Report - wtgbet.com/?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk

Report Overview

Submitted URL
wtgbet.com/?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk
IP
172.64.150.105
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-19 10:32:25
Access
public
Website Title
Final URL
www.wtgbet.com/en?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
6
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
ekr.zdassets.com	2396	2013-01-28	2018-06-14	2024-04-18	464 B	2.4 kB	104.18.72.113
js.hcaptcha.com	23463	2018-01-12	2021-07-30	2024-04-18	399 B	388 kB	104.18.124.91
cdn.veriff.me	unknown	2015-11-19	2019-11-29	2024-01-30	832 B	25 kB	143.204.55.56
widget-mediator.zopim.com	2693	2006-11-16	2019-04-23	2024-04-17	1.2 kB	1.2 kB	3.126.222.237
static.zdassets.com	2154	2013-01-28	2018-06-24	2024-04-18	2.7 kB	1.3 MB	104.18.72.113
platform-gateway.wtgbet.com	unknown	unknown	No data	No data	1.1 kB	96 kB	172.64.150.105
static.rocketship.cash	unknown	2021-05-20	2023-06-19	2024-02-14	1.1 kB	1.0 MB	172.64.152.225
fpnpmcdn.net	unknown	2022-03-23	2022-03-23	2024-04-17	428 B	115 kB	54.230.111.100
wtgbet.com	unknown	unknown	No data	No data	510 B	522 B	104.18.37.151
www.wtgbet.com	unknown	unknown	No data	No data	8.0 kB	2.5 MB	104.18.37.151
eu.api.fpjs.io	482983	2019-03-08	2019-05-16	2024-04-13	953 B	1.8 kB	75.2.52.67
3abe05b3-50c9-457f-8c7d-776ed5622c26.snippet.anjouangaming.org	unknown	unknown	No data	No data	449 B	3.7 kB	54.230.111.67

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2024-04-19 10:32:01	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2024-04-19 10:32:01	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2024-04-19 10:32:01	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2024-04-19 10:32:01	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2024-04-19 10:32:02	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2024-04-19 10:32:04	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (20)

	URL	Size	First Seen	Last Seen
	static.zdassets.com/ekr/snippet.js?key=248c8ea3-8067-45f2-bcd1-a0154d7c10de	10 kB	2024-01-15	2024-05-02
Pretty URL static.zdassets.com/ekr/snippet.js?key=248c8ea3-8067-45f2-bcd1-a0154d7c10de IP 104.18.72.113 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-01-15 08:52:01 Last Seen2024-05-02 11:50:46 Times Seen3286 Hash c0053b411b753138af468db1bd3b19f3 7c3a187aa58f2b9e5446edb761b3d4d2ba506fe7 ce337ec7dda4b3a741363a2673c7edce5c736f1660e2aa908131ecfd9dd1343f Loading...

	js.hcaptcha.com/1/api.js	387 kB	2024-04-04	2024-04-30
Pretty URL js.hcaptcha.com/1/api.js IP 104.18.124.91 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-04 18:06:19 Last Seen2024-04-30 11:09:09 Times Seen1327 Hash 052bf4abb4128ef78b68c418f7d94678 2b6c44a8cc009017a2909c7afd71e371e82b7d27 01908359050da30c842f89d13af0447be961b00b67b46eb61114d1fa48f1bdc9 Loading...

	cdn.veriff.me/sdk/js/1.5/veriff.min.js	12 kB	2024-04-19	2024-04-19
Pretty URL cdn.veriff.me/sdk/js/1.5/veriff.min.js IP 143.204.55.56 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-19 12:32:32 Last Seen2024-04-19 12:32:34 Times Seen4 Hash 7c0a318b49c9aebb4041bea33dd65290 6baab001ba5ed29c40ef0cf702bbbcb5f7efdbd7 4ab9c678b9222d5f482e3093d9c63e98cf66f16901af2e881b25f5e26dd9e446 Loading...

	cdn.veriff.me/incontext/js/v2_0_0_beta/veriff.js	12 kB	2024-04-19	2024-04-19
Pretty URL cdn.veriff.me/incontext/js/v2_0_0_beta/veriff.js IP 143.204.55.56 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-19 12:32:32 Last Seen2024-04-19 12:32:34 Times Seen4 Hash 81dff953da2cd3006a9bc4c42311cf17 0c8cc510397ee282fe866ead5c977b92e3823731 532de0021cc3f52558fad98f046149ea5cb5151cd79ee4531b863e73e0ee0984 Loading...

	unknown	83 B	2023-04-13	2024-05-01
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-13 16:08:45 Last Seen2024-05-01 18:14:29 Times Seen1618 Hash 62cd50374f9e402baf5a7de635f1b832 8f48044d7fa09ae8d666ab4056e9f7a570dc1774 18de782ff83190db91cd321421564b77ca13c7953ab5831901095354b093c0ac Loading...

	static.zdassets.com/web_widget/classic/latest/web-widget-chat-incoming-message-notification-7bc1c0f.js	236 B	2023-07-26	2024-05-01
Pretty URL static.zdassets.com/web_widget/classic/latest/web-widget-chat-incoming-message-notification-7bc1c0f.js IP 104.18.72.113 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-26 20:43:56 Last Seen2024-05-01 18:14:29 Times Seen3765 Hash 77bb07ca171e3ff2b72a7dafa7822bc8 2fbd32c0e434f7f2c355a92ce29c35f29efa9a9f a29e4af6aa6a95982d1092a20f0068173b9a9d5df0a89bc99da556aebec3ce54 Loading...

	static.zdassets.com/web_widget/classic/latest/web-widget-chat-sdk-7bc1c0f.js	207 kB	2023-10-31	2024-05-01
Pretty URL static.zdassets.com/web_widget/classic/latest/web-widget-chat-sdk-7bc1c0f.js IP 104.18.72.113 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-31 09:23:39 Last Seen2024-05-01 18:14:30 Times Seen4076 Hash b8284a4b45e40625c2b90a641ebe4a68 8285ea200e6679b92b07818033ee54199ccc13d5 965cba95c928e95003ce37271090406eaa7d5c2d955230a785b2b3be8a9a17f5 Loading...

	www.wtgbet.com/static/js/main.3dea95f5.js	2.1 MB	2024-04-19	2024-04-19
Pretty URL www.wtgbet.com/static/js/main.3dea95f5.js IP 104.18.37.151 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-19 12:32:32 Last Seen2024-04-19 12:32:34 Times Seen2 Hash a6c8bbd8f38005da29379929991ce68c da7ed1aad5ff776b3a705935f43c55aea746a699 18a9b2e5eba34cc292d4c2a8ffba249b9be4d1afe07c7d8a06afa6f59147e7c6 Loading...

	fpnpmcdn.net/v3/XQdhm1hexU436kprNVZh/loader_v3.8.5.js	114 kB	2024-04-19	2024-04-19
Pretty URL fpnpmcdn.net/v3/XQdhm1hexU436kprNVZh/loader_v3.8.5.js IP 54.230.111.100 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-19 12:32:32 Last Seen2024-04-19 12:32:34 Times Seen2 Hash aeefacddd8e8c50be938f131f8364a1f c4f4da4dac2e25a7c39b69e5c1d7d49124791e82 951fdf3ea812255ed8c03b8d2f89383ed61dfa06c912379fe41d2d79d9060dad Loading...

	www.wtgbet.com/en?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk	418 B	2023-12-08	2024-04-29
Pretty URL www.wtgbet.com/en?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk IP 104.18.37.151 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-08 22:35:17 Last Seen2024-04-29 18:45:29 Times Seen9 Hash d0b0185de8d6cabbb3f2d47f7a1cf1ed d864fc4d6e344b373c5590147d3a9e7803c356f5 e2c97b149841ad406be7c8d727c5be087fa65f9cb410c62c7bd8b22d9112fca1 Loading...

	unknown	82 B	2023-04-13	2024-05-01
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-13 16:08:45 Last Seen2024-05-01 18:14:28 Times Seen1619 Hash 67a24a8bdca5577b37d605ce6e8adfb2 82fa2a206316f4cb674e1f790bf21adc3eea8e88 b6ef6fee73d4f31312a27bc9609dddb02b4511d4f1c5e80ea8a1a896cae11f53 Loading...

	www.wtgbet.com/assets/js/HackTimer.silent.min.js	1.3 kB	2023-06-19	2024-04-29
Pretty URL www.wtgbet.com/assets/js/HackTimer.silent.min.js IP 104.18.37.151 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-19 01:39:22 Last Seen2024-04-29 18:45:30 Times Seen35 Hash 125dd4ca255eaa2c38c9d0c3700ea0d7 2782b0daf79ebe1a594949953500f35ecb3c6c10 e3ff4b73a4c008497f951e04faa0a1898e88874f9a16a23a0ccb58c641ed1e5b Loading...

	3abe05b3-50c9-457f-8c7d-776ed5622c26.snippet.anjouangaming.org/anj-seal.js	3.1 kB	2024-04-19	2024-04-19
Pretty URL 3abe05b3-50c9-457f-8c7d-776ed5622c26.snippet.anjouangaming.org/anj-seal.js IP 54.230.111.67 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-19 12:32:32 Last Seen2024-04-19 12:32:34 Times Seen2 Hash 11cdd6a40500f67b7de7c9307d5f999a 3915dc63aa1467dd3a1689020b87cab274a500aa a68c336639581b77f69f9a9cd90df79a700aa37c484f39a33fc5857aaea30fea Loading...

	www.wtgbet.com/en?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk	2.0 kB	2024-04-19	2024-04-19
Pretty URL www.wtgbet.com/en?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk IP 104.18.37.151 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-19 12:32:32 Last Seen2024-04-19 12:32:34 Times Seen2 Hash b34c566bdc2e3f8d493bbb1e81cac21d 7c0fd54bd64c2b91d10285962d4540b3e38d4729 43a71d98d1f0fd86ca751f9c071f478a9d2ded81fd6c425a2ad028f36b478213 Loading...

	www.wtgbet.com/en?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk	687 B	2024-04-19	2024-04-19
Pretty URL www.wtgbet.com/en?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk IP 104.18.37.151 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-19 12:32:32 Last Seen2024-04-19 12:32:34 Times Seen2 Hash 49bdb97b759e31377073acc8c1e5026b 9d563c8bc3a308aa6d1ef5e8b053d5e57a72cc3e 7f739ce104a91d775f98858887b9d2c881a6678b5bb834acc43f29ed8cf2800a Loading...

	static.zdassets.com/web_widget/classic/latest/web-widget-main-7bc1c0f.js	992 kB	2024-04-11	2024-05-01
Pretty URL static.zdassets.com/web_widget/classic/latest/web-widget-main-7bc1c0f.js IP 104.18.72.113 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-11 14:18:32 Last Seen2024-05-01 18:14:29 Times Seen255 Hash 3784cf5e1ddd3a68e335f3bb4a5e2fcd 617bebee8c2acfff41763b25aa8e2b65bdebc1d3 7f4ac95d1ab40c0d78d98acf1da862b901ce896b43f738c7b1731c986a612bf4 Loading...

	unknown	77 B	2023-04-13	2024-05-01
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-13 16:08:45 Last Seen2024-05-01 18:14:29 Times Seen1616 Hash 5ada4f545e5b41cc9774b9c537654481 7aeac43d786855f9d50588ebf2ad0428aa7a08dd c95b3fc54062c581e2d235f25aa9074b000bd2c718804455238fc5ea286fb0c0 Loading...

	www.wtgbet.com/en?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk	184 B	2023-10-13	2024-04-29
Pretty URL www.wtgbet.com/en?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk IP 104.18.37.151 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-13 22:10:11 Last Seen2024-04-29 18:45:30 Times Seen23 Hash 8cf7f6d74dca49ef61f0da3bc59f7708 536982a7b2212959bc1c4ed8e70dd781e10cf670 5fcc1a16f85e90cd2f64911925eefb69d9167a4a7fe7d56a4b3e40a55f022e0f Loading...

	www.wtgbet.com/en?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk	1.5 kB	2024-04-19	2024-04-19
Pretty URL www.wtgbet.com/en?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk IP 104.18.37.151 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-19 12:32:32 Last Seen2024-04-19 12:32:34 Times Seen2 Hash a3c68085df60d0763c775558dde540b2 5f216bf778bf9c0d899424ea84449139894d3050 eca829103f0f36f54d46b6d28dc528dc13fe7838ecab9c461a02cea3dc33dc08 Loading...

	static.zdassets.com/web_widget/classic/latest/web-widget-locales/classic/en-us-json-7bc1c0f.js	26 kB	2023-11-01	2024-05-01
Pretty URL static.zdassets.com/web_widget/classic/latest/web-widget-locales/classic/en-us-json-7bc1c0f.js IP 104.18.72.113 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-01 04:40:16 Last Seen2024-05-01 18:14:29 Times Seen3220 Hash 6eb45e96a7cbb4b8ca10897f3cf09981 2a12b20d1ca65377448dce30519c629aa4273346 a48fd35c61908d912b5ac9e1face12e0962a0d9ecc8679e87db4031697cec54e Loading...

HTTP Transactions (33)

	URL	IP	Response	Size
	wtgbet.com/?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk	104.18.37.151	301 Moved Permanently	167 B
URL User Request GET HTTP/2 wtgbet.com/?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk IP 104.18.37.151:443 ASN #13335 CLOUDFLARENET Certificate IssuerLet's Encrypt Subjectwtgbet.com FingerprintF3:E0:BF:0E:8D:73:65:11:73:EE:F9:5A:94:B6:03:87:4B:F9:AC:C0 ValiditySun, 14 Apr 2024 08:57:41 GMT - Sat, 13 Jul 2024 08:57:40 GMT File type HTML document, ASCII text, with CRLF line terminators Size 167 B (167 bytes) Hash 0104c301c5e02bd6148b8703d19b3a73 7436e0b4b1f8c222c38069890b75fa2baf9ca620 446a6087825fa73eadb045e5a2e9e2adf7df241b571228187728191d961dda1f HTTP Headers `GET /?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk HTTP/1.1 Host: wtgbet.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 301 Moved Permanently date: Fri, 19 Apr 2024 10:31:57 GMT content-type: text/html content-length: 167 location: https://www.wtgbet.com/?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk cache-control: max-age=3600 expires: Fri, 19 Apr 2024 11:31:57 GMT vary: Accept-Encoding server: cloudflare cf-ray: 876c3a56be8356b9-OSL X-Firefox-Spdy: h2`

	www.wtgbet.com/?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk	104.18.37.151	301 Moved Permanently	152 B
URL User Request GET HTTP/2 www.wtgbet.com/?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk IP 104.18.37.151:443 ASN #13335 CLOUDFLARENET Certificate IssuerLet's Encrypt Subjectwtgbet.com FingerprintF3:E0:BF:0E:8D:73:65:11:73:EE:F9:5A:94:B6:03:87:4B:F9:AC:C0 ValiditySun, 14 Apr 2024 08:57:41 GMT - Sat, 13 Jul 2024 08:57:40 GMT File type HTML document, ASCII text, with no line terminators Size 152 B (152 bytes) Hash e33dbc41034e0e88f6cd725960b13d95 ee594af8de8b03a8f8df7272948ea86d19939957 edbbc026f37c67b1c30af1ac21ec85bf36e839aefb3813293635797cc962d1e3 HTTP Headers GET /?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk HTTP/1.1 Host: www.wtgbet.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 301 Moved Permanently date: Fri, 19 Apr 2024 10:31:57 GMT content-type: text/html; charset=utf-8 content-length: 152 cache-control: no-cache location: /en?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk vary: Accept, Accept-Encoding cf-cache-status: DYNAMIC set-cookie: __cf_bm=YrJNGM71iGZiknnBtKR6RzNh3IRQC.jFZkzqUICxgA0-1713522717-1.0.1.1-CeBHB5002b1lRG_aAhySwnB.Bu3_IoQdHQ1lgF3M2o6nEFxPZxfkiVn0NgZhm9jlAmkBIJmOQ3X8XiQ7G3e1tQ; path=/; expires=Fri, 19-Apr-24 11:01:57 GMT; domain=.wtgbet.com; HttpOnly; Secure; SameSite=None server: cloudflare cf-ray: 876c3a56dea256b9-OSL X-Firefox-Spdy: h2

	cdn.veriff.me/sdk/js/1.5/veriff.min.js	143.204.55.56	200 OK	12 kB
URL GET HTTP/2 cdn.veriff.me/sdk/js/1.5/veriff.min.js IP 143.204.55.56:443 ASN #16509 AMAZON-02 Requested by https://www.wtgbet.com/en?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk Certificate IssuerAmazon Subjectcdn.veriff.me FingerprintB3:E3:F0:5E:64:C5:1A:D2:F5:5A:AA:D1:51:6F:10:08:1B:C2:C0:EF ValidityFri, 28 Jul 2023 00:00:00 GMT - Sun, 25 Aug 2024 23:59:59 GMT File type JavaScript source, ASCII text, with very long lines (11882), with no line terminators Size 12 kB (11882 bytes) Hash 7c0a318b49c9aebb4041bea33dd65290 6baab001ba5ed29c40ef0cf702bbbcb5f7efdbd7 4ab9c678b9222d5f482e3093d9c63e98cf66f16901af2e881b25f5e26dd9e446 HTTP Headers `GET /sdk/js/1.5/veriff.min.js HTTP/1.1 Host: cdn.veriff.me User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.wtgbet.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/javascript content-length: 11882 date: Fri, 19 Apr 2024 04:56:46 GMT last-modified: Fri, 09 Dec 2022 13:58:47 GMT etag: "7c0a318b49c9aebb4041bea33dd65290" x-amz-version-id: P7OWYYyuVBQBX8niGB3qahCVliR3PV3L accept-ranges: bytes server: AmazonS3 x-cache: Hit from cloudfront via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: hjyJHunXbT5VWq_1XMvNFd7FNvPsYdRIEUsVoVtVyjYoS5kYMIe4Wg== age: 20113 vary: Origin X-Firefox-Spdy: h2

	cdn.veriff.me/incontext/js/v2_0_0_beta/veriff.js	143.204.55.56	200 OK	12 kB
URL GET HTTP/2 cdn.veriff.me/incontext/js/v2_0_0_beta/veriff.js IP 143.204.55.56:443 ASN #16509 AMAZON-02 Requested by https://www.wtgbet.com/en?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk Certificate IssuerAmazon Subjectcdn.veriff.me FingerprintB3:E3:F0:5E:64:C5:1A:D2:F5:5A:AA:D1:51:6F:10:08:1B:C2:C0:EF ValidityFri, 28 Jul 2023 00:00:00 GMT - Sun, 25 Aug 2024 23:59:59 GMT File type JavaScript source, ASCII text, with very long lines (11820) Size 12 kB (12340 bytes) Hash 81dff953da2cd3006a9bc4c42311cf17 0c8cc510397ee282fe866ead5c977b92e3823731 532de0021cc3f52558fad98f046149ea5cb5151cd79ee4531b863e73e0ee0984 HTTP Headers `GET /incontext/js/v2_0_0_beta/veriff.js HTTP/1.1 Host: cdn.veriff.me User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.wtgbet.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/javascript content-length: 12340 last-modified: Thu, 27 Jul 2023 12:02:27 GMT x-amz-server-side-encryption: AES256 x-amz-version-id: .vTBNOqk5W0JTTMesIM_CH01HBx_QHqE accept-ranges: bytes server: AmazonS3 date: Fri, 19 Apr 2024 02:51:08 GMT etag: "81dff953da2cd3006a9bc4c42311cf17" x-cache: Hit from cloudfront via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: tZe2ckgqUGPSccUz8DyvAp5pBG6MMjLsru-wqAp0wbyvwGJB6BPIbA== age: 27651 vary: Origin X-Firefox-Spdy: h2

	www.wtgbet.com/themes/wtgbet.3229d7209ad2d73c276c812d858e542b.css	104.18.37.151	200 OK	166 kB
URL GET HTTP/2 www.wtgbet.com/themes/wtgbet.3229d7209ad2d73c276c812d858e542b.css IP 104.18.37.151:443 ASN #13335 CLOUDFLARENET Requested by https://www.wtgbet.com/en?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk Certificate IssuerLet's Encrypt Subjectwtgbet.com FingerprintF3:E0:BF:0E:8D:73:65:11:73:EE:F9:5A:94:B6:03:87:4B:F9:AC:C0 ValiditySun, 14 Apr 2024 08:57:41 GMT - Sat, 13 Jul 2024 08:57:40 GMT File type gzip compressed data, from Unix Size 166 kB (166075 bytes) Hash 0457929f64d8a1634c1b5ca24b325463 4ce5b871e7d2f45bcb5c4fa63e91f7c4369f50bc 1af50fe1ec02af98dfb13fd3af07ea8efc3470ddd074af893848cc92aad8f33a HTTP Headers GET /themes/wtgbet.3229d7209ad2d73c276c812d858e542b.css HTTP/1.1 Host: www.wtgbet.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.wtgbet.com/en?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk Cookie: __cf_bm=YrJNGM71iGZiknnBtKR6RzNh3IRQC.jFZkzqUICxgA0-1713522717-1.0.1.1-CeBHB5002b1lRG_aAhySwnB.Bu3_IoQdHQ1lgF3M2o6nEFxPZxfkiVn0NgZhm9jlAmkBIJmOQ3X8XiQ7G3e1tQ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK date: Fri, 19 Apr 2024 10:31:59 GMT content-type: text/css; charset=UTF-8 cache-control: public, max-age=14400 last-modified: Thu, 18 Apr 2024 15:01:59 GMT etag: W/"10317-18ef1ba90dc" vary: Accept-Encoding content-encoding: gzip cf-cache-status: MISS expires: Fri, 19 Apr 2024 14:31:59 GMT server: cloudflare cf-ray: 876c3a5cccf456b9-OSL X-Firefox-Spdy: h2`

	widget-mediator.zopim.com/s/W/ws/Lqi3hFXtukgixqVY/c/1713522720012	3.126.222.237		0 B
URL widget-mediator.zopim.com/s/W/ws/Lqi3hFXtukgixqVY/c/1713522720012 IP 3.126.222.237:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /s/W/ws/Lqi3hFXtukgixqVY/c/1713522720012 HTTP/1.1 Host: widget-mediator.zopim.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: https://www.wtgbet.com Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: 7J5lXHfP2HJCJObGLyJiSA== DNT: 1 Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket HTTP/1.1 101 Switching Protocols Date: Fri, 19 Apr 2024 10:32:00 GMT Connection: upgrade Set-Cookie: AWSALB=NzUDYIaYqGF/2c91MQ3ImJbs+OAD161Y9N0VaccLj07bw1m9M2k6wbBFTS5csQvmIOd6EIAQ8rLBz7T5VDqbLaV2y6ofU8dsdLkLLqzFf841s0s7A1aLHWyFlYgx; Expires=Fri, 26 Apr 2024 10:32:00 GMT; Path=/ AWSALBCORS=NzUDYIaYqGF/2c91MQ3ImJbs+OAD161Y9N0VaccLj07bw1m9M2k6wbBFTS5csQvmIOd6EIAQ8rLBz7T5VDqbLaV2y6ofU8dsdLkLLqzFf841s0s7A1aLHWyFlYgx; Expires=Fri, 26 Apr 2024 10:32:00 GMT; Path=/; SameSite=None; Secure Upgrade: websocket Sec-WebSocket-Accept: ffhQxysBjd2ffgQimwwrZevhyzk= Sec-WebSocket-Version: 13 WebSocket-Server: uWebSockets

	static.zdassets.com/web_widget/classic/latest/fda6cd35495c75f83508d9d2e77ee33d.mp3	104.18.72.113	206 Partial Content	20 kB
URL GET HTTP/2 static.zdassets.com/web_widget/classic/latest/fda6cd35495c75f83508d9d2e77ee33d.mp3 IP 104.18.72.113:443 ASN #13335 CLOUDFLARENET Requested by https://www.wtgbet.com/en?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk Certificate IssuerLet's Encrypt Subjectzdassets.com FingerprintF8:AF:5C:DB:58:D5:35:9F:56:A0:A1:A2:92:FE:E3:BA:26:DA:5D:2D ValiditySun, 03 Mar 2024 22:41:52 GMT - Sat, 01 Jun 2024 22:41:51 GMT File type Audio file with ID3 version 2.3.0, contains: MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, JntStereo Size 20 kB (19698 bytes) Hash f11ce9e8f40a392830217253fe75d6de 89ba57fcc360da34756c127acba15a8b23267fc6 05069cc62b394b6ecc2daf3c51b4b2ba7f6cc8735988e8234487234af47eceee HTTP Headers GET /web_widget/classic/latest/fda6cd35495c75f83508d9d2e77ee33d.mp3 HTTP/1.1 Host: static.zdassets.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: audio/webm,audio/ogg,audio/wav,audio/;q=0.9,application/ogg;q=0.7,video/;q=0.6,/;q=0.5 Accept-Language: en-US,en;q=0.5 Range: bytes=0- DNT: 1 Connection: keep-alive Sec-Fetch-Dest: audio Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Accept-Encoding: identity Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 206 Partial Content date: Fri, 19 Apr 2024 10:32:00 GMT content-type: audio/mpeg; charset=utf-8 content-length: 19698 x-amz-id-2: u4rjVl6bznOFELXxWcdEy4cxf3HS8QD5+1jVYrU8pTGZTnnUMyhwdvSjilQjVnwTrzYblOccmBE= x-amz-request-id: HT3YBWDSMX7GGWKJ x-amz-replication-status: COMPLETED last-modified: Tue, 26 Sep 2023 06:59:46 GMT etag: "f11ce9e8f40a392830217253fe75d6de" x-amz-server-side-encryption: AES256 cache-control: public, max-age=31536000 expires: Wed, 25 Sep 2024 06:59:45 GMT x-amz-version-id: 7mQmj5CjPPHXphZWB9MwFHsB8G6GZRZR cf-cache-status: HIT age: 12538094 content-range: bytes 0-19697/19698 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RgOCh8%2BKSiOXGpOLsbFKVstDWJZD5PMx7daiJjFJjQO%2BJYFGzFh6uefBVp7mAdBtludH9Rb3bbybPSDOHCYSYKFeG1hTE96Q%2BUpmlIK3eTPClZIj9e4eqEGFPLmUjK%2BCZC9BmdA%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding strict-transport-security: max-age=0 access-control-allow-headers: * access-control-allow-methods: GET, HEAD access-control-allow-origin: * access-control-max-age: 0 server: cloudflare cf-ray: 876c3a6cfebc56ab-OSL X-Firefox-Spdy: h2

	eu.api.fpjs.io/DwmA/JNZ1Dz7/7?q=XQdhm1hexU436kprNVZh	75.2.52.67	200 OK	96 B
URL GET HTTP/2 eu.api.fpjs.io/DwmA/JNZ1Dz7/7?q=XQdhm1hexU436kprNVZh IP 75.2.52.67:443 ASN #16509 AMAZON-02 Requested by https://www.wtgbet.com/en?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk Certificate IssuerAmazon Subjecteu.api.fpjs.io Fingerprint88:16:BF:78:24:5B:DC:12:F9:B4:7B:4E:20:49:53:0F:CD:6A:FA:5B ValiditySun, 26 Nov 2023 00:00:00 GMT - Wed, 25 Dec 2024 23:59:59 GMT File type ASCII text, with no line terminators Size 96 B (96 bytes) Hash 4a8d7b2881fd840483e589ed96301031 b3c4f70b10c8b1a39708c83f59631c6c1d71234e ef21859dec57872038645a9e3f6f7c9e8ecb6c477f44d2ec36b780a579a1440b HTTP Headers `GET /DwmA/JNZ1Dz7/7?q=XQdhm1hexU436kprNVZh HTTP/1.1 Host: eu.api.fpjs.io User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.wtgbet.com DNT: 1 Connection: keep-alive Referer: https://www.wtgbet.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK date: Fri, 19 Apr 2024 10:32:01 GMT content-type: text/plain; charset=utf-8 content-length: 96 access-control-allow-origin: * access-control-expose-headers: Retry-After cache-control: max-age=31536000, immutable, private content-security-policy: default-src 'none'; frame-ancestors 'none' referrer-policy: no-referrer strict-transport-security: max-age=63072000 timing-allow-origin: * x-content-type-options: nosniff x-frame-options: DENY x-robots-tag: noindex X-Firefox-Spdy: h2`

	eu.api.fpjs.io/?ci=js/3.9.3&q=XQdhm1hexU436kprNVZh	75.2.52.67	200 OK	462 B
URL POST HTTP/2 eu.api.fpjs.io/?ci=js/3.9.3&q=XQdhm1hexU436kprNVZh IP 75.2.52.67:443 ASN #16509 AMAZON-02 Requested by https://www.wtgbet.com/en?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk Certificate IssuerAmazon Subjecteu.api.fpjs.io Fingerprint88:16:BF:78:24:5B:DC:12:F9:B4:7B:4E:20:49:53:0F:CD:6A:FA:5B ValiditySun, 26 Nov 2023 00:00:00 GMT - Wed, 25 Dec 2024 23:59:59 GMT File type data Size 462 B (462 bytes) Hash bef20293416d0b5a4a7aff1f26650534 57776c2ea06ab3c6b0d6d6e566ea9707b8468741 cb7ef923186b5f2e6cbf6e03a6178e290231d5ccc7a24250ac9f207b20a8a7cf HTTP Headers `POST /?ci=js/3.9.3&q=XQdhm1hexU436kprNVZh HTTP/1.1 Host: eu.api.fpjs.io User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 5175 Origin: https://www.wtgbet.com DNT: 1 Connection: keep-alive Referer: https://www.wtgbet.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Fri, 19 Apr 2024 10:32:03 GMT content-type: text/plain content-length: 462 access-control-allow-credentials: true access-control-allow-origin: https://www.wtgbet.com access-control-expose-headers: Retry-After content-security-policy: default-src 'none'; frame-ancestors 'none' referrer-policy: no-referrer set-cookie: _iidt=QuFOj2bcQn/Liqt1PHWKKNoP2D6KkmZx0ShOYKFGaRAvHmec6SH72p8hp1OlxzAoS3iy1VF0p53kzz9IAPADiQ97eWN/BrKkAw==; Path=/; Domain=fpjs.io; Expires=Sat, 19 Apr 2025 10:32:03 GMT; HttpOnly; Secure; SameSite=None strict-transport-security: max-age=63072000 timing-allow-origin: * vary: Origin x-content-type-options: nosniff x-frame-options: DENY X-Firefox-Spdy: h2

	www.wtgbet.com/cdn/system/logos/ba16e445-183f-4214-9de1-3a770c8d4e8f.svg	104.18.37.151	200 OK	7.8 kB
URL GET HTTP/2 www.wtgbet.com/cdn/system/logos/ba16e445-183f-4214-9de1-3a770c8d4e8f.svg IP 104.18.37.151:443 ASN #13335 CLOUDFLARENET Requested by https://www.wtgbet.com/en?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk Certificate IssuerLet's Encrypt Subjectwtgbet.com FingerprintF3:E0:BF:0E:8D:73:65:11:73:EE:F9:5A:94:B6:03:87:4B:F9:AC:C0 ValiditySun, 14 Apr 2024 08:57:41 GMT - Sat, 13 Jul 2024 08:57:40 GMT File type gzip compressed data, from Unix Size 7.8 kB (7802 bytes) Hash 8699b6d96b16daf63f9c770fab477f15 8bfdc365e26b4abeee8ef7b98267a0fee12db12a a824adefed299ad7502b9a1ca76d3494f65409146455605ff9eaf64c036000fa HTTP Headers GET /cdn/system/logos/ba16e445-183f-4214-9de1-3a770c8d4e8f.svg HTTP/1.1 Host: www.wtgbet.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.wtgbet.com/en?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk Cookie: __cf_bm=YrJNGM71iGZiknnBtKR6RzNh3IRQC.jFZkzqUICxgA0-1713522717-1.0.1.1-CeBHB5002b1lRG_aAhySwnB.Bu3_IoQdHQ1lgF3M2o6nEFxPZxfkiVn0NgZhm9jlAmkBIJmOQ3X8XiQ7G3e1tQ; __zlcmid=1LMmekfuvTEODct Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK date: Fri, 19 Apr 2024 10:32:03 GMT content-type: image/svg+xml cf-ray: 876c3a70480056b9-OSL cf-cache-status: REVALIDATED cache-control: public, max-age=14400 etag: W/"3377ab7e210a7d1582af4633a1ad0917" expires: Fri, 19 Apr 2024 14:32:03 GMT last-modified: Thu, 14 Mar 2024 08:26:40 GMT vary: Accept-Encoding server: cloudflare content-encoding: gzip X-Firefox-Spdy: h2`

	platform-gateway.wtgbet.com/cms-service/api/frontend/slug/page?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk&affiliateToken=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk	172.64.150.105	403 Forbidden	15 kB
URL OPTIONS HTTP/2 platform-gateway.wtgbet.com/cms-service/api/frontend/slug/page?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk&affiliateToken=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk IP 172.64.150.105:443 ASN #13335 CLOUDFLARENET Requested by https://www.wtgbet.com/en?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk Certificate IssuerLet's Encrypt Subjectwtgbet.com FingerprintF3:E0:BF:0E:8D:73:65:11:73:EE:F9:5A:94:B6:03:87:4B:F9:AC:C0 ValiditySun, 14 Apr 2024 08:57:41 GMT - Sat, 13 Jul 2024 08:57:40 GMT File type gzip compressed data, from Unix Size 15 kB (15381 bytes) Hash d8508997520c144e3dfadb0e31eab2f3 2dd8962ce032d2b830179145b29b9621bb9779a6 fdfa7a391a83d2ad6a8ad0c0fa8b99e1924d133f9319bc5c9771a85c34c89a40 HTTP Headers OPTIONS /cms-service/api/frontend/slug/page?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk&affiliateToken=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk HTTP/1.1 Host: platform-gateway.wtgbet.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: content-type,lang Referer: https://www.wtgbet.com/ Origin: https://www.wtgbet.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache HTTP/2 403 Forbidden date: Fri, 19 Apr 2024 10:32:00 GMT content-type: text/html; charset=UTF-8 accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA cross-origin-embedder-policy: require-corp cross-origin-opener-policy: same-origin cross-origin-resource-policy: same-origin origin-agent-cluster: ?1 permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=() referrer-policy: same-origin x-frame-options: SAMEORIGIN cf-mitigated: challenge cf-chl-out: VmKaCB7jBv8OkJ7YPRZLtneUDBDC3oDWQ2IYmjJrfNGm1Wv5ZO8+PNLpAmcSEFu2Oe29stpdS24/1Neru3TZoxu76tjrRjHRgADj272iq1lr9MkrVNxNDW3YTzGCZs0CdwzQGala4ZOqufStQcgA4Q==$dQDdCA3CthOiZ9OwqjSX9A== cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 expires: Thu, 01 Jan 1970 00:00:01 GMT set-cookie: __cf_bm=PgG_w_gVarQG3IGJUB5jxbAqC90Dx8b7ncRT7BDAF.0-1713522720-1.0.1.1-CkJlBAawT.ta47BTBppTYv1Wg0dHhQRgWv3RV2nG5yd75cCNI3i.pVJltqvCzOCJwfXiLKwxBGvsWItRZtvA9w; path=/; expires=Fri, 19-Apr-24 11:02:00 GMT; domain=.wtgbet.com; HttpOnly; Secure; SameSite=None vary: Accept-Encoding server: cloudflare cf-ray: 876c3a6d9a5b56aa-OSL content-encoding: gzip X-Firefox-Spdy: h2

	3abe05b3-50c9-457f-8c7d-776ed5622c26.snippet.anjouangaming.org/anj-seal.js	54.230.111.67	200 OK	3.1 kB
URL GET HTTP/2 3abe05b3-50c9-457f-8c7d-776ed5622c26.snippet.anjouangaming.org/anj-seal.js IP 54.230.111.67:443 ASN #16509 AMAZON-02 Requested by https://www.wtgbet.com/en?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk Certificate IssuerGlobalSign nv-sa Subject.snippet.anjouangaming.org Fingerprint3E:69:87:23:1D:F5:58:2E:9B:7A:37:97:BE:F3:57:3E:04:C8:A1:03 ValidityMon, 26 Jun 2023 12:08:12 GMT - Sat, 27 Jul 2024 12:08:11 GMT File type JavaScript source, ASCII text, with very long lines (3149), with no line terminators Size 3.1 kB (3119 bytes) Hash e1bd54b111f5a6a2849a2f8573d4a671 65691b347de1c1cf71a049e3705b9abafe8fa5eb 43bdf00e12c65b32b95875d896d65cebbc381c23c740c7ce1c9b9a40df0328cb HTTP Headers `GET /anj-seal.js HTTP/1.1 Host: 3abe05b3-50c9-457f-8c7d-776ed5622c26.snippet.anjouangaming.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.wtgbet.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/javascript; charset=utf-8 date: Fri, 19 Apr 2024 10:31:58 GMT x-powered-by: Express cache-control: max-age=300 etag: W/"c2f-ORXcY6oUZ906FokCC4fKsnSlAKo" strict-transport-security: max-age=15724800; includeSubDomains cf-cache-status: DYNAMIC server: cloudflare cf-ray: 876c3a5dbff74dbd-FRA content-encoding: gzip x-cache: Miss from cloudfront via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: PzvCrIAPX21X66sxM9WbHTedNUnNDIV20xWbHoJ6Cmf4JK3i7fjCLA== X-Firefox-Spdy: h2

	static.zdassets.com/ekr/snippet.js?key=248c8ea3-8067-45f2-bcd1-a0154d7c10de	104.18.72.113	200 OK	10 kB
URL GET HTTP/2 static.zdassets.com/ekr/snippet.js?key=248c8ea3-8067-45f2-bcd1-a0154d7c10de IP 104.18.72.113:443 ASN #13335 CLOUDFLARENET Requested by https://www.wtgbet.com/en?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk Certificate IssuerLet's Encrypt Subjectzdassets.com FingerprintF8:AF:5C:DB:58:D5:35:9F:56:A0:A1:A2:92:FE:E3:BA:26:DA:5D:2D ValiditySun, 03 Mar 2024 22:41:52 GMT - Sat, 01 Jun 2024 22:41:51 GMT File type JavaScript source, ASCII text, with very long lines (10187), with no line terminators Size 10 kB (10187 bytes) Hash c0053b411b753138af468db1bd3b19f3 7c3a187aa58f2b9e5446edb761b3d4d2ba506fe7 ce337ec7dda4b3a741363a2673c7edce5c736f1660e2aa908131ecfd9dd1343f HTTP Headers `GET /ekr/snippet.js?key=248c8ea3-8067-45f2-bcd1-a0154d7c10de HTTP/1.1 Host: static.zdassets.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.wtgbet.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Fri, 19 Apr 2024 10:31:58 GMT content-type: application/javascript x-amz-id-2: 4OYei3DkpSYkS6dKBDFbZjtSdVexoHjQ1eS9Mf3MCmEOCurZC/+Isbd1AVVpsiKAmJ7FWWviPJSrjy0q3mZxeg== x-amz-request-id: 9X4B0G1GWNB25PJG x-amz-replication-status: PENDING last-modified: Mon, 15 Jan 2024 02:56:11 GMT etag: W/"c0053b411b753138af468db1bd3b19f3" x-amz-server-side-encryption: AES256 cache-control: public, max-age=3600, s-maxage=60 x-amz-version-id: sR7NItkX1i3nKckB5vEat7T2DUmPnRiJ cf-cache-status: HIT age: 25 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=n2Gl7hBngnMYSc9dL9NpVphEIKL78XotvAls1SKMe0JUlYxBzy7sC5xAbOWUUspE9sWPqahn7GS%2Fy1mR0%2BXc2XnK2ptszZ9lytC%2FxqiN44DHUm4Ri9IPjOjzJln40jrMeMcXazU%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding strict-transport-security: max-age=0 access-control-allow-headers: * access-control-allow-methods: GET, HEAD access-control-allow-origin: * access-control-max-age: 0 server: cloudflare cf-ray: 876c3a5ceca756ab-OSL content-encoding: br X-Firefox-Spdy: h2

	static.zdassets.com/web_widget/classic/latest/web-widget-chat-incoming-message-notification-7bc1c0f.js	104.18.72.113	200 OK	236 B
URL GET HTTP/2 static.zdassets.com/web_widget/classic/latest/web-widget-chat-incoming-message-notification-7bc1c0f.js IP 104.18.72.113:443 ASN #13335 CLOUDFLARENET Requested by https://www.wtgbet.com/en?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk Certificate IssuerLet's Encrypt Subjectzdassets.com FingerprintF8:AF:5C:DB:58:D5:35:9F:56:A0:A1:A2:92:FE:E3:BA:26:DA:5D:2D ValiditySun, 03 Mar 2024 22:41:52 GMT - Sat, 01 Jun 2024 22:41:51 GMT File type troff or preprocessor input, ASCII text, with no line terminators Size 236 B (236 bytes) Hash 22a5acf27bb842f36bad907e5eab9d27 834424a0805a056b46506d5e2dd1013cc46c6ec5 4115d64c5d796d81a67b09af1ee3e5427a1e4f67419850a8292fe0f77072502b HTTP Headers `GET /web_widget/classic/latest/web-widget-chat-incoming-message-notification-7bc1c0f.js HTTP/1.1 Host: static.zdassets.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Fri, 19 Apr 2024 10:32:00 GMT content-type: application/javascript; charset=utf-8 x-amz-id-2: R3PecKyMJCGDs4JT2rQH8kobx+xe4PmFL3bhxKf2ufYIH8AcJNe/MKDfH2LJ2tMd1M/EVwVYdpk= x-amz-request-id: XFADR46K4TGX035H x-amz-replication-status: COMPLETED last-modified: Mon, 08 Apr 2024 13:46:13 GMT etag: W/"77bb07ca171e3ff2b72a7dafa7822bc8" x-amz-server-side-encryption: AES256 cache-control: public, max-age=31536000 expires: Tue, 08 Apr 2025 13:46:12 GMT x-amz-version-id: Lm_gk05VN5DG3iiQELVQYeeCHNOGOA_r cf-cache-status: HIT age: 686810 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UixkpPp0%2BKEyeXqwIhndhkcOIbWFo%2F02qC6Gs77U9KLSVX6f6ICG3kkW%2FWSyehRAfXz23k919S0w0iylWQypxKCyzgBmpYg2X4hyxVTMozvJRYf0k4gY%2BDoFnYvOVDnoNiApF%2Fw%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding strict-transport-security: max-age=0 access-control-allow-headers: * access-control-allow-methods: GET, HEAD access-control-allow-origin: * access-control-max-age: 0 server: cloudflare cf-ray: 876c3a6b6ce956ab-OSL content-encoding: br X-Firefox-Spdy: h2

	www.wtgbet.com/en?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk	104.18.37.151	200 OK	11 kB
URL User Request GET HTTP/2 www.wtgbet.com/en?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk IP 104.18.37.151:443 ASN #13335 CLOUDFLARENET Certificate IssuerLet's Encrypt Subjectwtgbet.com FingerprintF3:E0:BF:0E:8D:73:65:11:73:EE:F9:5A:94:B6:03:87:4B:F9:AC:C0 ValiditySun, 14 Apr 2024 08:57:41 GMT - Sat, 13 Jul 2024 08:57:40 GMT File type Size 11 kB (11434 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /en?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk HTTP/1.1 Host: www.wtgbet.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Cookie: __cf_bm=YrJNGM71iGZiknnBtKR6RzNh3IRQC.jFZkzqUICxgA0-1713522717-1.0.1.1-CeBHB5002b1lRG_aAhySwnB.Bu3_IoQdHQ1lgF3M2o6nEFxPZxfkiVn0NgZhm9jlAmkBIJmOQ3X8XiQ7G3e1tQ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK date: Fri, 19 Apr 2024 10:31:58 GMT content-type: text/html; charset=utf-8 cache-control: no-cache etag: W/"2cb2-FaHbdesRf8XTOd2qk+4ZohGrwWQ" vary: Accept-Encoding content-encoding: gzip cf-cache-status: DYNAMIC server: cloudflare cf-ray: 876c3a5a6a5b56b9-OSL X-Firefox-Spdy: h2`

	www.wtgbet.com/fonts/poppins.4df9ff363baf721965a59efd2a81819a.css	104.18.37.151	200 OK	348 B
URL GET HTTP/2 www.wtgbet.com/fonts/poppins.4df9ff363baf721965a59efd2a81819a.css IP 104.18.37.151:443 ASN #13335 CLOUDFLARENET Requested by https://www.wtgbet.com/en?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk Certificate IssuerLet's Encrypt Subjectwtgbet.com FingerprintF3:E0:BF:0E:8D:73:65:11:73:EE:F9:5A:94:B6:03:87:4B:F9:AC:C0 ValiditySun, 14 Apr 2024 08:57:41 GMT - Sat, 13 Jul 2024 08:57:40 GMT File type ASCII text, with very long lines (360), with no line terminators Size 348 B (348 bytes) Hash de9d2a1211a6c0d15a55be77d1bd51c3 a53a2233e7fa877b8488873b65552245a2418752 af2177191309d6b7431934156e29b7dc6583194d9094b0a6123eae7ff3b50195 HTTP Headers GET /fonts/poppins.4df9ff363baf721965a59efd2a81819a.css HTTP/1.1 Host: www.wtgbet.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.wtgbet.com/en?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk Cookie: __cf_bm=YrJNGM71iGZiknnBtKR6RzNh3IRQC.jFZkzqUICxgA0-1713522717-1.0.1.1-CeBHB5002b1lRG_aAhySwnB.Bu3_IoQdHQ1lgF3M2o6nEFxPZxfkiVn0NgZhm9jlAmkBIJmOQ3X8XiQ7G3e1tQ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK date: Fri, 19 Apr 2024 10:31:59 GMT content-type: text/css; charset=UTF-8 cache-control: public, max-age=14400 last-modified: Thu, 18 Apr 2024 15:01:59 GMT etag: W/"15c-18ef1ba8e71" vary: Accept-Encoding cf-cache-status: MISS expires: Fri, 19 Apr 2024 14:31:59 GMT server: cloudflare cf-ray: 876c3a5cccf656b9-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	www.wtgbet.com/assets/js/HackTimer.silent.min.js	104.18.37.151	200 OK	1.3 kB
URL GET HTTP/2 www.wtgbet.com/assets/js/HackTimer.silent.min.js IP 104.18.37.151:443 ASN #13335 CLOUDFLARENET Requested by https://www.wtgbet.com/en?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk Certificate IssuerLet's Encrypt Subjectwtgbet.com FingerprintF3:E0:BF:0E:8D:73:65:11:73:EE:F9:5A:94:B6:03:87:4B:F9:AC:C0 ValiditySun, 14 Apr 2024 08:57:41 GMT - Sat, 13 Jul 2024 08:57:40 GMT File type JavaScript source, ASCII text, with very long lines (1283), with no line terminators Size 1.3 kB (1281 bytes) Hash b671f0ecf961b4b2528ebeb28cee212c fbd519a00efcf5b2ee47a3340cf9b61a34314499 482aabec18e188742dc66d418b7aafc7a98f439aab12d1aa35800b444212c302 HTTP Headers GET /assets/js/HackTimer.silent.min.js HTTP/1.1 Host: www.wtgbet.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.wtgbet.com/en?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk Cookie: __cf_bm=YrJNGM71iGZiknnBtKR6RzNh3IRQC.jFZkzqUICxgA0-1713522717-1.0.1.1-CeBHB5002b1lRG_aAhySwnB.Bu3_IoQdHQ1lgF3M2o6nEFxPZxfkiVn0NgZhm9jlAmkBIJmOQ3X8XiQ7G3e1tQ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK date: Fri, 19 Apr 2024 10:31:59 GMT content-type: application/javascript cf-ray: 876c3a5cccfc56b9-OSL cf-cache-status: MISS cache-control: public, max-age=14400 content-encoding: gzip etag: W/"501-18ef01e0110" expires: Fri, 19 Apr 2024 14:31:59 GMT last-modified: Thu, 18 Apr 2024 07:31:22 GMT vary: Accept-Encoding server: cloudflare X-Firefox-Spdy: h2`

	www.wtgbet.com/assets/countryFlagStyles.css	104.18.37.151	200 OK	10 kB
URL GET HTTP/2 www.wtgbet.com/assets/countryFlagStyles.css IP 104.18.37.151:443 ASN #13335 CLOUDFLARENET Requested by https://www.wtgbet.com/en?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk Certificate IssuerLet's Encrypt Subjectwtgbet.com FingerprintF3:E0:BF:0E:8D:73:65:11:73:EE:F9:5A:94:B6:03:87:4B:F9:AC:C0 ValiditySun, 14 Apr 2024 08:57:41 GMT - Sat, 13 Jul 2024 08:57:40 GMT File type troff or preprocessor input, ASCII text Size 10 kB (10386 bytes) Hash 68006954381429900c217606e2dc5074 220b3496a5d8e6cfb9789658d74d772ea1c677a4 4e0484417d2bdd23ec13630f8a15f51f7210049cea0253da0e3fd1d396867dfa HTTP Headers GET /assets/countryFlagStyles.css HTTP/1.1 Host: www.wtgbet.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.wtgbet.com/en?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk Cookie: __cf_bm=YrJNGM71iGZiknnBtKR6RzNh3IRQC.jFZkzqUICxgA0-1713522717-1.0.1.1-CeBHB5002b1lRG_aAhySwnB.Bu3_IoQdHQ1lgF3M2o6nEFxPZxfkiVn0NgZhm9jlAmkBIJmOQ3X8XiQ7G3e1tQ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK date: Fri, 19 Apr 2024 10:31:59 GMT content-type: text/css; charset=UTF-8 cf-ray: 876c3a5ccd0556b9-OSL cf-cache-status: MISS cache-control: public, max-age=14400 content-encoding: gzip etag: W/"2892-18ef01e0110" expires: Fri, 19 Apr 2024 14:31:59 GMT last-modified: Thu, 18 Apr 2024 07:31:22 GMT vary: Accept-Encoding server: cloudflare X-Firefox-Spdy: h2`

	www.wtgbet.com/icons/sprite.ba6244f06789198c86a302d68621819f.svg	104.18.37.151	200 OK	115 kB
URL GET HTTP/2 www.wtgbet.com/icons/sprite.ba6244f06789198c86a302d68621819f.svg IP 104.18.37.151:443 ASN #13335 CLOUDFLARENET Requested by https://www.wtgbet.com/en?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk Certificate IssuerLet's Encrypt Subjectwtgbet.com FingerprintF3:E0:BF:0E:8D:73:65:11:73:EE:F9:5A:94:B6:03:87:4B:F9:AC:C0 ValiditySun, 14 Apr 2024 08:57:41 GMT - Sat, 13 Jul 2024 08:57:40 GMT File type SVG Scalable Vector Graphics image Size 115 kB (115309 bytes) Hash dfb9e3bf3fe04e43215cff6bc93dfd9b ffb6c5ed6111532e23a7710354f0a0a1d4f6120f 4ad5a8606825bab2f024b6e2eeb28f988e9aff88c525ee6eebe10377f4743f54 HTTP Headers GET /icons/sprite.ba6244f06789198c86a302d68621819f.svg HTTP/1.1 Host: www.wtgbet.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.wtgbet.com/en?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk lang: en Content-Type: application/json DNT: 1 Connection: keep-alive Cookie: __cf_bm=YrJNGM71iGZiknnBtKR6RzNh3IRQC.jFZkzqUICxgA0-1713522717-1.0.1.1-CeBHB5002b1lRG_aAhySwnB.Bu3_IoQdHQ1lgF3M2o6nEFxPZxfkiVn0NgZhm9jlAmkBIJmOQ3X8XiQ7G3e1tQ; __zlcmid=1LMmekfuvTEODct Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK date: Fri, 19 Apr 2024 10:32:01 GMT content-type: image/svg+xml cache-control: public, max-age=14400 last-modified: Fri, 19 Apr 2024 10:26:10 GMT etag: W/"1c26d-18ef5e4672f" vary: Accept-Encoding content-encoding: gzip cf-cache-status: MISS expires: Fri, 19 Apr 2024 14:32:01 GMT server: cloudflare cf-ray: 876c3a6cec8b56b9-OSL X-Firefox-Spdy: h2`

	www.wtgbet.com/static/css/main.14a759b6.css	104.18.37.151	200 OK	102 B
URL GET HTTP/2 www.wtgbet.com/static/css/main.14a759b6.css IP 104.18.37.151:443 ASN #13335 CLOUDFLARENET Requested by https://www.wtgbet.com/en?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk Certificate IssuerLet's Encrypt Subjectwtgbet.com FingerprintF3:E0:BF:0E:8D:73:65:11:73:EE:F9:5A:94:B6:03:87:4B:F9:AC:C0 ValiditySun, 14 Apr 2024 08:57:41 GMT - Sat, 13 Jul 2024 08:57:40 GMT File type ASCII text, with no line terminators Size 102 B (102 bytes) Hash 0a037ecd66d9a1de7d44af8fd8087388 c7d7166f03ba1b3e8152014656eb21c69b77f9d7 ce2fece8c4f9d1d28b1ed4bd99838ac8495a912d1ce8be70ac32ae8f41f32f92 HTTP Headers GET /static/css/main.14a759b6.css HTTP/1.1 Host: www.wtgbet.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.wtgbet.com/en?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk Cookie: __cf_bm=YrJNGM71iGZiknnBtKR6RzNh3IRQC.jFZkzqUICxgA0-1713522717-1.0.1.1-CeBHB5002b1lRG_aAhySwnB.Bu3_IoQdHQ1lgF3M2o6nEFxPZxfkiVn0NgZhm9jlAmkBIJmOQ3X8XiQ7G3e1tQ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK date: Fri, 19 Apr 2024 10:31:59 GMT content-type: text/css; charset=UTF-8 cache-control: public, max-age=14400 last-modified: Thu, 18 Apr 2024 07:32:06 GMT etag: W/"66-18ef01eacf0" vary: Accept-Encoding cf-cache-status: MISS expires: Fri, 19 Apr 2024 14:31:59 GMT server: cloudflare cf-ray: 876c3a5ccd0d56b9-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	ekr.zdassets.com/compose/248c8ea3-8067-45f2-bcd1-a0154d7c10de	104.18.72.113	200 OK	1.1 kB
URL GET HTTP/2 ekr.zdassets.com/compose/248c8ea3-8067-45f2-bcd1-a0154d7c10de IP 104.18.72.113:443 ASN #13335 CLOUDFLARENET Requested by https://www.wtgbet.com/en?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk Certificate IssuerLet's Encrypt Subjectzdassets.com FingerprintF8:AF:5C:DB:58:D5:35:9F:56:A0:A1:A2:92:FE:E3:BA:26:DA:5D:2D ValiditySun, 03 Mar 2024 22:41:52 GMT - Sat, 01 Jun 2024 22:41:51 GMT File type troff or preprocessor input, ASCII text, with very long lines (1260), with no line terminators Size 1.1 kB (1127 bytes) Hash 23988326ee6ecbc621401841bedea3e8 efc292f11b466b25d3cef4af902b9f455da7d468 e69b33471691f5728c79f78dd6f92d8da73fa9a4d625dc0c53580859b98251e4 HTTP Headers `GET /compose/248c8ea3-8067-45f2-bcd1-a0154d7c10de HTTP/1.1 Host: ekr.zdassets.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.wtgbet.com/ Origin: https://www.wtgbet.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Fri, 19 Apr 2024 10:31:59 GMT content-type: application/json; charset=utf-8 access-control-allow-origin: * access-control-allow-methods: GET, POST, OPTIONS access-control-expose-headers: access-control-max-age: 7200 x-frame-options: SAMEORIGIN x-xss-protection: 1; mode=block x-content-type-options: nosniff x-download-options: noopen x-permitted-cross-domain-policies: none referrer-policy: strict-origin-when-cross-origin cdn-cache-control: max-age=60 vary: Accept, Origin, Accept-Encoding cache-control: max-age=300, public, stale-while-revalidate=300, stale-if-error=21600 etag: W/"5859106cd1c97a3b545ee1fdd7acf64c" x-request-id: 872abbe99fb31a8e-SEA, 872abbe99fb31a8e-SEA x-runtime: 0.019846 x-zendesk-zorg: yes cf-cache-status: REVALIDATED report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=s1i4P1ln9kojtbCy9Rg8AnGkjGGiDR6CRBPGIfWE4MyIBB546hoGFukF6UR0fv4sXXW5xVpxYOGqXq%2FSwfA3Xl4TVPyaCjCTzUVQVbGp16heHHJSrsgVtZby5Rf0YMdOi2Q%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} strict-transport-security: max-age=0 server: cloudflare cf-ray: 876c3a63bb7356a5-OSL content-encoding: br X-Firefox-Spdy: h2

	widget-mediator.zopim.com/s/W/ws/Lqi3hFXtukgixqVY/c/1713522720012	3.126.222.237	101 Switching Protocols	0 B
URL GET HTTP/1.1 widget-mediator.zopim.com/s/W/ws/Lqi3hFXtukgixqVY/c/1713522720012 IP 3.126.222.237:443 ASN #16509 AMAZON-02 Requested by https://www.wtgbet.com/en?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk Certificate IssuerAmazon Subject.zopim.com Fingerprint3D:9B:0C:BE:81:D4:7E:DE:86:28:44:DB:EC:B7:0B:A0:77:16:4D:BC ValiditySun, 08 Oct 2023 00:00:00 GMT - Wed, 06 Nov 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /s/W/ws/Lqi3hFXtukgixqVY/c/1713522720012 HTTP/1.1 Host: widget-mediator.zopim.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: https://www.wtgbet.com Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: 7J5lXHfP2HJCJObGLyJiSA== DNT: 1 Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket HTTP/1.1 101 Switching Protocols Date: Fri, 19 Apr 2024 10:32:00 GMT Connection: upgrade Set-Cookie: AWSALB=NzUDYIaYqGF/2c91MQ3ImJbs+OAD161Y9N0VaccLj07bw1m9M2k6wbBFTS5csQvmIOd6EIAQ8rLBz7T5VDqbLaV2y6ofU8dsdLkLLqzFf841s0s7A1aLHWyFlYgx; Expires=Fri, 26 Apr 2024 10:32:00 GMT; Path=/ AWSALBCORS=NzUDYIaYqGF/2c91MQ3ImJbs+OAD161Y9N0VaccLj07bw1m9M2k6wbBFTS5csQvmIOd6EIAQ8rLBz7T5VDqbLaV2y6ofU8dsdLkLLqzFf841s0s7A1aLHWyFlYgx; Expires=Fri, 26 Apr 2024 10:32:00 GMT; Path=/; SameSite=None; Secure Upgrade: websocket Sec-WebSocket-Accept: ffhQxysBjd2ffgQimwwrZevhyzk= Sec-WebSocket-Version: 13 WebSocket-Server: uWebSockets

	static.zdassets.com/web_widget/classic/latest/web-widget-locales/classic/en-us-json-7bc1c0f.js	104.18.72.113	200 OK	26 kB
URL GET HTTP/2 static.zdassets.com/web_widget/classic/latest/web-widget-locales/classic/en-us-json-7bc1c0f.js IP 104.18.72.113:443 ASN #13335 CLOUDFLARENET Requested by https://www.wtgbet.com/en?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk Certificate IssuerLet's Encrypt Subjectzdassets.com FingerprintF8:AF:5C:DB:58:D5:35:9F:56:A0:A1:A2:92:FE:E3:BA:26:DA:5D:2D ValiditySun, 03 Mar 2024 22:41:52 GMT - Sat, 01 Jun 2024 22:41:51 GMT File type Size 26 kB (25711 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /web_widget/classic/latest/web-widget-locales/classic/en-us-json-7bc1c0f.js HTTP/1.1 Host: static.zdassets.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Fri, 19 Apr 2024 10:31:59 GMT content-type: application/javascript; charset=utf-8 x-amz-id-2: W9B1SBtAeKjZ8kR3+2GgpY7yqrRwEUd74ifS+fdKkR32Prbx0bEwMeNV6dGVRlF6Cg02ybWPMLk= x-amz-request-id: DKWT4SJ3NP0VX855 x-amz-replication-status: COMPLETED last-modified: Mon, 08 Apr 2024 13:46:15 GMT etag: W/"6eb45e96a7cbb4b8ca10897f3cf09981" x-amz-server-side-encryption: AES256 cache-control: public, max-age=31536000 expires: Tue, 08 Apr 2025 13:46:13 GMT x-amz-version-id: LLNIVxZ_bojnmbOmqAvI_43_VNrKfel_ cf-cache-status: HIT age: 686809 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bTK9Y57VIiCLzKjECJRzQCR1zceF4xOhNL3lAwitqgeRt2Bxj1o%2B5N7E7vGNLPEdBolqHpA90o0igTjDbiaD%2FnixJFlwKPasVsVT2uNt22kZMWxC1iIdplklC8lMdGASCs3pEvI%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding strict-transport-security: max-age=0 access-control-allow-headers: * access-control-allow-methods: GET, HEAD access-control-allow-origin: * access-control-max-age: 0 server: cloudflare cf-ray: 876c3a67589356ab-OSL content-encoding: br X-Firefox-Spdy: h2

	static.zdassets.com/web_widget/classic/latest/web-widget-chat-sdk-7bc1c0f.js	104.18.72.113	200 OK	207 kB
URL GET HTTP/2 static.zdassets.com/web_widget/classic/latest/web-widget-chat-sdk-7bc1c0f.js IP 104.18.72.113:443 ASN #13335 CLOUDFLARENET Requested by https://www.wtgbet.com/en?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk Certificate IssuerLet's Encrypt Subjectzdassets.com FingerprintF8:AF:5C:DB:58:D5:35:9F:56:A0:A1:A2:92:FE:E3:BA:26:DA:5D:2D ValiditySun, 03 Mar 2024 22:41:52 GMT - Sat, 01 Jun 2024 22:41:51 GMT File type JavaScript source, ASCII text, with very long lines (65307) Size 207 kB (206903 bytes) Hash b8284a4b45e40625c2b90a641ebe4a68 8285ea200e6679b92b07818033ee54199ccc13d5 965cba95c928e95003ce37271090406eaa7d5c2d955230a785b2b3be8a9a17f5 HTTP Headers `GET /web_widget/classic/latest/web-widget-chat-sdk-7bc1c0f.js HTTP/1.1 Host: static.zdassets.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Fri, 19 Apr 2024 10:31:59 GMT content-type: application/javascript; charset=utf-8 x-amz-id-2: XxQ8S/lBv1OtyK14Vkg8IAF2w1ME0kGwFoL/pkM7jEvNEGJZFHeFeFmAEaVODwS7Try+N51fJGM= x-amz-request-id: 7P01XWB44YSSFFP5 x-amz-replication-status: COMPLETED last-modified: Mon, 08 Apr 2024 13:46:13 GMT etag: W/"b8284a4b45e40625c2b90a641ebe4a68" x-amz-server-side-encryption: AES256 cache-control: public, max-age=31536000 expires: Tue, 08 Apr 2025 13:46:12 GMT x-amz-version-id: PnwdCuJviouphoOKkGhIayUUaC4tYXWL cf-cache-status: HIT age: 686809 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8yvAzssJYMubFJD0Fip4SgiP4HOQn%2FLP%2FTwPqukrdoHaYJCkG%2BOdvyfmKo6eb7HO4FPVlPiS9RmEyD1qa%2BPWZtziNRxD8fFGWnETahmuQvYmUAdoUqduLcYbj6LpCeXNpgrIRUk%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding strict-transport-security: max-age=0 access-control-allow-headers: * access-control-allow-methods: GET, HEAD access-control-allow-origin: * access-control-max-age: 0 server: cloudflare cf-ray: 876c3a6788c256ab-OSL content-encoding: br X-Firefox-Spdy: h2

	www.wtgbet.com/fonts/poppins.22b58d77fb4155457200fae20cf07b96.css	104.18.37.151	200 OK	1.0 kB
URL GET HTTP/2 www.wtgbet.com/fonts/poppins.22b58d77fb4155457200fae20cf07b96.css IP 104.18.37.151:443 ASN #13335 CLOUDFLARENET Requested by https://www.wtgbet.com/en?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk Certificate IssuerLet's Encrypt Subjectwtgbet.com FingerprintF3:E0:BF:0E:8D:73:65:11:73:EE:F9:5A:94:B6:03:87:4B:F9:AC:C0 ValiditySun, 14 Apr 2024 08:57:41 GMT - Sat, 13 Jul 2024 08:57:40 GMT File type ASCII text, with very long lines (1080), with no line terminators Size 1.0 kB (1044 bytes) Hash b30b7069dbfa29c12656d1573c08dbdc 63f3e4211c956f7520ce8d4fec4569952efa555b 0cc108f9eac5160f6cf3809a45fbdc71d1a9ea0fbb00d9ae433fa98f798fe42e HTTP Headers GET /fonts/poppins.22b58d77fb4155457200fae20cf07b96.css HTTP/1.1 Host: www.wtgbet.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.wtgbet.com/en?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk Cookie: __cf_bm=YrJNGM71iGZiknnBtKR6RzNh3IRQC.jFZkzqUICxgA0-1713522717-1.0.1.1-CeBHB5002b1lRG_aAhySwnB.Bu3_IoQdHQ1lgF3M2o6nEFxPZxfkiVn0NgZhm9jlAmkBIJmOQ3X8XiQ7G3e1tQ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK date: Fri, 19 Apr 2024 10:31:58 GMT content-type: text/css; charset=UTF-8 cache-control: public, max-age=14400 last-modified: Thu, 18 Apr 2024 15:01:59 GMT etag: W/"414-18ef1ba9008" vary: Accept-Encoding content-encoding: gzip cf-cache-status: MISS expires: Fri, 19 Apr 2024 14:31:58 GMT server: cloudflare cf-ray: 876c3a5cccf956b9-OSL X-Firefox-Spdy: h2`

	js.hcaptcha.com/1/api.js	104.18.124.91	200 OK	387 kB
URL GET HTTP/2 js.hcaptcha.com/1/api.js IP 104.18.124.91:443 ASN #13335 CLOUDFLARENET Requested by https://www.wtgbet.com/en?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk Certificate IssuerLet's Encrypt Subjecthcaptcha.com Fingerprint8F:BD:51:60:5C:FC:EA:F0:74:47:AB:AC:1B:84:1A:7E:3C:68:A7:E5 ValidityFri, 15 Mar 2024 00:09:38 GMT - Thu, 13 Jun 2024 00:09:37 GMT File type Size 387 kB (387091 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /1/api.js HTTP/1.1 Host: js.hcaptcha.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.wtgbet.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Fri, 19 Apr 2024 10:31:58 GMT content-type: application/javascript etag: W/"5a68efa2b964d5c167fde3b130af8e94" cache-control: max-age=300 alt-svc: h3=":443"; ma=86400 vary: Origin, Accept-Encoding cf-cache-status: HIT expires: Fri, 03 May 2024 10:31:58 GMT strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff age: 0 cross-origin-resource-policy: cross-origin server: cloudflare cf-ray: 876c3a5d2e56569d-OSL content-encoding: br X-Firefox-Spdy: h2

	static.zdassets.com/web_widget/classic/latest/web-widget-main-7bc1c0f.js	104.18.72.113	200 OK	992 kB
URL GET HTTP/2 static.zdassets.com/web_widget/classic/latest/web-widget-main-7bc1c0f.js IP 104.18.72.113:443 ASN #13335 CLOUDFLARENET Requested by https://www.wtgbet.com/en?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk Certificate IssuerLet's Encrypt Subjectzdassets.com FingerprintF8:AF:5C:DB:58:D5:35:9F:56:A0:A1:A2:92:FE:E3:BA:26:DA:5D:2D ValiditySun, 03 Mar 2024 22:41:52 GMT - Sat, 01 Jun 2024 22:41:51 GMT File type Size 992 kB (992059 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /web_widget/classic/latest/web-widget-main-7bc1c0f.js HTTP/1.1 Host: static.zdassets.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Fri, 19 Apr 2024 10:31:59 GMT content-type: application/javascript; charset=utf-8 x-amz-id-2: ldH41+NY0+fYAgvbqFIJmvudIE2j/SxzaKSwKqxB3P/vSWpJ08HqoFV2mSP6KWgMbK8lgvcvTvmD4moNqUmffw== x-amz-request-id: 64S1GV9HNQKB0DVA x-amz-replication-status: COMPLETED last-modified: Mon, 08 Apr 2024 13:46:13 GMT etag: W/"3784cf5e1ddd3a68e335f3bb4a5e2fcd" x-amz-server-side-encryption: AES256 cache-control: public, max-age=31536000 expires: Tue, 08 Apr 2025 13:46:12 GMT x-amz-version-id: _IYDenNVju8wHXIpAa8FJzBqmTlghdyK cf-cache-status: HIT age: 83 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=luJwPqJmPuFZ5Ak9wh7HsR8A2LqrXtcVKJMxvfAAWicVmznhTqOLWFY0Ba2CG%2FXJncgxEw%2Fbuwwite8daLl4YvLWVFB79nqO66yvVYoHQZZqaKEV4rhtWtbLukTLbR6Uc70GlrM%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding strict-transport-security: max-age=0 access-control-allow-headers: * access-control-allow-methods: GET, HEAD access-control-allow-origin: * access-control-max-age: 0 server: cloudflare cf-ray: 876c3a653e6656ab-OSL content-encoding: br X-Firefox-Spdy: h2

	static.rocketship.cash/sprites/currency-sprite-v17.svg	172.64.152.225	200 OK	508 kB
URL OPTIONS HTTP/2 static.rocketship.cash/sprites/currency-sprite-v17.svg IP 172.64.152.225:443 ASN #13335 CLOUDFLARENET Requested by https://www.wtgbet.com/en?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk Certificate IssuerGoogle Trust Services LLC Subjectrocketship.cash Fingerprint94:46:B7:77:1D:75:F6:AF:BA:D3:21:4A:0C:4B:3D:BF:C2:7C:52:77 ValidityFri, 01 Mar 2024 00:09:08 GMT - Thu, 30 May 2024 00:09:07 GMT File type XML document, ASCII text, with very long lines (1899) Size 508 kB (508454 bytes) Hash f0085a10aed8f14d21fd0abe6da3c58c 4bad590350699c1727879cd7b91149801b750ce0 e7e20ffe668739547f098253e2d2cd1646b72602de2a7f28b60ac7dc3db36198 HTTP Headers OPTIONS /sprites/currency-sprite-v17.svg HTTP/1.1 Host: static.rocketship.cash User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: GET Access-Control-Request-Headers: content-type,lang Referer: https://www.wtgbet.com/ Origin: https://www.wtgbet.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK date: Fri, 19 Apr 2024 10:32:00 GMT content-type: image/svg+xml cf-ray: 876c3a6d8d18b4ed-OSL cf-cache-status: HIT age: 1733 cache-control: public, max-age=14400 etag: W/"f0085a10aed8f14d21fd0abe6da3c58c" expires: Fri, 19 Apr 2024 14:32:00 GMT last-modified: Tue, 16 Apr 2024 08:38:22 GMT x-goog-generation: 1713256702718891 x-goog-hash: crc32c=UeX6DQ==, md5=8AhaEK7Y8U0h/Qq+baPFjA== x-goog-metageneration: 1 x-goog-storage-class: STANDARD x-goog-stored-content-encoding: identity x-goog-stored-content-length: 508454 x-guploader-uploadid: ABPtcPq0slpK1z5HhV-YrbtwoLIrTktThUKxqJwTQW4BsE2-Ql1HAPYJ6NUcDzJXrsnDY4KIRbawyeNG set-cookie: __cf_bm=.uNQDiREbV_.vp2d3YgI90BwJF0IhblGxlhyp8HrECI-1713522720-1.0.1.1-sJbnPHMRjZoAy9AKUeF_lT6OBgNduAbPE4Y8EbB0UvbQjSxZACLh.yKATlPSmcWRbTSql1otUU60VeADFTGVpQrA0qRHnqQ_pf5mjbKPdT0; path=/; expires=Fri, 19-Apr-24 11:02:00 GMT; domain=.rocketship.cash; HttpOnly; Secure; SameSite=None vary: Accept-Encoding access-control-allow-credentials: true access-control-allow-headers: * access-control-allow-methods: GET,OPTIONS access-control-allow-origin: * server: cloudflare content-encoding: gzip X-Firefox-Spdy: h2

	fpnpmcdn.net/v3/XQdhm1hexU436kprNVZh/loader_v3.8.5.js	54.230.111.100	200 OK	114 kB
URL GET HTTP/2 fpnpmcdn.net/v3/XQdhm1hexU436kprNVZh/loader_v3.8.5.js IP 54.230.111.100:443 ASN #16509 AMAZON-02 Requested by https://www.wtgbet.com/en?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk Certificate IssuerAmazon Subjectfpcdn.io Fingerprint50:73:A9:9D:5E:A5:A2:57:0B:73:8F:D2:B2:1E:8A:5D:A7:FF:F8:16 ValidityTue, 10 Oct 2023 00:00:00 GMT - Fri, 08 Nov 2024 23:59:59 GMT File type Size 114 kB (114196 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /v3/XQdhm1hexU436kprNVZh/loader_v3.8.5.js HTTP/1.1 Host: fpnpmcdn.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.wtgbet.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/javascript; charset=utf-8 server: CloudFront date: Thu, 18 Apr 2024 19:49:36 GMT cache-control: public, max-age=3580, s-maxage=576375 access-control-allow-origin: * cross-origin-resource-policy: cross-origin timing-allow-origin: * strict-transport-security: max-age=63072000; includeSubDomains; preload x-content-type-options: nosniff etag: W/"xPTaTawuJafDm2nlwdfUkSR5HoI" content-encoding: gzip vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 alt-svc: h3=":443"; ma=86400 x-amz-cf-id: mfmrb0Kc0oRNZhaLhx1FsfJyc_6h8PBOsyqykW3w1rIS8h4pQQeQyg== age: 52944 X-Firefox-Spdy: h2

	static.rocketship.cash/sprites/currency-sprite-v17.svg	172.64.152.225	200 OK	508 kB
URL GET HTTP/2 static.rocketship.cash/sprites/currency-sprite-v17.svg IP 172.64.152.225:443 ASN #13335 CLOUDFLARENET Requested by https://www.wtgbet.com/en?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk Certificate IssuerGoogle Trust Services LLC Subjectrocketship.cash Fingerprint94:46:B7:77:1D:75:F6:AF:BA:D3:21:4A:0C:4B:3D:BF:C2:7C:52:77 ValidityFri, 01 Mar 2024 00:09:08 GMT - Thu, 30 May 2024 00:09:07 GMT File type XML document, ASCII text, with very long lines (1899) Size 508 kB (508454 bytes) Hash f0085a10aed8f14d21fd0abe6da3c58c 4bad590350699c1727879cd7b91149801b750ce0 e7e20ffe668739547f098253e2d2cd1646b72602de2a7f28b60ac7dc3db36198 HTTP Headers `GET /sprites/currency-sprite-v17.svg HTTP/1.1 Host: static.rocketship.cash User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.wtgbet.com/ lang: en Content-Type: application/json Origin: https://www.wtgbet.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Fri, 19 Apr 2024 10:32:00 GMT content-type: image/svg+xml cf-ray: 876c3a6dcd4cb4ed-OSL cf-cache-status: HIT age: 1733 cache-control: public, max-age=14400 etag: W/"f0085a10aed8f14d21fd0abe6da3c58c" expires: Fri, 19 Apr 2024 14:32:00 GMT last-modified: Tue, 16 Apr 2024 08:38:22 GMT x-goog-generation: 1713256702718891 x-goog-hash: crc32c=UeX6DQ==, md5=8AhaEK7Y8U0h/Qq+baPFjA== x-goog-metageneration: 1 x-goog-storage-class: STANDARD x-goog-stored-content-encoding: identity x-goog-stored-content-length: 508454 x-guploader-uploadid: ABPtcPq0slpK1z5HhV-YrbtwoLIrTktThUKxqJwTQW4BsE2-Ql1HAPYJ6NUcDzJXrsnDY4KIRbawyeNG set-cookie: __cf_bm=lZjeAeVco.8vHshjCIUE8hfg3SBBrYfNZKeAnUEqsrg-1713522720-1.0.1.1-rlMI5aXEoo0AtwlmTqI2xUp_2.TFXAYYXEvQBl0NxciTDtZklsB45kFJ8sUZ.JrMz6cV6CmBx0GrI6RaqzxdqiMMOnZyznQvJ0aUuy9BqaA; path=/; expires=Fri, 19-Apr-24 11:02:00 GMT; domain=.rocketship.cash; HttpOnly; Secure; SameSite=None vary: Accept-Encoding access-control-allow-credentials: true access-control-allow-headers: * access-control-allow-methods: GET,OPTIONS access-control-allow-origin: * server: cloudflare content-encoding: gzip X-Firefox-Spdy: h2

	www.wtgbet.com/static/js/main.3dea95f5.js	104.18.37.151	200 OK	2.1 MB
URL GET HTTP/2 www.wtgbet.com/static/js/main.3dea95f5.js IP 104.18.37.151:443 ASN #13335 CLOUDFLARENET Requested by https://www.wtgbet.com/en?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk Certificate IssuerLet's Encrypt Subjectwtgbet.com FingerprintF3:E0:BF:0E:8D:73:65:11:73:EE:F9:5A:94:B6:03:87:4B:F9:AC:C0 ValiditySun, 14 Apr 2024 08:57:41 GMT - Sat, 13 Jul 2024 08:57:40 GMT File type Size 2.1 MB (2069359 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /static/js/main.3dea95f5.js HTTP/1.1 Host: www.wtgbet.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.wtgbet.com/en?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk Cookie: __cf_bm=YrJNGM71iGZiknnBtKR6RzNh3IRQC.jFZkzqUICxgA0-1713522717-1.0.1.1-CeBHB5002b1lRG_aAhySwnB.Bu3_IoQdHQ1lgF3M2o6nEFxPZxfkiVn0NgZhm9jlAmkBIJmOQ3X8XiQ7G3e1tQ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK date: Fri, 19 Apr 2024 10:31:59 GMT content-type: application/javascript cache-control: public, max-age=14400 last-modified: Thu, 18 Apr 2024 07:32:06 GMT etag: W/"1f936f-18ef01eacf0" vary: Accept-Encoding content-encoding: gzip cf-cache-status: MISS expires: Fri, 19 Apr 2024 14:31:59 GMT server: cloudflare cf-ray: 876c3a5ccd0856b9-OSL X-Firefox-Spdy: h2`

	www.wtgbet.com/cdn/system/fonts/06fece0c-a99f-4bac-847c-f89c761f3939.ttf	104.18.37.151	200 OK	158 kB
URL GET HTTP/2 www.wtgbet.com/cdn/system/fonts/06fece0c-a99f-4bac-847c-f89c761f3939.ttf IP 104.18.37.151:443 ASN #13335 CLOUDFLARENET Requested by https://www.wtgbet.com/en?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk Certificate IssuerLet's Encrypt Subjectwtgbet.com FingerprintF3:E0:BF:0E:8D:73:65:11:73:EE:F9:5A:94:B6:03:87:4B:F9:AC:C0 ValiditySun, 14 Apr 2024 08:57:41 GMT - Sat, 13 Jul 2024 08:57:40 GMT File type TrueType Font data, 13 tables, 1st "GDEF", 17 names, Microsoft, language 0x409 Size 158 kB (158240 bytes) Hash 093ee89be9ede30383f39a899c485a82 fdd3002e7d814ee47c1c1b8487c72c6bbb3a2d00 707fdc5c8bab57a90061c6a8ed7b70d5ffb82fc810e994e79f90bace890c255a HTTP Headers GET /cdn/system/fonts/06fece0c-a99f-4bac-847c-f89c761f3939.ttf HTTP/1.1 Host: www.wtgbet.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.wtgbet.com/fonts/poppins.22b58d77fb4155457200fae20cf07b96.css Cookie: __cf_bm=YrJNGM71iGZiknnBtKR6RzNh3IRQC.jFZkzqUICxgA0-1713522717-1.0.1.1-CeBHB5002b1lRG_aAhySwnB.Bu3_IoQdHQ1lgF3M2o6nEFxPZxfkiVn0NgZhm9jlAmkBIJmOQ3X8XiQ7G3e1tQ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK date: Fri, 19 Apr 2024 10:31:59 GMT content-type: application/octet-stream content-length: 158240 cf-ray: 876c3a63bc5d56b9-OSL cf-cache-status: REVALIDATED accept-ranges: bytes cache-control: public, max-age=14400 etag: "093ee89be9ede30383f39a899c485a82" expires: Fri, 19 Apr 2024 14:31:59 GMT last-modified: Tue, 05 Mar 2024 11:54:59 GMT vary: Accept-Encoding server: cloudflare X-Firefox-Spdy: h2`

	platform-gateway.wtgbet.com/cms-service/api/frontend/translations/en	172.64.150.105	200 OK	78 kB
URL GET HTTP/2 platform-gateway.wtgbet.com/cms-service/api/frontend/translations/en IP 172.64.150.105:443 ASN #13335 CLOUDFLARENET Requested by https://www.wtgbet.com/en?affiliateid=0PM5AahThDLp0ma4biob0WNd7ZgqdRLk Certificate IssuerLet's Encrypt Subjectwtgbet.com FingerprintF3:E0:BF:0E:8D:73:65:11:73:EE:F9:5A:94:B6:03:87:4B:F9:AC:C0 ValiditySun, 14 Apr 2024 08:57:41 GMT - Sat, 13 Jul 2024 08:57:40 GMT File type Size 78 kB (77905 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /cms-service/api/frontend/translations/en HTTP/1.1 Host: platform-gateway.wtgbet.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.wtgbet.com DNT: 1 Connection: keep-alive Referer: https://www.wtgbet.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Fri, 19 Apr 2024 10:32:01 GMT content-type: application/json vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers access-control-allow-origin: https://www.wtgbet.com access-control-expose-headers: *, Authorization access-control-allow-credentials: true x-content-type-options: nosniff x-xss-protection: 0 cache-control: no-cache, no-store, max-age=0, must-revalidate pragma: no-cache expires: 0 x-frame-options: DENY cf-cache-status: DYNAMIC set-cookie: __cf_bm=NuV9xjPGplptBf_CbodihMztKB78VB2mxqvX1_VVEQ0-1713522721-1.0.1.1-WgWG7dEuwcnrFCYJaP0k4_lpcOYLKpQ85eVFZwSiUnpx3ftHARobMyv3qkJrGPmzo3AIDtv4.IOxMLbAqVNaSw; path=/; expires=Fri, 19-Apr-24 11:02:01 GMT; domain=.wtgbet.com; HttpOnly; Secure; SameSite=None server: cloudflare cf-ray: 876c3a6d6a4056aa-OSL content-encoding: gzip X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (20)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL