| 35.227.234.222/4/PU_COL_PA_SB_MB | 35.227.234.222 | 302 Found | 0 B |
URL HTTP/1.135.227.234.222/4/PU_COL_PA_SB_MB IP35.227.234.222:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /4/PU_COL_PA_SB_MB HTTP/1.1
Host: 35.227.234.222
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 27 Mar 2023 20:43:36 GMT
Content-Length: 0
Location: https://mmwebhandler.aff-online.com/C/42655?sr=1745940
Via: 1.1 google
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash93f633ce30c038eb581544323c5a971e 2f60526cb750c6babccc207f75fb5a8ae6f7598b 0ff6df80a892199848fb943af78541b66efc09a7ab70d4b169906fdbac1eabf8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FF6DF80A892199848FB943AF78541B66EFC09A7AB70D4B169906FDBAC1EABF8"
Last-Modified: Mon, 27 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5936
Expires: Mon, 27 Mar 2023 22:22:33 GMT
Date: Mon, 27 Mar 2023 20:43:37 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash911d74784325663a0d95b463b0e9ae9b 21e999229be584d8e42696bce71236ad5bcb9a25 f48cbe4d605e660a45267400e0add4f7bc7cd523c450376ecd8e3a7f094abf56
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F48CBE4D605E660A45267400E0ADD4F7BC7CD523C450376ECD8E3A7F094ABF56"
Last-Modified: Mon, 27 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5981
Expires: Mon, 27 Mar 2023 22:23:18 GMT
Date: Mon, 27 Mar 2023 20:43:37 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ | 35.241.9.150 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hash4ad6984a756720fbfff47b37a75513a2 355e35258114452af8b9638985ed9d8ef3bf0aca 43181fccb10652c68cae86e5e32b4e8f426fb5ad49d8125cb99e072cff573cf5
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Content-Type, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 27 Mar 2023 20:27:59 GMT
content-type: application/json
age: 938
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash5ad3eec59bebbf969f175627757507c1 b176af3a70db378c9e1f219bab24d9d446070d6f 704fa284035b4c9aa487331b516f5f11c324e204756ae2503bad2606ed34f25e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "704FA284035B4C9AA487331B516F5F11C324E204756AE2503BAD2606ED34F25E"
Last-Modified: Mon, 27 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12983
Expires: Tue, 28 Mar 2023 00:20:00 GMT
Date: Mon, 27 Mar 2023 20:43:37 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hashe7bace7c1e04d44012e37ddffe36e5d5 3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2 6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: zJ81WQ5noE3eQMHPlkWShK6uHOHqEibRpgn4DWFPxY11LMAvCPQXvOx28HlCo659M1oirvyGxGE=
x-amz-request-id: FR5R3RAZ051DTY7B
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 27 Mar 2023 19:55:54 GMT
age: 2863
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 27 Mar 2023 20:43:37 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| status.thawte.com/ | 192.229.221.95 | 200 OK | 471 B |
IP192.229.221.95:0
Hash91fc98ff625ef9154f3c1a03208233b6 66eaa89686d6d041e08b3da477373c2245bcc0a1 dd3b757b9524a78ce9df94032d6918539f74f60716f0951263cbef4f29519f13
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4924
Cache-Control: max-age=137027
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 20:43:37 GMT
Etag: "64216101-1d7"
Expires: Wed, 29 Mar 2023 10:47:24 GMT
Last-Modified: Mon, 27 Mar 2023 09:25:21 GMT
Server: ECAcc (ska/F7A5)
X-Cache: HIT
Content-Length: 471
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 35.241.9.150 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, ETag, Content-Type, Cache-Control, Pragma, Alert, Last-Modified, Retry-After, Backoff, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 27 Mar 2023 20:17:24 GMT
age: 1573
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| mmwebhandler.aff-online.com/C/42655?sr=1745940 | 217.147.127.42 | 302 Found | 314 B |
URL HTTP/1.1mmwebhandler.aff-online.com/C/42655?sr=1745940 IP217.147.127.42:0 ASN#201071 Virtual Internet Services Limited
File typeHTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hash08b2e6baa3bb8e00c647446496947abe 15fa9ece712d5747deef98cc6fac87f436943408 c73482d63e2f62a2f7409efa1994fe669793832c7c8c196f0ec17b6be8a67545
GET /C/42655?sr=1745940 HTTP/1.1
Host: mmwebhandler.aff-online.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 302 Found
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Pragma: no-cache
Content-Type: text/html; charset=utf-8
Expires: 0
Location: https://www.888casino.com/exclusive-mob/double-1500.htm?sr=1745940&mm_id=42655&utm_source=aff&utm_medium=casap&utm_content=100130980&utm_campaign=100130980_1745940_nodescription
Server:
X-AspNetMvc-Version: 4.0
Set-Cookie: uffiliate_click_42655_1745940_=uffiliate_click_42655_1745940_; expires=Wed, 26-Apr-2023 20:43:37 GMT; path=/; SameSite=None; Secure
srv: 1231321
Date: Mon, 27 Mar 2023 20:43:37 GMT
Content-Length: 314
|
|
| ocsp.r2m01.amazontrust.com/ | 54.230.80.227 | 200 OK | 471 B |
URL HTTP/1.1ocsp.r2m01.amazontrust.com/ IP54.230.80.227:0
Hashd5517bdf35463126e850135b79f1168f 2f628260e7fe43697c880b5c73325bf16d6e2417 21b2f1b11413fa556a44401cb1238351092944ff6cac0eda8b36ff22739133f3
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=134988
Date: Mon, 27 Mar 2023 20:43:37 GMT
Etag: "6421585c-1d7"
Expires: Wed, 29 Mar 2023 10:13:25 GMT
Last-Modified: Mon, 27 Mar 2023 08:48:28 GMT
Server: ECAcc (nya/79E6)
X-Cache: Miss from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 7a__CYSC4CaYOl0vswP_uZfTPi2vLi-j5yBfWBZ_GLIra4JVkMqJsA==
Age: 5097
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash76a0aba3ddb470751c690f5a725159f2 8cb789e8e0dfa336270700ef1e607173f2aee6cd e76de476654125a06994065d66e30c6fb6c354d0f67fd4e31a3f78679e2bfdcb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E76DE476654125A06994065D66E30C6FB6C354D0F67FD4E31A3F78679E2BFDCB"
Last-Modified: Mon, 27 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9216
Expires: Mon, 27 Mar 2023 23:17:13 GMT
Date: Mon, 27 Mar 2023 20:43:37 GMT
Connection: keep-alive
|
|
| www.888casino.com/exclusive-mob/double-1500.htm?sr=1745940&mm_id=42655&utm_source=aff&utm_medium=casap&utm_content=100130980&utm_campaign=100130980_1745940_nodescription | 54.230.111.123 | 301 Moved Permanently | 0 B |
URL HTTP/2www.888casino.com/exclusive-mob/double-1500.htm?sr=1745940&mm_id=42655&utm_source=aff&utm_medium=casap&utm_content=100130980&utm_campaign=100130980_1745940_nodescription IP54.230.111.123:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /exclusive-mob/double-1500.htm?sr=1745940&mm_id=42655&utm_source=aff&utm_medium=casap&utm_content=100130980&utm_campaign=100130980_1745940_nodescription HTTP/1.1
Host: www.888casino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
content-length: 0
location: https://www.888casino.com/exclusive-mob/double-1500.htm?utm_campaign=100130980_1745940_nodescription&utm_content=100130980&utm_medium=casap&utm_source=aff
date: Mon, 27 Mar 2023 20:43:37 GMT
x-wcs-correlation-id: jbkQatT1lp5emZiwOEZSB6BCsneMkErpSKHxr8pE79Gw9eV4KeKnhA==
set-cookie: 888TempQueryCookie=sr%3D1745940; max-age=60; domain=888casino.com; path=/; secure; samesite=none; httponly
888Attribution=1; max-age=900; domain=888casino.com; path=/; secure; samesite=none; httponly
888Cookie=isftd%3Dfalse%26isreal%3Dfalse%26lang%3Den%26OSR%3D1745940; max-age=604800; domain=888casino.com; path=/; secure; samesite=none; httponly
888TempContext=SerialResolverTestDataCookie%3D%7B%22expiresIn%22%3A604800%2C%22extendExpiration%22%3Atrue%2C%22modified%22%3Atrue%7D%26testdata%3D%7B%22queryserial%22%3A%221745940%22%2C%22mm_id%22%3A%2242655%22%2C%22utm_source%22%3A%22aff%22%2C%22utm_medium%22%3A%22casap%22%2C%22utm_content%22%3A%22100130980%22%2C%22utm_campaign%22%3A%22100130980_1745940_nodescription%22%2C%22orig-lp%22%3A%22https%3A%2F%2Fwww.888casino.com%2Fexclusive-mob%2Fdouble-1500.htm%22%2C%22currentvisittype%22%3A%22Paid%22%2C%22strategy%22%3A%22ValidSerialInQueryParam%22%2C%22strategysource%22%3A%22currentvisit%22%7D; max-age=60; domain=888casino.com; path=/; secure; samesite=none; httponly
apigw-requestid: CdTvEgH_DoEEPJg=
vary: Cookie
x-cache: Miss from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: jbkQatT1lp5emZiwOEZSB6BCsneMkErpSKHxr8pE79Gw9eV4KeKnhA==
X-Firefox-Spdy: h2
|
|
| ocsp.r2m01.amazontrust.com/ | 54.230.80.227 | 200 OK | 471 B |
URL HTTP/1.1ocsp.r2m01.amazontrust.com/ IP54.230.80.227:0
Hashd5517bdf35463126e850135b79f1168f 2f628260e7fe43697c880b5c73325bf16d6e2417 21b2f1b11413fa556a44401cb1238351092944ff6cac0eda8b36ff22739133f3
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=136389
Date: Mon, 27 Mar 2023 20:43:37 GMT
Etag: "6421585c-1d7"
Expires: Wed, 29 Mar 2023 10:36:46 GMT
Last-Modified: Mon, 27 Mar 2023 08:48:28 GMT
Server: ECAcc (bsa/EA9D)
X-Cache: Miss from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: kTrBLpsf8dNwp6ZFA1jwzz-24bV4zv5y0tRM4hWbumC80e3nbHHTUg==
Age: 6498
|
|
| push.services.mozilla.com/ | 34.216.181.0 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP34.216.181.0:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 3A1kONu7RBUPj/4iSF2PWw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 0Q63wrC/Cwxogjm72sAdht023RU=
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash7e2d8156baac12231cc9cbfdefedacf1 62384d8842fb5b560ac39636bb519953e22dc664 ee4dbd79fc1569ab6ae0ea7b90b4b7d8dbb846296cf7fc68b24be78b7b95993b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 20:43:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash802f2bde3ca917de7c720915910c5d84 9ea0b588553b1eed38f19ea7ec28635da2d32cf2 afa2ff6c0acee0488c468149b60303b148f41a564ce9206d97be41c00b69f0fa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 20:43:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.googleoptimize.com/optimize.js?id=GTM-TJ39X8M | 142.250.74.46 | 200 OK | 49 kB |
URL HTTP/2www.googleoptimize.com/optimize.js?id=GTM-TJ39X8M IP142.250.74.46:0
File typeASCII text, with very long lines (2484) Hash24ab8d205165b8de45c18f52a8b36c4b 058505685904b8f95772891751f39c9489cfdae9 3bddd9306a7ecd143a156f73a6889de8df9f954a068a628ab758f040d62a8686
GET /optimize.js?id=GTM-TJ39X8M HTTP/1.1
Host: www.googleoptimize.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.888casino.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 27 Mar 2023 20:43:38 GMT
expires: Mon, 27 Mar 2023 20:43:38 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 49232
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| storage.googleapis.com/cw-prod/jquery-lib.js | 142.250.74.144 | 200 OK | 31 kB |
URL HTTP/2storage.googleapis.com/cw-prod/jquery-lib.js IP142.250.74.144:0
File typeASCII text, with very long lines (65447) Hash2515c094999e5e63890635eca58c4680 3d02bdfc9b126fbddc8aaf2b9203ff12f9826e9a 800b5e1970cb621f8348d9fd2a4b26fa0fc69cf245a436f7628495f81e63a717
GET /cw-prod/jquery-lib.js HTTP/1.1
Host: storage.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.888casino.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycduNVhJ2mOGqx6ZT7qhKhcfMBVK6hsbG9HhaT-qmRXf9LOsk01PmAM02wux8i8FTRbQILb2OJQB7Qfm_h8pfQc1V0u7c9elM
x-goog-generation: 1679301438048763
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 30653
content-encoding: gzip
x-goog-hash: crc32c=HVifsw==, md5=JRXAlJmeXmOJBjXspYxGgA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 30653
server: UploadServer
date: Mon, 27 Mar 2023 20:43:38 GMT
expires: Mon, 27 Mar 2023 20:43:38 GMT
cache-control: no-cache,max-age=0,no-transform
last-modified: Mon, 20 Mar 2023 08:37:18 GMT
etag: "2515c094999e5e63890635eca58c4680"
content-type: application/javascript
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash7e2d8156baac12231cc9cbfdefedacf1 62384d8842fb5b560ac39636bb519953e22dc664 ee4dbd79fc1569ab6ae0ea7b90b4b7d8dbb846296cf7fc68b24be78b7b95993b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 20:43:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash7e2d8156baac12231cc9cbfdefedacf1 62384d8842fb5b560ac39636bb519953e22dc664 ee4dbd79fc1569ab6ae0ea7b90b4b7d8dbb846296cf7fc68b24be78b7b95993b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 20:43:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.r2m02.amazontrust.com/ | 54.230.80.227 | 200 OK | 471 B |
URL HTTP/1.1ocsp.r2m02.amazontrust.com/ IP54.230.80.227:0
Hash2d96574ebcc1f625d7f9973dc68011d2 74fb65ea86e04a22a4a2f553e2c649f010a1254f 1981523176eff5727166f560b3a7f3dc9ba0531894320abd524e68630ad02e82
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 27 Mar 2023 20:43:38 GMT
Last-Modified: Mon, 27 Mar 2023 20:05:33 GMT
Server: ECAcc (nya/1C3C)
X-Cache: Miss from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: _ManAX3ozxw4Fi_XNuncZ34E4PcfTXAJYKv1NumrHamyiyhKHD62pA==
Age: 2285
|
|
| storage.googleapis.com/cw-prod/footer.css | 142.250.74.144 | 200 OK | 5.9 kB |
URL HTTP/2storage.googleapis.com/cw-prod/footer.css IP142.250.74.144:0
File typeASCII text, with very long lines (36393), with no line terminators Hashac7c1c1d4c59d9b5d296e5120e71c926 b01d8d042f4033d753cf7552043675ef9bd72df5 bd9ae2f9dbb95c077d5ad594b4d89d47dbb3d76ba17a0ccd7ed3bd63d4b21b4e
GET /cw-prod/footer.css HTTP/1.1
Host: storage.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.888casino.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsHfeksfCAJtd9flfq7s_d6UHgorI7U6l5ij4WYP21jZKnqO0dqIz7DhdM6B24m2UrTPXS78tEWd_uVbboaH5gEMeX8KDxV
x-goog-generation: 1679301438103903
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 5899
content-encoding: gzip
x-goog-hash: crc32c=0+bBCw==, md5=rHwcHUxZ2bXSluUSDnHJJg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 5899
server: UploadServer
date: Mon, 27 Mar 2023 20:43:38 GMT
expires: Mon, 27 Mar 2023 20:43:38 GMT
cache-control: no-cache,max-age=0,no-transform
last-modified: Mon, 20 Mar 2023 08:37:18 GMT
etag: "ac7c1c1d4c59d9b5d296e5120e71c926"
content-type: text/css
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.r2m01.amazontrust.com/ | 54.230.80.227 | 200 OK | 471 B |
URL HTTP/1.1ocsp.r2m01.amazontrust.com/ IP54.230.80.227:0
Hash375cf907af4fdebd4c276bde8705c0cc b25b5686cacdb4b9715b671fcd0e0f11b6c50740 aa29e461caa355022179cce13e1f17e2ed8ca36bef468519ce882134ea8ff574
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=135800
Date: Mon, 27 Mar 2023 20:43:38 GMT
Etag: "6421650e-1d7"
Expires: Wed, 29 Mar 2023 10:26:58 GMT
Last-Modified: Mon, 27 Mar 2023 09:42:38 GMT
Server: ECAcc (nya/7946)
X-Cache: Miss from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: hjxLbh52-8gzMWw6NuTx2qKTrToHWcM3WTlKdrfBpmTh1FdpVGjF9Q==
Age: 2660
|
|
| images.images4us.com/888Casino_CGP/EN/Sheild%20M2P-1676371601743_tcm1841-569366.png | 54.230.111.65 | 200 OK | 8.1 kB |
URL HTTP/2images.images4us.com/888Casino_CGP/EN/Sheild%20M2P-1676371601743_tcm1841-569366.png IP54.230.111.65:0
File typePNG image data, 898 x 1098, 4-bit colormap, non-interlaced\012- data Hash3c6df27e6baa3faee534a1691cdf1458 2db864d40b51b1601cc68e3e1f26b66b4d5071c5 b33ecf2f63bc06a6a1a3821ae8442db4501469a36052773edbb1dc62f8f50f72
GET /888Casino_CGP/EN/Sheild%20M2P-1676371601743_tcm1841-569366.png HTTP/1.1
Host: images.images4us.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.888casino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
content-length: 8123
cache-control: max-age=7776000
last-modified: Tue, 14 Feb 2023 12:11:08 GMT
accept-ranges: bytes
etag: "16ed66b6d40d91:0"
srv: 44302334
access-control-allow-origin: *
date: Tue, 14 Feb 2023 12:15:05 GMT
x-cache: Hit from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: Qt5XhU5KshLj39dcO8zXtJnLusJlStaGPXLjKE_8-WZzdxpwO1jtBw==
age: 3572913
X-Firefox-Spdy: h2
|
|
| ocsp.r2m01.amazontrust.com/ | 54.230.80.227 | 200 OK | 471 B |
URL HTTP/1.1ocsp.r2m01.amazontrust.com/ IP54.230.80.227:0
Hash375cf907af4fdebd4c276bde8705c0cc b25b5686cacdb4b9715b671fcd0e0f11b6c50740 aa29e461caa355022179cce13e1f17e2ed8ca36bef468519ce882134ea8ff574
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=138713
Date: Mon, 27 Mar 2023 20:43:38 GMT
Etag: "6421650e-1d7"
Expires: Wed, 29 Mar 2023 11:15:31 GMT
Last-Modified: Mon, 27 Mar 2023 09:42:38 GMT
Server: ECAcc (nya/7993)
X-Cache: Miss from cloudfront
Via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: dm_iG2uslosIIBkehPz2yNljvZ1Pu_KkapT1AaKUBaMu6ovNwFzCrA==
Age: 5573
|
|
| images.images4us.com/888Casino_CGP/EN/CAM-71968-EGR-Logo-2022-1675756898501.png | 54.230.111.65 | 200 OK | 8.5 kB |
URL HTTP/2images.images4us.com/888Casino_CGP/EN/CAM-71968-EGR-Logo-2022-1675756898501.png IP54.230.111.65:0
File typePNG image data, 200 x 200, 8-bit colormap, non-interlaced\012- data Hashee4816d246b03f9a252f12ffd13408cb f32cd8712f76cc1c5a5af9d744868b004bd56324 c176ec90671c94448101c56bef4f8480c90408db08b1822bbffe72b948897f7c
GET /888Casino_CGP/EN/CAM-71968-EGR-Logo-2022-1675756898501.png HTTP/1.1
Host: images.images4us.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.888casino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 8537
cache-control: max-age=7776000
last-modified: Tue, 07 Feb 2023 10:07:39 GMT
accept-ranges: bytes
etag: "8ba2d62dc3ad91:0"
srv: 44302334
access-control-allow-origin: *
date: Tue, 07 Feb 2023 10:08:09 GMT
x-cache: Hit from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: -LwvlUbNf38eKs45Jif45ykOpWCr4eWyzbkKqLRb5YACiflH-8P0kQ==
age: 4185329
X-Firefox-Spdy: h2
|
|
| images.images4us.com/888Casino_CGP/EN/CAM-70311_MTP_LP-Desktop-1677840853162.jpg | 54.230.111.65 | 200 OK | 109 kB |
URL HTTP/2images.images4us.com/888Casino_CGP/EN/CAM-70311_MTP_LP-Desktop-1677840853162.jpg IP54.230.111.65:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1080, components 3\012- data Size109 kB (109298 bytes) Hash29dc28370acba59a01cdc9ef1625697e 0b0ca23e15d90914037afca5b62d622078e8829c e5c6ae7724c5922fc3d67969675de66ef65d9cbe70c596524c6bed518e12ce25
GET /888Casino_CGP/EN/CAM-70311_MTP_LP-Desktop-1677840853162.jpg HTTP/1.1
Host: images.images4us.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.888casino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 109298
cache-control: max-age=7776000
last-modified: Mon, 13 Mar 2023 12:36:56 GMT
accept-ranges: bytes
etag: "c3498c7fa855d91:0"
access-control-allow-origin: *
date: Mon, 13 Mar 2023 12:42:52 GMT
x-cache: Hit from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: S3_H7nSKumhxJh4Bnbq2KUkbZEYbTgRJWBddWKbUOu7DM2mj5xncEQ==
age: 1238446
X-Firefox-Spdy: h2
|
|
| images.images4us.com/888Casino_CGP/EN/CAM-70311_MTP_LP-Mobile-1677840857832.jpg | 54.230.111.65 | 200 OK | 43 kB |
URL HTTP/2images.images4us.com/888Casino_CGP/EN/CAM-70311_MTP_LP-Mobile-1677840857832.jpg IP54.230.111.65:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 640x1080, components 3\012- data Hash2bc4340b41730b33cb6e1c8634c75e0a 9de9da081e551c52b92805c6f5bdbef6d92776ac 939ff0374d17d04b2346ae6e404f4eec7965966b23c7b3c78f29db6b9514ab87
GET /888Casino_CGP/EN/CAM-70311_MTP_LP-Mobile-1677840857832.jpg HTTP/1.1
Host: images.images4us.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.888casino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 42956
cache-control: max-age=7776000
last-modified: Mon, 13 Mar 2023 12:36:56 GMT
accept-ranges: bytes
etag: "9a1e8e7fa855d91:0"
access-control-allow-origin: *
date: Mon, 13 Mar 2023 12:42:52 GMT
x-cache: Hit from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: KIE9xoeemcc2BEZ1jKk61z2kwhdyoQuL-mar-poh3n7zqBIWDbgCpQ==
age: 1238446
X-Firefox-Spdy: h2
|
|
| images.images4us.com/888Casino_CGP/EN/Circle%20M2P%20-1665577612963_tcm1841-569367.png | 54.230.111.65 | 200 OK | 17 kB |
URL HTTP/2images.images4us.com/888Casino_CGP/EN/Circle%20M2P%20-1665577612963_tcm1841-569367.png IP54.230.111.65:0
File typeJPEG image data, progressive, precision 8, 1481x525, components 3\012- data Hashdae01de2f890d87878aa50a2a4eab8bc 479530e6163fc1e99113793d9037888a836d1e30 b3f97bdfa28d959d0230309b44783e6717212e102a8c5c4d44c91578c25862fd
GET /888Casino_CGP/EN/Circle%20M2P%20-1665577612963_tcm1841-569367.png HTTP/1.1
Host: images.images4us.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.888casino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
content-length: 17224
cache-control: max-age=7776000
last-modified: Fri, 23 Dec 2022 12:18:00 GMT
accept-ranges: bytes
etag: "a7164199c816d91:0"
srv: 44303334
access-control-allow-origin: *
date: Sat, 31 Dec 2022 10:59:27 GMT
x-cache: Hit from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: r6al3n2OXovLr7fSKdIpmpscTio8xbJHgm7AJOtbFpAbczuehZ2B9w==
age: 7465451
X-Firefox-Spdy: h2
|
|
| ocsp.r2m01.amazontrust.com/ | 54.230.80.227 | 200 OK | 471 B |
URL HTTP/1.1ocsp.r2m01.amazontrust.com/ IP54.230.80.227:0
Hash375cf907af4fdebd4c276bde8705c0cc b25b5686cacdb4b9715b671fcd0e0f11b6c50740 aa29e461caa355022179cce13e1f17e2ed8ca36bef468519ce882134ea8ff574
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=137660
Date: Mon, 27 Mar 2023 20:43:38 GMT
Etag: "6421650e-1d7"
Expires: Wed, 29 Mar 2023 10:57:58 GMT
Last-Modified: Mon, 27 Mar 2023 09:42:38 GMT
Server: ECAcc (bsa/EA8F)
X-Cache: Miss from cloudfront
Via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: MuCP1T5GnUnQL-ZfzjyPOtbGIC0GKJTm2yFvoDBZYZEyr3EBdEIROQ==
Age: 4520
|
|
| ocsp.r2m01.amazontrust.com/ | 54.230.80.227 | 200 OK | 471 B |
URL HTTP/1.1ocsp.r2m01.amazontrust.com/ IP54.230.80.227:0
Hash375cf907af4fdebd4c276bde8705c0cc b25b5686cacdb4b9715b671fcd0e0f11b6c50740 aa29e461caa355022179cce13e1f17e2ed8ca36bef468519ce882134ea8ff574
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 27 Mar 2023 20:43:38 GMT
Last-Modified: Mon, 27 Mar 2023 19:46:18 GMT
Server: ECAcc (nya/788E)
X-Cache: Miss from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: DvFsErq9cFraEBggFgXx5V_q5t1N1Zl53SIFvwBV43eLwHWjxOxecw==
Age: 3440
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash802f2bde3ca917de7c720915910c5d84 9ea0b588553b1eed38f19ea7ec28635da2d32cf2 afa2ff6c0acee0488c468149b60303b148f41a564ce9206d97be41c00b69f0fa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 20:43:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| images.images4us.com/888Casino_CGP/EN/18plus_white-1570520016318_tcm1841-465227.png | 54.230.111.65 | 200 OK | 914 B |
URL HTTP/2images.images4us.com/888Casino_CGP/EN/18plus_white-1570520016318_tcm1841-465227.png IP54.230.111.65:0
File typePNG image data, 39 x 39, 8-bit/color RGBA, non-interlaced\012- data Hash834a9899eeeeb00a29b8b77c53839bb8 d86ed70a3655396445ee700ac387718717d18129 3d2bc7aaa49060a6767829051bf6b0b7bda6b866abe650a4e56f878d2c0e1f05
GET /888Casino_CGP/EN/18plus_white-1570520016318_tcm1841-465227.png HTTP/1.1
Host: images.images4us.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.888casino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
content-length: 914
cache-control: max-age=7776000
last-modified: Tue, 03 Jan 2023 07:05:55 GMT
accept-ranges: bytes
etag: "6b2bbfd2411fd91:0"
srv: 44301334
access-control-allow-origin: *
date: Tue, 03 Jan 2023 07:12:43 GMT
x-cache: Hit from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: fj0eYB9oj0gFMh-SYrOV92o6r8hU_9GOlM1GwPOUTp3PWyU0spLuWA==
age: 7219855
X-Firefox-Spdy: h2
|
|
| images.images4us.com/888Casino_CGP/EN/sperator_white-1570520089985_tcm1841-465230.png | 54.230.111.65 | 200 OK | 109 B |
URL HTTP/2images.images4us.com/888Casino_CGP/EN/sperator_white-1570520089985_tcm1841-465230.png IP54.230.111.65:0
File typePNG image data, 1 x 100, 8-bit/color RGBA, non-interlaced\012- data Hasha4be6470451b3c68bf567198db5dbfd6 597172569993261f824e108bd6faf88b883cefa3 614a7ecd8cb6d55bac91e6f303401707c74632ac69a562e06695d2af4a99a8b5
GET /888Casino_CGP/EN/sperator_white-1570520089985_tcm1841-465230.png HTTP/1.1
Host: images.images4us.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.888casino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
content-length: 109
cache-control: max-age=7776000
last-modified: Tue, 10 Jan 2023 12:45:27 GMT
accept-ranges: bytes
etag: "b489386af124d91:0"
srv: 44303334
access-control-allow-origin: *
date: Wed, 11 Jan 2023 01:15:51 GMT
x-cache: Hit from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: HoApUOM1jPcSl_gi5HfFXNT6AOOZ0pm7RTyLlGtd_LKZFAMheLOLng==
age: 6550067
X-Firefox-Spdy: h2
|
|
| images.images4us.com/888Casino_CGP/EN/MTP-logo-1676371173930.png | 54.230.111.65 | 200 OK | 11 kB |
URL HTTP/2images.images4us.com/888Casino_CGP/EN/MTP-logo-1676371173930.png IP54.230.111.65:0
File typePNG image data, 954 x 522, 8-bit colormap, non-interlaced\012- data Hashac1682a63485fbfb21580a5356a6356b ee6527731fa3f9b3c8e07d6b619cb7c662d022d3 b67caf22a35e8b7e31c5532f83eb8eb21f4530aa87f2d1d18e899f90229a7f28
GET /888Casino_CGP/EN/MTP-logo-1676371173930.png HTTP/1.1
Host: images.images4us.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.888casino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
content-length: 11253
cache-control: max-age=7776000
last-modified: Tue, 21 Feb 2023 08:44:45 GMT
accept-ranges: bytes
etag: "2db6b1bfd045d91:0"
srv: 44301334
access-control-allow-origin: *
date: Tue, 21 Feb 2023 08:47:32 GMT
x-cache: Hit from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: HkKqukL_Isn2lHFOnHKq-kUoCxxm1kpIReSBiuj4sqFzivM1ELerkg==
age: 2980566
X-Firefox-Spdy: h2
|
|
| ocsp.r2m01.amazontrust.com/ | 54.230.80.227 | 200 OK | 471 B |
URL HTTP/1.1ocsp.r2m01.amazontrust.com/ IP54.230.80.227:0
Hash375cf907af4fdebd4c276bde8705c0cc b25b5686cacdb4b9715b671fcd0e0f11b6c50740 aa29e461caa355022179cce13e1f17e2ed8ca36bef468519ce882134ea8ff574
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 27 Mar 2023 20:43:38 GMT
Last-Modified: Mon, 27 Mar 2023 19:54:45 GMT
Server: ECAcc (bsa/EB2E)
X-Cache: Miss from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: DR5brjmSYcDanQnO_mC9N58c16GOBCqH_Tf4wUXj48LFMm_1YT-dEA==
Age: 2933
|
|
| cdn.cookielaw.org/scripttemplates/otSDKStub.js | 104.19.187.97 | 200 OK | 8.6 kB |
URL HTTP/2cdn.cookielaw.org/scripttemplates/otSDKStub.js IP104.19.187.97:0
File typeASCII text, with very long lines (26237) Hash5cfe6e7c620c540ce793517ea6ab70ce 060716263902f949959961d571ed852b88860cff 6ca1026b6121df8226a60f5608e52d71d5d32a77d9ee116014828e296a046d6e
GET /scripttemplates/otSDKStub.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.888casino.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 27 Mar 2023 20:43:38 GMT
content-type: application/javascript
content-length: 8618
content-encoding: gzip
content-md5: XP5ufGIMVAznk1F+pqtwzg==
last-modified: Thu, 23 Mar 2023 02:36:54 GMT
etag: 0x8DB2B4777370286
x-ms-request-id: 2ad230fe-c01e-0087-1ecd-5d8dc9000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 59698
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7aea777e4a48b4f3-OSL
X-Firefox-Spdy: h2
|
|
| images.images4us.com/888Casino_CGP/EN/888responsible_white-1570520043023_tcm1841-465228.png | 54.230.111.65 | 200 OK | 4.6 kB |
URL HTTP/2images.images4us.com/888Casino_CGP/EN/888responsible_white-1570520043023_tcm1841-465228.png IP54.230.111.65:0
File typePNG image data, 253 x 66, 8-bit/color RGBA, non-interlaced\012- data Hashedde20bceec4136bf4bff04715350412 88885f98fbc065e9c6f68230f593fae2e774eac6 435a57dca8ad038f960986e32cc23aae8b4703dbfc5b2fbf6109f9be0fa116bd
GET /888Casino_CGP/EN/888responsible_white-1570520043023_tcm1841-465228.png HTTP/1.1
Host: images.images4us.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.888casino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
content-length: 4617
cache-control: max-age=7776000
last-modified: Thu, 05 Jan 2023 14:45:49 GMT
accept-ranges: bytes
etag: "6cf115671421d91:0"
srv: 44301334
access-control-allow-origin: *
date: Sun, 08 Jan 2023 11:02:33 GMT
x-cache: Hit from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: -MA-xoiEtvnA-nnMOl4VkKcYbmUZuxb4-arfMARs_acIh6xdYg12UA==
age: 6774065
X-Firefox-Spdy: h2
|
|
| cdn.cookielaw.org/consent/67c16a5f-0778-48f2-8736-959a572646eb/67c16a5f-0778-48f2-8736-959a572646eb.json | 104.19.187.97 | 200 OK | 1.4 kB |
URL HTTP/2cdn.cookielaw.org/consent/67c16a5f-0778-48f2-8736-959a572646eb/67c16a5f-0778-48f2-8736-959a572646eb.json IP104.19.187.97:0
File typeJSON data\012- , ASCII text, with very long lines (3249), with no line terminators Hashaf9fa5e0e536870088e4d6d06d4d22f3 f89e4baef98ff52d829014a7bad0ec0cd5860600 2a2d29ba6e2d2aa8bd477bebc40e4376cbe9a1938ecfe2107f57db4481a5a6d0
GET /consent/67c16a5f-0778-48f2-8736-959a572646eb/67c16a5f-0778-48f2-8736-959a572646eb.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.888casino.com
Connection: keep-alive
Referer: https://www.888casino.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 27 Mar 2023 20:43:38 GMT
content-type: application/x-javascript
content-length: 1423
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: r5+l4OU2hwCI5NbQbU0i8w==
last-modified: Mon, 25 Jul 2022 13:20:52 GMT
etag: 0x8DA6E407FD1B08C
x-ms-request-id: 8b570f34-e01e-0135-7ae1-5a30e6000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 35921
expires: Tue, 28 Mar 2023 20:43:38 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7aea777e9c8e0b41-OSL
X-Firefox-Spdy: h2
|
|
| ocsp.r2m02.amazontrust.com/ | 54.230.80.227 | 200 OK | 471 B |
URL HTTP/1.1ocsp.r2m02.amazontrust.com/ IP54.230.80.227:0
Hash2d96574ebcc1f625d7f9973dc68011d2 74fb65ea86e04a22a4a2f553e2c649f010a1254f 1981523176eff5727166f560b3a7f3dc9ba0531894320abd524e68630ad02e82
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 27 Mar 2023 20:43:38 GMT
Etag: "6421bc54-1d7"
Last-Modified: Mon, 27 Mar 2023 19:27:02 GMT
Server: ECAcc (dcb/7EC2)
X-Cache: Miss from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: J2ES8lZYv7yipzpqcbUNFC2srcpDfmLUIExneqmS9KFan5PmZdS44g==
Age: 4596
|
|
| ocsp.r2m01.amazontrust.com/ | 54.230.80.227 | 200 OK | 471 B |
URL HTTP/1.1ocsp.r2m01.amazontrust.com/ IP54.230.80.227:0
Hash375cf907af4fdebd4c276bde8705c0cc b25b5686cacdb4b9715b671fcd0e0f11b6c50740 aa29e461caa355022179cce13e1f17e2ed8ca36bef468519ce882134ea8ff574
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=137254
Date: Mon, 27 Mar 2023 20:43:38 GMT
Etag: "6421650e-1d7"
Expires: Wed, 29 Mar 2023 10:51:12 GMT
Last-Modified: Mon, 27 Mar 2023 09:42:38 GMT
Server: ECAcc (bsa/EA9D)
X-Cache: Miss from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 6yfa_WYToBEdHfiV6SaeW8bpJvC0le7NvTJYz0qM5ik9HDzXoFxxtg==
Age: 4114
|
|
| cdn.cookielaw.org/scripttemplates/6.34.0/otBannerSdk.js | 104.19.187.97 | 200 OK | 85 kB |
URL HTTP/2cdn.cookielaw.org/scripttemplates/6.34.0/otBannerSdk.js IP104.19.187.97:0
File typeASCII text, with very long lines (65455) Hashcb0cdcb668d521aa64c7cdcfcf76be01 81afee521256d8a99792efc97108df4d5bc4ba26 01b00716f0f37f124f42db24bf0d33802e3ef426664e033684b037dcb5e25682
GET /scripttemplates/6.34.0/otBannerSdk.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.888casino.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 27 Mar 2023 20:43:38 GMT
content-type: application/javascript
content-length: 84671
content-encoding: gzip
content-md5: ywzctmjVIapkx83Pz3a+AQ==
last-modified: Tue, 17 May 2022 16:31:35 GMT
etag: 0x8DA3822B5C4CCF6
x-ms-request-id: 314095dd-101e-012b-2de1-5aea0b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 59621
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7aea777fdccdb4f3-OSL
X-Firefox-Spdy: h2
|
|
| ocsp.r2m01.amazontrust.com/ | 54.230.80.227 | 200 OK | 471 B |
URL HTTP/1.1ocsp.r2m01.amazontrust.com/ IP54.230.80.227:0
Hashedffe5eb70cc60fe52d40603267aa699 2c399b21854e648b6c8f0e04245a94a4d504681b 27b18720da2d44caf9ec28fb8c9fcc037fe86be7d573da2c1dff964075111127
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=143224
Date: Mon, 27 Mar 2023 20:43:38 GMT
Etag: "64217ff7-1d7"
Expires: Wed, 29 Mar 2023 12:30:42 GMT
Last-Modified: Mon, 27 Mar 2023 11:37:27 GMT
Server: ECAcc (dcb/7352)
X-Cache: Miss from cloudfront
Via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: UZrZnZQoIOsvM2tdTAJ9KG5WPk3yHN8T0H0FTotuYzux-k8fmCqrLg==
Age: 3195
|
|
| cdn.cookielaw.org/consent/67c16a5f-0778-48f2-8736-959a572646eb/6451f36f-d3de-4feb-938f-4a21c97a5ed7/en.json | 104.19.187.97 | 200 OK | 28 kB |
URL HTTP/2cdn.cookielaw.org/consent/67c16a5f-0778-48f2-8736-959a572646eb/6451f36f-d3de-4feb-938f-4a21c97a5ed7/en.json IP104.19.187.97:0
File typeJSON data\012- HTML document, Unicode text, UTF-8 text, with very long lines (65516), with no line terminators Hash5009f46b74c510220d45ac3e83aa8faa 966798b34c872e2b3bf54b3680ead349e9acafa4 84603960178a66d4e8120aff6660d5062ae366772997033d18441d33a04a3ebb
GET /consent/67c16a5f-0778-48f2-8736-959a572646eb/6451f36f-d3de-4feb-938f-4a21c97a5ed7/en.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.888casino.com/
Origin: https://www.888casino.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 27 Mar 2023 20:43:38 GMT
content-type: application/x-javascript
content-length: 27695
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: UAn0a3TFECINRaw+g6qPqg==
last-modified: Mon, 25 Jul 2022 13:21:07 GMT
etag: 0x8DA6E40885209E2
x-ms-request-id: f1caf364-301e-00dd-29e1-5a8b48000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 34024
expires: Tue, 28 Mar 2023 20:43:38 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7aea77804eaf0b41-OSL
X-Firefox-Spdy: h2
|
|
| stage-casino-staticcontent.safe-iplay.com/assets/media/images/acq-full-background-template/acq-footer-sprite.png | 54.230.111.27 | 200 OK | 57 kB |
URL HTTP/2stage-casino-staticcontent.safe-iplay.com/assets/media/images/acq-full-background-template/acq-footer-sprite.png IP54.230.111.27:0
File typePNG image data, 1470 x 1350, 8-bit colormap, non-interlaced\012- data Hash3265529a47e7c89c8675145b171becd2 eb7afd9b2a51eecaae1e66f2bc982dbd3a7e0459 2d959130d260fdcb9c9d8b43cf330881ae7327b3a5bc206b3cf71abea177e34e
GET /assets/media/images/acq-full-background-template/acq-footer-sprite.png HTTP/1.1
Host: stage-casino-staticcontent.safe-iplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://storage.googleapis.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
content-length: 57164
last-modified: Mon, 27 Mar 2023 09:24:40 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Mon, 27 Mar 2023 20:40:38 GMT
cache-control: public, max-age=3600
etag: "3265529a47e7c89c8675145b171becd2"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: jh1Af8GN6xUIoptoFzakE3a3Fm-ocfDiRaP33IcldiCJkIISdHLU0Q==
age: 820
X-Firefox-Spdy: h2
|
|
| cdn.cookielaw.org/scripttemplates/6.34.0/assets/otFloatingRounded.json | 104.19.187.97 | 200 OK | 2.6 kB |
URL HTTP/2cdn.cookielaw.org/scripttemplates/6.34.0/assets/otFloatingRounded.json IP104.19.187.97:0
File typeJSON data\012- , ASCII text, with very long lines (7980) Hash1a704fd538f4616af841d6e6ec951d50 93a2247272aee56c0c32252433b613f8450456b6 5d907900f9b15e5528179c628c656442d392993be77c0e2b200b32d48502c261
GET /scripttemplates/6.34.0/assets/otFloatingRounded.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.888casino.com/
Origin: https://www.888casino.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 27 Mar 2023 20:43:39 GMT
content-type: application/json
content-length: 2586
content-encoding: gzip
content-md5: GnBP1Tj0YWr4Qdbm7JUdUA==
last-modified: Tue, 17 May 2022 16:31:25 GMT
etag: 0x8DA3822AFC3B334
x-ms-request-id: 372013bb-a01e-001f-6ae1-5a03f6000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 34025
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7aea77811f8c0b41-OSL
X-Firefox-Spdy: h2
|
|
| cdn.cookielaw.org/scripttemplates/6.34.0/assets/v2/otPcPanel.json | 104.19.187.97 | 200 OK | 12 kB |
URL HTTP/2cdn.cookielaw.org/scripttemplates/6.34.0/assets/v2/otPcPanel.json IP104.19.187.97:0
File typeJSON data\012- , ASCII text, with very long lines (38649) Hash869bc3c073dbcdf45a6d12133fea547f 2c419953c33375084016dfd828ee29ed4cbb37df a64d5c9a7412575f6023caf8acbc8cd678324ea24e1b552f61950779b92fca11
GET /scripttemplates/6.34.0/assets/v2/otPcPanel.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.888casino.com/
Origin: https://www.888casino.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 27 Mar 2023 20:43:39 GMT
content-type: application/json
content-length: 11724
content-encoding: gzip
content-md5: hpvDwHPbzfRabRITP+pUfw==
last-modified: Tue, 17 May 2022 16:31:28 GMT
etag: 0x8DA3822B15824D7
x-ms-request-id: ff20878f-201e-016c-01e1-5a3560000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 34025
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7aea77811f900b41-OSL
X-Firefox-Spdy: h2
|
|
| ocsp.r2m01.amazontrust.com/ | 54.230.80.227 | 200 OK | 471 B |
URL HTTP/1.1ocsp.r2m01.amazontrust.com/ IP54.230.80.227:0
Hashedffe5eb70cc60fe52d40603267aa699 2c399b21854e648b6c8f0e04245a94a4d504681b 27b18720da2d44caf9ec28fb8c9fcc037fe86be7d573da2c1dff964075111127
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=141379
Date: Mon, 27 Mar 2023 20:43:39 GMT
Etag: "64217ff7-1d7"
Expires: Wed, 29 Mar 2023 11:59:58 GMT
Last-Modified: Mon, 27 Mar 2023 11:37:27 GMT
Server: ECAcc (dcb/7ECC)
X-Cache: Miss from cloudfront
Via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: akOldYj4ste8cEAmVKXgB7QwbgRdqP39BM0rmgwqA8TrS0r_reoXoA==
Age: 1351
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashbe1cd1cf8e462ca6f6acb2f132e614d5 037f3bc7ab850fa2c69f2584bb24340b25bb6f3c e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA"
Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5302
Expires: Mon, 27 Mar 2023 22:12:01 GMT
Date: Mon, 27 Mar 2023 20:43:39 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashbe1cd1cf8e462ca6f6acb2f132e614d5 037f3bc7ab850fa2c69f2584bb24340b25bb6f3c e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA"
Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5302
Expires: Mon, 27 Mar 2023 22:12:01 GMT
Date: Mon, 27 Mar 2023 20:43:39 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashbe1cd1cf8e462ca6f6acb2f132e614d5 037f3bc7ab850fa2c69f2584bb24340b25bb6f3c e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA"
Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5302
Expires: Mon, 27 Mar 2023 22:12:01 GMT
Date: Mon, 27 Mar 2023 20:43:39 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashbe1cd1cf8e462ca6f6acb2f132e614d5 037f3bc7ab850fa2c69f2584bb24340b25bb6f3c e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA"
Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5302
Expires: Mon, 27 Mar 2023 22:12:01 GMT
Date: Mon, 27 Mar 2023 20:43:39 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashbe1cd1cf8e462ca6f6acb2f132e614d5 037f3bc7ab850fa2c69f2584bb24340b25bb6f3c e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA"
Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5302
Expires: Mon, 27 Mar 2023 22:12:01 GMT
Date: Mon, 27 Mar 2023 20:43:39 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3fb4d16c-eef2-49cc-ac24-b125a7d6d9e0.jpeg | 34.120.237.76 | 200 OK | 3.6 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3fb4d16c-eef2-49cc-ac24-b125a7d6d9e0.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash1ec08d4bd079a92161fc80f41281b5a9 bf61369962342cce85de8f48942b4b150fd2721e 8a8ed12c31d89d71c3cb88f0813ded83939529206461e917dcb0b8bc11abdda4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3fb4d16c-eef2-49cc-ac24-b125a7d6d9e0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3589
x-amzn-requestid: 9c09af43-79e8-4734-b28b-4194e0bb1e4e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CW1uyE2joAMF50g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641f6991-7607d33f6301182b591c56e8;Sampled=0
x-amzn-remapped-date: Sat, 25 Mar 2023 21:37:21 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: pjRA439kqSg5daR_Zuvsf2l45R4oqv3AMWNiMCGQ_C5o2KA8kEd3TQ==
via: 1.1 46673955829b59a6da0ab071e0b7fbea.cloudfront.net (CloudFront), 1.1 27a84054de24e45f952ea4056a821764.cloudfront.net (CloudFront), 1.1 google
date: Sun, 26 Mar 2023 21:37:24 GMT
age: 83175
etag: "bf61369962342cce85de8f48942b4b150fd2721e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F217b24c4-6cf4-4be4-bdbf-764890bd9672.jpeg | 34.120.237.76 | 200 OK | 4.8 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F217b24c4-6cf4-4be4-bdbf-764890bd9672.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash8cc79a830964d923d24a45f5ccc9939b 557cc4827414912c41319ad961c14cce71ed4a18 b3b1c73b34057cb6e41920f3d55213ad8c193076525767c051960ec26d17ca3c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F217b24c4-6cf4-4be4-bdbf-764890bd9672.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4775
x-amzn-requestid: 28d0e56d-ed03-4686-bd49-34f193f1c65a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CK96KF9coAMFvMA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641aa9da-122cd32a6f23e8442a52464c;Sampled=0
x-amzn-remapped-date: Wed, 22 Mar 2023 07:10:18 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: psNReeBG7nAuKQXIMl1zwCVmvtZ-xwn6Fx8oAIX4wi4GCNUWNWOGMA==
via: 1.1 4e4278a2778e72cc34feef6db603088c.cloudfront.net (CloudFront), 1.1 34f8ef0e4c880df0650a814412a26ea6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 26 Mar 2023 22:12:36 GMT
age: 81063
etag: "557cc4827414912c41319ad961c14cce71ed4a18"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00ac1765-db6c-42e3-99bf-d857d27a34b9.jpeg | 34.120.237.76 | 200 OK | 5.6 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00ac1765-db6c-42e3-99bf-d857d27a34b9.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashc831201ad81f55c63c1b101ce854a810 0e9b952f6489f0a5f4862d3bea2fbe0ecdd379e5 c854489720d2ca4a95eef00addda0fcdaf481402d044df7725282654a97eb54a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00ac1765-db6c-42e3-99bf-d857d27a34b9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5556
x-amzn-requestid: 6b050645-14aa-47f7-b4a5-2e27abbe5115
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CM69eHE3IAMF0Yw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641b71ef-6ab2948e2bf2578f29798372;Sampled=0
x-amzn-remapped-date: Wed, 22 Mar 2023 21:23:59 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: CgU9j02Bnw0UdIwQ3sRCDvJoPitHIAUTRDhLH_PMXYlAPoAwSbv6Iw==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 4d8620b80ebe37d366388e117039aa8e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 05:36:52 GMT
age: 54407
etag: "0e9b952f6489f0a5f4862d3bea2fbe0ecdd379e5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccb0254d-5c75-4e14-a0c6-04283194ce5b.jpeg | 34.120.237.76 | 200 OK | 11 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccb0254d-5c75-4e14-a0c6-04283194ce5b.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash668a8a17a1bb77ea7db7fa23c9df9690 242108539ff8694a3c557d07b2b000e764a77f24 100952573dc9eeba889a77f4d148b646accb99f277035f0607b1c6918f93a358
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccb0254d-5c75-4e14-a0c6-04283194ce5b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10591
x-amzn-requestid: 8359ddc1-a6c6-4caf-9de3-f2eb4dcb0c78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CaIO-F0QIAMF5_A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6420ba5f-72ee066911fdddb62c4a201d;Sampled=0
x-amzn-remapped-date: Sun, 26 Mar 2023 21:34:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: hfm1xuKZ-Olu263DvYfbYlEnANaiIL9e7jEDUqDAf3ihT5N2HAdyIA==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 60b744e5b364d04abea9fa6686121242.cloudfront.net (CloudFront), 1.1 google
date: Sun, 26 Mar 2023 21:49:30 GMT
age: 82449
etag: "242108539ff8694a3c557d07b2b000e764a77f24"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4429ed9b-a655-45dc-a59b-78db53c9c2f6.jpeg | 34.120.237.76 | 200 OK | 12 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4429ed9b-a655-45dc-a59b-78db53c9c2f6.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashe999a9d79efe60a30b2942c5f2940294 c3891c43b16521f66eb3a52d83694de2ddd39871 290ed1232883a4ec63ef42c30f40b819983c5544e35261d2d1e0d1e55d0c8b07
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4429ed9b-a655-45dc-a59b-78db53c9c2f6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12017
x-amzn-requestid: 4f61a0c7-4b18-4289-b47c-eeeff93d873f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Ca6yQGNtoAMFsxw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64210b41-350e4e2425d9606e478872b5;Sampled=0
x-amzn-remapped-date: Mon, 27 Mar 2023 03:19:29 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: TCzHm5qTtnAUDSmayc-LLFmDfV7o6PaaYYfVtN_w7cC3o66HCa3DEg==
via: 1.1 b3cdce1c2fc39b89f45c98c417351f26.cloudfront.net (CloudFront), 1.1 0a2ce08fa1ec3c33302a7547d3305978.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 03:34:08 GMT
age: 61771
etag: "c3891c43b16521f66eb3a52d83694de2ddd39871"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d7ce900-ce9b-481b-9205-9748eeded2e8.jpeg | 34.120.237.76 | 200 OK | 10 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d7ce900-ce9b-481b-9205-9748eeded2e8.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash22905e8a7c8b1741dd51842c114a6517 c5900fe2396e0ca371c4847af4e96149850c3577 1525f9f39c09370fcb1f58f079f2d741a4c6d13fba26e6dd5b79466153d7685e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d7ce900-ce9b-481b-9205-9748eeded2e8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10405
x-amzn-requestid: 0b8dad7a-2ec1-4eed-9a2c-06079ed46662
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CRi69E9xoAMFiJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641d4b79-2f606ac041c5db24583c8d51;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 07:04:25 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: qbbEi0tXZLKo6qjrbJMtTHdhWziYrLrgzY1hzt_LrQJoeDDBbJnZBA==
via: 1.1 4b800f7fa2c3fbb9f4f3c505b0df315e.cloudfront.net (CloudFront), 1.1 b48dedcc55e63f14261aa92cf2d61522.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 05:54:17 GMT
age: 53362
etag: "c5900fe2396e0ca371c4847af4e96149850c3577"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/s/gts1d4/8849r0GWcVU | 142.250.74.131 | 200 OK | 471 B |
URL HTTP/1.1ocsp.pki.goog/s/gts1d4/8849r0GWcVU IP142.250.74.131:0
Hash1c855e978655050848d02487b71c9788 afcc22b7c6c9710e0564d2aca23306dc74ae07a9 fd8276ad5d6c63ec740a7dcd27facba3e2d956ccbf28aeb938e2d71c12e88f0c
POST /s/gts1d4/8849r0GWcVU HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 20:43:39 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| analytics.888casino.com/g/collect?v=2&tid=G-REEXL333PL>m=45je33m0&_p=1697858570&gcs=G101&gdid=dYWJhMj&cid=1487374818.1679949838&ul=en-us&sr=1280x1024&_fplc=0&sst.uc=NO&sst.rnd=811442844.1679949838&sst.gcsub=region1&sst.gcd=G101&_s=1&sid=1679949838&sct=1&seg=0&dl=https%3A%2F%2Fwww.888casino.com%2Fexclusive-mob%2Fdouble-1500.htm%3Futm_campaign%3D100130980_1745940_nodescription%26utm_content%3D100130980%26utm_medium%3Dcasap%26utm_source%3Daff&dt=Play%20at%20888casino&en=page_view&_fv=1&_ss=2&epn.serial=1745940&epn.subBrandId=0&ep.environment=production&ep.userStatus=Anonymous&ep.isFTD=false&ep.isNative=false&ep.country=nor&richsstsse | 216.239.36.21 | 200 OK | 6.7 kB |
URL HTTP/2analytics.888casino.com/g/collect?v=2&tid=G-REEXL333PL>m=45je33m0&_p=1697858570&gcs=G101&gdid=dYWJhMj&cid=1487374818.1679949838&ul=en-us&sr=1280x1024&_fplc=0&sst.uc=NO&sst.rnd=811442844.1679949838&sst.gcsub=region1&sst.gcd=G101&_s=1&sid=1679949838&sct=1&seg=0&dl=https%3A%2F%2Fwww.888casino.com%2Fexclusive-mob%2Fdouble-1500.htm%3Futm_campaign%3D100130980_1745940_nodescription%26utm_content%3D100130980%26utm_medium%3Dcasap%26utm_source%3Daff&dt=Play%20at%20888casino&en=page_view&_fv=1&_ss=2&epn.serial=1745940&epn.subBrandId=0&ep.environment=production&ep.userStatus=Anonymous&ep.isFTD=false&ep.isNative=false&ep.country=nor&richsstsse IP216.239.36.21:0
Hash32139613c3d4b152113ced282f4e47e8 00227f5a60ee09aca514a4bf927a16af465e0692 0e37442b2ef66d27902a6693470f397de51cc15c96df77db7784df974bc095be
GET /g/collect?v=2&tid=G-REEXL333PL>m=45je33m0&_p=1697858570&gcs=G101&gdid=dYWJhMj&cid=1487374818.1679949838&ul=en-us&sr=1280x1024&_fplc=0&sst.uc=NO&sst.rnd=811442844.1679949838&sst.gcsub=region1&sst.gcd=G101&_s=1&sid=1679949838&sct=1&seg=0&dl=https%3A%2F%2Fwww.888casino.com%2Fexclusive-mob%2Fdouble-1500.htm%3Futm_campaign%3D100130980_1745940_nodescription%26utm_content%3D100130980%26utm_medium%3Dcasap%26utm_source%3Daff&dt=Play%20at%20888casino&en=page_view&_fv=1&_ss=2&epn.serial=1745940&epn.subBrandId=0&ep.environment=production&ep.userStatus=Anonymous&ep.isFTD=false&ep.isNative=false&ep.country=nor&richsstsse HTTP/1.1
Host: analytics.888casino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.888casino.com
Connection: keep-alive
Referer: https://www.888casino.com/
Cookie: 888Attribution=1; 888Cookie=isftd%3Dfalse%26isreal%3Dfalse%26lang%3Den%26OSR%3D1745940; _opt_utmc=100130980_1745940_nodescription; 888TestData=%7B%22queryserial%22%3A%221745940%22%2C%22mm_id%22%3A%2242655%22%2C%22utm_source%22%3A%22aff%22%2C%22utm_medium%22%3A%22casap%22%2C%22utm_content%22%3A%22100130980%22%2C%22utm_campaign%22%3A%22100130980_1745940_nodescription%22%2C%22orig-lp%22%3A%22https%3A%2F%2Fwww.888casino.com%2Fexclusive-mob%2Fdouble-1500.htm%22%2C%22currentvisittype%22%3A%22Paid%22%2C%22strategy%22%3A%22ValidSerialInQueryParam%22%2C%22strategysource%22%3A%22currentvisit%22%2C%22datecreated%22%3A%222023-03-27T20%3A43%3A57.403Z%22%2C%22expiredat%22%3A%22Mon%2C%2003%20Apr%202023%2020%3A43%3A00%20GMT%22%7D; OptanonConsent=isGpcEnabled=0&datestamp=Mon+Mar+27+2023+20%3A43%3A58+GMT%2B0000+(Coordinated+Universal+Time)&version=6.34.0&isIABGlobal=false&hosts=&consentId=be475c8b-3a5f-439a-875a-8c861913e648&interactionCount=0&landingPath=https%3A%2F%2Fwww.888casino.com%2Fexclusive-mob%2Fdouble-1500.htm%3Futm_campaign%3D100130980_1745940_nodescription%26utm_content%3D100130980%26utm_medium%3Dcasap%26utm_source%3Daff&groups=C0001%3A1%2CC0002%3A1%2CC0003%3A1%2CC0004%3A0; _ga=GA1.1.1487374818.1679949838; _gid=GA1.2.1563680526.1679949838; _ga_REEXL333PL=GS1.1.1679949838.1.0.1679949838.0.0.0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Mon, 27 Mar 2023 20:43:39 GMT
content-type: text/plain
vary: Accept-Encoding
set-cookie: FPLC=p6zICRe5oMBIMfdDsJ5ArKFOZI%2F07ghyaPiXWnvKDD%2B9jKNrqhSnV7AHYRXVu7ElLmh6LRIDM7lOaoyvRf0kZ9pnwKn26rWmCIx%2BRQ0URHyrMhasr9B6A8V12Qt4Jw%3D%3D; Max-Age=72000; Domain=888casino.com; Path=/; Secure
FPID=FPID2.2.vUdE0rUxFT9fqpBe0Fs8CLQ5Sn2kz2Iia%2Bij1zJouZs%3D.1679949838; Max-Age=63072000; Domain=888casino.com; Path=/; Secure; HttpOnly
cache-control: no-cache
x-content-type-options: nosniff
access-control-allow-origin: https://www.888casino.com
access-control-allow-credentials: true
content-encoding: gzip
via: 1.1 google
X-Firefox-Spdy: h2
|
|
| www.888casino.com/exclusive-mob/double-1500.htm?utm_campaign=100130980_1745940_nodescription&utm_content=100130980&utm_medium=casap&utm_source=aff | 54.230.111.123 | 200 OK | 0 B |
URL HTTP/2www.888casino.com/exclusive-mob/double-1500.htm?utm_campaign=100130980_1745940_nodescription&utm_content=100130980&utm_medium=casap&utm_source=aff IP54.230.111.123:0
GET /exclusive-mob/double-1500.htm?utm_campaign=100130980_1745940_nodescription&utm_content=100130980&utm_medium=casap&utm_source=aff HTTP/1.1
Host: www.888casino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: 888TempQueryCookie=sr%3D1745940; 888Attribution=1; 888Cookie=isftd%3Dfalse%26isreal%3Dfalse%26lang%3Den%26OSR%3D1745940; 888TempContext=SerialResolverTestDataCookie%3D%7B%22expiresIn%22%3A604800%2C%22extendExpiration%22%3Atrue%2C%22modified%22%3Atrue%7D%26testdata%3D%7B%22queryserial%22%3A%221745940%22%2C%22mm_id%22%3A%2242655%22%2C%22utm_source%22%3A%22aff%22%2C%22utm_medium%22%3A%22casap%22%2C%22utm_content%22%3A%22100130980%22%2C%22utm_campaign%22%3A%22100130980_1745940_nodescription%22%2C%22orig-lp%22%3A%22https%3A%2F%2Fwww.888casino.com%2Fexclusive-mob%2Fdouble-1500.htm%22%2C%22currentvisittype%22%3A%22Paid%22%2C%22strategy%22%3A%22ValidSerialInQueryParam%22%2C%22strategysource%22%3A%22currentvisit%22%7D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
date: Mon, 27 Mar 2023 20:43:38 GMT
content-security-policy: frame-ancestors 'self' *.genesazrak.com *.888casinoarabic.net *.arabiccasino888.com *.casinoarabic888.com *.casinoarabic-888.com *.888-casinoarabic.com *.888casino-arabic.com http://wrapper.safe-installation.com/ https://wrapper.safe-installation.com/ http://localhost:* https://localhost:* *.bingosys.net *.secured-igaming-usa.com *.888.pt *.sisportsbook.com *.888poker.de *.888slots.de *.safe-iplay.com *.safe-installation.com *.payoutscentral.com *.triple8holdem.com *.888.com *.secured-qa.com *.secured-registration.com *.secureutils.com *.images4us.com *.onlinepersonalmessages.com *.888sport.com *.888sport.es *.888sport.it *.888sport.dk *.888sport.ro *.888sport.se *.888sport.us *.888sport.de *.777.com *.personalinfoonline.com *.888.de *.888casino.com *.888poker.com *.888casino.dk *.888poker.dk *.888.de *.888casino.ro *.888poker.ro *.888casino.se *.888poker.se *.888casino.es *.888poker.es *.888casino.it *.888poker.it *.888casino.us *.888poker.us *.888ladies.com *.888.pt cmsp *.harrahscasino.com *.wsop.com *.delawarepark.com *.doverdowns.com *.harringtongamingonline.com *.secured-igaming-services.com *.secured-igaming-usa.com *.igaming-services.com *.888.ca *.888casino.ca *.888poker.ca *.888sport.ca *.888.nl *.888casino.nl *.888poker.nl *.888sport.nl *.ar-888-casino.com *.888casino-ar.com *.ar888-casino.com *.arab888-casino.com *.casinoelarab-888.com *.alarab-888casino.com *.casinoalarab-888.com *.888casino-alarab.com *.888casino-arabian.com *.arabian-888casino.com *.888-casino-arabian.com *.888-casino-alarab.com *.ballysdover.com *.888casino-uae.com *.playat888-games.com *.888casino-game.com *.online-arabic-casino.net *.tripleeight.live *.playat888online.com *.888games-uae.com *.triple-eight-games.com *.play-casino-now.com *.888slots-uae.com *.888-uae.com *.mrgreen.de *.mrgreen.se *.mrgreen.com *.mrgreen.dk
x-wcs-correlation-id: 3sbO-XMIZmW71yCwCkhEi3wqiqk1LbTUfuxuplfRh8Fo0_q6XgimAQ==
p3p: CP="Read our privacy policy at http://www.888.com/security-and-privacy/privacy-policy.htm"
set-cookie: 888TempQueryCookie=; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=888casino.com; path=/; secure; samesite=none; httponly
888TempContext=; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=888casino.com; path=/; secure; samesite=none; httponly
888Cookie=isftd%3Dfalse%26isreal%3Dfalse%26lang%3Den%26OSR%3D1745940; max-age=604800; domain=888casino.com; path=/; secure; samesite=none; httponly
apigw-requestid: CdTvGgT5joEEP6Q=
content-encoding: br
vary: Accept-Encoding,User-Agent,Cookie
x-cache: Miss from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 3sbO-XMIZmW71yCwCkhEi3wqiqk1LbTUfuxuplfRh8Fo0_q6XgimAQ==
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtm.js?id=GTM-PQ2ZJ7J | 142.250.74.168 | 200 OK | 0 B |
URL HTTP/2www.googletagmanager.com/gtm.js?id=GTM-PQ2ZJ7J IP142.250.74.168:0
GET /gtm.js?id=GTM-PQ2ZJ7J HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.888casino.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 27 Mar 2023 20:43:38 GMT
expires: Mon, 27 Mar 2023 20:43:38 GMT
cache-control: private, max-age=900
last-modified: Mon, 27 Mar 2023 19:54:18 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 94244
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| pixel.safe-installation.com/js/funnel-data-v5.js | 54.230.111.116 | 200 OK | 0 B |
URL HTTP/2pixel.safe-installation.com/js/funnel-data-v5.js IP54.230.111.116:0
GET /js/funnel-data-v5.js HTTP/1.1
Host: pixel.safe-installation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.888casino.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript
last-modified: Mon, 13 Mar 2023 08:14:14 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Mon, 27 Mar 2023 19:59:24 GMT
cache-control: public, max-age=3600
etag: W/"249beda8af66feea3eb78a312c758c4e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: p74KD0N7Nwjo2uWHojEEMF2GNCb27I1OfmL1kZY7tMvmtafPvJBouQ==
age: 2670
X-Firefox-Spdy: h2
|
|
| cdn.cookielaw.org/scripttemplates/6.34.0/assets/otCommonStyles.css | 104.19.187.97 | 200 OK | 0 B |
URL HTTP/2cdn.cookielaw.org/scripttemplates/6.34.0/assets/otCommonStyles.css IP104.19.187.97:0
GET /scripttemplates/6.34.0/assets/otCommonStyles.css HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.888casino.com/
Origin: https://www.888casino.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 27 Mar 2023 20:43:39 GMT
content-type: text/css
content-md5: /wtHD+oYY7dZRzCx50GZrQ==
last-modified: Tue, 17 May 2022 16:31:39 GMT
x-ms-request-id: fcd3e183-501e-0082-7ee1-5a79b6000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 21918
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7aea77811f910b41-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| unpkg.com/web-vitals@2.1.0/dist/web-vitals.umd.js | 104.16.122.175 | 200 OK | 0 B |
URL HTTP/2unpkg.com/web-vitals@2.1.0/dist/web-vitals.umd.js IP104.16.122.175:0
GET /web-vitals@2.1.0/dist/web-vitals.umd.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.888casino.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 27 Mar 2023 20:43:39 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"11c8-h8MN9BiDN1TuDYM8xSzz31D62dA"
via: 1.1 fly.io
fly-request-id: 01GQ46MDNZ3CQF737HF07DHA2F-fra
cf-cache-status: HIT
age: 5845137
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7aea7781db190afa-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| geolocation.onetrust.com/cookieconsentpub/v1/geo/location | 172.64.144.98 | 200 OK | 0 B |
URL HTTP/2geolocation.onetrust.com/cookieconsentpub/v1/geo/location IP172.64.144.98:0
GET /cookieconsentpub/v1/geo/location HTTP/1.1
Host: geolocation.onetrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.888casino.com
Connection: keep-alive
Referer: https://www.888casino.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 27 Mar 2023 20:43:38 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, OPTIONS
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7aea777f4fae1bfa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| cdn.cookielaw.org/logos/static/poweredBy_ot_logo.svg | 104.19.187.97 | 200 OK | 0 B |
URL HTTP/2cdn.cookielaw.org/logos/static/poweredBy_ot_logo.svg IP104.19.187.97:0
GET /logos/static/poweredBy_ot_logo.svg HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.888casino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 27 Mar 2023 20:43:39 GMT
content-type: image/svg+xml
content-md5: LpuayL42jB78xRllx0vkOw==
last-modified: Thu, 23 Mar 2023 02:37:02 GMT
x-ms-request-id: 8a2b92b4-501e-00ab-73b1-5d0ff4000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 78493
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7aea7781e838b4f3-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.google-analytics.com/analytics.js | 216.58.207.206 | 200 OK | 0 B |
URL HTTP/2www.google-analytics.com/analytics.js IP216.58.207.206:0
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.888casino.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Mon, 27 Mar 2023 20:05:11 GMT
expires: Mon, 27 Mar 2023 22:05:11 GMT
cache-control: public, max-age=7200
age: 2308
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|