{"report_id":"e9247bc6-771a-4429-80c8-cc489b70e069","version":6,"status":"done","tags":[],"date":"2026-05-30T12:28:49Z","url":{"schema":"http","addr":"casinogiris.one","fqdn":"casinogiris.one","domain":"casinogiris.one","tld":"one"},"ip":{"addr":"15.235.115.30","port":0,"asn":16276,"as":"OVH SAS","country":"Canada","country_code":"CA"},"final":{"url":{"schema":"https","addr":"casinogiris.one/","fqdn":"casinogiris.one","domain":"casinogiris.one","tld":"one"},"title":"Casino Giriş - Hızlı ve Güvenli URL Kısaltma Servisi","dom":{"size":10800,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"510449585f95b1fd15443bd8fd188c7c","sha1":"fa31d5dd716a3a5cc487dcb3a0ae9ec34b8b4b1e","sha256":"a911d03d30e47195bb82ca10dd109d071460eff2b0ffa02a792b2ebe4a4796ea","sha512":"0a0a9736c78836b8c4140b07fa1865d23edf6c45f303febbabe1238d74e9101331044dd71fe1f6abc76a797e52ab5fd94126b819b958fe41731bcc629b8475a0","ssdeep":"192:FCxN3NYAq9sIIhUIccNe1yJaoXRKD/8nJ3teFw5:ufO+II1bNe1yKD0nxYA","tlshash":"a522b811a0f8780b1626f2cafb25637e9e93f193d91a2610b56c06915fd2dd2cc3323a","dom_hash":"domhashaaa3da18e3c40385c133d274a214672a","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"casinogiris.one","fqdn":"casinogiris.one","domain":"casinogiris.one","tld":"one"},"ip":{"addr":"15.235.115.30","port":0,"asn":16276,"as":"OVH SAS","country":"Canada","country_code":"CA"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-07-04T12:28:49Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":3}},"detection":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"casinogiris.one","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"casinogiris.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"casinogiris.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null},"summary":[{"fqdn":"casinogiris.one","ip":{"addr":"15.235.115.30","port":443,"asn":16276,"as":"OVH SAS","country":"Canada","country_code":"CA"},"domain_registered":"2026-04-14","domain_rank":0,"first_seen":"2026-05-30T12:24:44.057785Z","last_seen":"2026-05-30T12:24:44.057785Z","alert_count":15,"request_count":5,"received_data":59443,"sent_data":2471,"comment":"","tags":null,"fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}]},{"fqdn":"fonts.googleapis.com","ip":{"addr":"64.233.162.95","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2026-05-24T22:21:07.624228Z","alert_count":0,"request_count":1,"received_data":16787,"sent_data":520,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"fonts.gstatic.com","ip":{"addr":"173.194.220.94","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2026-05-24T22:18:17.447529Z","alert_count":0,"request_count":9,"received_data":399602,"sent_data":5052,"comment":"","tags":null,"fingerprints":null},{"fqdn":"statz.aatoolz.one","ip":{"addr":"15.235.115.30","port":443,"asn":16276,"as":"OVH SAS","country":"Canada","country_code":"CA"},"domain_registered":"2026-02-04","domain_rank":0,"first_seen":"2026-05-14T18:21:35.841489Z","last_seen":"2026-05-29T00:17:19.115014Z","alert_count":0,"request_count":2,"received_data":1357,"sent_data":1090,"comment":"","tags":null,"fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"statz.aatoolz.one/track.php?t=1f3554ecd46a7aa0d1d8a7dda4d339d6","fqdn":"statz.aatoolz.one","domain":"aatoolz.one","tld":"one"},"ip":{"addr":"15.235.115.30","port":443,"asn":16276,"as":"OVH SAS","country":"Canada","country_code":"CA"},"introduction_type":"scriptElement","is_inline":false,"md5":"d310810039f3e958d96fdec8edb9f0a6","sha1":"ca5e56b0ae97e3ab5f15788df1c20317e842e246","sha256":"29a4ee8fb2a0a6e55f178e4542275527f3b03aaaf9a9cc49ef92951776a6fded","sha512":"a782bc0ea703477b8ff57477016094595f81b4c5de5fd2e4fe1b7a6fa2621e3c1e26de80b9cbed8750baf4e8082167d08ca4849bb013bdf792a6bc38e045772d","ssdeep":"","tlshash":"60f050b456a390a17623609b319f674868b780433f1ad484354c55500fe6b361356bfa","size":583,"data":"","first_seen":"2026-05-30T12:24:47.949926Z","last_seen":"2026-05-30T18:31:16.708377Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"casinogiris.one/assets/js/main.js","fqdn":"casinogiris.one","domain":"casinogiris.one","tld":"one"},"ip":{"addr":"15.235.115.30","port":443,"asn":16276,"as":"OVH SAS","country":"Canada","country_code":"CA"},"introduction_type":"scriptElement","is_inline":false,"md5":"a4e574d75a7dc1c847fc22cf53bf5e96","sha1":"2183c3e4f0c0d65c51f8f78e889bcd2b1424dac7","sha256":"207162eb2efd2d5dfe60a4aa48281f753c813a5088fbe289227ef261ffa84f33","sha512":"f185c389a5f4634543f3ea2818507b17220a49b1d6ad29ee7d8cb426bd85a55650254ae1db634299667974623708cc1df708447d97b1d514dac536a7d19ab670","ssdeep":"192:MIgc4VnUyFpjpLsJndrMnTai7SVktXTzDQEi1HUaEu7TpDbTHD6a7svwITEclwVP:YjHnOVx9Kv9HmtmP7ag7bPqNFFMM","tlshash":"cc424258bebb25757553257e8faf5008b7b8e4032449d80abc8ce2c01fd591816b9ffa","size":12812,"data":"","first_seen":"2026-05-30T12:24:47.950828Z","last_seen":"2026-05-30T18:31:16.696845Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"fonts.gstatic.com/s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa25L7W0I5nvwUgHU.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"173.194.220.94","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://casinogiris.one/","date":"2026-05-30T12:28:28.949Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Thu, 07 May 2026 15:53:13 GMT","end":"Thu, 30 Jul 2026 15:53:12 GMT"},"fingerprint":{"sha1":"6C:B9:FE:19:9C:7C:AA:5D:D2:39:3A:16:2C:50:FB:C8:59:C8:CC:A8","sha256":"FC:4C:0C:6E:AB:D1:82:30:1F:A9:46:DF:FA:38:02:9F:06:56:FF:98:E0:8D:AB:9A:26:C3:2A:97:C5:CF:A6:1C"}}},"request":{"raw":"GET /s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa25L7W0I5nvwUgHU.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://casinogiris.one\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 84924\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sat, 30 May 2026 06:36:02 GMT\r\nexpires: Sun, 30 May 2027 06:36:02 GMT\r\ncache-control: public, max-age=31536000\r\nage: 21147\r\nlast-modified: Tue, 09 Sep 2025 18:33:55 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":84924,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 84924, version 1.0","md5":"f5b588b5cfef2173838149769c8a0269","sha1":"5312086a01f8e8299094ddee5819b9727a19cae2","sha256":"b8811a6cd6f7e0707dfc9e9e6f1daf5f6f450b51e887e163945a9ade91c2720f","sha512":"05d5271c633bbe102775c0b6df9c5e110dae3a2517061714bb5c26ec66a00f8e1b62961135ec96962e7ccaf3942d8e32bd86f42558cbac8ee16ff6c333117886","ssdeep":"1536:PABWz4rSN/GzH27xN5UR1OnX+uyRsd1osLZBi/JGyQI01xDj+C:PAG4rCGa7L5UR1OnX+fGd/VB03QI+xP","tlshash":"378302b4ae71b3968f1c7fe46396273c2a7bdf41053950aeae44e16787f00dba148784","first_seen":"2025-05-29T19:39:57.235915Z","last_seen":"2026-06-06T20:24:14.374476Z","times_seen":15594,"resource_available":false,"data":null}},"time_used":120,"timings":{"blocked":59,"dns":0,"connect":0,"send":0,"wait":31,"receive":30,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/plusjakartasans/v12/LDIoaomQNQcsA88c7O9yZ4KMCoOg4Ko20yyghfvaZ-E.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"173.194.220.94","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://casinogiris.one/","date":"2026-05-30T12:28:28.911Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Thu, 07 May 2026 15:53:13 GMT","end":"Thu, 30 Jul 2026 15:53:12 GMT"},"fingerprint":{"sha1":"6C:B9:FE:19:9C:7C:AA:5D:D2:39:3A:16:2C:50:FB:C8:59:C8:CC:A8","sha256":"FC:4C:0C:6E:AB:D1:82:30:1F:A9:46:DF:FA:38:02:9F:06:56:FF:98:E0:8D:AB:9A:26:C3:2A:97:C5:CF:A6:1C"}}},"request":{"raw":"GET /s/plusjakartasans/v12/LDIoaomQNQcsA88c7O9yZ4KMCoOg4Ko20yyghfvaZ-E.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://casinogiris.one\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 27236\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sat, 30 May 2026 07:31:10 GMT\r\nexpires: Sun, 30 May 2027 07:31:10 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Tue, 09 Sep 2025 18:38:58 GMT\r\ncontent-type: font/woff2\r\nage: 17839\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":27236,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 27236, version 1.0","md5":"a8c28b27501f763423d96717c43243df","sha1":"e845ac57b3fee2c68ec6cdb95114ef3541fa3d11","sha256":"b6698c39332c51112c720e8a92608b4eeed502f654b63fc1693b8cccfc856d4d","sha512":"3e3af79fd415b3e4d3cbcd7f9bce2a7fa5c09b1ad5a38c6f2e971852c7973eae1b8ac85a4664f8c7af34f6c489f563cc35f82aecd32b1be8af70ce2612b0e3d3","ssdeep":"384:TOfiFJZpa1LuoEeC5s2xCWnEgdMqCF+FSe5LuxyrPyP2hbgBizhxCvw9k3kwA0y2:XW1l+s2xC8LSs2P2yitawWU50Z","tlshash":"f5c2e0676b05362dbcc47380135b8f262a5071b5566cca61787bef4e3a9b03a903cba5","first_seen":"2025-06-03T19:01:05.870661Z","last_seen":"2026-06-06T20:43:14.649283Z","times_seen":13336,"resource_available":false,"data":null}},"time_used":279,"timings":{"blocked":111,"dns":3,"connect":32,"send":0,"wait":59,"receive":3,"ssl":67},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/plusjakartasans/v12/LDIoaomQNQcsA88c7O9yZ4KMCoOg4Ko40yyghfvaZ-EHYA.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"173.194.220.94","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://casinogiris.one/","date":"2026-05-30T12:28:28.920Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Thu, 07 May 2026 15:53:13 GMT","end":"Thu, 30 Jul 2026 15:53:12 GMT"},"fingerprint":{"sha1":"6C:B9:FE:19:9C:7C:AA:5D:D2:39:3A:16:2C:50:FB:C8:59:C8:CC:A8","sha256":"FC:4C:0C:6E:AB:D1:82:30:1F:A9:46:DF:FA:38:02:9F:06:56:FF:98:E0:8D:AB:9A:26:C3:2A:97:C5:CF:A6:1C"}}},"request":{"raw":"GET /s/plusjakartasans/v12/LDIoaomQNQcsA88c7O9yZ4KMCoOg4Ko40yyghfvaZ-EHYA.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://casinogiris.one\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 21740\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sat, 30 May 2026 12:24:22 GMT\r\nexpires: Sun, 30 May 2027 12:24:22 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Tue, 09 Sep 2025 18:29:45 GMT\r\ncontent-type: font/woff2\r\nage: 247\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":21740,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 21740, version 1.0","md5":"feb32a783dde93d92ecd80e2e5ee2fd6","sha1":"6a77846330b45303ba88cc52db486332eb10a1b4","sha256":"afb7198c978dc6146a16f600df962a51d0b607334332929d4d123749c27586ff","sha512":"0a03f0d4f725df8de1d5a383a0f364b8636005edae784b0decb583e1150740e1e338569e8d5a8b2c8021665c529d3ca522c6178a835533b7342b056fb3dc0543","ssdeep":"384:+IC0yB1UD32kqUXqzZ7v/+XA/eK0AQaHjZipRYBpcsTjtVIVEElBs:+b0+WDmkdXqt/iYAC0RgcccVlBs","tlshash":"c1a2e170cece390ee329716e02568a78e6878ce94a053d20949d9d390fdaf3497c5df4","first_seen":"2025-09-10T18:57:50.481843Z","last_seen":"2026-06-06T15:27:33.755757Z","times_seen":697,"resource_available":false,"data":null}},"time_used":216,"timings":{"blocked":93,"dns":0,"connect":0,"send":0,"wait":63,"receive":2,"ssl":58},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/plusjakartasans/v12/LDIoaomQNQcsA88c7O9yZ4KMCoOg4Ko20yyghfvaZ-E.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"173.194.220.94","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://casinogiris.one/","date":"2026-05-30T12:28:28.951Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Thu, 07 May 2026 15:53:13 GMT","end":"Thu, 30 Jul 2026 15:53:12 GMT"},"fingerprint":{"sha1":"6C:B9:FE:19:9C:7C:AA:5D:D2:39:3A:16:2C:50:FB:C8:59:C8:CC:A8","sha256":"FC:4C:0C:6E:AB:D1:82:30:1F:A9:46:DF:FA:38:02:9F:06:56:FF:98:E0:8D:AB:9A:26:C3:2A:97:C5:CF:A6:1C"}}},"request":{"raw":"GET /s/plusjakartasans/v12/LDIoaomQNQcsA88c7O9yZ4KMCoOg4Ko20yyghfvaZ-E.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://casinogiris.one\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 27236\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sat, 30 May 2026 07:31:10 GMT\r\nexpires: Sun, 30 May 2027 07:31:10 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Tue, 09 Sep 2025 18:38:58 GMT\r\ncontent-type: font/woff2\r\nage: 17839\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":27236,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 27236, version 1.0","md5":"a8c28b27501f763423d96717c43243df","sha1":"e845ac57b3fee2c68ec6cdb95114ef3541fa3d11","sha256":"b6698c39332c51112c720e8a92608b4eeed502f654b63fc1693b8cccfc856d4d","sha512":"3e3af79fd415b3e4d3cbcd7f9bce2a7fa5c09b1ad5a38c6f2e971852c7973eae1b8ac85a4664f8c7af34f6c489f563cc35f82aecd32b1be8af70ce2612b0e3d3","ssdeep":"384:TOfiFJZpa1LuoEeC5s2xCWnEgdMqCF+FSe5LuxyrPyP2hbgBizhxCvw9k3kwA0y2:XW1l+s2xC8LSs2P2yitawWU50Z","tlshash":"f5c2e0676b05362dbcc47380135b8f262a5071b5566cca61787bef4e3a9b03a903cba5","first_seen":"2025-06-03T19:01:05.870661Z","last_seen":"2026-06-06T20:43:14.649283Z","times_seen":13336,"resource_available":false,"data":null}},"time_used":121,"timings":{"blocked":58,"dns":0,"connect":0,"send":0,"wait":62,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/plusjakartasans/v12/LDIoaomQNQcsA88c7O9yZ4KMCoOg4Ko40yyghfvaZ-EHYA.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"173.194.220.94","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://casinogiris.one/","date":"2026-05-30T12:28:28.948Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Thu, 07 May 2026 15:53:13 GMT","end":"Thu, 30 Jul 2026 15:53:12 GMT"},"fingerprint":{"sha1":"6C:B9:FE:19:9C:7C:AA:5D:D2:39:3A:16:2C:50:FB:C8:59:C8:CC:A8","sha256":"FC:4C:0C:6E:AB:D1:82:30:1F:A9:46:DF:FA:38:02:9F:06:56:FF:98:E0:8D:AB:9A:26:C3:2A:97:C5:CF:A6:1C"}}},"request":{"raw":"GET /s/plusjakartasans/v12/LDIoaomQNQcsA88c7O9yZ4KMCoOg4Ko40yyghfvaZ-EHYA.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://casinogiris.one\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 21740\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sat, 30 May 2026 12:24:22 GMT\r\nexpires: Sun, 30 May 2027 12:24:22 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Tue, 09 Sep 2025 18:29:45 GMT\r\ncontent-type: font/woff2\r\nage: 247\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":21740,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 21740, version 1.0","md5":"feb32a783dde93d92ecd80e2e5ee2fd6","sha1":"6a77846330b45303ba88cc52db486332eb10a1b4","sha256":"afb7198c978dc6146a16f600df962a51d0b607334332929d4d123749c27586ff","sha512":"0a03f0d4f725df8de1d5a383a0f364b8636005edae784b0decb583e1150740e1e338569e8d5a8b2c8021665c529d3ca522c6178a835533b7342b056fb3dc0543","ssdeep":"384:+IC0yB1UD32kqUXqzZ7v/+XA/eK0AQaHjZipRYBpcsTjtVIVEElBs:+b0+WDmkdXqt/iYAC0RgcccVlBs","tlshash":"c1a2e170cece390ee329716e02568a78e6878ce94a053d20949d9d390fdaf3497c5df4","first_seen":"2025-09-10T18:57:50.481843Z","last_seen":"2026-06-06T15:27:33.755757Z","times_seen":697,"resource_available":false,"data":null}},"time_used":123,"timings":{"blocked":60,"dns":0,"connect":0,"send":0,"wait":62,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"statz.aatoolz.one/track.php?t=1f3554ecd46a7aa0d1d8a7dda4d339d6\u0026collect=1\u0026u=https%3A%2F%2Fcasinogiris.one%2F\u0026ti=Casino%20Giri%C5%9F%20-%20H%C4%B1zl%C4%B1%20ve%20G%C3%BCvenli%20URL%20K%C4%B1saltma%20Servisi\u0026r=\u0026sw=1280\u0026sh=1024\u0026l=en-US","fqdn":"statz.aatoolz.one","domain":"aatoolz.one","tld":"one"},"ip":{"addr":"15.235.115.30","port":443,"asn":16276,"as":"OVH SAS","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://casinogiris.one/","date":"2026-05-30T12:28:29.345Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.statz.aatoolz.one","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 01 May 2026 17:21:36 GMT","end":"Thu, 30 Jul 2026 17:21:35 GMT"},"fingerprint":{"sha1":"19:D3:23:6E:2F:32:56:7A:CE:C6:1A:AF:F3:59:45:C1:B4:E4:54:53","sha256":"05:B7:B7:61:D4:AF:77:95:8E:9B:83:B4:87:5D:16:DB:8D:ED:82:C3:3F:D8:7A:FA:37:B8:84:76:91:78:94:6B"}}},"request":{"raw":"GET /track.php?t=1f3554ecd46a7aa0d1d8a7dda4d339d6\u0026collect=1\u0026u=https%3A%2F%2Fcasinogiris.one%2F\u0026ti=Casino%20Giri%C5%9F%20-%20H%C4%B1zl%C4%B1%20ve%20G%C3%BCvenli%20URL%20K%C4%B1saltma%20Servisi\u0026r=\u0026sw=1280\u0026sh=1024\u0026l=en-US HTTP/1.1\r\nHost: statz.aatoolz.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casinogiris.one/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 30 May 2026 12:28:29 GMT\r\nServer: Apache\r\nAccess-Control-Allow-Origin: *\r\nCache-Control: no-cache, no-store, must-revalidate\r\nX-Content-Type-Options: nosniff\r\nX-Frame-Options: SAMEORIGIN\r\nX-XSS-Protection: 1; mode=block\r\nKeep-Alive: timeout=5, max=99\r\nConnection: Keep-Alive\r\nTransfer-Encoding: chunked\r\nContent-Type: image/gif\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":42,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 1 x 1","md5":"d89746888da2d9510b64a9f031eaecd5","sha1":"d5fceb6532643d0d84ffe09c40c481ecdf59e15a","sha256":"ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629","sha512":"d5da26b5d496edb0221df1a4057a8b0285d15592a8f8dc7016a294df37ed335f3fde6a2252962e0df38b62847f8b771463a0124ef3f84299f262ed9d9d3cee4c","ssdeep":"","tlshash":"c4900023fa808000c3a8c2300a0b238a2b8c80200a28030b80ae208cec3a3a22c03020","first_seen":"2023-04-05T02:54:03Z","last_seen":"2026-06-06T21:10:55.90306Z","times_seen":939321,"resource_available":true,"data":null}},"time_used":97,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":97,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"casinogiris.one/assets/images/apple-touch-icon-180x180.png","fqdn":"casinogiris.one","domain":"casinogiris.one","tld":"one"},"ip":{"addr":"15.235.115.30","port":443,"asn":16276,"as":"OVH SAS","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://casinogiris.one/","date":"2026-05-30T12:28:29.441Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"casinogiris.one","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 06:26:03 GMT","end":"Fri, 28 Aug 2026 06:26:02 GMT"},"fingerprint":{"sha1":"EB:BD:C2:8E:C8:83:29:BC:EA:37:DE:C8:63:9E:89:0E:34:31:34:C3","sha256":"40:0E:28:1C:2D:AC:02:19:46:0F:F2:38:DF:11:03:1B:2E:31:50:6D:CB:34:DC:3F:E4:AF:CB:43:BB:D7:05:79"}}},"request":{"raw":"GET /assets/images/apple-touch-icon-180x180.png HTTP/1.1\r\nHost: casinogiris.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casinogiris.one/\r\nCookie: PHPSESSID=ac2397c4cb570780448319dd5a1b3158\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 30 May 2026 12:28:29 GMT\r\nServer: Apache\r\nLast-Modified: Sat, 30 May 2026 07:16:42 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 5213\r\nCache-Control: max-age=2592000\r\nExpires: Mon, 29 Jun 2026 12:28:29 GMT\r\nX-Content-Type-Options: nosniff\r\nX-Frame-Options: SAMEORIGIN\r\nKeep-Alive: timeout=5, max=98\r\nConnection: Keep-Alive\r\nContent-Type: image/png\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":5213,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced","md5":"8c70d1030571411fcfc96d030fb7b701","sha1":"23c45de10a2f0dc5d57edb0da41fd16c01e362a0","sha256":"9d751ac82589605388cd78f49cb428ce47d8745fba277a80151b16c175a858b5","sha512":"52dd5f2165753c4cefbd8d1e4d6b7e10f803c50c28bc160d3420e42af8f456cceaed0a4d0fbecc8380bab5da37e1759978ca2f486c4b130950ae28881ebbb295","ssdeep":"96:Y8IfqQS+SWHNHIBCVSX4JfwsLTZVO3tNlosptNKFApRlkrsdMC+kWFl+:YrSWH73wc/OnlosLUYDkw+C+kD","tlshash":"74b16d84e3380bfe51df71523766a92f62b81639cb2981797b61223130c939ca5c1d74","first_seen":"2026-05-30T12:24:47.943555Z","last_seen":"2026-05-30T18:31:16.703295Z","times_seen":4,"resource_available":false,"data":null}},"time_used":105,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":104,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"casinogiris.one","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"casinogiris.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"casinogiris.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"casinogiris.one/assets/js/main.js","fqdn":"casinogiris.one","domain":"casinogiris.one","tld":"one"},"ip":{"addr":"15.235.115.30","port":443,"asn":16276,"as":"OVH SAS","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://casinogiris.one/","date":"2026-05-30T12:28:28.743Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"casinogiris.one","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 06:26:03 GMT","end":"Fri, 28 Aug 2026 06:26:02 GMT"},"fingerprint":{"sha1":"EB:BD:C2:8E:C8:83:29:BC:EA:37:DE:C8:63:9E:89:0E:34:31:34:C3","sha256":"40:0E:28:1C:2D:AC:02:19:46:0F:F2:38:DF:11:03:1B:2E:31:50:6D:CB:34:DC:3F:E4:AF:CB:43:BB:D7:05:79"}}},"request":{"raw":"GET /assets/js/main.js HTTP/1.1\r\nHost: casinogiris.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casinogiris.one/\r\nCookie: PHPSESSID=ac2397c4cb570780448319dd5a1b3158\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 30 May 2026 12:28:28 GMT\r\nServer: Apache\r\nLast-Modified: Sat, 30 May 2026 07:16:52 GMT\r\nAccept-Ranges: bytes\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\nX-Content-Type-Options: nosniff\r\nX-Frame-Options: SAMEORIGIN\r\nContent-Length: 4100\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: text/javascript\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":12819,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, Unicode text, UTF-8 text","md5":"a4e574d75a7dc1c847fc22cf53bf5e96","sha1":"2183c3e4f0c0d65c51f8f78e889bcd2b1424dac7","sha256":"207162eb2efd2d5dfe60a4aa48281f753c813a5088fbe289227ef261ffa84f33","sha512":"f185c389a5f4634543f3ea2818507b17220a49b1d6ad29ee7d8cb426bd85a55650254ae1db634299667974623708cc1df708447d97b1d514dac536a7d19ab670","ssdeep":"192:MIgc4VnUyFpjpLsJndrMnTai7SVktXTzDQEi1HUaEu7TpDbTHD6a7svwITEclwVP:YjHnOVx9Kv9HmtmP7ag7bPqNFFMM","tlshash":"cc424258bebb25757553257e8faf5008b7b8e4032449d80abc8ce2c01fd591816b9ffa","first_seen":"2026-05-30T12:24:47.950828Z","last_seen":"2026-05-30T18:31:16.696845Z","times_seen":4,"resource_available":true,"data":null}},"time_used":518,"timings":{"blocked":208,"dns":1,"connect":95,"send":0,"wait":95,"receive":1,"ssl":114},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"casinogiris.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"casinogiris.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"casinogiris.one","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"casinogiris.one/assets/images/favicon.svg","fqdn":"casinogiris.one","domain":"casinogiris.one","tld":"one"},"ip":{"addr":"15.235.115.30","port":443,"asn":16276,"as":"OVH SAS","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://casinogiris.one/","date":"2026-05-30T12:28:29.442Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"casinogiris.one","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 06:26:03 GMT","end":"Fri, 28 Aug 2026 06:26:02 GMT"},"fingerprint":{"sha1":"EB:BD:C2:8E:C8:83:29:BC:EA:37:DE:C8:63:9E:89:0E:34:31:34:C3","sha256":"40:0E:28:1C:2D:AC:02:19:46:0F:F2:38:DF:11:03:1B:2E:31:50:6D:CB:34:DC:3F:E4:AF:CB:43:BB:D7:05:79"}}},"request":{"raw":"GET /assets/images/favicon.svg HTTP/1.1\r\nHost: casinogiris.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casinogiris.one/\r\nCookie: PHPSESSID=ac2397c4cb570780448319dd5a1b3158\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 30 May 2026 12:28:29 GMT\r\nServer: Apache\r\nLast-Modified: Sat, 30 May 2026 07:16:44 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 376\r\nCache-Control: max-age=2592000\r\nExpires: Mon, 29 Jun 2026 12:28:29 GMT\r\nX-Content-Type-Options: nosniff\r\nX-Frame-Options: SAMEORIGIN\r\nKeep-Alive: timeout=5, max=99\r\nConnection: Keep-Alive\r\nContent-Type: image/svg+xml\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":376,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"cd9eac579d0e14d71b53761964082da9","sha1":"07229730ba77e7d1b5b9c0edf3be545ad963f0b9","sha256":"00edca2ec03c44a5690926a49f3e3f07afb908e8063aad1a19236ff9098f554b","sha512":"748aea5dec80dd4e7c99efd5d1f634d117fba211835d3f43e7af8c67ea29aa17a5002f5f94275c42cb364b571fc45a48a283b9771f89e821fa5657b1e7e3f67a","ssdeep":"","tlshash":"b8e0680081c49b088b248d1a2f26fa59716be0c685c54f58f6dc6e231bcbad32a8338d","first_seen":"2026-05-30T12:24:47.944792Z","last_seen":"2026-05-30T18:31:16.707219Z","times_seen":4,"resource_available":false,"data":null}},"time_used":97,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":95,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"casinogiris.one","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"casinogiris.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"casinogiris.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"casinogiris.one/","fqdn":"casinogiris.one","domain":"casinogiris.one","tld":"one"},"ip":{"addr":"15.235.115.30","port":443,"asn":16276,"as":"OVH SAS","country":"Canada","country_code":"CA"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-05-30T12:28:28.238Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"casinogiris.one","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 06:26:03 GMT","end":"Fri, 28 Aug 2026 06:26:02 GMT"},"fingerprint":{"sha1":"EB:BD:C2:8E:C8:83:29:BC:EA:37:DE:C8:63:9E:89:0E:34:31:34:C3","sha256":"40:0E:28:1C:2D:AC:02:19:46:0F:F2:38:DF:11:03:1B:2E:31:50:6D:CB:34:DC:3F:E4:AF:CB:43:BB:D7:05:79"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: casinogiris.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 30 May 2026 12:28:28 GMT\r\nServer: Apache\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate\r\nPragma: no-cache\r\nSet-Cookie: PHPSESSID=ac2397c4cb570780448319dd5a1b3158; path=/\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\nX-Content-Type-Options: nosniff\r\nX-Frame-Options: SAMEORIGIN\r\nContent-Length: 3204\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=UTF-8\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":10749,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with CRLF, LF line terminators","md5":"5459634593a9118d8c934dbb26c9b1e7","sha1":"d3fc5b17b2e066985a0942d9d115996609e3e88f","sha256":"0884934ee7d6d8f2dbe8be25f49c4793285e9469ec3328d0c53ab5f367a75bd5","sha512":"ad564cf679687c0dda7dcec543f578e3b28b0321b279048b514c7d8f190d3dfc696a263287e7af224adf0591383cfa0f10e3204dc47fbdad8c0e4021f74ed1d2","ssdeep":"192:5BxLK3QqnuZP/T3zjO2Lzbh//2sIIhUIccNe1lJoQ8KT+hnYjte4w9:lhn1II1bNe1lHqnwhA","tlshash":"6a229411a0f9381b1662b2eaf71553bede93b143d91b261075ac46625fd2d93cc3323a","first_seen":"2026-05-30T12:24:47.947371Z","last_seen":"2026-05-30T18:31:16.692652Z","times_seen":4,"resource_available":true,"data":null}},"time_used":540,"timings":{"blocked":217,"dns":1,"connect":104,"send":0,"wait":105,"receive":0,"ssl":110},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"casinogiris.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"casinogiris.one","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"casinogiris.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Plus+Jakarta+Sans:wght@400;500;600;700;800\u0026family=Inter:wght@400;500;600\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"64.233.162.95","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://casinogiris.one/","date":"2026-05-30T12:28:28.740Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Thu, 07 May 2026 15:53:15 GMT","end":"Thu, 30 Jul 2026 15:53:14 GMT"},"fingerprint":{"sha1":"19:42:B0:56:3A:E4:79:BF:8B:69:E2:50:F4:76:BF:1E:A9:D7:7A:49","sha256":"D7:FF:C1:46:95:F3:5F:08:04:B0:E1:A8:FE:14:FC:60:19:58:D6:C7:D3:6E:82:B3:64:07:E9:E1:CB:9A:27:8C"}}},"request":{"raw":"GET /css2?family=Plus+Jakarta+Sans:wght@400;500;600;700;800\u0026family=Inter:wght@400;500;600\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casinogiris.one/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Sat, 30 May 2026 12:28:28 GMT\r\ndate: Sat, 30 May 2026 12:28:28 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":16101,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"ef3d91f2cec925bc4d1b5a15f8b38857","sha1":"98457fca462b5092f1d94e6579f9c5f4c456df7d","sha256":"e88c79270fac0b9f2ad88e52e340b5bb228f32e17dc5b8fb8679ce4c4f91d93e","sha512":"0f608e9dd62cfa874f23d7da2d864d2e83ea77900c690c90d0bdead74f11e470436bb6a1e93e001455fef8047f10cd7cdb3e07ec9e5e6db252ecf7983a6d86a3","ssdeep":"192:9NNIxO34OxDENOPCO3/Nx8NNryfO3iExl6CFJRSdCmaRBUCj3Ro7CcQRvSC5VRed:vXuM0pxdrF/0","tlshash":"7a72bd91042fa500eb831cc763cf7e3aae9e50956045c5b95ffd0c889caec2a6375b1d","first_seen":"2025-12-06T01:12:00.492045Z","last_seen":"2026-06-04T15:57:13.564946Z","times_seen":121,"resource_available":false,"data":null}},"time_used":168,"timings":{"blocked":70,"dns":1,"connect":14,"send":0,"wait":19,"receive":0,"ssl":61},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"statz.aatoolz.one/track.php?t=1f3554ecd46a7aa0d1d8a7dda4d339d6","fqdn":"statz.aatoolz.one","domain":"aatoolz.one","tld":"one"},"ip":{"addr":"15.235.115.30","port":443,"asn":16276,"as":"OVH SAS","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://casinogiris.one/","date":"2026-05-30T12:28:28.745Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.statz.aatoolz.one","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 01 May 2026 17:21:36 GMT","end":"Thu, 30 Jul 2026 17:21:35 GMT"},"fingerprint":{"sha1":"19:D3:23:6E:2F:32:56:7A:CE:C6:1A:AF:F3:59:45:C1:B4:E4:54:53","sha256":"05:B7:B7:61:D4:AF:77:95:8E:9B:83:B4:87:5D:16:DB:8D:ED:82:C3:3F:D8:7A:FA:37:B8:84:76:91:78:94:6B"}}},"request":{"raw":"GET /track.php?t=1f3554ecd46a7aa0d1d8a7dda4d339d6 HTTP/1.1\r\nHost: statz.aatoolz.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casinogiris.one/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 30 May 2026 12:28:29 GMT\r\nServer: Apache\r\nAccess-Control-Allow-Origin: *\r\nCache-Control: no-cache, no-store, must-revalidate\r\nX-Content-Type-Options: nosniff\r\nX-Frame-Options: SAMEORIGIN\r\nX-XSS-Protection: 1; mode=block\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nTransfer-Encoding: chunked\r\nContent-Type: application/javascript\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":583,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"d310810039f3e958d96fdec8edb9f0a6","sha1":"ca5e56b0ae97e3ab5f15788df1c20317e842e246","sha256":"29a4ee8fb2a0a6e55f178e4542275527f3b03aaaf9a9cc49ef92951776a6fded","sha512":"a782bc0ea703477b8ff57477016094595f81b4c5de5fd2e4fe1b7a6fa2621e3c1e26de80b9cbed8750baf4e8082167d08ca4849bb013bdf792a6bc38e045772d","ssdeep":"","tlshash":"60f050b456a390a17623609b319f674868b780433f1ad484354c55500fe6b361356bfa","first_seen":"2026-05-30T12:24:47.949926Z","last_seen":"2026-05-30T18:31:16.708377Z","times_seen":4,"resource_available":true,"data":null}},"time_used":551,"timings":{"blocked":223,"dns":0,"connect":98,"send":0,"wait":99,"receive":0,"ssl":128},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"casinogiris.one/assets/css/main.css","fqdn":"casinogiris.one","domain":"casinogiris.one","tld":"one"},"ip":{"addr":"15.235.115.30","port":443,"asn":16276,"as":"OVH SAS","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://casinogiris.one/","date":"2026-05-30T12:28:28.742Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"casinogiris.one","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 06:26:03 GMT","end":"Fri, 28 Aug 2026 06:26:02 GMT"},"fingerprint":{"sha1":"EB:BD:C2:8E:C8:83:29:BC:EA:37:DE:C8:63:9E:89:0E:34:31:34:C3","sha256":"40:0E:28:1C:2D:AC:02:19:46:0F:F2:38:DF:11:03:1B:2E:31:50:6D:CB:34:DC:3F:E4:AF:CB:43:BB:D7:05:79"}}},"request":{"raw":"GET /assets/css/main.css HTTP/1.1\r\nHost: casinogiris.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casinogiris.one/\r\nCookie: PHPSESSID=ac2397c4cb570780448319dd5a1b3158\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 30 May 2026 12:28:28 GMT\r\nServer: Apache\r\nLast-Modified: Sat, 30 May 2026 07:16:40 GMT\r\nAccept-Ranges: bytes\r\nCache-Control: max-age=604800\r\nExpires: Sat, 06 Jun 2026 12:28:28 GMT\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\nX-Content-Type-Options: nosniff\r\nX-Frame-Options: SAMEORIGIN\r\nContent-Length: 6239\r\nKeep-Alive: timeout=5, max=99\r\nConnection: Keep-Alive\r\nContent-Type: text/css\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":28279,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text","md5":"9727e2e5881a66b9584a118a8a7c5741","sha1":"0386506c099da1e8e6ca678c95aadbb1b3fffcfe","sha256":"ad9d8f5613129fae4ccd3a647c9f45315340513f9e18c0c142e567e4a5441b77","sha512":"b2814b5f624580adf1bd73a89a7e6665732f2fb7c76c1492258f6c7158d5114d8bf4e7a45c3fe1fcac113f918d72a881fd854742e3fe3124c59ed89c8eada4a8","ssdeep":"768:6C4vlw18I1O7Q4PLpBGamttNyzQFRIPyjpk+T:V1mQ4WaYN","tlshash":"b0c296e57a22e238bc37e964678d96ed32546416cc3bd7fdfa91a01888c77f21a1170c","first_seen":"2026-05-30T12:24:47.945724Z","last_seen":"2026-05-30T18:31:16.694793Z","times_seen":4,"resource_available":false,"data":null}},"time_used":106,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":105,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"casinogiris.one","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"casinogiris.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"casinogiris.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"173.194.220.94","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://casinogiris.one/","date":"2026-05-30T12:28:28.924Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Thu, 07 May 2026 15:53:13 GMT","end":"Thu, 30 Jul 2026 15:53:12 GMT"},"fingerprint":{"sha1":"6C:B9:FE:19:9C:7C:AA:5D:D2:39:3A:16:2C:50:FB:C8:59:C8:CC:A8","sha256":"FC:4C:0C:6E:AB:D1:82:30:1F:A9:46:DF:FA:38:02:9F:06:56:FF:98:E0:8D:AB:9A:26:C3:2A:97:C5:CF:A6:1C"}}},"request":{"raw":"GET /s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://casinogiris.one\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 48532\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Fri, 29 May 2026 14:00:32 GMT\r\nexpires: Sat, 29 May 2027 14:00:32 GMT\r\ncache-control: public, max-age=31536000\r\nage: 80877\r\nlast-modified: Tue, 09 Sep 2025 18:33:50 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":48532,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 48532, version 1.0","md5":"225835e6e0496c54dc2aca9f3d533892","sha1":"942ef5298bbe74bfe44e445def5f2bfc94027fa8","sha256":"acc60d454f46f2ba233c516aa3299aa60e1f49ffd0f06b8392a7c772a5694087","sha512":"ea2ff96ed5ac965c1846b4b33990beab3d4ced66806fa44321f5dd59d9a29a8ae1a67a5816d40165af8a896677b6a24bb74ea6db53cd5e686080165db9fd62c2","ssdeep":"768:b9tYsJ6BxVEpu8sqEkvfXRGEBqH7KxpxA07hQv2bSokjQx2AOWUVOv7UeFHOpIsR:LsEcy7fXRGqqHmr7qv32UC7UetOGLkF","tlshash":"03230178cf9f85b3d33b153afaf4d20562a9067de76c4a803831051a2a55770b89dc0e","first_seen":"2025-05-29T17:27:56.345238Z","last_seen":"2026-06-06T21:13:23.798722Z","times_seen":205207,"resource_available":false,"data":null}},"time_used":265,"timings":{"blocked":99,"dns":1,"connect":30,"send":0,"wait":60,"receive":2,"ssl":65},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa25L7W0I5nvwUgHU.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"173.194.220.94","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://casinogiris.one/","date":"2026-05-30T12:28:28.932Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Thu, 07 May 2026 15:53:13 GMT","end":"Thu, 30 Jul 2026 15:53:12 GMT"},"fingerprint":{"sha1":"6C:B9:FE:19:9C:7C:AA:5D:D2:39:3A:16:2C:50:FB:C8:59:C8:CC:A8","sha256":"FC:4C:0C:6E:AB:D1:82:30:1F:A9:46:DF:FA:38:02:9F:06:56:FF:98:E0:8D:AB:9A:26:C3:2A:97:C5:CF:A6:1C"}}},"request":{"raw":"GET /s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa25L7W0I5nvwUgHU.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://casinogiris.one\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 84924\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sat, 30 May 2026 06:36:02 GMT\r\nexpires: Sun, 30 May 2027 06:36:02 GMT\r\ncache-control: public, max-age=31536000\r\nage: 21147\r\nlast-modified: Tue, 09 Sep 2025 18:33:55 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":84924,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 84924, version 1.0","md5":"f5b588b5cfef2173838149769c8a0269","sha1":"5312086a01f8e8299094ddee5819b9727a19cae2","sha256":"b8811a6cd6f7e0707dfc9e9e6f1daf5f6f450b51e887e163945a9ade91c2720f","sha512":"05d5271c633bbe102775c0b6df9c5e110dae3a2517061714bb5c26ec66a00f8e1b62961135ec96962e7ccaf3942d8e32bd86f42558cbac8ee16ff6c333117886","ssdeep":"1536:PABWz4rSN/GzH27xN5UR1OnX+uyRsd1osLZBi/JGyQI01xDj+C:PAG4rCGa7L5UR1OnX+fGd/VB03QI+xP","tlshash":"378302b4ae71b3968f1c7fe46396273c2a7bdf41053950aeae44e16787f00dba148784","first_seen":"2025-05-29T19:39:57.235915Z","last_seen":"2026-06-06T20:24:14.374476Z","times_seen":15594,"resource_available":false,"data":null}},"time_used":212,"timings":{"blocked":76,"dns":1,"connect":15,"send":0,"wait":16,"receive":36,"ssl":61},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"173.194.220.94","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://casinogiris.one/","date":"2026-05-30T12:28:28.938Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Thu, 07 May 2026 15:53:13 GMT","end":"Thu, 30 Jul 2026 15:53:12 GMT"},"fingerprint":{"sha1":"6C:B9:FE:19:9C:7C:AA:5D:D2:39:3A:16:2C:50:FB:C8:59:C8:CC:A8","sha256":"FC:4C:0C:6E:AB:D1:82:30:1F:A9:46:DF:FA:38:02:9F:06:56:FF:98:E0:8D:AB:9A:26:C3:2A:97:C5:CF:A6:1C"}}},"request":{"raw":"GET /s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://casinogiris.one\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 48532\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Fri, 29 May 2026 14:00:32 GMT\r\nexpires: Sat, 29 May 2027 14:00:32 GMT\r\ncache-control: public, max-age=31536000\r\nage: 80877\r\nlast-modified: Tue, 09 Sep 2025 18:33:50 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":48532,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 48532, version 1.0","md5":"225835e6e0496c54dc2aca9f3d533892","sha1":"942ef5298bbe74bfe44e445def5f2bfc94027fa8","sha256":"acc60d454f46f2ba233c516aa3299aa60e1f49ffd0f06b8392a7c772a5694087","sha512":"ea2ff96ed5ac965c1846b4b33990beab3d4ced66806fa44321f5dd59d9a29a8ae1a67a5816d40165af8a896677b6a24bb74ea6db53cd5e686080165db9fd62c2","ssdeep":"768:b9tYsJ6BxVEpu8sqEkvfXRGEBqH7KxpxA07hQv2bSokjQx2AOWUVOv7UeFHOpIsR:LsEcy7fXRGqqHmr7qv32UC7UetOGLkF","tlshash":"03230178cf9f85b3d33b153afaf4d20562a9067de76c4a803831051a2a55770b89dc0e","first_seen":"2025-05-29T17:27:56.345238Z","last_seen":"2026-06-06T21:13:23.798722Z","times_seen":205207,"resource_available":false,"data":null}},"time_used":213,"timings":{"blocked":74,"dns":1,"connect":20,"send":0,"wait":61,"receive":4,"ssl":46},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/plusjakartasans/v12/LDIoaomQNQcsA88c7O9yZ4KMCoOg4Ko20yyghfvaZ-E.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"173.194.220.94","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://casinogiris.one/","date":"2026-05-30T12:28:28.943Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Thu, 07 May 2026 15:53:13 GMT","end":"Thu, 30 Jul 2026 15:53:12 GMT"},"fingerprint":{"sha1":"6C:B9:FE:19:9C:7C:AA:5D:D2:39:3A:16:2C:50:FB:C8:59:C8:CC:A8","sha256":"FC:4C:0C:6E:AB:D1:82:30:1F:A9:46:DF:FA:38:02:9F:06:56:FF:98:E0:8D:AB:9A:26:C3:2A:97:C5:CF:A6:1C"}}},"request":{"raw":"GET /s/plusjakartasans/v12/LDIoaomQNQcsA88c7O9yZ4KMCoOg4Ko20yyghfvaZ-E.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://casinogiris.one\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 27236\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sat, 30 May 2026 07:31:10 GMT\r\nexpires: Sun, 30 May 2027 07:31:10 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Tue, 09 Sep 2025 18:38:58 GMT\r\ncontent-type: font/woff2\r\nage: 17839\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":27236,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 27236, version 1.0","md5":"a8c28b27501f763423d96717c43243df","sha1":"e845ac57b3fee2c68ec6cdb95114ef3541fa3d11","sha256":"b6698c39332c51112c720e8a92608b4eeed502f654b63fc1693b8cccfc856d4d","sha512":"3e3af79fd415b3e4d3cbcd7f9bce2a7fa5c09b1ad5a38c6f2e971852c7973eae1b8ac85a4664f8c7af34f6c489f563cc35f82aecd32b1be8af70ce2612b0e3d3","ssdeep":"384:TOfiFJZpa1LuoEeC5s2xCWnEgdMqCF+FSe5LuxyrPyP2hbgBizhxCvw9k3kwA0y2:XW1l+s2xC8LSs2P2yitawWU50Z","tlshash":"f5c2e0676b05362dbcc47380135b8f262a5071b5566cca61787bef4e3a9b03a903cba5","first_seen":"2025-06-03T19:01:05.870661Z","last_seen":"2026-06-06T20:43:14.649283Z","times_seen":13336,"resource_available":false,"data":null}},"time_used":221,"timings":{"blocked":78,"dns":1,"connect":20,"send":0,"wait":57,"receive":2,"ssl":49},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}