| magerrentshamuel.icu/f690dac8-3a9b-441e-aaa5-021694625367?campaignid=697059&zoneid=960331&feedid=197&device=mobile&browser=Other&browserVersion=125&os=android&osVersion=android_14&isp=DigiRomania&format=onclick&cost=0.0008&clickid=GMUBOMvJAWjjxSpwmI2CAegBy846gALCqaCbhtza0gE | 18.196.86.59 | 302 Found | 0 B |
URL User Request GET HTTP/2magerrentshamuel.icu/f690dac8-3a9b-441e-aaa5-021694625367?campaignid=697059&zoneid=960331&feedid=197&device=mobile&browser=Other&browserVersion=125&os=android&osVersion=android_14&isp=DigiRomania&format=onclick&cost=0.0008&clickid=GMUBOMvJAWjjxSpwmI2CAegBy846gALCqaCbhtza0gE IP18.196.86.59:443
CertificateIssuerSectigo Limited Subjectmagerrentshamuel.icu Fingerprint6C:B6:6A:19:3C:B0:A4:BE:61:E4:73:13:12:E9:4B:B0:DE:0F:16:49 ValidityTue, 16 Jan 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /f690dac8-3a9b-441e-aaa5-021694625367?campaignid=697059&zoneid=960331&feedid=197&device=mobile&browser=Other&browserVersion=125&os=android&osVersion=android_14&isp=DigiRomania&format=onclick&cost=0.0008&clickid=GMUBOMvJAWjjxSpwmI2CAegBy846gALCqaCbhtza0gE HTTP/1.1
Host: magerrentshamuel.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Fri, 10 May 2024 05:59:01 GMT
content-length: 0
cache-control: no-store, no-cache, pre-check=0, post-check=0
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://gml-grp.com/C.ashx?btag=a_45236b_2037c_&affid=3419&siteid=45236&adid=2037&c=wa4qu7gp632ucd613msaq15g
pragma: no-cache
set-cookie: f690dac8-3a9b-441e-aaa5-021694625367-v4=EmMFLdyCcjnfgOYaaDYF6hR-qSQWc1UJY4ZRlOLGP7Y; Max-Age=86400; Expires=Sat, 11-May-2024 05:59:01 GMT; Domain=magerrentshamuel.icu; Path=/; Secure; HttpOnly;SameSite=None
cc-v4=Gl8%2Fleg%2BJ7WUaNlQfx4DXiOXhjYrqHHCk%2FkeHCUS2Rbda4gaRguFne6hk1jnKQjGWo4GhpsLcD3%2FUNmJ3NaYeluu%2BPRsEBrzVSf9MVkexeJ5JJ54syaMC6f8yvGce%2BoIkY9QpmI6%2FNK2nyhvdUoZEA%3D%3D; Max-Age=31536000; Expires=Sat, 10-May-2025 05:59:01 GMT; Domain=magerrentshamuel.icu; Path=/; Secure; HttpOnly;SameSite=None
X-Firefox-Spdy: h2
|
|
| ro.betano.com/cdn-cgi/challenge-platform/scripts/jsd/main.js | 104.19.233.130 | 302 Found | 0 B |
URL GET HTTP/2ro.betano.com/cdn-cgi/challenge-platform/scripts/jsd/main.js IP104.19.233.130:443
Requested byhttps://ro.betano.com/deals/o-lume-plina-de-actiune?btag=a_45236b_2037c_wa4qu7gp632ucd613msaq15g[CustomMergeFields]&siteid=45236 CertificateIssuerCloudflare, Inc. Subjectbetano.com FingerprintD0:1E:FE:D2:D8:14:BE:3C:B6:EA:87:2D:79:DA:D7:0D:9A:D3:B3:BB ValiditySun, 31 Dec 2023 00:00:00 GMT - Mon, 30 Dec 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: ro.betano.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=UDu8A8BouYZ0SYLdVhC1EjUUUg3HQBiFQjWKIByxynM-1715320741-1.0.1.1-jvDXFw.6YHJAUiK.Nb.ze8LUR6qL2zPMvaGFQQGb8LeO9.vLaAmWe3_3_m.cztU_hZ3fPSqyYmMV2uFkZ0fPSg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
date: Fri, 10 May 2024 05:59:02 GMT
content-length: 0
location: /cdn-cgi/challenge-platform/h/g/scripts/jsd/1b3559406bc8/main.js
cache-control: max-age=300, public
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8817b36fd86f56b5-OSL
X-Firefox-Spdy: h2
|
|
| landingpages.kaizengaming.com/betano-splash-screen-bz/Betano-fifa-logo.png | 172.64.147.77 | 200 OK | 48 kB |
URL GET HTTP/2landingpages.kaizengaming.com/betano-splash-screen-bz/Betano-fifa-logo.png IP172.64.147.77:443
Requested byhttps://landingpages.kaizengaming.com/betano-splash-screen-bz/index.html CertificateIssuerLet's Encrypt Subjectlandingpages.kaizengaming.com Fingerprint5E:93:EE:84:D7:36:0F:B8:51:7A:4F:F3:A2:3A:9B:1A:7D:D4:EF:E3 ValidityFri, 29 Mar 2024 22:47:57 GMT - Thu, 27 Jun 2024 22:47:56 GMT
File typePNG image data, 764 x 232, 8-bit/color RGBA, non-interlaced Hashd594a325ce04b9f643d628069c73a60c a91f1d72781b0d4b704654ac74435319923f584c 78993d9d00d2aca8a1459e4a7d02076e2671ed76cee6f0bc35ffdd54f12ffa4e
GET /betano-splash-screen-bz/Betano-fifa-logo.png HTTP/1.1
Host: landingpages.kaizengaming.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://landingpages.kaizengaming.com/betano-splash-screen-bz/index.html
Cookie: __cf_bm=f5dO_5U1tbTvq4Z_TfY3uXp_Az_Es5VMgY_oSxxK4CE-1715320742-1.0.1.1-zeXBE.1HqiKPt9U8kMAfmbBJzwFfGrbV24B9RI6KhNoIGDOEh_HQ8BBlNi2BzKLlOFlqf_R.O2Rsz0D2GHsvKQ; _cfuvid=qoSzOxRRwj2EQaeDAL300Wx324s9GUUfRRJnCYuNHic-1715320742406-0.0.1.1-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 05:59:02 GMT
content-type: image/png
content-length: 47576
cache-control: public, max-age=900, immutable
content-md5: 1ZSjJc4EufZD1igGnHOmDA==
last-modified: Wed, 20 Mar 2024 14:21:01 GMT
etag: "0x8DC48E8F859BBC7"
x-ms-request-id: e936c2df-b01e-0014-4cd3-7a5a6d000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
vary: Accept-Encoding
cf-cache-status: HIT
age: 989
accept-ranges: bytes
server: cloudflare
cf-ray: 8817b370fde756c0-OSL
X-Firefox-Spdy: h2
|
|
| landingpages.kaizengaming.com/betano-splash-screen-bz/splash_screen.png | 172.64.147.77 | 200 OK | 174 kB |
URL GET HTTP/2landingpages.kaizengaming.com/betano-splash-screen-bz/splash_screen.png IP172.64.147.77:443
Requested byhttps://landingpages.kaizengaming.com/betano-splash-screen-bz/index.html CertificateIssuerLet's Encrypt Subjectlandingpages.kaizengaming.com Fingerprint5E:93:EE:84:D7:36:0F:B8:51:7A:4F:F3:A2:3A:9B:1A:7D:D4:EF:E3 ValidityFri, 29 Mar 2024 22:47:57 GMT - Thu, 27 Jun 2024 22:47:56 GMT
File typePNG image data, 1320 x 922, 8-bit/color RGBA, non-interlaced Size174 kB (173521 bytes) Hash363918768d8b43999fc992a22e93faf4 d81da3e4ec66a3a1ef20ccaefcc395032c2c5f1f c09a7c14316c2756bac9fa80df23d091a28d83b5a5db698fc94ed1c02115d912
GET /betano-splash-screen-bz/splash_screen.png HTTP/1.1
Host: landingpages.kaizengaming.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://landingpages.kaizengaming.com/betano-splash-screen-bz/index.html
Cookie: __cf_bm=f5dO_5U1tbTvq4Z_TfY3uXp_Az_Es5VMgY_oSxxK4CE-1715320742-1.0.1.1-zeXBE.1HqiKPt9U8kMAfmbBJzwFfGrbV24B9RI6KhNoIGDOEh_HQ8BBlNi2BzKLlOFlqf_R.O2Rsz0D2GHsvKQ; _cfuvid=qoSzOxRRwj2EQaeDAL300Wx324s9GUUfRRJnCYuNHic-1715320742406-0.0.1.1-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 05:59:02 GMT
content-type: image/png
content-length: 173521
cache-control: public, max-age=900, immutable
content-md5: NjkYdo2LQ5mfyZKiLpP69A==
last-modified: Wed, 20 Mar 2024 14:21:01 GMT
etag: "0x8DC48E8F847E41C"
x-ms-request-id: f462d268-101e-0050-2fd3-7ad052000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
age: 989
vary: Accept-Encoding
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8817b3710df056c0-OSL
X-Firefox-Spdy: h2
|
|
| ro.betano.com/cdn-cgi/challenge-platform/h/g/jsd/r/8817b36dfeed56b5 | 104.19.233.130 | 200 OK | 0 B |
URL POST HTTP/2ro.betano.com/cdn-cgi/challenge-platform/h/g/jsd/r/8817b36dfeed56b5 IP104.19.233.130:443
Requested byhttps://ro.betano.com/deals/o-lume-plina-de-actiune?btag=a_45236b_2037c_wa4qu7gp632ucd613msaq15g[CustomMergeFields]&siteid=45236 CertificateIssuerCloudflare, Inc. Subjectbetano.com FingerprintD0:1E:FE:D2:D8:14:BE:3C:B6:EA:87:2D:79:DA:D7:0D:9A:D3:B3:BB ValiditySun, 31 Dec 2023 00:00:00 GMT - Mon, 30 Dec 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/challenge-platform/h/g/jsd/r/8817b36dfeed56b5 HTTP/1.1
Host: ro.betano.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12294
Origin: https://ro.betano.com
DNT: 1
Connection: keep-alive
Referer: https://ro.betano.com/deals/o-lume-plina-de-actiune?btag=a_45236b_2037c_wa4qu7gp632ucd613msaq15g[CustomMergeFields]&siteid=45236
Cookie: __cf_bm=UDu8A8BouYZ0SYLdVhC1EjUUUg3HQBiFQjWKIByxynM-1715320741-1.0.1.1-jvDXFw.6YHJAUiK.Nb.ze8LUR6qL2zPMvaGFQQGb8LeO9.vLaAmWe3_3_m.cztU_hZ3fPSqyYmMV2uFkZ0fPSg
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 05:59:02 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
set-cookie: cf_clearance=z6t1.Dlr1ZvFO65DcRWoXOIDCZeWdygsEvzi70x11dQ-1715320742-1.0.1.1-6It9ta9oTwLGS2BbelkfdNIcj6Vq5Ed1Vjf6L9aIBPh534S2f4qYtRvPj49DngeZXhFzxmI3.FKQKgXOa5iBCg; Path=/; Expires=Sat, 10-May-25 05:59:02 GMT; Domain=.betano.com; HttpOnly; Secure; SameSite=None; Partitioned
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8817b37159ed56b5-OSL
X-Firefox-Spdy: h2
|
|
| ro.betano.com/favicon.ico | 104.19.233.130 | 403 Forbidden | 31 kB |
URL GET HTTP/2ro.betano.com/favicon.ico IP104.19.233.130:443
Requested byhttps://ro.betano.com/deals/o-lume-plina-de-actiune?btag=a_45236b_2037c_wa4qu7gp632ucd613msaq15g[CustomMergeFields]&siteid=45236 CertificateIssuerCloudflare, Inc. Subjectbetano.com FingerprintD0:1E:FE:D2:D8:14:BE:3C:B6:EA:87:2D:79:DA:D7:0D:9A:D3:B3:BB ValiditySun, 31 Dec 2023 00:00:00 GMT - Mon, 30 Dec 2024 23:59:59 GMT
File typeHTML document, ASCII text Hashc329b15c2dc00ff29c072ca7063b9f04 34a865394c222fa69b6628eade6c08d541100f0f 981d58d4243e844f994dd3cf1fec174578eaa82e400ff44141267acd69fd6d8e
GET /favicon.ico HTTP/1.1
Host: ro.betano.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ro.betano.com/deals/o-lume-plina-de-actiune?btag=a_45236b_2037c_wa4qu7gp632ucd613msaq15g[CustomMergeFields]&siteid=45236
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=UDu8A8BouYZ0SYLdVhC1EjUUUg3HQBiFQjWKIByxynM-1715320741-1.0.1.1-jvDXFw.6YHJAUiK.Nb.ze8LUR6qL2zPMvaGFQQGb8LeO9.vLaAmWe3_3_m.cztU_hZ3fPSqyYmMV2uFkZ0fPSg
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 403 Forbidden
date: Fri, 10 May 2024 05:59:02 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: max-age=15
expires: Fri, 10 May 2024 05:59:17 GMT
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8817b36fc86b56b5-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| landingpages.kaizengaming.com/cdn-cgi/challenge-platform/scripts/jsd/main.js | 172.64.147.77 | 302 Found | 0 B |
URL GET HTTP/2landingpages.kaizengaming.com/cdn-cgi/challenge-platform/scripts/jsd/main.js IP172.64.147.77:443
Requested byhttps://landingpages.kaizengaming.com/betano-splash-screen-bz/index.html CertificateIssuerLet's Encrypt Subjectlandingpages.kaizengaming.com Fingerprint5E:93:EE:84:D7:36:0F:B8:51:7A:4F:F3:A2:3A:9B:1A:7D:D4:EF:E3 ValidityFri, 29 Mar 2024 22:47:57 GMT - Thu, 27 Jun 2024 22:47:56 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: landingpages.kaizengaming.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=f5dO_5U1tbTvq4Z_TfY3uXp_Az_Es5VMgY_oSxxK4CE-1715320742-1.0.1.1-zeXBE.1HqiKPt9U8kMAfmbBJzwFfGrbV24B9RI6KhNoIGDOEh_HQ8BBlNi2BzKLlOFlqf_R.O2Rsz0D2GHsvKQ; _cfuvid=qoSzOxRRwj2EQaeDAL300Wx324s9GUUfRRJnCYuNHic-1715320742406-0.0.1.1-604800000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
date: Fri, 10 May 2024 05:59:02 GMT
content-length: 0
access-control-allow-origin: *
location: /cdn-cgi/challenge-platform/h/g/scripts/jsd/1b3559406bc8/main.js
cache-control: max-age=300, public
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817b3725f3f56c0-OSL
X-Firefox-Spdy: h2
|
|
| landingpages.kaizengaming.com/cdn-cgi/challenge-platform/h/g/jsd/r/8817b36fcd0d56c0 | 172.64.147.77 | 200 OK | 0 B |
URL POST HTTP/2landingpages.kaizengaming.com/cdn-cgi/challenge-platform/h/g/jsd/r/8817b36fcd0d56c0 IP172.64.147.77:443
Requested byhttps://landingpages.kaizengaming.com/betano-splash-screen-bz/index.html CertificateIssuerLet's Encrypt Subjectlandingpages.kaizengaming.com Fingerprint5E:93:EE:84:D7:36:0F:B8:51:7A:4F:F3:A2:3A:9B:1A:7D:D4:EF:E3 ValidityFri, 29 Mar 2024 22:47:57 GMT - Thu, 27 Jun 2024 22:47:56 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/challenge-platform/h/g/jsd/r/8817b36fcd0d56c0 HTTP/1.1
Host: landingpages.kaizengaming.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12218
Origin: https://landingpages.kaizengaming.com
DNT: 1
Connection: keep-alive
Referer: https://landingpages.kaizengaming.com/betano-splash-screen-bz/index.html
Cookie: __cf_bm=f5dO_5U1tbTvq4Z_TfY3uXp_Az_Es5VMgY_oSxxK4CE-1715320742-1.0.1.1-zeXBE.1HqiKPt9U8kMAfmbBJzwFfGrbV24B9RI6KhNoIGDOEh_HQ8BBlNi2BzKLlOFlqf_R.O2Rsz0D2GHsvKQ; _cfuvid=qoSzOxRRwj2EQaeDAL300Wx324s9GUUfRRJnCYuNHic-1715320742406-0.0.1.1-604800000
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 05:59:03 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
set-cookie: cf_clearance=YeUcd5v9eYG9BMm6H15ah_fVH7W8OIO4ZtlNP1fLVpU-1715320743-1.0.1.1-gE_4L8QvPkAaedlARMyekn5yl65WZmqottxjqSLp8RxcFACUszr3xdI46E__U4gd4QrCPIL1TJ5gRtUwTTSkWQ; Path=/; Expires=Sat, 10-May-25 05:59:03 GMT; Domain=.kaizengaming.com; HttpOnly; Secure; SameSite=None; Partitioned
server: cloudflare
cf-ray: 8817b373b82f56c0-OSL
X-Firefox-Spdy: h2
|
|
| landingpages.kaizengaming.com/cdn-cgi/challenge-platform/h/g/scripts/jsd/1b3559406bc8/main.js | 172.64.147.77 | 200 OK | 9.0 kB |
URL GET HTTP/2landingpages.kaizengaming.com/cdn-cgi/challenge-platform/h/g/scripts/jsd/1b3559406bc8/main.js IP172.64.147.77:443
Requested byhttps://landingpages.kaizengaming.com/betano-splash-screen-bz/index.html CertificateIssuerLet's Encrypt Subjectlandingpages.kaizengaming.com Fingerprint5E:93:EE:84:D7:36:0F:B8:51:7A:4F:F3:A2:3A:9B:1A:7D:D4:EF:E3 ValidityFri, 29 Mar 2024 22:47:57 GMT - Thu, 27 Jun 2024 22:47:56 GMT
File typegzip compressed data, from Unix Hash44aed6679522e526540fb40023f4cbbb bd22ca4b36402014de395c73faef015735488136 f93ca7128e54bc0f08fb56b6b9b75bac35df9526ab9d3226589bed04994d641a
GET /cdn-cgi/challenge-platform/h/g/scripts/jsd/1b3559406bc8/main.js HTTP/1.1
Host: landingpages.kaizengaming.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=f5dO_5U1tbTvq4Z_TfY3uXp_Az_Es5VMgY_oSxxK4CE-1715320742-1.0.1.1-zeXBE.1HqiKPt9U8kMAfmbBJzwFfGrbV24B9RI6KhNoIGDOEh_HQ8BBlNi2BzKLlOFlqf_R.O2Rsz0D2GHsvKQ; _cfuvid=qoSzOxRRwj2EQaeDAL300Wx324s9GUUfRRJnCYuNHic-1715320742406-0.0.1.1-604800000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 05:59:02 GMT
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
cache-control: max-age=14400, public
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817b3728f5056c0-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| ro.betano.com/cdn-cgi/apps/head/GYWTPyMKjTpVvx13sZbmZkPCv0k.js | 104.19.233.130 | 403 Forbidden | 4.2 kB |
URL GET HTTP/2ro.betano.com/cdn-cgi/apps/head/GYWTPyMKjTpVvx13sZbmZkPCv0k.js IP104.19.233.130:443
Requested byhttps://ro.betano.com/deals/o-lume-plina-de-actiune?btag=a_45236b_2037c_wa4qu7gp632ucd613msaq15g[CustomMergeFields]&siteid=45236 CertificateIssuerCloudflare, Inc. Subjectbetano.com FingerprintD0:1E:FE:D2:D8:14:BE:3C:B6:EA:87:2D:79:DA:D7:0D:9A:D3:B3:BB ValiditySun, 31 Dec 2023 00:00:00 GMT - Mon, 30 Dec 2024 23:59:59 GMT
File typeHTML document, ASCII text Hashc329b15c2dc00ff29c072ca7063b9f04 34a865394c222fa69b6628eade6c08d541100f0f 981d58d4243e844f994dd3cf1fec174578eaa82e400ff44141267acd69fd6d8e
GET /cdn-cgi/apps/head/GYWTPyMKjTpVvx13sZbmZkPCv0k.js HTTP/1.1
Host: ro.betano.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ro.betano.com/deals/o-lume-plina-de-actiune?btag=a_45236b_2037c_wa4qu7gp632ucd613msaq15g[CustomMergeFields]&siteid=45236
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=UDu8A8BouYZ0SYLdVhC1EjUUUg3HQBiFQjWKIByxynM-1715320741-1.0.1.1-jvDXFw.6YHJAUiK.Nb.ze8LUR6qL2zPMvaGFQQGb8LeO9.vLaAmWe3_3_m.cztU_hZ3fPSqyYmMV2uFkZ0fPSg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 403 Forbidden
date: Fri, 10 May 2024 05:59:02 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: max-age=15
expires: Fri, 10 May 2024 05:59:17 GMT
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8817b36f481056b5-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| landingpages.kaizengaming.com/betano-splash-screen-bz/common.js | 172.64.147.77 | 200 OK | 13 kB |
URL GET HTTP/2landingpages.kaizengaming.com/betano-splash-screen-bz/common.js IP172.64.147.77:443
Requested byhttps://landingpages.kaizengaming.com/betano-splash-screen-bz/index.html CertificateIssuerLet's Encrypt Subjectlandingpages.kaizengaming.com Fingerprint5E:93:EE:84:D7:36:0F:B8:51:7A:4F:F3:A2:3A:9B:1A:7D:D4:EF:E3 ValidityFri, 29 Mar 2024 22:47:57 GMT - Thu, 27 Jun 2024 22:47:56 GMT
File typegzip compressed data, from Unix Hash5a0ce06023cb80a048a63197e7237f88 e1382df6d65ca8262d6dc94825db57b4b1522876 bdfb5a6a72dc6bbe0c181599236242e5ab7db8535af8a7abc925def91c5037b3
GET /betano-splash-screen-bz/common.js HTTP/1.1
Host: landingpages.kaizengaming.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://landingpages.kaizengaming.com/betano-splash-screen-bz/index.html
Cookie: __cf_bm=f5dO_5U1tbTvq4Z_TfY3uXp_Az_Es5VMgY_oSxxK4CE-1715320742-1.0.1.1-zeXBE.1HqiKPt9U8kMAfmbBJzwFfGrbV24B9RI6KhNoIGDOEh_HQ8BBlNi2BzKLlOFlqf_R.O2Rsz0D2GHsvKQ; _cfuvid=qoSzOxRRwj2EQaeDAL300Wx324s9GUUfRRJnCYuNHic-1715320742406-0.0.1.1-604800000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 05:59:02 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=900, immutable
content-md5: L+yKRX+DNQfJu3Rejg+ceQ==
last-modified: Wed, 20 Mar 2024 14:20:54 GMT
etag: W/"0x8DC48E8F468A3B5"
x-ms-request-id: e92e5fbd-b01e-0014-40d2-7a5a6d000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
age: 989
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
server: cloudflare
cf-ray: 8817b370edd956c0-OSL
X-Firefox-Spdy: h2
|
|
| landingpages.kaizengaming.com/betano-splash-screen-bz/style.css | 172.64.147.77 | 200 OK | 76 B |
URL GET HTTP/2landingpages.kaizengaming.com/betano-splash-screen-bz/style.css IP172.64.147.77:443
Requested byhttps://landingpages.kaizengaming.com/betano-splash-screen-bz/index.html CertificateIssuerLet's Encrypt Subjectlandingpages.kaizengaming.com Fingerprint5E:93:EE:84:D7:36:0F:B8:51:7A:4F:F3:A2:3A:9B:1A:7D:D4:EF:E3 ValidityFri, 29 Mar 2024 22:47:57 GMT - Thu, 27 Jun 2024 22:47:56 GMT
File typeASCII text, with no line terminators Hash1786707c8e8e941d27002432d60354bd 86c0607885c64fe6f8ec0b95ee304b7c0ed054af e23dbc96ee3f26176ca5e02345aad830df99cae8621278d5ea01a30e9c6dfc7e
GET /betano-splash-screen-bz/style.css HTTP/1.1
Host: landingpages.kaizengaming.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://landingpages.kaizengaming.com/betano-splash-screen-bz/index.html
Cookie: __cf_bm=f5dO_5U1tbTvq4Z_TfY3uXp_Az_Es5VMgY_oSxxK4CE-1715320742-1.0.1.1-zeXBE.1HqiKPt9U8kMAfmbBJzwFfGrbV24B9RI6KhNoIGDOEh_HQ8BBlNi2BzKLlOFlqf_R.O2Rsz0D2GHsvKQ; _cfuvid=qoSzOxRRwj2EQaeDAL300Wx324s9GUUfRRJnCYuNHic-1715320742406-0.0.1.1-604800000
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 05:59:02 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=900, immutable
content-md5: ZxXRan+lPFSn/gcapNFmtQ==
last-modified: Wed, 20 Mar 2024 14:21:01 GMT
etag: W/"0x8DC48E8F8401D06"
x-ms-request-id: 6daa03c4-701e-0056-7fd2-7ae3ed000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
age: 989
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
server: cloudflare
cf-ray: 8817b370ddcc56c0-OSL
X-Firefox-Spdy: h2
|
|
| gml-grp.com/C.ashx?btag=a_45236b_2037c_&affid=3419&siteid=45236&adid=2037&c=wa4qu7gp632ucd613msaq15g | 188.114.97.1 | 302 Found | 1.6 kB |
URL User Request GET HTTP/2gml-grp.com/C.ashx?btag=a_45236b_2037c_&affid=3419&siteid=45236&adid=2037&c=wa4qu7gp632ucd613msaq15g IP188.114.97.1:443
CertificateIssuerLet's Encrypt Subjectgml-grp.com FingerprintEA:11:0F:05:E6:EB:73:11:61:DA:4A:24:DA:AB:52:B8:C1:93:A2:E4 ValidityThu, 18 Apr 2024 15:57:01 GMT - Wed, 17 Jul 2024 15:57:00 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /C.ashx?btag=a_45236b_2037c_&affid=3419&siteid=45236&adid=2037&c=wa4qu7gp632ucd613msaq15g HTTP/1.1
Host: gml-grp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 10 May 2024 05:59:01 GMT
content-type: text/html; charset=utf-8
cache-control: private
location: //gml-grp.com/C.ashx?btag=a_45236b_2037c_&affid=3419&siteid=45236&adid=2037&c=wa4qu7gp632ucd613msaq15g&AutoR=1
x-aspnetmvc-version: 5.3
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=repF6paD6I1Iu924P06g76BLYLWlWGkG%2BOqq5yvRiElkFwhc8kl2bbhE%2BFZgpPDtP24OnCZwqvJ%2BPzz6ghUMRE40bGY%2F1aVqCoKE7IBBdBtemPvxrXYY7NfvNloKnA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
set-cookie: CEK=a; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; SameSite=None; Secure
__cf_bm=BUIX.sDfhF_Za9oYzbvQKghnPM3wzq0nWBQOnEqkftg-1715320741-1.0.1.1-T839833JS1sQqjtal3k0wDTNcGko4J_7b4WSJ0RxxEWSzFmLwsq420Sex0H4g9VyWDQvIwnvVfLyT32qMo7pHA; path=/; expires=Fri, 10-May-24 06:29:01 GMT; domain=.gml-grp.com; HttpOnly; Secure; SameSite=None
_cfuvid=9GkKXwicDSnAk8E_EyAL57O7Zf5ZfeSN2g.zEwd.j6A-1715320741551-0.0.1.1-604800000; path=/; domain=.gml-grp.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 8817b36a4d2056c9-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ro.betano.com/deals/o-lume-plina-de-actiune?btag=a_45236b_2037c_wa4qu7gp632ucd613msaq15g[CustomMergeFields]&siteid=45236 | 104.19.233.130 | 403 Forbidden | 1.6 kB |
URL User Request GET HTTP/2ro.betano.com/deals/o-lume-plina-de-actiune?btag=a_45236b_2037c_wa4qu7gp632ucd613msaq15g[CustomMergeFields]&siteid=45236 IP104.19.233.130:443
CertificateIssuerCloudflare, Inc. Subjectbetano.com FingerprintD0:1E:FE:D2:D8:14:BE:3C:B6:EA:87:2D:79:DA:D7:0D:9A:D3:B3:BB ValiditySun, 31 Dec 2023 00:00:00 GMT - Mon, 30 Dec 2024 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (1581), with no line terminators Hash98321a8564893dbc50987856e3215716 8a92177045a821468a0aac520c4186722ac57e9a 6b718414dc2da967ac078d1cd0cd62ad08318dd085d5228228adb4f69b8f2bd1
GET /deals/o-lume-plina-de-actiune?btag=a_45236b_2037c_wa4qu7gp632ucd613msaq15g[CustomMergeFields]&siteid=45236 HTTP/1.1
Host: ro.betano.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Cookie: __cf_bm=UDu8A8BouYZ0SYLdVhC1EjUUUg3HQBiFQjWKIByxynM-1715320741-1.0.1.1-jvDXFw.6YHJAUiK.Nb.ze8LUR6qL2zPMvaGFQQGb8LeO9.vLaAmWe3_3_m.cztU_hZ3fPSqyYmMV2uFkZ0fPSg
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Fri, 10 May 2024 05:59:02 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: max-age=15
expires: Fri, 10 May 2024 05:59:17 GMT
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8817b36dfeed56b5-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| ro.betano.com/cdn-cgi/challenge-platform/h/g/scripts/jsd/1b3559406bc8/main.js | 104.19.233.130 | 200 OK | 7.9 kB |
URL GET HTTP/2ro.betano.com/cdn-cgi/challenge-platform/h/g/scripts/jsd/1b3559406bc8/main.js IP104.19.233.130:443
Requested byhttps://ro.betano.com/deals/o-lume-plina-de-actiune?btag=a_45236b_2037c_wa4qu7gp632ucd613msaq15g[CustomMergeFields]&siteid=45236 CertificateIssuerCloudflare, Inc. Subjectbetano.com FingerprintD0:1E:FE:D2:D8:14:BE:3C:B6:EA:87:2D:79:DA:D7:0D:9A:D3:B3:BB ValiditySun, 31 Dec 2023 00:00:00 GMT - Mon, 30 Dec 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (7926), with no line terminators Hashbe93be601b9cc7e37e3b2d757c904b62 33f0947cd319ddc8622521bb53580e0a44295cfe 42a06525aae8d556da9337f8deb9f05855c11647a88d24e00c60544e6e73b604
GET /cdn-cgi/challenge-platform/h/g/scripts/jsd/1b3559406bc8/main.js HTTP/1.1
Host: ro.betano.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=UDu8A8BouYZ0SYLdVhC1EjUUUg3HQBiFQjWKIByxynM-1715320741-1.0.1.1-jvDXFw.6YHJAUiK.Nb.ze8LUR6qL2zPMvaGFQQGb8LeO9.vLaAmWe3_3_m.cztU_hZ3fPSqyYmMV2uFkZ0fPSg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 05:59:02 GMT
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
cache-control: max-age=14400, public
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 8817b370089c56b5-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| landingpages.kaizengaming.com/betano-splash-screen-bz/common.css | 172.64.147.77 | 200 OK | 1.0 kB |
URL GET HTTP/2landingpages.kaizengaming.com/betano-splash-screen-bz/common.css IP172.64.147.77:443
Requested byhttps://landingpages.kaizengaming.com/betano-splash-screen-bz/index.html CertificateIssuerLet's Encrypt Subjectlandingpages.kaizengaming.com Fingerprint5E:93:EE:84:D7:36:0F:B8:51:7A:4F:F3:A2:3A:9B:1A:7D:D4:EF:E3 ValidityFri, 29 Mar 2024 22:47:57 GMT - Thu, 27 Jun 2024 22:47:56 GMT
File typeASCII text, with very long lines (1236), with no line terminators Hashc2c5994813aae16c5407bd2423a014e0 37bfccd3ebff1b77736129fd891167af6e458429 368a33558d2b4b6b32cdfa63217ea78c92fb29642682d3b85b08e5e7ebbbfa8e
GET /betano-splash-screen-bz/common.css HTTP/1.1
Host: landingpages.kaizengaming.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://landingpages.kaizengaming.com/betano-splash-screen-bz/style.css
Cookie: __cf_bm=f5dO_5U1tbTvq4Z_TfY3uXp_Az_Es5VMgY_oSxxK4CE-1715320742-1.0.1.1-zeXBE.1HqiKPt9U8kMAfmbBJzwFfGrbV24B9RI6KhNoIGDOEh_HQ8BBlNi2BzKLlOFlqf_R.O2Rsz0D2GHsvKQ; _cfuvid=qoSzOxRRwj2EQaeDAL300Wx324s9GUUfRRJnCYuNHic-1715320742406-0.0.1.1-604800000
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 05:59:02 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=900, immutable
content-md5: 2zeD9t+ARG2HxMnwtI/5iA==
last-modified: Wed, 20 Mar 2024 14:20:54 GMT
etag: W/"0x8DC48E8F45F5643"
x-ms-request-id: 173f622c-f01e-0058-74d2-7aca5d000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
age: 989
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
server: cloudflare
cf-ray: 8817b3711e1d56c0-OSL
X-Firefox-Spdy: h2
|
|
| code.jquery.com/jquery-3.4.1.min.js | 151.101.194.137 | 200 OK | 88 kB |
URL GET HTTP/2code.jquery.com/jquery-3.4.1.min.js IP151.101.194.137:443
Requested byhttps://landingpages.kaizengaming.com/betano-splash-screen-bz/index.html CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65451) Hash220afd743d9e9643852e31a135a9f3ae 88523924351bac0b5d560fe0c5781e2556e7693d 0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a
GET /jquery-3.4.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://landingpages.kaizengaming.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-15851"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 10 May 2024 05:59:02 GMT
age: 7239241
x-served-by: cache-lga21965-LGA, cache-hel1410030-HEL
x-cache: HIT, HIT
x-cache-hits: 23, 607852
x-timer: S1715320743.628681,VS0,VE0
vary: Accept-Encoding
content-length: 30638
X-Firefox-Spdy: h2
|
|
| gml-grp.com/C.ashx?btag=a_45236b_2037c_&affid=3419&siteid=45236&adid=2037&c=wa4qu7gp632ucd613msaq15g&AutoR=1 | 188.114.97.1 | 302 Found | 1.6 kB |
URL User Request GET HTTP/2gml-grp.com/C.ashx?btag=a_45236b_2037c_&affid=3419&siteid=45236&adid=2037&c=wa4qu7gp632ucd613msaq15g&AutoR=1 IP188.114.97.1:443
CertificateIssuerLet's Encrypt Subjectgml-grp.com FingerprintEA:11:0F:05:E6:EB:73:11:61:DA:4A:24:DA:AB:52:B8:C1:93:A2:E4 ValidityThu, 18 Apr 2024 15:57:01 GMT - Wed, 17 Jul 2024 15:57:00 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /C.ashx?btag=a_45236b_2037c_&affid=3419&siteid=45236&adid=2037&c=wa4qu7gp632ucd613msaq15g&AutoR=1 HTTP/1.1
Host: gml-grp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: CEK=a; __cf_bm=BUIX.sDfhF_Za9oYzbvQKghnPM3wzq0nWBQOnEqkftg-1715320741-1.0.1.1-T839833JS1sQqjtal3k0wDTNcGko4J_7b4WSJ0RxxEWSzFmLwsq420Sex0H4g9VyWDQvIwnvVfLyT32qMo7pHA; _cfuvid=9GkKXwicDSnAk8E_EyAL57O7Zf5ZfeSN2g.zEwd.j6A-1715320741551-0.0.1.1-604800000
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 10 May 2024 05:59:01 GMT
content-type: text/html; charset=utf-8
location: https://ro.betano.com/deals/o-lume-plina-de-actiune?btag=a_45236b_2037c_wa4qu7gp632ucd613msaq15g[CustomMergeFields]&siteid=45236
cache-control: private
x-aspnetmvc-version: 5.3
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
x-aspnet-version: 4.0.30319
set-cookie: XYZ=3&1&19&&&&0&1&&e4ce088f-8678-464a-bb79-a967a2b30125&&a_45236b_2037&; expires=Thu, 08-Aug-2024 05:59:01 GMT; path=/; SameSite=None; Secure
A_2037=a=2037&r=0&fv=0&lv=0&vc=0&fc=20240510&lc=20240510055901&cc=1; expires=Thu, 08-Aug-2024 05:59:01 GMT; path=/; SameSite=None; Secure
PM_5=id=4cfc6969-aaaf-4e70-88ea-2a8443f987d2&c=wa4qu7gp632ucd613msaq15g&s=45236&ad=2037&md=0&pm=5&d=20240510055901&ip=1532635802&r=0&ref=&RedirectParams=btag%3Da_45236b_2037c_wa4qu7gp632ucd613msaq15g%5BCustomMergeFields%5D%26siteid%3D45236&cip=OTEuOTAuNDIuMTU0; expires=Thu, 08-Aug-2024 05:59:01 GMT; path=/; SameSite=None; Secure
CEK=a; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; SameSite=None; Secure
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GRA1DCw6mry9hvRElY3ZEDbF3G7%2BcBke1ALCXoSlp42eqWLPPD8AG72aDVTNLDdAGqLE47rfCMWm2m3oKX5z963HpTzUv6Z%2BM3bcBGWEAXwmQ1qUtVnGHZ8TdfcHdA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8817b36b3e3c56c9-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| landingpages.kaizengaming.com/custom.js | 172.64.147.77 | 200 OK | 8.4 kB |
URL GET HTTP/2landingpages.kaizengaming.com/custom.js IP172.64.147.77:443
Requested byhttps://landingpages.kaizengaming.com/betano-splash-screen-bz/index.html CertificateIssuerLet's Encrypt Subjectlandingpages.kaizengaming.com Fingerprint5E:93:EE:84:D7:36:0F:B8:51:7A:4F:F3:A2:3A:9B:1A:7D:D4:EF:E3 ValidityFri, 29 Mar 2024 22:47:57 GMT - Thu, 27 Jun 2024 22:47:56 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (8729), with no line terminators Hash2fc11838c650e2b49f39bfd7571fba2a 04bdb724bab0af8aca5d083e205d75c5d42c12b0 be3fb046306445eaf969ac7add19900fa70c1a427644813abb9efdc887eddb8e
GET /custom.js HTTP/1.1
Host: landingpages.kaizengaming.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://landingpages.kaizengaming.com/betano-splash-screen-bz/index.html
Cookie: __cf_bm=f5dO_5U1tbTvq4Z_TfY3uXp_Az_Es5VMgY_oSxxK4CE-1715320742-1.0.1.1-zeXBE.1HqiKPt9U8kMAfmbBJzwFfGrbV24B9RI6KhNoIGDOEh_HQ8BBlNi2BzKLlOFlqf_R.O2Rsz0D2GHsvKQ; _cfuvid=qoSzOxRRwj2EQaeDAL300Wx324s9GUUfRRJnCYuNHic-1715320742406-0.0.1.1-604800000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 05:59:02 GMT
content-type: application/javascript
content-md5: M+4RY1bt+Yd1o4RyHP3qvg==
last-modified: Tue, 16 Apr 2024 15:01:24 GMT
etag: W/"0x8DC5E261577270C"
x-ms-request-id: ab74d9d2-a01e-0045-7f0f-90c7e1000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 1528
server: cloudflare
cf-ray: 8817b370fdde56c0-OSL
X-Firefox-Spdy: h2
|
|
| landingpages.kaizengaming.com/betano-splash-screen-bz/splash.css | 172.64.147.77 | 200 OK | 1.8 kB |
URL GET HTTP/2landingpages.kaizengaming.com/betano-splash-screen-bz/splash.css IP172.64.147.77:443
Requested byhttps://landingpages.kaizengaming.com/betano-splash-screen-bz/index.html CertificateIssuerLet's Encrypt Subjectlandingpages.kaizengaming.com Fingerprint5E:93:EE:84:D7:36:0F:B8:51:7A:4F:F3:A2:3A:9B:1A:7D:D4:EF:E3 ValidityFri, 29 Mar 2024 22:47:57 GMT - Thu, 27 Jun 2024 22:47:56 GMT
File typeASCII text, with very long lines (1976), with no line terminators Hashbd7d3cf3057f5f60cc5b8828fcac1c5e a46594a9fad9b81a49373f113b635aed303bbd23 d914224d8cdac0b5cb28523ab39983d6b682562f3e232a6417103fdd5dbb7028
GET /betano-splash-screen-bz/splash.css HTTP/1.1
Host: landingpages.kaizengaming.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://landingpages.kaizengaming.com/betano-splash-screen-bz/style.css
Cookie: __cf_bm=f5dO_5U1tbTvq4Z_TfY3uXp_Az_Es5VMgY_oSxxK4CE-1715320742-1.0.1.1-zeXBE.1HqiKPt9U8kMAfmbBJzwFfGrbV24B9RI6KhNoIGDOEh_HQ8BBlNi2BzKLlOFlqf_R.O2Rsz0D2GHsvKQ; _cfuvid=qoSzOxRRwj2EQaeDAL300Wx324s9GUUfRRJnCYuNHic-1715320742406-0.0.1.1-604800000
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 05:59:02 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=900, immutable
content-md5: 2ClwY1GyFLR6s4zX8lwQEA==
last-modified: Wed, 20 Mar 2024 14:20:54 GMT
etag: W/"0x8DC48E8F4551E96"
x-ms-request-id: f464fde3-e01e-0036-20d2-7a9f72000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
age: 989
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
server: cloudflare
cf-ray: 8817b3711e2356c0-OSL
X-Firefox-Spdy: h2
|
|
| ro.betano.com/deals/o-lume-plina-de-actiune?btag=a_45236b_2037c_wa4qu7gp632ucd613msaq15g[CustomMergeFields]&siteid=45236 | 104.19.233.130 | 403 Forbidden | 1.6 kB |
URL User Request GET HTTP/2ro.betano.com/deals/o-lume-plina-de-actiune?btag=a_45236b_2037c_wa4qu7gp632ucd613msaq15g[CustomMergeFields]&siteid=45236 IP104.19.233.130:443
CertificateIssuerCloudflare, Inc. Subjectbetano.com FingerprintD0:1E:FE:D2:D8:14:BE:3C:B6:EA:87:2D:79:DA:D7:0D:9A:D3:B3:BB ValiditySun, 31 Dec 2023 00:00:00 GMT - Mon, 30 Dec 2024 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (1581), with no line terminators Hash70190965c41b2fdda66d554a965a27b4 df1e3bc98e29546797f3c42cd7743c280921c1b4 78887d12fb692741d052f23b04d308ca37392bd9914aabaf493f8236d32b5a7b
GET /deals/o-lume-plina-de-actiune?btag=a_45236b_2037c_wa4qu7gp632ucd613msaq15g[CustomMergeFields]&siteid=45236 HTTP/1.1
Host: ro.betano.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Fri, 10 May 2024 05:59:01 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: max-age=15
expires: Fri, 10 May 2024 05:59:16 GMT
set-cookie: __cf_bm=UDu8A8BouYZ0SYLdVhC1EjUUUg3HQBiFQjWKIByxynM-1715320741-1.0.1.1-jvDXFw.6YHJAUiK.Nb.ze8LUR6qL2zPMvaGFQQGb8LeO9.vLaAmWe3_3_m.cztU_hZ3fPSqyYmMV2uFkZ0fPSg; path=/; expires=Fri, 10-May-24 06:29:01 GMT; domain=.betano.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8817b36bfd3456b5-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| landingpages.kaizengaming.com/betano-splash-screen-bz/fonts.css | 172.64.147.77 | 200 OK | 4.3 kB |
URL GET HTTP/2landingpages.kaizengaming.com/betano-splash-screen-bz/fonts.css IP172.64.147.77:443
Requested byhttps://landingpages.kaizengaming.com/betano-splash-screen-bz/index.html CertificateIssuerLet's Encrypt Subjectlandingpages.kaizengaming.com Fingerprint5E:93:EE:84:D7:36:0F:B8:51:7A:4F:F3:A2:3A:9B:1A:7D:D4:EF:E3 ValidityFri, 29 Mar 2024 22:47:57 GMT - Thu, 27 Jun 2024 22:47:56 GMT
File typeASCII text, with very long lines (4542), with no line terminators Hashdd9dcc7bddbf2c4bbb1284c3a8a2d9d0 a1cbe62bc99c88aabe9a977ef62f1b5663dc132c 23e879cfc654278ee3e4a7375806a27e8d3384d3f36c9c71b60f39d7da107930
GET /betano-splash-screen-bz/fonts.css HTTP/1.1
Host: landingpages.kaizengaming.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://landingpages.kaizengaming.com/betano-splash-screen-bz/style.css
Cookie: __cf_bm=f5dO_5U1tbTvq4Z_TfY3uXp_Az_Es5VMgY_oSxxK4CE-1715320742-1.0.1.1-zeXBE.1HqiKPt9U8kMAfmbBJzwFfGrbV24B9RI6KhNoIGDOEh_HQ8BBlNi2BzKLlOFlqf_R.O2Rsz0D2GHsvKQ; _cfuvid=qoSzOxRRwj2EQaeDAL300Wx324s9GUUfRRJnCYuNHic-1715320742406-0.0.1.1-604800000
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 05:59:02 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=900, immutable
content-md5: K3UlIa+rSY1rfTjzgOWKQQ==
last-modified: Wed, 20 Mar 2024 14:20:55 GMT
etag: W/"0x8DC48E8F471F129"
x-ms-request-id: 405ca6cd-301e-0047-48d3-7a7959000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
age: 989
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
server: cloudflare
cf-ray: 8817b3711e0d56c0-OSL
X-Firefox-Spdy: h2
|
|
| landingpages.kaizengaming.com/betano-splash-screen-bz/GloberBold.otf | 172.64.147.77 | 200 OK | 138 kB |
URL GET HTTP/2landingpages.kaizengaming.com/betano-splash-screen-bz/GloberBold.otf IP172.64.147.77:443
Requested byhttps://landingpages.kaizengaming.com/betano-splash-screen-bz/index.html CertificateIssuerLet's Encrypt Subjectlandingpages.kaizengaming.com Fingerprint5E:93:EE:84:D7:36:0F:B8:51:7A:4F:F3:A2:3A:9B:1A:7D:D4:EF:E3 ValidityFri, 29 Mar 2024 22:47:57 GMT - Thu, 27 Jun 2024 22:47:56 GMT
Size138 kB (137660 bytes) Hash121e82bcc734bcc455ba860242946217 b804918558e273e20debe981dfc23cc346c5f1be d8adb730e724ce1eaa70cb204a1c1019d9574ba094924632b2ce980ab8bda390
GET /betano-splash-screen-bz/GloberBold.otf HTTP/1.1
Host: landingpages.kaizengaming.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://landingpages.kaizengaming.com/betano-splash-screen-bz/fonts.css
Cookie: __cf_bm=f5dO_5U1tbTvq4Z_TfY3uXp_Az_Es5VMgY_oSxxK4CE-1715320742-1.0.1.1-zeXBE.1HqiKPt9U8kMAfmbBJzwFfGrbV24B9RI6KhNoIGDOEh_HQ8BBlNi2BzKLlOFlqf_R.O2Rsz0D2GHsvKQ; _cfuvid=qoSzOxRRwj2EQaeDAL300Wx324s9GUUfRRJnCYuNHic-1715320742406-0.0.1.1-604800000
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 05:59:02 GMT
content-type: font/otf
cache-control: public, max-age=900, immutable
content-md5: Eh6CvMc0vMRVuoYCQpRiFw==
last-modified: Wed, 20 Mar 2024 14:20:56 GMT
etag: W/"0x8DC48E8F50C93CC"
x-ms-request-id: b59487b5-301e-0078-62d3-7ab1fa000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
age: 353
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
server: cloudflare
cf-ray: 8817b3723f1356c0-OSL
X-Firefox-Spdy: h2
|
|
| landingpages.kaizengaming.com/betano-splash-screen-bz/index.html | 172.64.147.77 | 200 OK | 4.7 kB |
URL GET HTTP/2landingpages.kaizengaming.com/betano-splash-screen-bz/index.html IP172.64.147.77:443
Requested byhttps://ro.betano.com/deals/o-lume-plina-de-actiune?btag=a_45236b_2037c_wa4qu7gp632ucd613msaq15g[CustomMergeFields]&siteid=45236 CertificateIssuerLet's Encrypt Subjectlandingpages.kaizengaming.com Fingerprint5E:93:EE:84:D7:36:0F:B8:51:7A:4F:F3:A2:3A:9B:1A:7D:D4:EF:E3 ValidityFri, 29 Mar 2024 22:47:57 GMT - Thu, 27 Jun 2024 22:47:56 GMT
File typeHTML document, ASCII text, with very long lines (4870), with no line terminators Hashd1944dd28f9d4f423f7490aa0acf739d 9fcc991ee9fc106b44988e2a30faa93b2b27a731 cc2a6bd833003e5983a6363f291cf208c322926b0845463b38e1de52a3af8c35
GET /betano-splash-screen-bz/index.html HTTP/1.1
Host: landingpages.kaizengaming.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 05:59:02 GMT
content-type: text/html; charset=utf-8
cache-control: public, max-age=900, immutable
content-md5: LWsiisTUl+WFpcbDygyulQ==
last-modified: Wed, 20 Mar 2024 14:20:54 GMT
x-ms-request-id: 69fb8ebb-b01e-0066-36d2-7a5d22000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cf-cache-status: DYNAMIC
age: 216638
vary: Accept-Encoding
set-cookie: __cf_bm=f5dO_5U1tbTvq4Z_TfY3uXp_Az_Es5VMgY_oSxxK4CE-1715320742-1.0.1.1-zeXBE.1HqiKPt9U8kMAfmbBJzwFfGrbV24B9RI6KhNoIGDOEh_HQ8BBlNi2BzKLlOFlqf_R.O2Rsz0D2GHsvKQ; path=/; expires=Fri, 10-May-24 06:29:02 GMT; domain=.kaizengaming.com; HttpOnly; Secure; SameSite=None
_cfuvid=qoSzOxRRwj2EQaeDAL300Wx324s9GUUfRRJnCYuNHic-1715320742406-0.0.1.1-604800000; path=/; domain=.kaizengaming.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 8817b36fcd0d56c0-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|