Overview

URL bc.vc/ucyfJTW
IP104.28.30.81
ASNAS13335 CloudFlare, Inc.
Location United States
Report completed2018-06-08 16:57:01 CEST
StatusLoading report..
urlQuery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 104.28.30.81

Date UQ / IDS / BL URL IP
2018-06-20 21:09:50 +0200
0 - 0 - 1 www.vidaplaystation.com.br/took/dropbox/us-mg (...) 104.28.30.81
2018-06-20 20:07:23 +0200
0 - 0 - 1 www.vidaplaystation.com.br/took/dropbox/us-mg (...) 104.28.30.81
2018-05-31 00:14:24 +0200
0 - 0 - 1 bc.vc/4847/http:/turbobit.net/edmsu3xrx5wo/id (...) 104.28.30.81
2018-05-29 22:47:15 +0200
0 - 0 - 1 bc.vc/YLS5c7 104.28.30.81
2018-05-23 13:54:05 +0200
0 - 0 - 0 bc.vc/Q7a4LQJ 104.28.30.81
2018-03-31 14:47:25 +0200
0 - 1 - 0 bc.vc/xDNpJNC 104.28.30.81
2018-03-07 06:17:16 +0100
0 - 0 - 0 bc.vc/rA6E8xm 104.28.30.81
2018-01-08 09:47:25 +0100
0 - 0 - 1 bc.vc/25091/http:/ul.to/cy1yzhdx 104.28.30.81
2018-01-06 05:10:03 +0100
0 - 0 - 1 bc.vc/6OUNms 104.28.30.81
2018-01-05 10:11:13 +0100
0 - 0 - 1 bc.vc/8jCp7oDAILY 104.28.30.81

Last 10 reports on ASN: AS13335 CloudFlare, Inc.

Date UQ / IDS / BL URL IP
2018-11-16 11:09:02 +0100
0 - 1 - 0 https://n-a-s-p-d.pw/e29481e9-a792-46a8-bbf0- (...) 104.31.64.120
2018-11-16 11:07:58 +0100
0 - 0 - 0 https://www.theknot.com/us/italy-vs-australia (...) 104.16.208.249
2018-11-16 11:02:39 +0100
0 - 0 - 1 www.kernsafe.com/product/totalmounter.aspx 104.24.29.20
2018-11-16 10:42:29 +0100
0 - 0 - 0 burt.ns.cloudflare.com/ 173.245.59.79
2018-11-16 10:39:37 +0100
0 - 0 - 0 ocsp.globalsign.com 104.18.21.226
2018-11-16 10:38:57 +0100
0 - 0 - 0 https://www.theknot.com/us/france-vs-argentin (...) 104.16.208.249
2018-11-16 10:30:27 +0100
0 - 0 - 0 nina.ns.cloudflare.com/ 173.245.58.136
2018-11-16 10:29:25 +0100
0 - 2 - 0 https://etodoro.ga/mypush1/index-redir3-adult (...) 104.18.41.212
2018-11-16 10:27:26 +0100
0 - 0 - 1 https://tinyurl.com/ybwnw4to 104.20.218.42
2018-11-16 10:25:53 +0100
0 - 0 - 0 https://www.theknot.com/us/scotland-vs-south- (...) 104.16.209.249

Last 10 reports on domain: bc.vc

Date UQ / IDS / BL URL IP
2018-11-08 21:21:16 +0100
0 - 0 - 0 bc.vc/fly/ajax.php?wds=50f1cfb53414785befcbe0 (...) 172.64.202.12
2018-10-05 07:41:48 +0200
0 - 0 - 1 bc.vc/Na7Tv8L 104.18.42.124
2018-08-15 16:29:44 +0200
0 - 0 - 0 bc.vc/82Vtjs1 172.64.161.8
2018-08-02 18:10:46 +0200
0 - 0 - 0 bc.vc/82Vtjs1 104.27.129.229
2018-07-26 08:22:19 +0200
0 - 0 - 1 bc.vc/qlZN0E 172.64.136.7
2018-06-27 18:07:31 +0200
2 - 0 - 0 bc.vc/JfF1m3P 104.27.170.229
2018-05-31 00:14:24 +0200
0 - 0 - 1 bc.vc/4847/http:/turbobit.net/edmsu3xrx5wo/id (...) 104.28.30.81
2018-05-30 18:57:53 +0200
0 - 0 - 1 bc.vc/F0745I 104.28.31.81
2018-05-29 22:47:15 +0200
0 - 0 - 1 bc.vc/YLS5c7 104.28.30.81
2018-05-29 14:05:32 +0200
0 - 0 - 1 bc.vc/oYEWFr 104.28.31.81


JavaScript

Executed Scripts (20)


Executed Evals (5)

#1 JavaScript::Eval (size: 265, repeated: 1) - SHA256: fdd2120c37da9ce7a58d96be9ef6cb106c1040561b6801c70718faf6fc342e8c

                                        ({
    'bg': [-50, -50, 50, 115],
    '0': [-135, -147, 20, 14],
    '1': [-135, -135, 20, 9],
    '2': [-135, -117, 20, 13],
    '3': [-135, -100, 20, 14],
    '4': [-135, -84, 20, 15],
    '5': [-135, -70, 20, 13],
    '6': [-135, -53, 20, 15],
    '7': [-135, -38, 20, 14],
    '8': [-135, -23, 20, 14],
    '9': [-135, -7, 20, 15],
    ',': [-135, 0, 23, 7]
})
                                    

#2 JavaScript::Eval (size: 264, repeated: 1) - SHA256: 39579f75bcf62085fff19d2e37ddf70e9cf240fdb343e46ee527e3521ab5bb7c

                                        ({
    'bg': [0, -50, 50, 115],
    '0': [-115, 0, 20, 14],
    '1': [-115, -17, 20, 9],
    '2': [-115, -31, 20, 13],
    '3': [-115, -47, 20, 13],
    '4': [-115, -62, 20, 15],
    '5': [-115, -78, 20, 13],
    '6': [-115, -93, 20, 15],
    '7': [-115, -109, 20, 14],
    '8': [-115, -124, 20, 14],
    '9': [-115, -139, 20, 15],
    ',': [-112, -154, 23, 7]
})
                                    

#3 JavaScript::Eval (size: 262, repeated: 1) - SHA256: ff0504e3bd7c9ca7030953a039cc9622891cd31e22cedc2c9d33f8bbb607c74f

                                        ({
    'bg': [0, 0, 115, 50],
    '0': [0, -165, 14, 20],
    '1': [-17, -165, 9, 20],
    '2': [-31, -165, 14, 20],
    '3': [-47, -165, 13, 20],
    '4': [-62, -165, 15, 20],
    '5': [-78, -165, 13, 20],
    '6': [-93, -165, 15, 20],
    '7': [-109, -165, 14, 20],
    '8': [-124, -165, 14, 20],
    '9': [-139, -165, 15, 20],
    ',': [-102, -131, 7, 23]
})
                                    

#4 JavaScript::Eval (size: 5258, repeated: 1) - SHA256: 847f6a895681edae9f59251c842a9184de97150e61648bfc22fff5bf6b869622

                                        function QCDone(d) {
    try {
        document.getElementById('ci_SW').value = d.SW
    } catch (e) {}
    try {
        document.getElementById('ci_SH').value = d.SH
    } catch (e) {}
    try {
        document.getElementById('ci_SAH').value = d.SAH
    } catch (e) {}
    try {
        document.getElementById('ci_WX').value = d.WX
    } catch (e) {}
    try {
        document.getElementById('ci_WY').value = d.WY
    } catch (e) {}
    try {
        document.getElementById('ci_WW').value = d.WW
    } catch (e) {}
    try {
        document.getElementById('ci_WH').value = d.WH
    } catch (e) {}
    try {
        document.getElementById('ci_CW').value = d.CW
    } catch (e) {}
    try {
        document.getElementById('ci_WIW').value = d.WIW
    } catch (e) {}
    try {
        document.getElementById('ci_WIH').value = d.WIH
    } catch (e) {}
    try {
        document.getElementById('ci_WFC').value = d.WFC
    } catch (e) {}
    try {
        document.getElementById('ci_PL').value = d.PL
    } catch (e) {}
    try {
        document.getElementById('ci_DRF').value = d.DRF
    } catch (e) {}
    try {
        document.getElementById('ci_NP').value = d.NP
    } catch (e) {}
    try {
        document.getElementById('ci_PT').value = d.PT
    } catch (e) {}
    try {
        document.getElementById('ci_NB').value = d.NB
    } catch (e) {}
    try {
        document.getElementById('ci_NG').value = d.NG
    } catch (e) {}
    try {
        document.getElementById('ci_DM').value = d.DM
    } catch (e) {}
    try {
        document.getElementById('ci_CF').value = d.CF
    } catch (e) {}
    try {
        document.getElementById('ci_NW').value = d.NW
    } catch (e) {}
}
var QC = {};
try {
    QC.SW = window.screen.width;
    QC.SH = window.screen.height
} catch (e) {
    QC.SW = -1;
    QC.SH = -1
}
try {
    QC.SAH = window.screen.availHeight
} catch (e) {
    QC.SAH = -1
}
try {
    QC.WX = window.screenX;
    QC.WY = window.screenY
} catch (e) {
    QC.WX = -1;
    QC.WY = -1
}
try {
    QC.WW = window.outerWidth;
    QC.WH = window.outerHeight
} catch (e) {
    QC.WW = -1;
    QC.WH = -1
}
try {
    QC.WIW = window.innerWidth;
    QC.WIH = window.innerHeight
} catch (e) {
    QC.WIW = -1;
    QC.WIH = -1
}
try {
    QC.CW = document.documentElement.clientWidth
} catch (e) {
    QC.CW = -1
}
try {
    QC.WFC = window.top.frames.length
} catch (e) {
    QC.WFC = -1
}
try {
    QC.PL = document.location.href
} catch (e) {
    QC.PL = ''
}
try {
    QC.DRF = document.referrer
} catch (e) {
    QC.DRF = ''
}
try {
    QC.NP = (!(navigator.plugins instanceof PluginArray) || navigator.plugins.length == 0) ? 0 : 1
} catch (e) {
    QC.NP = -1
}
try {
    QC.PT = window.callPhantom !== undefined || window._phantom !== undefined ? 1 : 0
} catch (e) {
    QC.PT = -1
}
try {
    QC.NB = typeof navigator.sendBeacon === "function" ? 1 : 0
} catch (e) {
    QC.NB = -1
}
try {
    QC.NG = navigator.geolocation !== undefined ? 1 : 0
} catch (e) {
    QC.NG = -1
}
try {
    QC.NW = 'webdriver' in navigator ? 1 : 0
} catch (e) {
    QC.NW = -1
}
QC.CF = 0;
try {
    var FlashDetect = new function() {
        var self = this;
        self.installed = false;
        self.raw = "";
        self.major = -1;
        self.minor = -1;
        self.revision = -1;
        self.revisionStr = "";
        var activeXDetectRules = [{
            "name": "ShockwaveFlash.ShockwaveFlash.7",
            "version": function(obj) {
                return getActiveXVersion(obj)
            }
        }, {
            "name": "ShockwaveFlash.ShockwaveFlash.6",
            "version": function(obj) {
                var version = "6,0,21";
                try {
                    obj.AllowScriptAccess = "always";
                    version = getActiveXVersion(obj)
                } catch (err) {}
                return version
            }
        }, {
            "name": "ShockwaveFlash.ShockwaveFlash",
            "version": function(obj) {
                return getActiveXVersion(obj)
            }
        }];
        var getActiveXVersion = function(activeXObj) {
            var version = -1;
            try {
                version = activeXObj.GetVariable("\$version")
            } catch (err) {}
            return version
        };
        var getActiveXObject = function(name) {
            var obj = -1;
            try {
                obj = new ActiveXObject(name)
            } catch (err) {
                obj = {
                    activeXError: true
                }
            }
            return obj
        };
        var parseActiveXVersion = function(str) {
            var versionArray = str.split(",");
            return {
                "raw": str,
                "major": parseInt(versionArray[0].split(" ")[1], 10),
                "minor": parseInt(versionArray[1], 10),
                "revision": parseInt(versionArray[2], 10),
                "revisionStr": versionArray[2]
            }
        };
        var parseStandardVersion = function(str) {
            var descParts = str.split(/ +/);
            var majorMinor = descParts[2].split(/\./);
            var revisionStr = descParts[3];
            return {
                "raw": str,
                "major": parseInt(majorMinor[0], 10),
                "minor": parseInt(majorMinor[1], 10),
                "revisionStr": revisionStr,
                "revision": parseRevisionStrToInt(revisionStr)
            }
        };
        var parseRevisionStrToInt = function(str) {
            return parseInt(str.replace(/[a-zA-Z]/g, ""), 10) || self.revision
        };
        self.majorAtLeast = function(version) {
            return self.major >= version
        };
        self.minorAtLeast = function(version) {
            return self.minor >= version
        };
        self.revisionAtLeast = function(version) {
            return self.revision >= version
        };
        self.versionAtLeast = function(major) {
            var properties = [self.major, self.minor, self.revision];
            var len = Math.min(properties.length, arguments.length);
            for (i = 0; i < len; i++) {
                if (properties[i] >= arguments[i]) {
                    if (i + 1 < len && properties[i] == arguments[i]) {
                        continue
                    } else {
                        return true
                    }
                } else {
                    return false
                }
            }
        };
        self.FlashDetect = function() {
            if (navigator.plugins && navigator.plugins.length > 0) {
                var type = 'application/x-shockwave-flash';
                var mimeTypes = navigator.mimeTypes;
                if (mimeTypes && mimeTypes[type] && mimeTypes[type].enabledPlugin && mimeTypes[type].enabledPlugin.description) {
                    var version = mimeTypes[type].enabledPlugin.description;
                    var versionObj = parseStandardVersion(version);
                    self.raw = versionObj.raw;
                    self.major = versionObj.major;
                    self.minor = versionObj.minor;
                    self.revisionStr = versionObj.revisionStr;
                    self.revision = versionObj.revision;
                    self.installed = true
                }
            } else if (navigator.appVersion.indexOf("Mac") == -1 && window.execScript) {
                var version = -1;
                for (var i = 0; i < activeXDetectRules.length && version == -1; i++) {
                    var obj = getActiveXObject(activeXDetectRules[i].name);
                    if (!obj.activeXError) {
                        self.installed = true;
                        version = activeXDetectRules[i].version(obj);
                        if (version != -1) {
                            var versionObj = parseActiveXVersion(version);
                            self.raw = versionObj.raw;
                            self.major = versionObj.major;
                            self.minor = versionObj.minor;
                            self.revision = versionObj.revision;
                            self.revisionStr = versionObj.revisionStr
                        }
                    }
                }
            }
        }()
    };
    if (FlashDetect.major > 0) {
        QC.CF = 1
    }
} catch (e) {
    QC.CF = 2
}
try {
    QCDone(QC)
} catch (e) {
    console.log(e)
}
                                    

#5 JavaScript::Eval (size: 20, repeated: 1) - SHA256: e9776e2e5c0dc6ace2f77bc3e2447b8e591fe28648279c789e2e93c8f0e6dd15

                                        wid.style. = '-50px'
                                    

Executed Writes (0)



HTTP Transactions (54)


Request Response
                                        
                                            GET /ucyfJTW HTTP/1.1 
Host: bc.vc
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         104.28.30.81
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Fri, 08 Jun 2018 14:56:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=d73b19054e6df3b36d5928d1a30fa4f7d1528469789; expires=Sat, 08-Jun-19 14:56:29 GMT; path=/; domain=.bc.vc; HttpOnly _kei_=1; expires=Fri, 08-Jun-2018 21:00:00 GMT; Max-Age=22049; path=/
X-Powered-By: PHP/5.6.30-0+deb8u1
X-Frame-Options: allowall
Server: cloudflare
CF-RAY: 427c34956136428b-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2467
Md5:    1b444e3833f500f8cab8e34cbc659a73
Sha1:   9449554abdcdc346cffe1d4bb858963e5d701f8b
Sha256: dc58cc793e2d11f0baadbf7db5768f07e67123ed76914472f6ad31128222a6a8
                                        
                                            GET /css/style.css HTTP/1.1 
Host: bc.vc
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://bc.vc/ucyfJTW
Cookie: __cfduid=d73b19054e6df3b36d5928d1a30fa4f7d1528469789; _kei_=1

                                         
                                         104.28.30.81
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 08 Jun 2018 14:56:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 11 Jun 2017 22:21:04 GMT
X-Frame-Options: allowall
Content-Encoding: gzip
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Fri, 08 Jun 2018 18:56:29 GMT
Cache-Control: public, max-age=14400
Server: cloudflare
CF-RAY: 427c3496b16d428b-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3507
Md5:    8d13d760c79cb30c922dad80630de0b1
Sha1:   b60fbdc05b6a65d27ea4b15661c4465bf5bed53b
Sha256: f710dd2a34b844c40038729c023bfdd9d10c591dfb89ca9d763c403267444335
                                        
                                            GET /css/kfk.css HTTP/1.1 
Host: bc.vc
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://bc.vc/ucyfJTW
Cookie: __cfduid=d73b19054e6df3b36d5928d1a30fa4f7d1528469789; _kei_=1

                                         
                                         104.28.30.81
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 08 Jun 2018 14:56:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 02 May 2017 09:18:39 GMT
Etag: W/"59084eef-cd"
X-Frame-Options: allowall
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Fri, 08 Jun 2018 18:56:29 GMT
Cache-Control: public, max-age=14400
Server: cloudflare
CF-RAY: 427c3496e63d4285-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   167
Md5:    934d36587f2ff7e50eb47d5b51ee9217
Sha1:   e5ff1e021825f7f4b36d0006f7a348390b4bac8d
Sha256: 1abc04c11016d45b3c780663a0dd98c94d55292342ccbee810867afea87c1058
                                        
                                            GET /css/bottom.css HTTP/1.1 
Host: bc.vc
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://bc.vc/ucyfJTW
Cookie: __cfduid=d73b19054e6df3b36d5928d1a30fa4f7d1528469789; _kei_=1

                                         
                                         104.28.30.81
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 08 Jun 2018 14:56:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 02 May 2017 09:18:39 GMT
Etag: W/"59084eef-be"
X-Frame-Options: allowall
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Fri, 08 Jun 2018 18:56:29 GMT
Cache-Control: public, max-age=14400
Server: cloudflare
CF-RAY: 427c3496e64a4279-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   164
Md5:    d18b8a7db9c4102ece48efa83e2325d4
Sha1:   b14fa13bf0dad94da67b86dca4527626764bd489
Sha256: 98ca1375c7d3c455d1f1a59140ae975c42f5fb55af305821e80a63215cfce659
                                        
                                            GET /js/jquery.min.js HTTP/1.1 
Host: bc.vc
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://bc.vc/ucyfJTW
Cookie: __cfduid=d73b19054e6df3b36d5928d1a30fa4f7d1528469789; _kei_=1

                                         
                                         104.28.30.81
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Fri, 08 Jun 2018 14:56:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 02 May 2017 09:18:43 GMT
X-Frame-Options: allowall
Content-Encoding: gzip
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Fri, 08 Jun 2018 18:56:29 GMT
Cache-Control: public, max-age=14400
Server: cloudflare
CF-RAY: 427c3496e1e54273-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   27176
Md5:    b9ce259ec1665a1caa6e1fadd5d7358a
Sha1:   f930485641cff5f09af81a791786700dee43d726
Sha256: 810ddeea370d274695632e621706b196fdf13f5ca47a9413cc7a47060321dce7
                                        
                                            GET /js/app.v5.js HTTP/1.1 
Host: bc.vc
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://bc.vc/ucyfJTW
Cookie: __cfduid=d73b19054e6df3b36d5928d1a30fa4f7d1528469789; _kei_=1

                                         
                                         104.28.30.81
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Fri, 08 Jun 2018 14:56:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 07 Aug 2017 14:31:23 GMT
X-Frame-Options: allowall
Content-Encoding: gzip
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Fri, 08 Jun 2018 18:56:29 GMT
Cache-Control: public, max-age=14400
Server: cloudflare
CF-RAY: 427c3497965f4285-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   655
Md5:    f8665607f296ec743e9c5a379725d125
Sha1:   beda4bf37aba5bec796ff1a6a7eff356522cb0b1
Sha256: ff841edc0e86149dfb92734a63866405293f89e95252eccd6d52a813b5fd00c5
                                        
                                            GET /js/po_v7.min.js?v=1 HTTP/1.1 
Host: bc.vc
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://bc.vc/ucyfJTW
Cookie: __cfduid=d73b19054e6df3b36d5928d1a30fa4f7d1528469789; _kei_=1

                                         
                                         104.28.30.81
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Fri, 08 Jun 2018 14:56:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 24 May 2018 13:49:45 GMT
X-Frame-Options: allowall
Content-Encoding: gzip
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Fri, 08 Jun 2018 18:56:29 GMT
Cache-Control: public, max-age=14400
Server: cloudflare
CF-RAY: 427c349796734279-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1824
Md5:    d7afe926642793b9edfedb2fadebc7cc
Sha1:   0404457ddcb67cb3b82ac22adc36d293556f2714
Sha256: 196d7dc12f4cef3e935229f011bfc00373de1ed70561c56c2613b355de336245
                                        
                                            GET /js/jquery.libs.js HTTP/1.1 
Host: bc.vc
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://bc.vc/ucyfJTW
Cookie: __cfduid=d73b19054e6df3b36d5928d1a30fa4f7d1528469789; _kei_=1

                                         
                                         104.28.30.81
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Fri, 08 Jun 2018 14:56:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 02 May 2017 09:18:43 GMT
X-Frame-Options: allowall
Content-Encoding: gzip
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Fri, 08 Jun 2018 18:56:29 GMT
Cache-Control: public, max-age=14400
Server: cloudflare
CF-RAY: 427c349851ba428b-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   7762
Md5:    ce6b43a7f57270c599e099be45bf3245
Sha1:   c2bc745de2cf74200520055a5239317c75d4598e
Sha256: f7f89ed1f05306ab4809fca0260e61303efa3451de8b24951795531d47ce78a1
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.211.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 08 Jun 2018 14:56:29 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    4da16021a11e66dc243124e54dd21cce
Sha1:   aae81ef5b0dc7cdf5327eb103e10dbb8c432c868
Sha256: b744e94ac3bb8bb48d4ba74ee2d484c551919d834ab475e6b224e9331f7c61f9
                                        
                                            GET /images/logo.png HTTP/1.1 
Host: bc.vc
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://bc.vc/css/style.css
Cookie: __cfduid=d73b19054e6df3b36d5928d1a30fa4f7d1528469789; _kei_=1

                                         
                                         104.28.30.81
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Fri, 08 Jun 2018 14:56:29 GMT
Content-Length: 5014
Connection: keep-alive
Last-Modified: Tue, 02 May 2017 09:18:39 GMT
Etag: "59084eef-1396"
X-Frame-Options: allowall
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Fri, 08 Jun 2018 18:56:29 GMT
Cache-Control: public, max-age=14400
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 427c349982494273-OSL


--- Additional Info ---
Magic:  PNG image, 60 x 60, 8-bit/color RGBA, non-interlaced
Size:   5014
Md5:    e0c1cd9701213beacca580cc6b3d515a
Sha1:   9adb002d674195be592b175c7509cab21d24d666
Sha256: d218dfcf6f36270ee2eb138d72c747e83aecf95421c9f72fcbd1d4b466f91bea
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://bc.vc/ucyfJTW
If-Modified-Since: Fri, 03 Oct 2014 00:48:42 GMT

                                         
                                         172.217.20.46
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Timing-Allow-Origin: *
Date: Fri, 08 Jun 2018 14:13:45 GMT
Expires: Fri, 08 Jun 2018 16:13:45 GMT
Last-Modified: Fri, 18 May 2018 01:10:24 GMT
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Golfe2
Content-Length: 14386
Cache-Control: public, max-age=7200
Age: 2564


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   14386
Md5:    b3de885583a477d4e31568948d6bebd7
Sha1:   2ce8d853244dde551c41d5207d6f71c567bde8c6
Sha256: e1bb5aa555a0d875e2a67884ceaa0629e08994a8aabadc2fac5b6915793dbf75
                                        
                                            GET /tab.js HTTP/1.1 
Host: widgets.amung.us
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://bc.vc/ucyfJTW

                                         
                                         185.225.208.133
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Fri, 08 Jun 2018 14:56:29 GMT
Last-Modified: Sun, 27 May 2018 23:27:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Etag: W/"5b0b3ef4-6eea"
Expires: Sat, 09 Jun 2018 14:56:29 GMT
Cache-Control: max-age=86400, private
Access-Control-Allow-Origin: *
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   18876
Md5:    a7f70d987282781428eb52616d4b422c
Sha1:   b43215746aca03ac7b78d1913c8877e5c3eb0809
Sha256: 41dc86e65466ed91e6fb165a8fe4a8179dde847f02e0824cc305b4eb5f098ce2
                                        
                                            POST /gsr2 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 112
Content-Type: application/ocsp-request

                                         
                                         216.58.211.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 08 Jun 2018 14:56:30 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 468
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   468
Md5:    d9d754520ae3340aa37cca6115eee05b
Sha1:   a0320372760d99c762cb2eb4b37f776625ef1b33
Sha256: 7dc8284c51c9a38dc1bf03bd28857ea5336e8f5c564eddbb1c9082ee43c93738
                                        
                                            GET /r/collect?v=1&_v=j68&a=797590714&t=pageview&_s=1&dl=http%3A%2F%2Fbc.vc%2FucyfJTW&ul=en-us&de=UTF-8&dt=Domino%2099%20%2C%20Domino%20QQ%20%2C%20Agen%20QQ%20-%20Gunungpoker.poker&sd=24-bit&sr=1176x885&vp=1176x754&je=1&fl=10.0%20r45&_u=IEBAAEQ~&jid=1320103763&gjid=1207698679&cid=282210014.1528469791&tid=UA-12855174-12&_gid=1153904722.1528469791&_r=1&cd2=248498&z=51345752 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://bc.vc/ucyfJTW

                                         
                                         172.217.20.46
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Allow-Origin: *
Date: Fri, 08 Jun 2018 14:56:30 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Server: Golfe2
Content-Length: 35


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         80.239.159.10
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Fri, 08 Jun 2018 02:05:53 GMT
Etag: F42E39C1EDA2DAFEBE34211B6F57C84939F50235
X-OCSP-Responder-ID: rmdccaocsp25
Content-Length: 279
Cache-Control: public, no-transform, must-revalidate, max-age=1768
Expires: Fri, 08 Jun 2018 15:25:58 GMT
Date: Fri, 08 Jun 2018 14:56:30 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   279
Md5:    1e47100fd439a7d151d279c39dc8f317
Sha1:   f42e39c1eda2dafebe34211b6f57c84939f50235
Sha256: 67bb438ca947febdb2b2a7563aa52ef28c1d5c8978132762d74bcec577e0ce6a
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         80.239.159.10
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Tue, 05 Jun 2018 09:10:02 GMT
Etag: 782AEA82486E7E37266018F0F3A30FD06FCF4652
X-OCSP-Responder-ID: rmdccaocsp25
Content-Length: 313
Cache-Control: public, no-transform, must-revalidate, max-age=720
Expires: Fri, 08 Jun 2018 15:08:30 GMT
Date: Fri, 08 Jun 2018 14:56:30 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   313
Md5:    11f097550d508a3ea75c2e0f6edff0ed
Sha1:   782aea82486e7e37266018f0f3a30fd06fcf4652
Sha256: b3bf2e7c8049f1fa3ddce5dbd117e7701bc522d2724061e0e08ca20a4f703fba
                                        
                                            GET /pingjs/?k=s7popkb7yn2l&t=Domino%2099%20%2C%20Domino%20QQ%20%2C%20Agen%20QQ%20-%20Gunungpoker.poker&c=t&y=&a=0&d=0&v=22&r=5126 HTTP/1.1 
Host: whos.amung.us
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://bc.vc/ucyfJTW

                                         
                                         67.202.94.86
HTTP/1.1 200 OK
Content-Type: text/javascript;charset=UTF-8
                                        
Date: Fri, 08 Jun 2018 14:56:30 GMT
Transfer-Encoding: chunked
Connection: close
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   53
Md5:    2769d4b188f4f7c593cee77452cf7393
Sha1:   1d8a6997ed88c26d34c85eb3a9bc9efd08ab9198
Sha256: dfaf80bc8ad566c427aff33b4fb5855d55f0d3f2d72ca9776ca5a40aca22d882
                                        
                                            GET /gtag/js?id=UA-12855174-12 HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://bc.vc/ucyfJTW

                                         
                                         216.58.211.8
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
                                        
Access-Control-Allow-Origin: http://www.googletagmanager.com
Access-Control-Allow-Headers: Cache-Control
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 08 Jun 2018 14:56:30 GMT
Expires: Fri, 08 Jun 2018 14:56:30 GMT
Cache-Control: private, max-age=900
Server: Google Tag Manager (scaffolding)
X-XSS-Protection: 1; mode=block
Alt-Svc: quic=":443"; ma=2592000; v="43,42,41,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   24688
Md5:    70f78dd3e0147d2c2495df2117c38b47
Sha1:   27d7a7d9fab1a4f50f12320e97ef87744b0d4c11
Sha256: 3238b14bb28b67f7e502511dace4fccd8060a9b2b8141f838e068b1d171ba399
                                        
                                            GET /earn.php?z=3&oid=248498&subid=248498&title=Domino%2099%20,%20Domino%20QQ%20,%20Agen%20QQ%20-%20Gunungpoker.poker HTTP/1.1 
Host: bcvcrdr.xyz
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://bc.vc/ucyfJTW

                                         
                                         104.28.11.186
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Fri, 08 Jun 2018 14:56:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=dee3bb28c968b4fbd63f57e99ceea8c0f1528469790; expires=Sat, 08-Jun-19 14:56:30 GMT; path=/; domain=.bcvcrdr.xyz; HttpOnly; Secure PHPSESSID=ldsik7boet1c8o9emkkd556t04; path=/
X-Powered-By: PHP/5.6.30-0+deb8u1
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Frame-Options: allowall
Access-Control-Allow-Origin: *
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 427c34a18c1a429d-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   116
Md5:    c44ff1327dc7f58afd19e38637c798c6
Sha1:   8318f5f7cfba7a792a015dd41433cd8414521dca
Sha256: 762c817fd0aefc4668ec5f9935fb5eaf8a5d8a4e4c3eafb96e6ed0daa6ac4a78
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://bc.vc/ucyfJTW

                                         
                                         172.217.20.46
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Timing-Allow-Origin: *
Date: Fri, 08 Jun 2018 14:10:40 GMT
Expires: Fri, 08 Jun 2018 16:10:40 GMT
Last-Modified: Fri, 18 May 2018 01:10:24 GMT
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Golfe2
Content-Length: 14386
Cache-Control: public, max-age=7200
Age: 2751
Alt-Svc: quic=":443"; ma=2592000; v="43,42,41,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   14386
Md5:    b3de885583a477d4e31568948d6bebd7
Sha1:   2ce8d853244dde551c41d5207d6f71c567bde8c6
Sha256: e1bb5aa555a0d875e2a67884ceaa0629e08994a8aabadc2fac5b6915793dbf75
                                        
                                            GET /r/collect?v=1&_v=j68&a=797590714&t=pageview&_s=1&dl=http%3A%2F%2Fbc.vc%2FucyfJTW&ul=en-us&de=UTF-8&dt=Domino%2099%20%2C%20Domino%20QQ%20%2C%20Agen%20QQ%20-%20Gunungpoker.poker&sd=24-bit&sr=1176x885&vp=1176x754&je=1&fl=10.0%20r45&_u=aEDAAUQ~&jid=1738136879&gjid=1066183256&cid=282210014.1528469791&tid=UA-12855174-12&_gid=1153904722.1528469791&_r=1&gtm=u64&z=1682820192 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://bc.vc/ucyfJTW

                                         
                                         172.217.20.46
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Allow-Origin: *
Date: Fri, 08 Jun 2018 14:56:31 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Server: Golfe2
Content-Length: 35
Alt-Svc: quic=":443"; ma=2592000; v="43,42,41,39,35"


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
                                        
                                            POST / HTTP/1.1 
Host: ocsp.int-x3.letsencrypt.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 117
Content-Type: application/ocsp-request

                                         
                                         80.239.159.24
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 527
Etag: "E3DCE4032A6FF7E275A27CA067C131B12003F524552C6C9215D3E253DD9630F3"
Last-Modified: Tue, 05 Jun 2018 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=22513
Expires: Fri, 08 Jun 2018 21:11:44 GMT
Date: Fri, 08 Jun 2018 14:56:31 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   527
Md5:    b41e84ead8e617de44ddfb8f44716ed2
Sha1:   d9044b0236f6144ebd41e4fe518b5413191efdf0
Sha256: e3dce4032a6ff7e275a27ca067c131b12003f524552c6c9215d3e253dd9630f3
                                        
                                            POST / HTTP/1.1 
Host: isrg.trustid.ocsp.identrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         80.239.159.56
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Transfer-Encoding: Binary
Last-Modified: Wed, 06 Jun 2018 21:25:55 GMT
Etag: "cf37de6ca8e5a6548cb8dd4a4a39cd6bd0353494"
Content-Length: 1398
Cache-Control: public, no-transform, must-revalidate, max-age=17136
Expires: Fri, 08 Jun 2018 19:42:07 GMT
Date: Fri, 08 Jun 2018 14:56:31 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1398
Md5:    260b10ffc0481fc040e7599723c68f2b
Sha1:   cf37de6ca8e5a6548cb8dd4a4a39cd6bd0353494
Sha256: 3c958632bfbd5bacae7a92847c4d8ec304f23714445018fbd64425a88f00af7d
                                        
                                            GET /4/13821/ HTTP/1.1 
Host: rotumal.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         188.72.213.220
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Fri, 08 Jun 2018 14:56:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Timing-Allow-Origin: *, *
Pragma: no-cache
Cache-Control: private, max-age=0, no-cache
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Set-Cookie: SeenToday=1; expires=Sat, 09-Jun-2018 14:56:31 GMT; Max-Age=86400; path=/ OAGEO5580f=13%7CNO%7C03%7COSLO%7CXDSL%7CBROADNET+AS%7C%7C11348%7C11093%7C%3F%7C578270; expires=Sat, 09-Jun-2018 14:56:31 GMT; Max-Age=86400; path=/ oaidts=1528469791; expires=Sat, 08-Jun-2019 14:56:31 GMT; Max-Age=31536000; path=/ OAID=e59ed5b9b5bbecd5f9a2c69738577087; expires=Sat, 08-Jun-2019 14:56:31 GMT; Max-Age=31536000; path=/ OAID=e59ed5b9b5bbecd5f9a2c69738577087; expires=Sat, 08-Jun-2019 14:56:31 GMT; Max-Age=31536000; path=/ exsdsf=1528469791 pbk3=93b25ff01c5222108e9aba8e6e5c72be6564727766926464672; expires=Fri, 08-Jun-2018 15:06:31 GMT; Max-Age=600 ltm_afu=1; expires=Sat, 09-Jun-2018 14:56:31 GMT; Max-Age=86400; path=/
P3P: CP="CUR ADM OUR NOR STA NID"
X-Used-AdExchange: 1
Content-Encoding: gzip
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4396
Md5:    1ca99cd88910553d871f5cfbc44be6e9
Sha1:   2cacac958ade74e2978b9c0898c38c0d507e4710
Sha256: fdae5987bdfa422d4aafcd29359ef0904b0f5821bc4b3c9fca123f5e14cd41a3
                                        
                                            GET /?r=%2Fmb%2Fhan&zoneid=13821&pbk3=93b25ff01c5222108e9aba8e6e5c72be6564727766926464672&empty=0&auction_id=530ced8f-67c8-481f-9a5e-99274e97d6c6&uuid=fb0450fd-840b-4aec-ab94-96ca29466e4d&ad_scheme=1&rotation_type=2&ppucounter=0&first_visit=0&on_test=0&offer_views=0&ab_test=1393&adparams=bm9qcz0w&ip=f3d5bb63c9dbdcfb475795d659c65a4e&sw=1176&sh=885&sah=855&wx=-4&wy=-4&ww=1184&wh=863&cw=1176&wiw=1176&wih=640&wfc=1&pl=https%3A%2F%2Frotumal.com%2F4%2F13821%2F&drf=&np=1&pt=0&nb=0&ng=1&dm=undefined&cf=1&nw=0&id=21caadcd02d8c8b4e7449810415baf15&co=1&rf=0&hs=d01d492f13aec958676a3d4656a2a36c&ix=1&fs=1&timeout=0 HTTP/1.1 
Host: rotumal.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://rotumal.com/4/13821/
Cookie: SeenToday=1; OAGEO5580f=13%7CNO%7C03%7COSLO%7CXDSL%7CBROADNET+AS%7C%7C11348%7C11093%7C%3F%7C578270; oaidts=1528469791; OAID=e59ed5b9b5bbecd5f9a2c69738577087; ltm_afu=1

                                         
                                         188.72.213.220
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Fri, 08 Jun 2018 14:56:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Timing-Allow-Origin: *, *
Pragma: no-cache
Cache-Control: private, max-age=0, no-cache
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Set-Cookie: f3d5bb63c9dbdcfb475795d659c65a4e=n15iiqrAKJDRsGowpty7wKYLBFgZMsmzallVnqtY_U8; expires=Fri, 15-Jun-2018 14:56:31 GMT; Max-Age=604800 OAGEO5580f=13%7CNO%7C03%7COSLO%7CXDSL%7CBROADNET+AS%7C%7C11348%7C11093%7C%3F%7C578270; expires=Sat, 09-Jun-2018 14:56:31 GMT; Max-Age=86400; path=/ ppucnt=1; expires=Sat, 09-Jun-2018 14:56:31 GMT; Max-Age=86400; path=/ ppucntstart=1528469791; expires=Sat, 09-Jun-2018 14:56:31 GMT; Max-Age=86400; path=/ allcnt=1; expires=Sat, 08-Jun-2019 14:56:31 GMT; Max-Age=31536000; path=/ OAID=e59ed5b9b5bbecd5f9a2c69738577087; expires=Sat, 08-Jun-2019 14:56:31 GMT; Max-Age=31536000; path=/ _OACCAP[1219290]=1; expires=Sat, 08-Jun-2019 14:56:31 GMT; Max-Age=31536000; path=/ _OACBLOCK[1219290]=1528469791; expires=Sun, 08-Jul-2018 14:56:31 GMT; Max-Age=2592000; path=/ _OXCCLK[1219290]=1; expires=Sat, 08-Jun-2019 14:56:31 GMT; Max-Age=31536000; path=/ _OXPCLK[128071]=1; expires=Sat, 08-Jun-2019 14:56:31 GMT; Max-Age=31536000; path=/
P3P: CP="CUR ADM OUR NOR STA NID"
Location: http://www.bet365.com/dl/~offer?affiliate=365_795340
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff


--- Additional Info ---
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: bc.vc
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __cfduid=d73b19054e6df3b36d5928d1a30fa4f7d1528469789; _kei_=1; _ga=GA1.2.282210014.1528469791; _gid=GA1.2.1153904722.1528469791; _gat=1; _gat_gtag_UA_12855174_12=1

                                         
                                         104.28.30.81
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Date: Fri, 08 Jun 2018 14:56:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 28 Jul 2017 08:55:16 GMT
X-Frame-Options: allowall
Content-Encoding: gzip
CF-Cache-Status: EXPIRED
Vary: Accept-Encoding
Expires: Fri, 15 Jun 2018 14:56:31 GMT
Cache-Control: public, max-age=604800
Server: cloudflare
CF-RAY: 427c34a540864285-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5425
Md5:    ee9e411232f516ba2571ea044f7c242b
Sha1:   f937da91770cf4e94b1b4ff3f0ede9bc812c0bac
Sha256: 0fb8c80c3ee1f5e65ce733aa2d0196011c104204a621ac69e2f35f9830518be9
                                        
                                            POST / HTTP/1.1 
Host: status.thawte.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=154604
Date: Fri, 08 Jun 2018 14:56:31 GMT
Etag: "5b1a3300-1d7"
Expires: Sun, 10 Jun 2018 09:26:42 GMT
Last-Modified: Fri, 08 Jun 2018 07:40:48 GMT
Server: ECS (arn/4691)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    0aa2b95ef4241fdd9608c7234ccb22c3
Sha1:   f35fe65a2218fcab8ac7d82861aeaaf326ced3cd
Sha256: a53b37406b74f770bb0df22898a4e0e07c7356734cb4894cb05e569656df8b15
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=158984
Date: Fri, 08 Jun 2018 14:56:31 GMT
Etag: "5b1a2d35-1d7"
Expires: Sun, 10 Jun 2018 10:37:25 GMT
Last-Modified: Fri, 08 Jun 2018 07:16:05 GMT
Server: ECS (arn/45E2)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    932fb2765272468c0c62f872e6f96641
Sha1:   3f3861ee255cf27005b01a333b8012ce788a6131
Sha256: 280f664176f31208a84493bc791e6f55edf8f7cbd48e80bb7acde643f0e2a8c1
                                        
                                            GET /dl/~offer?affiliate=365_795340 HTTP/1.1 
Host: www.bet365.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         5.226.176.16
HTTP/1.1 302 Found
                                        
Cache-Control: private
Content-Length: 0
Location: https://www.bet365.com/?forcelp=1&affiliate=365_795340
Strict-Transport-Security: max-age=600; includeSubDomains
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Date: Fri, 08 Jun 2018 14:56:31 GMT


--- Additional Info ---
                                        
                                            GET /?forcelp=1&affiliate=365_795340 HTTP/1.1 
Host: www.bet365.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         5.226.176.16
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Cache-Control: private
Location: https://www.bet365.com/nn/?forcelp=1&affiliate=365_795340
X-AspNetMvc-Version: 5.2
Strict-Transport-Security: max-age=600; includeSubDomains
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Date: Fri, 08 Jun 2018 14:56:31 GMT
Content-Length: 178


--- Additional Info ---
Magic:  HTML document text
Size:   178
Md5:    4c367a9a3c35c3209546c832789db46a
Sha1:   b744f201caa56b1e57a79d9686df32f74afec9ce
Sha256: 76233b2af3cd2d6554ff07ca188595275e6acd33f19730362c20fc74a60c375a
                                        
                                            GET /nn/?forcelp=1&affiliate=365_795340 HTTP/1.1 
Host: www.bet365.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         5.226.176.16
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Cache-Control: private
X-AspNetMvc-Version: 5.2
Set-Cookie: aps03=lng=9&ct=143&cg=0&cst=0; expires=Thu, 08-Jun-2028 14:56:32 GMT; path=/ pstk=8E5DAF0F766EAFF4BCB74338845448EC000003; domain=bet365.com; path=/
Strict-Transport-Security: max-age=600; includeSubDomains
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Date: Fri, 08 Jun 2018 14:56:31 GMT
Cteonnt-Length: 25078
Content-Encoding: gzip
Content-Length: 6400


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   6400
Md5:    b65cf0a376fb7a8414f302c32095b8fe
Sha1:   b3391a383f46fee67ffd1fb995d66750cad85d7c
Sha256: 4b79bb36f55d7020b1f3912f5d011437b5b62383144cc61bd02b70b649489c7f
                                        
                                            GET /home/style/eng-font_vB6.css HTTP/1.1 
Host: www.bet365.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bet365.com/nn/?forcelp=1&affiliate=365_795340
Cookie: aps03=lng=9&ct=143&cg=0&cst=0; pstk=8E5DAF0F766EAFF4BCB74338845448EC000003

                                         
                                         5.226.176.16
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Age: 7123
Date: Fri, 08 Jun 2018 12:57:50 GMT
Cache-Control: max-age=31536000 ,public
Connection: Keep-Alive
Via: MN1SBKE
Last-Modified: Tue, 10 Oct 2017 12:51:21 GMT
Accept-Ranges: bytes
Strict-Transport-Security: max-age=600; includeSubDomains
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Cteonnt-Length: 8955
Content-Encoding: gzip
Content-Length: 2308


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2308
Md5:    8da09d13ffccd7d0c186d55ea4104d98
Sha1:   5f38ac481c9fe6e74300b7ca0a755d95596fead4
Sha256: c885c5450c1cf76801de1d269513dab32665a567fb0a3c5c7eddb616d71ac35c
                                        
                                            GET /home/style/sportsbook_vB26.css HTTP/1.1 
Host: www.bet365.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bet365.com/nn/?forcelp=1&affiliate=365_795340
Cookie: aps03=lng=9&ct=143&cg=0&cst=0; pstk=8E5DAF0F766EAFF4BCB74338845448EC000003

                                         
                                         5.226.176.16
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Age: 7121
Date: Fri, 08 Jun 2018 12:57:51 GMT
Cache-Control: max-age=31536000 ,public
Connection: Keep-Alive
Via: MN1SBKE
Last-Modified: Tue, 14 Jan 2014 12:04:44 GMT
Accept-Ranges: bytes
Strict-Transport-Security: max-age=600; includeSubDomains
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Cteonnt-Length: 43783
Content-Encoding: gzip
Content-Length: 9135


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   9135
Md5:    1d2a604f27ba447497ac42c0337e2ce3
Sha1:   3db2df6f9594693638875c1b9379dd51c3fc93da
Sha256: bc0a6afb9ea8d6bc083ce028134a7fb4a519d5a84db9f1b7c5e0c1e31510579c
                                        
                                            GET /home/images/landingpage/imgs/col3/bg-casino.jpg HTTP/1.1 
Host: www.bet365.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bet365.com/nn/?forcelp=1&affiliate=365_795340
Cookie: aps03=lng=9&ct=143&cg=0&cst=0; pstk=8E5DAF0F766EAFF4BCB74338845448EC000003

                                         
                                         5.226.176.16
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Age: 7122
Date: Fri, 08 Jun 2018 12:57:51 GMT
Cache-Control: max-age=31536000 ,public
Connection: Keep-Alive
Via: MN1SBKE
Last-Modified: Tue, 07 Oct 2008 15:45:34 GMT
Accept-Ranges: bytes
Strict-Transport-Security: max-age=600; includeSubDomains
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Length: 11660


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   11660
Md5:    62f912bb32aecad4ab710243a04a4ba9
Sha1:   f8a22eaaf6dc17329932db9c19484907332ea800
Sha256: ecc11913678af89246c957fae2eaf6cbb07316f7ad24bdcc3e2b115293e46f60
                                        
                                            GET /home/images/landingpage/imgs/col3/nor/bg-casino-title.gif HTTP/1.1 
Host: www.bet365.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bet365.com/nn/?forcelp=1&affiliate=365_795340
Cookie: aps03=lng=9&ct=143&cg=0&cst=0; pstk=8E5DAF0F766EAFF4BCB74338845448EC000003

                                         
                                         5.226.176.16
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Age: 7121
Date: Fri, 08 Jun 2018 12:57:52 GMT
Cache-Control: max-age=31536000 ,public
Connection: Keep-Alive
Via: MN1SBKE
Last-Modified: Mon, 06 Oct 2008 12:03:18 GMT
Accept-Ranges: bytes
Strict-Transport-Security: max-age=600; includeSubDomains
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Length: 697


--- Additional Info ---
Magic:  GIF image data, version 89a, 110 x 38
Size:   697
Md5:    5879a9a865fda93f30693d684be26f99
Sha1:   6c0b7966293e939c9ce0c0e2ecf8334cfde43d48
Sha256: 7431a6fdedac6df90e623b9664ed0525e318b5df620f72c55d771b186e7c52e2
                                        
                                            GET /home/images/landingpage/imgs/col3/bg-poker.jpg HTTP/1.1 
Host: www.bet365.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bet365.com/nn/?forcelp=1&affiliate=365_795340
Cookie: aps03=lng=9&ct=143&cg=0&cst=0; pstk=8E5DAF0F766EAFF4BCB74338845448EC000003

                                         
                                         5.226.176.16
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Age: 7122
Date: Fri, 08 Jun 2018 12:57:51 GMT
Cache-Control: max-age=31536000 ,public
Connection: Keep-Alive
Via: MN1SBKE
Last-Modified: Tue, 07 Oct 2008 15:45:34 GMT
Accept-Ranges: bytes
Strict-Transport-Security: max-age=600; includeSubDomains
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Length: 11922


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   11922
Md5:    ed93aae29ca896964a86103b00f80f99
Sha1:   1880c553dc77b4effbb5d28ad72f93de1e550ec5
Sha256: 496f6b90ab41e0578054f60089032a0483247165dce969a83d70f4842496608a
                                        
                                            GET /home/images/landingpage/imgs/nor/204x30-live-streaming-02.gif HTTP/1.1 
Host: www.bet365.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bet365.com/nn/?forcelp=1&affiliate=365_795340
Cookie: aps03=lng=9&ct=143&cg=0&cst=0; pstk=8E5DAF0F766EAFF4BCB74338845448EC000003

                                         
                                         5.226.176.16
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Age: 7122
Date: Fri, 08 Jun 2018 12:57:52 GMT
Cache-Control: max-age=31536000 ,public
Connection: Keep-Alive
Via: MN1SBKE
Last-Modified: Mon, 06 Oct 2008 12:40:11 GMT
Accept-Ranges: bytes
Strict-Transport-Security: max-age=600; includeSubDomains
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Length: 886


--- Additional Info ---
Magic:  GIF image data, version 89a, 204 x 30
Size:   886
Md5:    59de4e75dcc3b90bf1f907c1af208413
Sha1:   845731a2f6862ee58dba2c8ef16c26d7d4037ff9
Sha256: a0264d794e589a1ff92ddb7b76ead87280be70d41debac10dfb7d398a1e2c053
                                        
                                            GET /home/js/Browser_vA009cr.js HTTP/1.1 
Host: www.bet365.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bet365.com/nn/?forcelp=1&affiliate=365_795340
Cookie: aps03=lng=9&ct=143&cg=0&cst=0; pstk=8E5DAF0F766EAFF4BCB74338845448EC000003

                                         
                                         5.226.176.16
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Age: 7123
Date: Fri, 08 Jun 2018 12:57:50 GMT
Cache-Control: max-age=31536000 ,public
Connection: Keep-Alive
Via: MN1SBKE
Last-Modified: Mon, 20 Aug 2012 08:10:14 GMT
Accept-Ranges: bytes
Strict-Transport-Security: max-age=600; includeSubDomains
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Cteonnt-Length: 3763
Content-Encoding: gzip
Content-Length: 1268


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1268
Md5:    5d588764ca7f1404ce4d045434781d0f
Sha1:   069ae9c3015a0b61e33fdde140b00372e65675bc
Sha256: c9c8168226cf12afb177c67b71a6043691a3760ffa18d5940ddbf1a7c3205d1d
                                        
                                            GET /home/images/landingpage/imgs/col3/PharaohTreasure.jpg HTTP/1.1 
Host: www.bet365.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bet365.com/nn/?forcelp=1&affiliate=365_795340
Cookie: aps03=lng=9&ct=143&cg=0&cst=0; pstk=8E5DAF0F766EAFF4BCB74338845448EC000003

                                         
                                         5.226.176.16
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Age: 7123
Date: Fri, 08 Jun 2018 12:57:50 GMT
Cache-Control: max-age=31536000 ,public
Connection: Keep-Alive
Via: MN1SBKE
Last-Modified: Wed, 27 Jun 2012 10:29:05 GMT
Accept-Ranges: bytes
Strict-Transport-Security: max-age=600; includeSubDomains
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Length: 11478


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   11478
Md5:    6274335f5e37fb7e3aa19dba05a07ef3
Sha1:   d54c0b0cccf2158aee56d7f1f465d5bb907edf06
Sha256: 39d9bd9e19956bb52c4c880dc6987383c34dc0873aadaa6b3763e3421e06def7
                                        
                                            GET /home/images/landingpage/imgs/col3/nor/bg-poker-title.gif HTTP/1.1 
Host: www.bet365.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bet365.com/nn/?forcelp=1&affiliate=365_795340
Cookie: aps03=lng=9&ct=143&cg=0&cst=0; pstk=8E5DAF0F766EAFF4BCB74338845448EC000003

                                         
                                         5.226.176.16
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Age: 7122
Date: Fri, 08 Jun 2018 12:57:52 GMT
Cache-Control: max-age=31536000 ,public
Connection: Keep-Alive
Via: MN1SBKE
Last-Modified: Mon, 06 Oct 2008 12:03:52 GMT
Accept-Ranges: bytes
Strict-Transport-Security: max-age=600; includeSubDomains
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Length: 516


--- Additional Info ---
Magic:  GIF image data, version 89a, 110 x 38
Size:   516
Md5:    6e2e0875ac3b8cc572388456afce72cb
Sha1:   166b3728ba8b543abf1b66d6a9ba90da0a6baafb
Sha256: 8403279944c48f04812a3d8d88dde0726d6853dd86b502838b03af6e02e9aad6
                                        
                                            GET /home/images/PageLoader.gif HTTP/1.1 
Host: www.bet365.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bet365.com/nn/?forcelp=1&affiliate=365_795340
Cookie: aps03=lng=9&ct=143&cg=0&cst=0; pstk=8E5DAF0F766EAFF4BCB74338845448EC000003

                                         
                                         5.226.176.16
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Age: 7123
Date: Fri, 08 Jun 2018 12:57:50 GMT
Cache-Control: max-age=31536000 ,public
Connection: Keep-Alive
Via: MN1SBKE
Last-Modified: Wed, 15 Oct 2008 08:19:45 GMT
Accept-Ranges: bytes
Strict-Transport-Security: max-age=600; includeSubDomains
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Length: 1924


--- Additional Info ---
Magic:  GIF image data, version 89a, 54 x 55
Size:   1924
Md5:    cff3783e071b026dc670d48dc4cfb680
Sha1:   27446af50166cbdffa08265285294840e0a9e014
Sha256: 32008dc850837a1e4df76d1997cf7920cb4ee894d384797d979a79a2a8eb4d39
                                        
                                            GET /home/images/landingpage/imgs/nor/bg-sports-title-white.gif HTTP/1.1 
Host: www.bet365.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bet365.com/nn/?forcelp=1&affiliate=365_795340
Cookie: aps03=lng=9&ct=143&cg=0&cst=0; pstk=8E5DAF0F766EAFF4BCB74338845448EC000003

                                         
                                         5.226.176.16
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Age: 7122
Date: Fri, 08 Jun 2018 12:57:52 GMT
Cache-Control: max-age=31536000 ,public
Connection: Keep-Alive
Via: MN1SBKE
Last-Modified: Thu, 11 Nov 2010 16:26:34 GMT
Accept-Ranges: bytes
Strict-Transport-Security: max-age=600; includeSubDomains
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Length: 535


--- Additional Info ---
Magic:  GIF image data, version 89a, 145 x 34
Size:   535
Md5:    12aff891797927dc826b66068ecaa6e7
Sha1:   10a3af6fdad00db3dfd194f73ec209fe15a698bc
Sha256: 6716cac07330bf484237d5cca1f07feb3ee8d9853392df8f12448a564b139d0e
                                        
                                            GET /home/images/landingpage/imgs/nor/liveinplay.gif HTTP/1.1 
Host: www.bet365.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bet365.com/nn/?forcelp=1&affiliate=365_795340
Cookie: aps03=lng=9&ct=143&cg=0&cst=0; pstk=8E5DAF0F766EAFF4BCB74338845448EC000003

                                         
                                         5.226.176.16
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Age: 7121
Date: Fri, 08 Jun 2018 12:57:53 GMT
Cache-Control: max-age=31536000 ,public
Connection: Keep-Alive
Via: MN1SBKE
Last-Modified: Mon, 06 Oct 2008 12:41:52 GMT
Accept-Ranges: bytes
Strict-Transport-Security: max-age=600; includeSubDomains
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Length: 663


--- Additional Info ---
Magic:  GIF image data, version 89a, 204 x 30
Size:   663
Md5:    882d78fff2afeff69b38a12d9a6d24bb
Sha1:   9c09acf570f92f5e1ea9c88ba34558839fc26a90
Sha256: a4a56eca8a095680275b7aaa30291b002339fb48e09572713ce4602e609a6456
                                        
                                            GET /home/images/landingpage/imgs/col3/nor/bg-games-title.gif HTTP/1.1 
Host: www.bet365.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bet365.com/nn/?forcelp=1&affiliate=365_795340
Cookie: aps03=lng=9&ct=143&cg=0&cst=0; pstk=8E5DAF0F766EAFF4BCB74338845448EC000003

                                         
                                         5.226.176.16
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Age: 7121
Date: Fri, 08 Jun 2018 12:57:53 GMT
Cache-Control: max-age=31536000 ,public
Connection: Keep-Alive
Via: MN1SBKE
Last-Modified: Mon, 06 Oct 2008 12:04:05 GMT
Accept-Ranges: bytes
Strict-Transport-Security: max-age=600; includeSubDomains
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Length: 599


--- Additional Info ---
Magic:  GIF image data, version 89a, 110 x 38
Size:   599
Md5:    5dc06c429cb9cc5d812f7946fb41244b
Sha1:   5589b938e96f133fabeb2a52b168f68f67721ee5
Sha256: a3ac2bedc4668ef7ad1d70392a5c4c48b7a3ad50a15224246a46720544145ce6
                                        
                                            GET /home/images/landingpage/imgs/body-bg.gif HTTP/1.1 
Host: www.bet365.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bet365.com/nn/?forcelp=1&affiliate=365_795340
Cookie: aps03=lng=9&ct=143&cg=0&cst=0; pstk=8E5DAF0F766EAFF4BCB74338845448EC000003

                                         
                                         5.226.176.16
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Age: 7123
Date: Fri, 08 Jun 2018 12:57:51 GMT
Cache-Control: max-age=31536000 ,public
Connection: Keep-Alive
Via: MN1SBKE
Last-Modified: Wed, 07 Jan 2009 17:59:10 GMT
Accept-Ranges: bytes
Strict-Transport-Security: max-age=600; includeSubDomains
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Length: 758


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 500
Size:   758
Md5:    41a9eebb99ba7c3b2a905aaa45726923
Sha1:   abf17115c33bdea05313ce6bcebe3fe4d7da935a
Sha256: f9b50670a93fcef81c4f838f7da60d397994bea07f83af0f51ae89d670f1189c
                                        
                                            GET /home/js/cookies_vA006cr.js HTTP/1.1 
Host: www.bet365.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bet365.com/nn/?forcelp=1&affiliate=365_795340
Cookie: aps03=lng=9&ct=143&cg=0&cst=0; pstk=8E5DAF0F766EAFF4BCB74338845448EC000003

                                         
                                         5.226.176.16
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Age: 7123
Date: Fri, 08 Jun 2018 12:57:50 GMT
Cache-Control: max-age=31536000 ,public
Connection: Keep-Alive
Via: MN1SBKE
Last-Modified: Thu, 18 Aug 2011 09:39:02 GMT
Accept-Ranges: bytes
Strict-Transport-Security: max-age=600; includeSubDomains
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Cteonnt-Length: 3956
Content-Encoding: gzip
Content-Length: 1255


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1255
Md5:    617a425a85efa9740ec6e83f3d75d55d
Sha1:   cd83245bb144a89a429452d0eb6f4a45684d8622
Sha256: 90eece94b4282df05d0c531c78bee201e09f1e84503e2100ffb864a26ee83989
                                        
                                            GET /home/images/landingpage/imgs/head1.jpg HTTP/1.1 
Host: www.bet365.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bet365.com/nn/?forcelp=1&affiliate=365_795340
Cookie: aps03=lng=9&ct=143&cg=0&cst=0; pstk=8E5DAF0F766EAFF4BCB74338845448EC000003

                                         
                                         5.226.176.16
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Age: 7122
Date: Fri, 08 Jun 2018 12:57:51 GMT
Cache-Control: max-age=31536000 ,public
Connection: Keep-Alive
Via: MN1SBKE
Last-Modified: Mon, 19 Jan 2009 17:12:36 GMT
Accept-Ranges: bytes
Strict-Transport-Security: max-age=600; includeSubDomains
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Length: 11727


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   11727
Md5:    a5327fccb311e895a45483708b252792
Sha1:   efdab95edd5396f0dec8451fdde3534ea28d1565
Sha256: 69f1d93be06ddea4c6d00de254faf48a5c51e700116a387ca1d2e136e15d7eaa
                                        
                                            GET /home/images/landingpage/imgs/sec-nav-bg-grad.gif HTTP/1.1 
Host: www.bet365.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bet365.com/nn/?forcelp=1&affiliate=365_795340
Cookie: aps03=lng=9&ct=143&cg=0&cst=0; pstk=8E5DAF0F766EAFF4BCB74338845448EC000003

                                         
                                         5.226.176.16
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Age: 7124
Date: Fri, 08 Jun 2018 12:57:50 GMT
Cache-Control: max-age=31536000 ,public
Connection: Keep-Alive
Via: MN1SBKE
Last-Modified: Wed, 07 Jan 2009 14:06:04 GMT
Accept-Ranges: bytes
Strict-Transport-Security: max-age=600; includeSubDomains
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Length: 376


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 594
Size:   376
Md5:    355b2cb853d78ae262c093065eaa6e70
Sha1:   3e8d2a456204e635cfe5bd959cff47faf63023fc
Sha256: cd58d657e3d79583a5722257d8770e3b5f620f1d58e392f1d9460cc89ac485fa
                                        
                                            GET /home/images/landingpage/imgs/844x214_LandingPage_Shaqiri_0817.jpg HTTP/1.1 
Host: www.bet365.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bet365.com/nn/?forcelp=1&affiliate=365_795340
Cookie: aps03=lng=9&ct=143&cg=0&cst=0; pstk=8E5DAF0F766EAFF4BCB74338845448EC000003

                                         
                                         5.226.176.16
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Age: 7122
Date: Fri, 08 Jun 2018 12:57:51 GMT
Cache-Control: max-age=31536000 ,public
Connection: Keep-Alive
Via: MN1SBKE
Last-Modified: Tue, 08 Aug 2017 12:41:37 GMT
Accept-Ranges: bytes
Strict-Transport-Security: max-age=600; includeSubDomains
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Length: 38526


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   38526
Md5:    3af50f93a1e4ff1d932cf6224e9ec0af
Sha1:   fa426a1f0fbae8f38fb5b8aca9f0131d369aefda
Sha256: 3918d5e5e043121cb47f4edcb5bb3161005d6db66c2f27e00b158b32f4e70c96
                                        
                                            GET /home/images/landingpage/imgs/bg-sports-right.gif HTTP/1.1 
Host: www.bet365.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bet365.com/nn/?forcelp=1&affiliate=365_795340
Cookie: aps03=lng=9&ct=143&cg=0&cst=0; pstk=8E5DAF0F766EAFF4BCB74338845448EC000003

                                         
                                         5.226.176.16
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Age: 7122
Date: Fri, 08 Jun 2018 12:57:51 GMT
Cache-Control: max-age=31536000 ,public
Connection: Keep-Alive
Via: MN1SBKE
Last-Modified: Mon, 06 Oct 2008 16:37:06 GMT
Accept-Ranges: bytes
Strict-Transport-Security: max-age=600; includeSubDomains
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Length: 953


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 204
Size:   953
Md5:    0c494ac95bb7efed1bfd157c74edf4f1
Sha1:   5a39f256a6bd4ae42af00ede6cc02046247ade55
Sha256: 8bd961ea74a57ad2595a735d5a413caa795d27db0c0b530d749840665b0f4e0d
                                        
                                            GET /home/images/landingpage/sc/NCDBO/210x204_SportsLandingpage/ROW/nor/NCDBO_210x204.gif HTTP/1.1 
Host: www.bet365.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bet365.com/nn/?forcelp=1&affiliate=365_795340
Cookie: aps03=lng=9&ct=143&cg=0&cst=0; pstk=8E5DAF0F766EAFF4BCB74338845448EC000003

                                         
                                         5.226.176.16
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Age: 7122
Date: Fri, 08 Jun 2018 12:57:52 GMT
Cache-Control: max-age=31536000 ,public
Connection: Keep-Alive
Via: MN1SBKE
Last-Modified: Tue, 07 Mar 2017 09:29:56 GMT
Accept-Ranges: bytes
Strict-Transport-Security: max-age=600; includeSubDomains
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Length: 11580


--- Additional Info ---
Magic:  GIF image data, version 89a, 210 x 204
Size:   11580
Md5:    7898dab87a2c3114c87e71a5fa311892
Sha1:   47109f8600137da11b76ce9ad111757920e63643
Sha256: dbb4e3c5fa22cf1ab4f42929b464ebbd9038c778d1e6390940b1a45083894967
                                        
                                            GET /Members/Helpers/DefaultAff.aspx?forcelp=1&affiliate=365_795340 HTTP/1.1 
Host: members.bet365.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bet365.com/nn/?forcelp=1&affiliate=365_795340
Cookie: pstk=8E5DAF0F766EAFF4BCB74338845448EC000003

                                         
                                         5.226.176.7
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Cache-Control: private
Content-Encoding: gzip
Vary: Accept-Encoding
X-AspNet-Version: 4.0.30319
Set-Cookie: Affiliates=Code=365_795340%2f30797134014&prd=Sports; expires=Mon, 23-Jul-2018 14:56:33 GMT; path=/
Date: Fri, 08 Jun 2018 14:56:32 GMT
Content-Length: 177


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), max speed
Size:   177
Md5:    475774a26d4f30240a3534bcbd2fd161
Sha1:   9fd7b986673786b4fc80943b330bd1c03256049e
Sha256: f7541d6ca43b4da74a89ec05885dceabf1a4af132d36326cf7974a47c904c811
                                        
                                            GET /home/js/globals_vA061cr.js HTTP/1.1 
Host: www.bet365.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bet365.com/nn/?forcelp=1&affiliate=365_795340
Cookie: aps03=lng=9&ct=143&cg=0&cst=0; pstk=8E5DAF0F766EAFF4BCB74338845448EC000003

                                         
                                         5.226.176.16
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Age: 7123
Date: Fri, 08 Jun 2018 12:57:50 GMT
Cache-Control: max-age=31536000 ,public
Connection: Keep-Alive
Via: MN1SBKE
Last-Modified: Thu, 10 May 2018 12:15:25 GMT
Accept-Ranges: bytes
Strict-Transport-Security: max-age=600; includeSubDomains
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Cteonnt-Length: 25081
Content-Encoding: gzip
Content-Length: 5813


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5813
Md5:    b5af0bfcf00dca6096d79eeb858db436
Sha1:   5a4f026c8b6cfec3273904f33917f3830dc31a09
Sha256: f614ca5d56010dd23cd5907435b56491be2ec1cf220f06737eec9d49f3170f44
                                        
                                            GET /home/images/landingpage/imgs/col3/nor/bg-Products.gif HTTP/1.1 
Host: www.bet365.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.bet365.com/nn/?forcelp=1&affiliate=365_795340
Cookie: aps03=lng=9&ct=143&cg=0&cst=0; pstk=8E5DAF0F766EAFF4BCB74338845448EC000003

                                         
                                         5.226.176.16
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Age: 7121
Date: Fri, 08 Jun 2018 12:57:53 GMT
Cache-Control: max-age=31536000 ,public
Connection: Keep-Alive
Via: MN1SBKE
Last-Modified: Mon, 06 Oct 2008 14:45:21 GMT
Accept-Ranges: bytes
Strict-Transport-Security: max-age=600; includeSubDomains
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Length: 21796


--- Additional Info ---
Magic:  GIF image data, version 89a, 271 x 302
Size:   21796
Md5:    bb64368c3ff48d47d368cb119852818d
Sha1:   686eb3d22b859e67cb1f2391fd6991b2afdcf0e3
Sha256: 9c088b185cf0b79c5670005c2f158e2b31e39e6582bad74ca0c1bbdbb88028a1