5sHuEdG.chunk.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://secure.livechatinc.com
DNT: 1
Connection: keep-alive
Referer: https://cdn.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Thu, 06 Mar 2025 10:39:57 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
x-amz-version-id: nRo_vgNp1IxNQnjn9O7wQrOm8bHLgNrl
server: AmazonS3
etag: W/"f86596c8708cd1da16bb5134482b9908"
vary: accept-encoding
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: zUKS-Hi9r4Rnt-lllY5Z1Y-C2qHhxw6fgS6p1vStjUG3ES4oH9Vphg==
content-length: 60760
cache-control: max-age=31536000
expires: Sat, 07 Mar 2026 06:45:41 GMT
date: Fri, 07 Mar 2025 06:45:41 GMT
content-type: application/javascript; charset=utf-8
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
X-Firefox-Spdy: h2

12crystalroll34.com/ping?t=1741329936730

3.69.248.113

200 OK

13 B

URL GET
12crystalroll34.com/ping?t=1741329936730
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://go2crystalroll.com/casino?cxd=35055_372433_|afp1:1sjos4feu04ja|afp10:&af_dev_key=BDREFvBLEZQKVYEhZafc85&af_id=&af_sub1=&af_sub2=&af_sub3=&af_sub4=&af_sub5=&afp1=1sjos4feu04ja&afp10=&bta=35055&click_id=1sjos4feu04ja&keitaro_country=NO&keitaro_platform=Windows&keitaro_stream_id=635793&nci=5356&store_id=&utm_campaign=Onclick#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type
ASCII text, with no line terminators
Size
13 B (13 bytes)
Hash
83d95983e077c7900dacca531e97f5c2
f32bfa2d1c90d1bf5ac8330607975403bab1dcf2
cb7887b100529889cafb151f603409954179c7044227564a8627edbf1a99f0b5

HTTP Headers

GET /ping?t=1741329936730 HTTP/1.1
Host: 12crystalroll34.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://go2crystalroll.com/
Content-Type: text/plain
Origin: https://go2crystalroll.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:36 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 13
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
ETag: W/"d-8yv6LRyQ0b9ayDMGB5dUA7qx3PI"

cdnwl.crystal-static.com/front/components/not-allowed/icon.svg

104.26.1.19

200 OK

2.0 kB

URL GET
cdnwl.crystal-static.com/front/components/not-allowed/icon.svg
IP
104.26.1.19:443
ASN
#13335 CLOUDFLARENET

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerGoogle Trust Services
Subjectcrystal-static.com
FingerprintDB:43:30:44:34:AB:BA:16:63:6A:35:10:B2:BE:72:1E:AC:B3:10:C6
ValidityThu, 27 Feb 2025 15:46:10 GMT - Wed, 28 May 2025 16:46:09 GMT

File type
SVG Scalable Vector Graphics image
Size
2.0 kB (1967 bytes)
Hash
10f82a86cf87c5a04dbf056d3aad67d6
72b98f6144bb07aedb81a02b01eaf660ca9b434d
715a189204bf33caa0e7bbb021ccea69a2dcea647eb51d1b881afee62d307872

HTTP Headers

GET /front/components/not-allowed/icon.svg HTTP/1.1
Host: cdnwl.crystal-static.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 07 Mar 2025 06:45:39 GMT
content-type: image/svg+xml
last-modified: Tue, 28 Jan 2025 13:06:18 GMT
x-amz-server-side-encryption: AES256
etag: W/"2142c7006e9f844c75d24a348e22c668"
vary: accept-encoding, Origin
x-cache: Miss from cloudfront
via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: HPOqrsGqWGiRzgNSw5KhyZKOdTKMwgY1EjMV5oNHprfrurfAdUMRMg==
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
cache-control: max-age=14400
cf-cache-status: HIT
age: 2214
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IxtRmeuyysHErg5nbAlubKmXC4nUbJOqHBP9nnF%2BruYo2ECEz5XQR08MFNhLFYsNlsgCSNI5RHnO7kww53NPW%2BH5gAWFq8jA1J8NQeHy5eL1i%2BUN5EHo9N5QSBo%2B31YrSpgFB4gNkkRv9w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 91c82197d9d3b51b-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=TCP&rtt=619&min_rtt=428&rtt_var=32&sent=91&recv=58&lost=0&retrans=2&sent_bytes=103701&recv_bytes=1699&delivery_rate=25267114&cwnd=254&unsent_bytes=0&cid=cdf7a9c11fa07e9a&ts=1128&x=0"
X-Firefox-Spdy: h2

78crystalroll45.com/sw-installer.js

3.69.248.113

200 OK

119 B

URL GET
78crystalroll45.com/sw-installer.js
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
119 B (119 bytes)
Hash
0ef41ae44180d3366b42d7f68414f29a
0838ef798ea2931ed2a1e3a78af70b49f944a101
3083679262274408e62a0a1eb61f8602f40c63d4393392d07f0fb9674a857722

HTTP Headers

GET /sw-installer.js HTTP/1.1
Host: 78crystalroll45.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/not-allowed
Cookie: referer=https%3A%2F%2Fgo2crystalroll.com%2F; UUID=56a0cc79-122b-418a-b78e-1fed5cfc43b0; UGID=258385916780386686; lastActivityTime=1741329937451; entryTime=1741329937487; i18n_redirected=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:39 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=0
Last-Modified: Wed, 05 Mar 2025 14:24:16 GMT
ETag: W/"77-19566b16489"
Content-Encoding: gzip

78crystalroll45.com/assets/register/build/8ac7ab9437063f0ee81c.js

3.69.248.113

200 OK

37 kB

URL GET
78crystalroll45.com/assets/register/build/8ac7ab9437063f0ee81c.js
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type

Size
37 kB (37287 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /assets/register/build/8ac7ab9437063f0ee81c.js HTTP/1.1
Host: 78crystalroll45.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/not-allowed
Cookie: referer=https%3A%2F%2Fgo2crystalroll.com%2F; UUID=56a0cc79-122b-418a-b78e-1fed5cfc43b0; UGID=258385916780386686; lastActivityTime=1741329937451; entryTime=1741329937487; i18n_redirected=en; isPwa=false; width=1280
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:39 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
etag: W/"67a9ed22-91a7"
last-modified: Mon, 10 Feb 2025 12:12:18 GMT
Cache-control: public, max-age=31536000
Content-Encoding: gzip

78crystalroll45.com/assets/register/build/1525a4c177e0ff3b58be.js

3.69.248.113

200 OK

875 B

URL GET
78crystalroll45.com/assets/register/build/1525a4c177e0ff3b58be.js
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type
JavaScript source, ASCII text, with very long lines (891), with no line terminators
Size
875 B (875 bytes)
Hash
cd0d0b959d8cfb8a1f2f1e8b80b93c1f
123fd2900fa0a76f2556c092a77537e09ae1f846
e67f3a54e11054133f4ffc7ec4aadfca5513e7ad298cf54a338a494280ce0e03

HTTP Headers

GET /assets/register/build/1525a4c177e0ff3b58be.js HTTP/1.1
Host: 78crystalroll45.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/not-allowed
Cookie: referer=https%3A%2F%2Fgo2crystalroll.com%2F; UUID=56a0cc79-122b-418a-b78e-1fed5cfc43b0; UGID=258385916780386686; lastActivityTime=1741329937451; entryTime=1741329937487; i18n_redirected=en; isPwa=false; width=1280
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:40 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
etag: W/"6798e2db-36b"
last-modified: Tue, 28 Jan 2025 13:59:55 GMT
Cache-control: public, max-age=31536000
Content-Encoding: gzip

crystalroll.aramuz.net/frontapi/crystalroll/geoInfo?mobile=0&affiliate=0&locale=en

104.22.34.217

200 OK

0 B

URL OPTIONS
crystalroll.aramuz.net/frontapi/crystalroll/geoInfo?mobile=0&affiliate=0&locale=en
IP
104.22.34.217:443
ASN
#13335 CLOUDFLARENET

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subjectaramuz.net
Fingerprint9C:02:46:99:AD:75:1B:6A:5B:78:52:0C:E3:CD:7E:8F:93:22:44:58
ValidityTue, 28 Jan 2025 09:48:13 GMT - Mon, 28 Apr 2025 09:48:12 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /frontapi/crystalroll/geoInfo?mobile=0&affiliate=0&locale=en HTTP/1.1
Host: crystalroll.aramuz.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: visitor-uuid,x-user-origin
Referer: https://78crystalroll45.com/
Origin: https://78crystalroll45.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 07 Mar 2025 06:45:40 GMT
content-type: application/octet-stream
content-length: 0
access-control-expose-headers: x-meta-count, x-meta-next-page-token, Content-Location, Visitor-Uuid, x-meta-prev-page-token
access-control-allow-origin: *
access-control-allow-methods: OPTIONS, GET, HEAD, POST, PUT, DELETE, PATCH
access-control-allow-headers: Authorization, Content-Type, X-Auth-Token, cache-control, x-requested-with, Visitor-Uuid, x-meta-prev-page-token, x-user-origin, x-color-depth, x-language, x-screen-height, x-screen-width, x-time-zone, x-time-zone-offset, x-java-enabled, x-java-script-enabled
access-control-allow-credentials: true
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 91c8219dad3892a9-CPH
X-Firefox-Spdy: h2

wss://api.livechatinc.com/v3.5/customer/rtm/ws?organization_id=3e26eee1-3f49-4911-97b0-72c1ffb60600

23.36.77.241

101 Switching Protocols

0 B

URL GET
wss://api.livechatinc.com/v3.5/customer/rtm/ws?organization_id=3e26eee1-3f49-4911-97b0-72c1ffb60600
IP
23.36.77.241:443
ASN
#20940 Akamai International B.V.

Requested by
https://secure.livechatinc.com/customer/action/open_chat?license_id=12226866&group=259&embedded=1&widget_version=3&unique_groups=1&organizationId=3e26eee1-3f49-4911-97b0-72c1ffb60600&use_parent_storage=1
Certificate
IssuerDigiCert Inc
Subjectlivechat.com
FingerprintA9:A2:B2:15:09:CC:34:E7:F9:94:88:21:E7:5A:86:A1:30:A3:B6:DC
ValidityWed, 10 Jul 2024 00:00:00 GMT - Thu, 10 Jul 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /v3.5/customer/rtm/ws?organization_id=3e26eee1-3f49-4911-97b0-72c1ffb60600 HTTP/1.1
Host: api.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://secure.livechatinc.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: TMawz+4a9zo54OlU9DhmMA==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
sec-websocket-accept: HhyfV+o+AWJw+YG/8HN6qH2stnA=
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://secure.livechatinc.com
Date: Fri, 07 Mar 2025 06:45:41 GMT
Upgrade: websocket
Connection: Upgrade

12crystalroll34.com/ping?t=1741329936733

3.69.248.113

200 OK

13 B

URL GET
12crystalroll34.com/ping?t=1741329936733
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://go2crystalroll.com/casino?cxd=35055_372433_|afp1:1sjos4feu04ja|afp10:&af_dev_key=BDREFvBLEZQKVYEhZafc85&af_id=&af_sub1=&af_sub2=&af_sub3=&af_sub4=&af_sub5=&afp1=1sjos4feu04ja&afp10=&bta=35055&click_id=1sjos4feu04ja&keitaro_country=NO&keitaro_platform=Windows&keitaro_stream_id=635793&nci=5356&store_id=&utm_campaign=Onclick#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type
ASCII text, with no line terminators
Size
13 B (13 bytes)
Hash
2e393e2844d430b38c7b644315a402a5
e3932ab1fb076fbdcd031ccd2600a500690b6d13
982ee5b1075a49fbfc8df0a492cae3807ca82fc9f4542e6ff4c90fb248f5a95e

HTTP Headers

GET /ping?t=1741329936733 HTTP/1.1
Host: 12crystalroll34.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://go2crystalroll.com/
Content-Type: text/plain
Origin: https://go2crystalroll.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:36 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 13
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
ETag: W/"d-45MqsfsHb73NAxzNJgClAGkLbRM"

78crystalroll45.com/ping?t=1741329936739

3.69.248.113

200 OK

13 B

URL GET
78crystalroll45.com/ping?t=1741329936739
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://go2crystalroll.com/casino?cxd=35055_372433_|afp1:1sjos4feu04ja|afp10:&af_dev_key=BDREFvBLEZQKVYEhZafc85&af_id=&af_sub1=&af_sub2=&af_sub3=&af_sub4=&af_sub5=&afp1=1sjos4feu04ja&afp10=&bta=35055&click_id=1sjos4feu04ja&keitaro_country=NO&keitaro_platform=Windows&keitaro_stream_id=635793&nci=5356&store_id=&utm_campaign=Onclick#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type
ASCII text, with no line terminators
Size
13 B (13 bytes)
Hash
f3e11905ac0eb64756e0efbe9a749df8
43b3a1b45516328b946c05bb3ed8d5c91fa8c905
278d7c4910775da05e05aaacffec35af77da80b283394c4b6945accdea8017a6

HTTP Headers

GET /ping?t=1741329936739 HTTP/1.1
Host: 78crystalroll45.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://go2crystalroll.com/
Content-Type: text/plain
Origin: https://go2crystalroll.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:36 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 13
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
ETag: W/"d-Q7OhtFUWMouUbAW7PtjVyR+oyQU"

78crystalroll45.com/assets/main.86adbf54ef5d174c36f4.js

3.69.248.113

200 OK

14 kB

URL GET
78crystalroll45.com/assets/main.86adbf54ef5d174c36f4.js
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type
JavaScript source, ASCII text, with very long lines (13964), with no line terminators
Size
14 kB (13964 bytes)
Hash
cbb5fbfd156e56d439ee0b1d47d528ee
cbd3b1dd4f41134c1eedd1635b5a0e1ce1355270
1e5c1520c8d1379a032f53a2edf1a877f6300baa1503c1ffb0713d497da953c1

HTTP Headers

GET /assets/main.86adbf54ef5d174c36f4.js HTTP/1.1
Host: 78crystalroll45.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/not-allowed
Cookie: referer=https%3A%2F%2Fgo2crystalroll.com%2F; UUID=56a0cc79-122b-418a-b78e-1fed5cfc43b0; UGID=258385916780386686; lastActivityTime=1741329937451; entryTime=1741329937487; i18n_redirected=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:38 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=31536
Last-Modified: Wed, 05 Mar 2025 14:24:16 GMT
ETag: W/"368c-19566b163ad"
Content-Encoding: gzip

78crystalroll45.com/assets/main.8e03a0689d1bfe77feb0.js

3.69.248.113

200 OK

48 kB

URL GET
78crystalroll45.com/assets/main.8e03a0689d1bfe77feb0.js
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type

Size
48 kB (48500 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /assets/main.8e03a0689d1bfe77feb0.js HTTP/1.1
Host: 78crystalroll45.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/not-allowed
Cookie: referer=https%3A%2F%2Fgo2crystalroll.com%2F; UUID=56a0cc79-122b-418a-b78e-1fed5cfc43b0; UGID=258385916780386686; lastActivityTime=1741329937451; entryTime=1741329937487; i18n_redirected=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:38 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=31536
Last-Modified: Wed, 05 Mar 2025 14:24:16 GMT
ETag: W/"bd74-19566b163b1"
Content-Encoding: gzip

78crystalroll45.com/liveChat.js

3.69.248.113

200 OK

617 B

URL GET
78crystalroll45.com/liveChat.js
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type
Unicode text, UTF-8 text, with very long lines (635), with no line terminators
Size
617 B (617 bytes)
Hash
a37772f449b4c7e2ffca80a459aa3b28
187bc20a71f726088dcdd264ecdea390ee338e13
db36489615cb967fe6e081d11762e8285b5ccebced4958f260effe18ec7c8898

HTTP Headers

GET /liveChat.js HTTP/1.1
Host: 78crystalroll45.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/not-allowed
Cookie: referer=https%3A%2F%2Fgo2crystalroll.com%2F; UUID=56a0cc79-122b-418a-b78e-1fed5cfc43b0; UGID=258385916780386686; lastActivityTime=1741329937451; entryTime=1741329937487; i18n_redirected=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:39 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=0
Last-Modified: Wed, 05 Mar 2025 14:24:16 GMT
ETag: W/"269-19566b16489"
Content-Encoding: gzip

sentry.marfa-tech.net/api/11/envelope/?sentry_key=204271b68b8b41c6b6ff8453b0fa31ae&sentry_version=7&sentry_client=sentry.javascript.vue%2F7.73.0

176.9.53.66

429 Too Many Requests

198 B

URL POST
sentry.marfa-tech.net/api/11/envelope/?sentry_key=204271b68b8b41c6b6ff8453b0fa31ae&sentry_version=7&sentry_client=sentry.javascript.vue%2F7.73.0
IP
176.9.53.66:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subjectsentry.marfa-tech.net
Fingerprint42:9F:42:97:E2:B5:87:5E:0B:AB:92:29:62:7E:64:89:85:05:D1:5F
ValidityFri, 21 Feb 2025 22:54:58 GMT - Thu, 22 May 2025 22:54:57 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
198 B (198 bytes)
Hash
697a7e942d5a8b2eb7c7d378aedce635
524f923b4698358ab5ec940185acbe9d457ab5d6
4fccc172d019cb9548b6e597bd131872349734d3eeab195884c10c5cae27abcc

HTTP Headers

POST /api/11/envelope/?sentry_key=204271b68b8b41c6b6ff8453b0fa31ae&sentry_version=7&sentry_client=sentry.javascript.vue%2F7.73.0 HTTP/1.1
Host: sentry.marfa-tech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://78crystalroll45.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 2238
Origin: https://78crystalroll45.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 429 Too Many Requests
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:39 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
retry-after: 22
x-sentry-rate-limits: 22:default;error;security:key:key_quota
access-control-expose-headers: x-sentry-error,x-sentry-rate-limits,retry-after
vary: origin, access-control-request-method, access-control-request-headers, accept-encoding
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin

cdn.livechatinc.com/widget/static/js/1.CkzesxBC.chunk.js

23.36.77.179

200 OK

52 kB

URL GET
cdn.livechatinc.com/widget/static/js/1.CkzesxBC.chunk.js
IP
23.36.77.179:443
ASN
#20940 Akamai International B.V.

Requested by
https://secure.livechatinc.com/customer/action/open_chat?license_id=12226866&group=259&embedded=1&widget_version=3&unique_groups=1&organizationId=3e26eee1-3f49-4911-97b0-72c1ffb60600&use_parent_storage=1
Certificate
IssuerDigiCert Inc
Subjectlivechat.com
FingerprintA9:A2:B2:15:09:CC:34:E7:F9:94:88:21:E7:5A:86:A1:30:A3:B6:DC
ValidityWed, 10 Jul 2024 00:00:00 GMT - Thu, 10 Jul 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (36370)
Size
52 kB (51565 bytes)
Hash
a4dec16f8f873d42cbfb2cddac9013c1
fb30d32adcd1a0ea7bcf9c73596575da349cced4
c6c66658766687f0fe5e4d11c535f32142064b642ada30a6b75285dd5d392c9f

HTTP Headers

GET /widget/static/js/1.CkzesxBC.chunk.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://secure.livechatinc.com
DNT: 1
Connection: keep-alive
Referer: https://cdn.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Thu, 06 Mar 2025 10:39:57 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
x-amz-version-id: afGX6W2YbMhJw2EyTV.47izQxI.4YMKl
server: AmazonS3
etag: W/"a4dec16f8f873d42cbfb2cddac9013c1"
vary: accept-encoding
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: -qA1H08Dw77XL1MkUBs8HsLaUVaNIhlz_fqB3XcM98TrhIaRXjBbAQ==
content-length: 18481
cache-control: max-age=31536000
expires: Sat, 07 Mar 2026 06:45:41 GMT
date: Fri, 07 Mar 2025 06:45:41 GMT
content-type: application/javascript; charset=utf-8
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn.livechatinc.com/widget/static/js/11.Gv78iMd6.chunk.js

23.36.77.179

200 OK

240 B

URL GET
cdn.livechatinc.com/widget/static/js/11.Gv78iMd6.chunk.js
IP
23.36.77.179:443
ASN
#20940 Akamai International B.V.

Requested by
https://secure.livechatinc.com/customer/action/open_chat?license_id=12226866&group=259&embedded=1&widget_version=3&unique_groups=1&organizationId=3e26eee1-3f49-4911-97b0-72c1ffb60600&use_parent_storage=1
Certificate
IssuerDigiCert Inc
Subjectlivechat.com
FingerprintA9:A2:B2:15:09:CC:34:E7:F9:94:88:21:E7:5A:86:A1:30:A3:B6:DC
ValidityWed, 10 Jul 2024 00:00:00 GMT - Thu, 10 Jul 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with no line terminators
Size
240 B (240 bytes)
Hash
de9a9a727224304caeacd3f6b7b44a49
62dc55ace7c5a4e0209ac03e238ed65212808fb2
a7f6797705782e89032c74753d69be636a73752ccfda0f92af6758621ea2a0ed

HTTP Headers

GET /widget/static/js/11.Gv78iMd6.chunk.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://secure.livechatinc.com
DNT: 1
Connection: keep-alive
Referer: https://cdn.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Thu, 04 Jul 2024 07:09:03 GMT
etag: "8ec94005c25c7e0874b7b048ea97dc00"
x-amz-server-side-encryption: AES256
x-amz-version-id: Dz7PZLVEW7jbvuZcL9ZiaJ89o3NzS8CS
accept-ranges: bytes
server: AmazonS3
x-amz-cf-pop: ARN53-P2
x-amz-cf-id: HApx_Z-s9z-yW8asrMMEdjneVhTCubV4R_6u7kpt1r8fRVeymZBCgQ==
vary: Accept-Encoding
content-encoding: gzip
content-length: 166
cache-control: max-age=31536000
expires: Sat, 07 Mar 2026 06:45:41 GMT
date: Fri, 07 Mar 2025 06:45:41 GMT
content-type: application/javascript; charset=utf-8
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
X-Firefox-Spdy: h2

78crystalroll45.com/not-allowed#register

3.69.248.113

200 OK

35 kB

URL User Request GET
78crystalroll45.com/not-allowed#register
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type
HTML document, ASCII text, with very long lines (27460)
Size
35 kB (34628 bytes)
Hash
70f4bd671530c969a737284d8b6e794a
d4b77762fd2747ddb70869316ef5438c624cbafe
eeb1f320e4dcdbcca0b237b9c35146b9c849d5d51194d8b2c83fc99b352f97eb

HTTP Headers

GET /not-allowed HTTP/1.1
Host: 78crystalroll45.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://go2crystalroll.com/
DNT: 1
Connection: keep-alive
Cookie: referer=https%3A%2F%2Fgo2crystalroll.com%2F; UUID=56a0cc79-122b-418a-b78e-1fed5cfc43b0; UGID=258385916780386686; lastActivityTime=1741329937342; entryTime=1741329937411
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:37 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Set-Cookie: lastActivityTime=1741329937451; Path=/
entryTime=1741329937487; Max-Age=31556952; Path=/; Expires=Sat, 07 Mar 2026 12:34:49 GMT
i18n_redirected=en; Path=/
Cache-control: no-store
ETag: W/"8744-1Ld3Yv0nR923CGkxbvVDjGJMuv4"
Content-Encoding: gzip

90crystalroll67.com/ping?t=1741329936744

3.69.248.113

200 OK

13 B

URL GET
90crystalroll67.com/ping?t=1741329936744
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://go2crystalroll.com/casino?cxd=35055_372433_|afp1:1sjos4feu04ja|afp10:&af_dev_key=BDREFvBLEZQKVYEhZafc85&af_id=&af_sub1=&af_sub2=&af_sub3=&af_sub4=&af_sub5=&afp1=1sjos4feu04ja&afp10=&bta=35055&click_id=1sjos4feu04ja&keitaro_country=NO&keitaro_platform=Windows&keitaro_stream_id=635793&nci=5356&store_id=&utm_campaign=Onclick#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type
ASCII text, with no line terminators
Size
13 B (13 bytes)
Hash
c78342b5006b216467f2baf9a2d71a55
c4fbcbbb595e755659f76e12e57679f642535660
e67e420e7a0c6b605586a6c47fe4986ce164e92ab59f1918b2d6e19f9094bdae

HTTP Headers

GET /ping?t=1741329936744 HTTP/1.1
Host: 90crystalroll67.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://go2crystalroll.com/
Content-Type: text/plain
Origin: https://go2crystalroll.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:36 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 13
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
ETag: W/"d-xPvLu1ledVZZ924S5XZ59kJTVmA"

78crystalroll45.com/assets/main.1584e87908484b5d1c11.js

3.69.248.113

200 OK

44 kB

URL GET
78crystalroll45.com/assets/main.1584e87908484b5d1c11.js
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type
JavaScript source, ASCII text, with very long lines (44506), with no line terminators
Size
44 kB (44506 bytes)
Hash
f0c68038c86f5b2deb911d6fdfd19fee
e39259a61f5c2c4736e0d23f27d195a3d0754fd2
564af152d05892683f6fa117bb599058d33fc2f2170d8925cd2e6597f4cdcf69

HTTP Headers

GET /assets/main.1584e87908484b5d1c11.js HTTP/1.1
Host: 78crystalroll45.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/not-allowed
Cookie: referer=https%3A%2F%2Fgo2crystalroll.com%2F; UUID=56a0cc79-122b-418a-b78e-1fed5cfc43b0; UGID=258385916780386686; lastActivityTime=1741329937451; entryTime=1741329937487; i18n_redirected=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:38 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=31536
Last-Modified: Wed, 05 Mar 2025 14:24:16 GMT
ETag: W/"adda-19566b1639d"
Content-Encoding: gzip

78crystalroll45.com/assets/main.5c823e64090d9f496111.js

3.69.248.113

200 OK

6.8 kB

URL GET
78crystalroll45.com/assets/main.5c823e64090d9f496111.js
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (6851), with no line terminators
Size
6.8 kB (6763 bytes)
Hash
9b03faa3644e833cb3b42d469b0b324e
d38226b72f1205e680c7b14707ebcf9999dabc93
c1be4da90b4ae5e84fd0b368a7ab8b20c07a6a4ccb2f8cc5822fbfe5efb4479a

HTTP Headers

GET /assets/main.5c823e64090d9f496111.js HTTP/1.1
Host: 78crystalroll45.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/not-allowed
Cookie: referer=https%3A%2F%2Fgo2crystalroll.com%2F; UUID=56a0cc79-122b-418a-b78e-1fed5cfc43b0; UGID=258385916780386686; lastActivityTime=1741329937451; entryTime=1741329937487; i18n_redirected=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:39 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=31536
Last-Modified: Wed, 05 Mar 2025 14:24:16 GMT
ETag: W/"1a6b-19566b163a9"
Content-Encoding: gzip

crystalroll.aramuz.net/frontapi/crystalroll/analyticsEvent?locale=en

104.22.34.217

200 OK

0 B

URL OPTIONS
crystalroll.aramuz.net/frontapi/crystalroll/analyticsEvent?locale=en
IP
104.22.34.217:443
ASN
#13335 CLOUDFLARENET

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subjectaramuz.net
Fingerprint9C:02:46:99:AD:75:1B:6A:5B:78:52:0C:E3:CD:7E:8F:93:22:44:58
ValidityTue, 28 Jan 2025 09:48:13 GMT - Mon, 28 Apr 2025 09:48:12 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /frontapi/crystalroll/analyticsEvent?locale=en HTTP/1.1
Host: crystalroll.aramuz.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,visitor-uuid
Referer: https://78crystalroll45.com/
Origin: https://78crystalroll45.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 07 Mar 2025 06:45:39 GMT
content-type: application/octet-stream
content-length: 0
access-control-expose-headers: x-meta-count, x-meta-next-page-token, Content-Location, Visitor-Uuid, x-meta-prev-page-token
access-control-allow-origin: *
access-control-allow-methods: OPTIONS, GET, HEAD, POST, PUT, DELETE, PATCH
access-control-allow-headers: Authorization, Content-Type, X-Auth-Token, cache-control, x-requested-with, Visitor-Uuid, x-meta-prev-page-token, x-user-origin, x-color-depth, x-language, x-screen-height, x-screen-width, x-time-zone, x-time-zone-offset, x-java-enabled, x-java-script-enabled
access-control-allow-credentials: true
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 91c8219878ac92a9-CPH
X-Firefox-Spdy: h2

78crystalroll45.com/assets/register/build/b8e2d4154d4540503cd9.js

3.69.248.113

200 OK

22 kB

URL GET
78crystalroll45.com/assets/register/build/b8e2d4154d4540503cd9.js
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type

Size
22 kB (22130 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /assets/register/build/b8e2d4154d4540503cd9.js HTTP/1.1
Host: 78crystalroll45.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/not-allowed
Cookie: referer=https%3A%2F%2Fgo2crystalroll.com%2F; UUID=56a0cc79-122b-418a-b78e-1fed5cfc43b0; UGID=258385916780386686; lastActivityTime=1741329937451; entryTime=1741329937487; i18n_redirected=en; isPwa=false; width=1280
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:40 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
etag: W/"67bdbc28-5672"
last-modified: Tue, 25 Feb 2025 12:48:40 GMT
Cache-control: public, max-age=31536000
Content-Encoding: gzip

cdn.livechatinc.com/widget/static/js/12.DJPUQwQu.chunk.js

23.36.77.179

200 OK

300 B

URL GET
cdn.livechatinc.com/widget/static/js/12.DJPUQwQu.chunk.js
IP
23.36.77.179:443
ASN
#20940 Akamai International B.V.

Requested by
https://secure.livechatinc.com/customer/action/open_chat?license_id=12226866&group=259&embedded=1&widget_version=3&unique_groups=1&organizationId=3e26eee1-3f49-4911-97b0-72c1ffb60600&use_parent_storage=1
Certificate
IssuerDigiCert Inc
Subjectlivechat.com
FingerprintA9:A2:B2:15:09:CC:34:E7:F9:94:88:21:E7:5A:86:A1:30:A3:B6:DC
ValidityWed, 10 Jul 2024 00:00:00 GMT - Thu, 10 Jul 2025 23:59:59 GMT

File type
ASCII text, with very long lines (301), with no line terminators
Size
300 B (300 bytes)
Hash
ecadd75b44a5bfabc1733df2934b19c7
1907849d2c1985a8dfff5a68881abb2dacf55750
34d28753de2f0fdd10ac7acd4ae446cb5b3cb9e08dbaeb210317287a9e06276f

HTTP Headers

GET /widget/static/js/12.DJPUQwQu.chunk.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://secure.livechatinc.com
DNT: 1
Connection: keep-alive
Referer: https://cdn.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Fri, 13 Dec 2024 08:43:36 GMT
etag: "640caab52100a1e9dfe618aaeb79838f"
x-amz-server-side-encryption: AES256
x-amz-version-id: aKE8wRxERO94vzcXjfdipoyz7572CDwx
accept-ranges: bytes
server: AmazonS3
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: DI_CIlASYVMG2exdxKyYU3AaFClV5U0OQADU2lJDj_7_ZeuhFKTItg==
vary: Accept-Encoding
content-encoding: gzip
content-length: 202
cache-control: max-age=31536000
expires: Sat, 07 Mar 2026 06:45:41 GMT
date: Fri, 07 Mar 2025 06:45:41 GMT
content-type: application/javascript; charset=utf-8
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
X-Firefox-Spdy: h2

kivirun.com/cdn-cgi/rum?

172.67.147.99

204 No Content

0 B

URL POST
kivirun.com/cdn-cgi/rum?
IP
172.67.147.99:443
ASN
#13335 CLOUDFLARENET

Requested by
https://kivirun.com/L6tPYq?extra_param_1=48971&external_id=w8jm0u9lcs4s7688jbef3qm6
Certificate
IssuerGoogle Trust Services
Subjectkivirun.com
Fingerprint46:80:0D:88:F5:42:81:1A:9A:30:DB:F4:91:F5:78:15:5B:6D:41:14
ValidityTue, 28 Jan 2025 07:16:27 GMT - Mon, 28 Apr 2025 08:14:49 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /cdn-cgi/rum? HTTP/1.1
Host: kivirun.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 566
Origin: https://kivirun.com
DNT: 1
Connection: keep-alive
Cookie: _subid=1sjos4feu04ja; 4d606=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjYzNTc5M1wiOjE3NDEzMjk5MzV9LFwiY2FtcGFpZ25zXCI6e1wiMTAwMTJcIjoxNzQxMzI5OTM1fSxcInRpbWVcIjoxNzQxMzI5OTM1fSJ9.WL6xEwCnnK8LqJjaS7amcfWgybBFiC7iqJvZDlf8biI; _token=uuid_1sjos4feu04ja_1sjos4feu04ja67ca960f05cae1.05398980; __cf_bm=rZZa05DyBDZfCrqKTZQ_Y.8BckBHnxgubL98s4MgWXQ-1741329935-1.0.1.1-RRBDVCkh9ZU4MjVuqjXcAM89aq4K95QyCA8rjPcYkjC8kj_TgGhA3PiF.qIzf6MFiVeGf9TqjC3xw0vM4RQUg7Y.UH.GQBAi6Ikjos9klhc; _cfuvid=PGdkK0jzDfJioXVcF6dy6mMxpa0MfMkYAmoRgtnOa30-1741329935037-0.0.1.1-604800000
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/3 204 No Content
date: Fri, 07 Mar 2025 06:45:36 GMT
access-control-allow-origin: https://kivirun.com
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 91c821877b355684-OSL
x-frame-options: DENY
x-content-type-options: nosniff

sentry.marfa-tech.net/api/11/envelope/?sentry_key=204271b68b8b41c6b6ff8453b0fa31ae&sentry_version=7&sentry_client=sentry.javascript.vue%2F7.73.0

176.9.53.66

200 OK

2 B

URL POST
sentry.marfa-tech.net/api/11/envelope/?sentry_key=204271b68b8b41c6b6ff8453b0fa31ae&sentry_version=7&sentry_client=sentry.javascript.vue%2F7.73.0
IP
176.9.53.66:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subjectsentry.marfa-tech.net
Fingerprint42:9F:42:97:E2:B5:87:5E:0B:AB:92:29:62:7E:64:89:85:05:D1:5F
ValidityFri, 21 Feb 2025 22:54:58 GMT - Thu, 22 May 2025 22:54:57 GMT

File type
JSON text data
Size
2 B (2 bytes)
Hash
99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

HTTP Headers

POST /api/11/envelope/?sentry_key=204271b68b8b41c6b6ff8453b0fa31ae&sentry_version=7&sentry_client=sentry.javascript.vue%2F7.73.0 HTTP/1.1
Host: sentry.marfa-tech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://78crystalroll45.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 470
Origin: https://78crystalroll45.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:38 GMT
Content-Type: application/json
Content-Length: 2
Connection: keep-alive
vary: origin, access-control-request-method, access-control-request-headers
access-control-allow-origin: *
access-control-expose-headers: x-sentry-error,x-sentry-rate-limits,retry-after
cross-origin-resource-policy: cross-origin

78crystalroll45.com/assets/main.a33f5b1f4fe8f8d0c368.js

3.69.248.113

200 OK

4.8 kB

URL GET
78crystalroll45.com/assets/main.a33f5b1f4fe8f8d0c368.js
IP
3.69.248.113:443
ASN
#16509 AMAZON-02

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subject45crystalroll78.com
Fingerprint12:79:2A:83:2A:D9:EE:D4:B1:A2:61:22:CF:59:CF:77:6B:11:A4:E0
ValidityMon, 10 Feb 2025 13:59:37 GMT - Sun, 11 May 2025 13:59:36 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (4965), with no line terminators
Size
4.8 kB (4817 bytes)
Hash
b66f2105088995e5973f5ceb41fa7f1c
8be94f7c8c3c30926a6ed3b4992a0a0de44e97f1
3f5e8056c874dd79b18ad53de4366016450a23e4e4f1a29796dd78ce7fe7d9d5

HTTP Headers

GET /assets/main.a33f5b1f4fe8f8d0c368.js HTTP/1.1
Host: 78crystalroll45.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/not-allowed
Cookie: referer=https%3A%2F%2Fgo2crystalroll.com%2F; UUID=56a0cc79-122b-418a-b78e-1fed5cfc43b0; UGID=258385916780386686; lastActivityTime=1741329937451; entryTime=1741329937487; i18n_redirected=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.3
Date: Fri, 07 Mar 2025 06:45:39 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=31536
Last-Modified: Wed, 05 Mar 2025 14:24:16 GMT
ETag: W/"12d1-19566b163b5"
Content-Encoding: gzip

cdn.livechatinc.com/tracking.js

23.36.77.179

200 OK

90 kB

URL GET
cdn.livechatinc.com/tracking.js
IP
23.36.77.179:443
ASN
#20940 Akamai International B.V.

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerDigiCert Inc
Subjectlivechat.com
FingerprintA9:A2:B2:15:09:CC:34:E7:F9:94:88:21:E7:5A:86:A1:30:A3:B6:DC
ValidityWed, 10 Jul 2024 00:00:00 GMT - Thu, 10 Jul 2025 23:59:59 GMT

File type
data
Size
90 kB (89896 bytes)
Hash
b582d8ab9171af74b89bf01a0851e92e
5cdce11fe8e966f790999f1a3817eece84153755
358f3fa260121ea6f3660b7bd7cf96b9017b0390411fa7042fa0583bc5970c3c

HTTP Headers

GET /tracking.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://78crystalroll45.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Thu, 06 Mar 2025 10:39:53 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
x-amz-version-id: GMw0iMrrwhbgi7dv6rU7yuxWDX37AChv
server: AmazonS3
etag: W/"b582d8ab9171af74b89bf01a0851e92e"
vary: accept-encoding
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: mzNcPvJ2OH_B4NF3mqsZnnjXJIZD9h_cteTIBezwkqqgzBl5eJqReg==
content-length: 28317
cache-control: max-age=28800
expires: Fri, 07 Mar 2025 14:45:39 GMT
date: Fri, 07 Mar 2025 06:45:39 GMT
content-type: application/javascript; charset=utf-8
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
X-Firefox-Spdy: h2

crystalroll.aramuz.net/frontapi/crystalroll/analyticsEvent?locale=en

104.22.34.217

200 OK

0 B

URL OPTIONS
crystalroll.aramuz.net/frontapi/crystalroll/analyticsEvent?locale=en
IP
104.22.34.217:443
ASN
#13335 CLOUDFLARENET

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerLet's Encrypt
Subjectaramuz.net
Fingerprint9C:02:46:99:AD:75:1B:6A:5B:78:52:0C:E3:CD:7E:8F:93:22:44:58
ValidityTue, 28 Jan 2025 09:48:13 GMT - Mon, 28 Apr 2025 09:48:12 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /frontapi/crystalroll/analyticsEvent?locale=en HTTP/1.1
Host: crystalroll.aramuz.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,visitor-uuid
Referer: https://78crystalroll45.com/
Origin: https://78crystalroll45.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 07 Mar 2025 06:45:43 GMT
content-type: application/octet-stream
content-length: 0
access-control-expose-headers: x-meta-count, x-meta-next-page-token, Content-Location, Visitor-Uuid, x-meta-prev-page-token
access-control-allow-origin: *
access-control-allow-methods: OPTIONS, GET, HEAD, POST, PUT, DELETE, PATCH
access-control-allow-headers: Authorization, Content-Type, X-Auth-Token, cache-control, x-requested-with, Visitor-Uuid, x-meta-prev-page-token, x-user-origin, x-color-depth, x-language, x-screen-height, x-screen-width, x-time-zone, x-time-zone-offset, x-java-enabled, x-java-script-enabled
access-control-allow-credentials: true
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 91c821b40edc92a9-CPH
X-Firefox-Spdy: h2

fonts.gstatic.com/s/robotocondensed/v27/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2

142.250.74.35

200 OK

51 kB

URL GET
fonts.gstatic.com/s/robotocondensed/v27/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://78crystalroll45.com/not-allowed#register
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintA4:5F:89:8D:68:B4:5F:99:BE:F5:66:6F:C1:5E:A5:8C:72:BF:1E:D5
ValidityWed, 26 Feb 2025 15:33:59 GMT - Wed, 21 May 2025 15:33:58 GMT

File type
Web Open Font Format (Version 2), TrueType, length 51404, version 1.0
Size
51 kB (51404 bytes)
Hash
b904fcdf1c4c6059fadd6893a7bc7619
f41d1674f02616f03ef77d4e84b3ad8ba28a36fc
517edd119c5b2719e6ac4b30bf1fd864a6395179a41d273c0afc0696e7495d8e

HTTP Headers

GET /s/robotocondensed/v27/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://78crystalroll45.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 51404
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 28 Feb 2025 19:32:42 GMT
expires: Sat, 28 Feb 2026 19:32:42 GMT
cache-control: public, max-age=31536000
age: 558776
last-modified: Wed, 18 Oct 2023 17:52:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (74)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML