Overview

URL bizzoreg.com/pt
IP104.26.2.121
ASNCLOUDFLARENET
Location United States
Report completed2022-09-01 01:57:12 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-01 2 c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com/apg-seal.js Malware
2022-09-01 2 c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com/sealassets/68 (...) Malware
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (52)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-08-31 05:05:27 UTC 143.204.55.110
mnemonic passive DNS track.trackingtraffo.com (2) 0 2021-12-15 22:48:04 UTC 2022-08-31 20:08:25 UTC 88.214.195.156 Unknown ranking
mnemonic passive DNS a.sportradarserving.com (4) 2372 2019-05-18 08:44:07 UTC 2022-08-31 19:18:15 UTC 3.120.11.127
mnemonic passive DNS fonts.googleapis.com (1) 8877 2014-07-21 13:19:55 UTC 2022-08-31 22:52:24 UTC 142.250.74.10
mnemonic passive DNS tm.ads.sportradar.com (1) 40177 2019-07-25 10:47:51 UTC 2022-08-31 19:18:13 UTC 23.36.79.43
mnemonic passive DNS main.exdynsrv.com (1) 91821 2017-01-30 11:01:34 UTC 2022-08-31 20:08:25 UTC 95.211.229.246
mnemonic passive DNS tsyndicate.com (1) 13042 2017-03-16 09:04:54 UTC 2022-08-31 21:15:21 UTC 148.251.19.25
mnemonic passive DNS tracker.ads.sportradar.com (2) 41720 2019-05-23 08:10:00 UTC 2022-08-31 19:18:14 UTC 23.36.79.43
mnemonic passive DNS api.feedad.com (1) 5296 2017-12-20 17:42:46 UTC 2022-08-31 19:18:15 UTC 216.239.38.21
mnemonic passive DNS my.rtmark.net (2) 9054 2017-08-22 14:11:49 UTC 2022-08-31 09:57:58 UTC 139.45.195.8
mnemonic passive DNS secure.livechatinc.com (1) 6541 2012-08-20 19:27:12 UTC 2022-08-31 05:48:27 UTC 23.36.79.17
mnemonic passive DNS sentry.softlabs.com (1) 0 2021-11-03 07:02:43 UTC 2022-08-31 23:44:52 UTC 104.26.1.82 Unknown ranking
mnemonic passive DNS www.google.com (1) 7 2017-01-29 11:48:58 UTC 2022-08-31 18:19:29 UTC 142.250.74.164
mnemonic passive DNS region1.google-analytics.com (1) 0 2022-03-17 11:26:33 UTC 2022-08-31 05:10:15 UTC 216.239.32.36 Domain (google-analytics.com) ranked at: 8401
mnemonic passive DNS tags.feedad.com (1) 26948 2019-10-23 18:30:02 UTC 2022-08-31 19:18:15 UTC 216.239.38.21
mnemonic passive DNS www.gstatic.com (1) 0 2016-07-26 09:37:06 UTC 2022-08-31 05:13:57 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS x.bidswitch.net (6) 286 2017-08-28 15:21:00 UTC 2022-08-31 05:42:46 UTC 52.58.218.78
mnemonic passive DNS api.livechatinc.com (5) 5353 2013-12-20 14:27:35 UTC 2022-08-31 05:48:26 UTC 23.36.79.17
mnemonic passive DNS d2i76d1bskcqlp.cloudfront.net (146) 0 2022-03-01 15:03:20 UTC 2022-08-28 20:59:01 UTC 54.230.245.154 Unknown ranking
mnemonic passive DNS bizzoreg.com (2) 0 2021-07-30 10:10:29 UTC 2022-08-31 23:02:33 UTC 104.26.2.121 Unknown ranking
mnemonic passive DNS r3.o.lencr.org (5) 344 2020-12-02 08:52:13 UTC 2022-08-31 04:58:05 UTC 23.36.77.32
mnemonic passive DNS tag.growthbuddy.app (1) 470040 2020-11-30 13:00:05 UTC 2022-08-31 23:44:51 UTC 52.31.198.104
mnemonic passive DNS platform.bizzocasino.com (25) 0 2022-01-12 13:05:28 UTC 2022-08-28 05:30:34 UTC 172.67.68.182 Domain (bizzocasino.com) ranked at: 291590
mnemonic passive DNS eb2.3lift.com (1) 402 2014-09-24 15:03:42 UTC 2022-08-31 06:40:52 UTC 76.223.111.18
mnemonic passive DNS assets.customer.io (1) 19446 2013-05-31 16:10:41 UTC 2022-08-31 20:08:45 UTC 54.230.111.44
mnemonic passive DNS e1.o.lencr.org (1) 6159 2021-08-20 07:36:30 UTC 2022-08-31 04:58:48 UTC 23.36.76.226
mnemonic passive DNS cdn.seon.io (1) 212690 2019-10-28 00:43:56 UTC 2022-08-31 23:44:50 UTC 54.230.111.94
mnemonic passive DNS casino.cur.a8r.games (1) 336046 2021-05-15 15:15:03 UTC 2022-08-31 23:44:50 UTC 172.64.145.200
mnemonic passive DNS c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com (4) 580028 2019-04-26 16:46:17 UTC 2022-08-31 23:44:50 UTC 54.230.111.125
mnemonic passive DNS main.realsrv.com (1) 91110 2019-02-11 13:11:59 UTC 2022-08-31 23:44:52 UTC 95.211.229.248
mnemonic passive DNS platform.bizzocasino.com (25) 0 2022-01-12 13:05:28 UTC 2022-08-28 05:30:34 UTC 104.26.8.22 Domain (bizzocasino.com) ranked at: 291590
mnemonic passive DNS secure.adnxs.com (3) 396 2012-05-22 16:37:37 UTC 2022-08-31 05:38:31 UTC 37.252.173.215
mnemonic passive DNS bizzoreg.com (2) 0 2021-07-30 10:10:29 UTC 2022-08-31 23:02:33 UTC 172.67.68.203 Unknown ranking
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-08-31 19:29:59 UTC 143.204.55.36
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-08-31 05:05:02 UTC 34.117.237.239
mnemonic passive DNS bizzocasino.com (73) 291590 2021-07-06 13:20:32 UTC 2022-08-31 11:28:33 UTC 104.26.8.22
mnemonic passive DNS img-getpocket.cdn.mozilla.net (5) 1631 2017-09-01 03:40:57 UTC 2022-08-31 12:55:20 UTC 34.120.237.76
mnemonic passive DNS ws-cdn001.akamaized.net (1) 188179 2021-10-21 16:23:57 UTC 2022-08-31 23:44:51 UTC 23.36.77.10
mnemonic passive DNS www.googletagmanager.com (1) 75 2012-12-25 14:52:06 UTC 2022-08-31 05:05:18 UTC 142.250.74.72
mnemonic passive DNS ocsp.sectigo.com (6) 487 2018-12-17 11:31:55 UTC 2022-08-31 19:54:48 UTC 172.64.155.188
mnemonic passive DNS ocsp.entrust.net (2) 1208 2013-07-24 12:09:14 UTC 2022-08-31 05:24:53 UTC 104.110.10.32
mnemonic passive DNS main.exoclick.com (1) 33599 2015-09-01 10:25:49 UTC 2022-08-31 20:34:56 UTC 95.211.229.248
mnemonic passive DNS ocsp.sca1b.amazontrust.com (4) 1015 2017-03-03 15:20:51 UTC 2019-03-27 04:05:54 UTC 143.204.42.165
mnemonic passive DNS cdn.softswiss.net (42) 412286 2015-07-09 16:04:37 UTC 2022-08-31 20:08:27 UTC 104.17.114.131
mnemonic passive DNS cdn.onesignal.com (1) 3015 2015-04-22 13:41:50 UTC 2022-08-31 06:07:54 UTC 104.18.226.52
mnemonic passive DNS accounts.livechatinc.com (1) 7698 2017-07-31 05:50:56 UTC 2022-08-31 05:48:27 UTC 23.36.79.17
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-08-31 20:48:38 UTC 93.184.220.29
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-08-31 05:14:10 UTC 34.215.91.121
mnemonic passive DNS ocsp.pki.goog (12) 175 2017-06-14 07:23:31 UTC 2022-08-31 05:05:03 UTC 142.250.74.3
mnemonic passive DNS zz.connextra.com (2) 14652 2014-03-20 17:05:16 UTC 2022-08-31 20:02:02 UTC 104.85.191.64
mnemonic passive DNS match.sharethrough.com (3) 604 2015-12-22 22:55:59 UTC 2022-08-31 05:42:46 UTC 52.57.48.124
mnemonic passive DNS cdn.livechatinc.com (4) 6288 2012-06-22 08:37:34 UTC 2022-08-31 05:48:26 UTC 23.36.79.17


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 104.26.2.121

Date UQ / IDS / BL URL IP
2022-11-26 08:59:06 +0000
0 - 0 - 2 bizzoreg.com/es/registration 104.26.2.121
2022-11-10 14:43:48 +0000
0 - 0 - 2 bizzoreg.com/cz 104.26.2.121
2022-10-15 02:38:59 +0000
0 - 0 - 2 bizzoreg.com/en_ca?btag=667527_92289C8C53FD46 (...) 104.26.2.121
2022-09-19 15:04:36 +0000
0 - 0 - 2 bizzoreg.com/tournaments/awesome-christmas-race 104.26.2.121
2022-09-01 01:57:12 +0000
0 - 0 - 2 bizzoreg.com/pt 104.26.2.121

Last 5 reports on ASN: CLOUDFLARENET

Date UQ / IDS / BL URL IP
2022-11-29 01:49:53 +0000
0 - 0 - 3 clickitstores.com/rdlx/index.html 104.21.29.15
2022-11-29 01:47:52 +0000
0 - 0 - 4 tokh.coldestinyhaon.cf/6q4s05b 172.67.164.213
2022-11-29 01:48:10 +0000
0 - 0 - 3 flinisprewinclamkid.tk/bpegstar/maypost.php 172.67.175.98
2022-11-29 01:47:31 +0000
0 - 0 - 4 baso.miraclesheenzi.ga/6q4s05b 172.67.141.165
2022-11-29 01:46:32 +0000
0 - 0 - 1 renold-news.com/22T-83LLY-8S78GC-4ZPS1Q-1/c.aspx 104.16.208.86

Last 5 reports on domain: bizzoreg.com

Date UQ / IDS / BL URL IP
2022-11-26 08:59:06 +0000
0 - 0 - 2 bizzoreg.com/es/registration 104.26.2.121
2022-11-10 14:43:48 +0000
0 - 0 - 2 bizzoreg.com/cz 104.26.2.121
2022-10-15 02:38:59 +0000
0 - 0 - 2 bizzoreg.com/en_ca?btag=667527_92289C8C53FD46 (...) 104.26.2.121
2022-09-19 15:04:36 +0000
0 - 0 - 2 bizzoreg.com/tournaments/awesome-christmas-race 104.26.2.121
2022-09-13 08:07:25 +0000
0 - 0 - 1 bizzoreg.com/cz 104.26.3.121

Last 4 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-09-13 08:07:25 +0000
0 - 0 - 1 bizzoreg.com/cz 104.26.3.121
2022-11-25 06:30:45 +0000
0 - 0 - 1 bizzocasino.com/ 104.26.9.22
2022-09-06 08:35:59 +0000
0 - 0 - 2 bizzoreg.com/ 172.67.68.203
2022-09-07 05:30:40 +0000
0 - 0 - 2 www.bizzocasino.com/ 104.26.9.22


JavaScript

Executed Scripts (48)


Executed Evals (5)

#1 JavaScript::Eval (size: 22, repeated: 1) - SHA256: 6b2bc0c39198b9448300658ffe80f527ded4b1785a8bd3900dca0e09eeccd290

                                        0,
function(K) {
    sZ(2, K)
}
                                    

#2 JavaScript::Eval (size: 15576, repeated: 1) - SHA256: 8c34b5159c0d993b882601680dd2c45885fd6069c37bd81b76c8b9dffdcf0c72

                                        /* Anti-spam. Want to say hello? Contact (base64) Ym90Z3VhcmQtY29udGFjdEBnb29nbGUuY29t */
(function() {
    var E = function(T, L) {
            if ((L = (T = null, K.trustedTypes), !L) || !L.createPolicy) return T;
            try {
                T = L.createPolicy("bg", {
                    createHTML: p,
                    createScript: p,
                    createScriptURL: p
                })
            } catch (B) {
                K.console && K.console.error(B.message)
            }
            return T
        },
        p = function(T) {
            return T
        },
        K = this || self;
    (0, eval)(function(T, L) {
        return (L = E()) && 1 === T.eval(L.createScript("1")) ? function(B) {
            return L.createScript(B)
        } : function(B) {
            return "" + B
        }
    }(K)(Array(7824 * Math.random() | 0).join("\n") + '(function(){var T8=function(T,B){return B[T]<<24|B[(T|0)+1]<<16|B[(T|0)+2]<<8|B[(T|0)+3]},pU=function(T,B,L,E,h){if(L=B[0],L==l)T.j=25,T.s(B);else if(L==a){E=B[1];try{h=T.L||T.s(B)}catch(K){R(T,K),h=T.L}E(h)}else if(L==X)T.s(B);else if(L==t)T.s(B);else if(L==V){try{for(h=0;h<T.V.length;h++)try{E=T.V[h],E[0][E[1]](E[2])}catch(K){}}catch(K){}(0,B[1])(function(K,p){T.S(K,true,p)},(T.V=[],function(K){(w(T,(K=!T.i.length,[LU])),K)&&f(false,T,true)}))}else{if(L==BN)return h=B[2],N(500,T,B[6]),N(85,T,h),T.s(B);L==LU?(T.l=[],T.G=[],T.J=null):L==KU&&"loading"===g.document.readyState&&(T.A=function(K,p){function c(){p||(p=true,K())}(g.document.addEventListener("DOMContentLoaded",(p=false,c),e),g).addEventListener("load",c,e)})}},EZ=function(T,B,L){if(3==T.length){for(L=0;3>L;L++)B[L]+=T[L];for(L=[13,8,13,(T=0,12),16,5,3,10,15];9>T;T++)B[3](B,T%3,L[T])}},Y=function(T,B){if(T.O)return cN(T.g,T);return(B=O(8,T,true),B&128)&&(B^=128,T=O(2,T,true),B=(B<<2)+(T|0)),B},h2=function(T,B,L,E,h,K){if(!B.L){B.D++;try{for(E=(h=(L=void 0,0),B.P);--T;)try{if(K=void 0,B.O)L=cN(B.O,B);else{if(h=S(B,232),h>=E)break;L=S(B,(K=Y((N(204,B,h),B)),K))}n(false,false,B,(L&&L.call?L(B,T):I(0,[r,21,K],B),T))}catch(p){S(B,1)?I(22,p,B):N(1,B,p)}if(!T){if(B.az){h2((B.D--,401070463542),B);return}I(0,[r,33],B)}}catch(p){try{I(22,p,B)}catch(c){R(B,c)}}B.D--}},lZ=function(T,B,L,E){return(E=F[T.substring(0,3)+"_"])?E(T.substring(3),B,L):uZ(T,B)},G8=function(T,B,L){return B.S(function(E){L=E},false,T),L},R8=function(T,B,L,E,h){for(B=(h=B[2]|(E=0,0),B)[3]|0;15>E;E++)L=L>>>8|L<<24,L+=T|0,T=T<<3|T>>>29,B=B>>>8|B<<24,L^=h+2278,B+=h|0,h=h<<3|h>>>29,T^=L,B^=E+2278,h^=B;return[T>>>24&255,T>>>16&255,T>>>8&255,T>>>0&255,L>>>24&255,L>>>16&255,L>>>8&255,L>>>0&255]},m=function(T,B,L,E){for(L=(E=(B|0)-1,[]);0<=E;E--)L[(B|0)-1-(E|0)]=T>>8*E&255;return L},f=function(T,B,L,E,h,K){if(B.i.length){B.tX=(B.K=(B.K&&0(),true),L);try{E=B.T(),B.N=E,B.R=0,B.h=E,K=ZQ(L,B),h=B.T()-B.N,B.Z+=h,h<(T?0:10)||0>=B.j--||(h=Math.floor(h),B.G.push(254>=h?h:254))}finally{B.K=false}return K}},ZQ=function(T,B,L,E){for(;B.i.length;){B.A=null,L=B.i.pop();try{E=pU(B,L)}catch(h){R(B,h)}if(T&&B.A){T=B.A,T(function(){f(true,B,true)});break}}return E},W=function(T){return T.O?cN(T.g,T):O(8,T,true)},CU=function(T,B){return y[B](y.prototype,{call:T,splice:T,console:T,parent:T,length:T,propertyIsEnumerable:T,floor:T,stack:T,replace:T,pop:T,prototype:T,document:T})},Q=function(T,B,L){L=this;try{km(T,B,this)}catch(E){R(this,E),T(function(h){h(L.L)})}},e={passive:true,capture:true},R=function(T,B){T.L=((T.L?T.L+"~":"E:")+B.message+":"+B.stack).slice(0,2048)},HN=function(T,B,L,E,h,K){for(K=(B=Y((L=(((E=T[X3]||{},h=Y(T),E).pw=Y(T),E).I=[],T.Y==T?(W(T)|0)-1:1),T)),0);K<L;K++)E.I.push(Y(T));for((E.x9=S(T,B),E).o=S(T,h);L--;)E.I[L]=S(T,E.I[L]);return E},vN=function(T,B,L,E){function h(){}return{invoke:(E=lZ(T,(L=void 0,function(K){h&&(B&&A(B),L=K,h(),h=void 0)}),!!B)[0],function(K,p,c,u){function G(){L(function(Z){A(function(){K(Z)})},c)}if(!p)return p=E(c),K&&K(p),p;L?G():(u=h,h=function(){u(),A(G)})})}},jP=function(T,B,L,E){return S(T,((h2(((E=S(T,232),T.l&&E<T.P)?(N(232,T,T.P),dK(B,T)):N(232,T,B),L),T),N)(232,T,E),85))},$m=function(T){return T},sZ=function(T,B,L,E){for(E=(L=Y(B),0);0<T;T--)E=E<<8|W(B);N(L,B,E)},uZ=function(T,B){return[(B(function(L){L(T)}),function(){return T})]},N=function(T,B,L){if(232==T||204==T)B.J[T]?B.J[T].concat(L):B.J[T]=iZ(L,B);else{if(B.B&&489!=T)return;475==T||388==T||428==T||295==T||229==T?B.J[T]||(B.J[T]=t2(B,46,T,L)):B.J[T]=t2(B,145,T,L)}489==T&&(B.X=O(32,B,false),B.W=void 0)},P=function(T,B,L,E,h,K){if(B.Y==B)for(h=S(B,T),388==T?(T=function(p,c,u,G,Z){if(h.Qw!=(Z=(G=h.length,(G|0)-4>>3),Z)){u=(c=[0,0,K[1],K[2]],(Z<<3)-(h.Qw=Z,4));try{h.iS=R8(T8(u,h),c,T8((u|0)+4,h))}catch(C){throw C;}}h.push(h.iS[G&7]^p)},K=S(B,229)):T=function(p){h.push(p)},E&&T(E&255),B=L.length,E=0;E<B;E++)T(L[E])},Vu=function(T,B,L,E,h,K){function p(){if(T.Y==T){if(T.J){var c=[BN,L,B,void 0,h,K,arguments];if(2==E)var u=f(false,(w(T,c),T),false);else if(1==E){var G=!T.i.length;(w(T,c),G)&&f(false,T,false)}else u=pU(T,c);return u}h&&K&&h.removeEventListener(K,p,e)}}return p},wK=function(T,B){(B.push(T[0]<<24|T[1]<<16|T[2]<<8|T[3]),B).push(T[4]<<24|T[5]<<16|T[6]<<8|T[7]),B.push(T[8]<<24|T[9]<<16|T[10]<<8|T[11])},I=function(T,B,L,E,h,K){if(!L.B){if(B=S(((T=(0==(h=S(L,((K=void 0,B)&&B[0]===r&&(K=B[2],T=B[1],B=void 0),295)),h.length)&&(E=S(L,204)>>3,h.push(T,E>>8&255,E&255),void 0!=K&&h.push(K&255)),""),B)&&(B.message&&(T+=B.message),B.stack&&(T+=":"+B.stack)),L),122),3<B){L.Y=(K=(T=T.slice(0,(B|0)-3),B-=(T.length|0)+3,T=UZ(T),L.Y),L);try{P(388,L,m(T.length,2).concat(T),9)}finally{L.Y=K}}N(122,L,B)}},g=this||self,UZ=function(T,B,L,E,h){for(h=(L=(E=(T=T.replace(/\\r\\n/g,"\\n"),0),[]),0);h<T.length;h++)B=T.charCodeAt(h),128>B?L[E++]=B:(2048>B?L[E++]=B>>6|192:(55296==(B&64512)&&h+1<T.length&&56320==(T.charCodeAt(h+1)&64512)?(B=65536+((B&1023)<<10)+(T.charCodeAt(++h)&1023),L[E++]=B>>18|240,L[E++]=B>>12&63|128):L[E++]=B>>12|224,L[E++]=B>>6&63|128),L[E++]=B&63|128);return L},D,bZ=function(T,B){if(!(B=g.trustedTypes,T=null,B)||!B.createPolicy)return T;try{T=B.createPolicy("bg",{createHTML:$m,createScript:$m,createScriptURL:$m})}catch(L){g.console&&g.console.error(L.message)}return T},F,km=function(T,B,L,E,h){for(h=(L.Oo=(L.Y9=CU({get:function(){return this.concat()}},(L.Eo=((L.so=N1,L).Pl=L[a],fU),L.F)),y)[L.F](L.Y9,{value:{value:{}}}),[]),E=0;128>E;E++)h[E]=String.fromCharCode(E);f(true,(w(L,[(w(L,(N(400,(N(10,L,(N(200,L,(N((N((N(257,L,(N(54,(N(30,L,(N(12,(N(4,L,(N(75,L,(N(31,L,(N(428,(N(29,(N(295,L,(N(416,L,(N((N(437,(N((N(327,(N(37,(N(180,(N(312,L,(L.ds=(((N(85,L,(N(91,L,(N(505,(N(((N(113,L,((N(144,L,(N(229,L,[0,(N(331,(N(192,(N(415,(N(215,L,(N(204,((L.FT=(L.K=false,(L.h=0,L.JX=((L.i=[],L).O=void 0,L.A=(L.N=0,null),[]),(L.G=[],L.tX=(L.J=(L.D=0,[]),false),L.X=(E=(L.P=0,L.u=void 0,window.performance||{}),(L.V=[],L).U=1,(L.Lw=(L.lS=0,L.C=8001,function(K){this.Y=K}),L).R=void 0,void 0),L.l=(L.L=(L.j=25,void 0),L.W=void 0,[]),L.g=void 0,L).Y=L,L.B=false,L).Z=0,(L.H=0,E).timeOrigin||(E.timing||{}).navigationStart||0),N)(232,L,0),L),0),function(K,p,c,u){N((u=S(K,(c=(p=(c=Y(K),Y(K)),S(K,c)),p)),p),K,u+c)})),L.gs=0,L),function(K,p,c){N((p=Y((c=Y(K),K)),p),K,""+S(K,c))}),L),function(K,p,c,u,G){for(p=(G=q1((u=Y(K),K)),[]),c=0;c<G;c++)p.push(W(K));N(u,K,p)}),L),function(K,p,c){N((p=(p=S(K,(c=Y((p=Y(K),K)),p)),eP)(p),c),K,p)}),0),0]),function(K,p,c,u){!n(false,true,K,p)&&(p=HN(K),c=p.x9,u=p.o,K.Y==K||u==K.Lw&&c==K)&&(N(p.pw,K,u.apply(c,p.I)),K.h=K.T())})),L).hX=0,function(K,p,c,u,G,Z,C){for(Z=(c=(G=S(K,(u=q1((p=Y(K),K)),C="",341)),G).length,0);u--;)Z=((Z|0)+(q1(K)|0))%c,C+=h[G[Z]];N(p,K,C)})),N)(2,L,function(){}),475),L,[160,0,0]),N(122,L,2048),L),function(K,p,c,u){(u=(c=Y((p=Y(K),K)),Y(K)),N)(u,K,S(K,p)||S(K,c))}),function(K,p,c,u){(c=(p=(u=Y(K),Y)(K),Y(K)),K).Y==K&&(c=S(K,c),p=S(K,p),S(K,u)[p]=c,489==u&&(K.W=void 0,2==p&&(K.X=O(32,K,false),K.W=void 0)))})),N(28,L,function(K,p){(K=S((p=Y(K),K.Y),p),K)[0].removeEventListener(K[1],K[2],e)}),{})),N)(1,L,233),N)(448,L,function(K,p,c,u){(p=S((c=S((p=(c=Y(K),Y(K)),u=Y(K),K),c),K),p),N)(u,K,+(c==p))}),0),function(K,p,c,u,G,Z,C,H,d,U,v,k){function J(b,q){for(;d<b;)U|=W(K)<<d,d+=8;return q=U&(1<<b)-1,U>>=(d-=b,b),q}for(Z=k=(u=(v=((d=(c=Y(K),U=0),J)(3)|0)+1,J(5)),0),C=[];k<u;k++)p=J(1),C.push(p),Z+=p?0:1;for(Z=(G=(k=((Z|0)-1).toString(2).length,[]),0);Z<u;Z++)C[Z]||(G[Z]=J(k));for(k=0;k<u;k++)C[k]&&(G[k]=Y(K));for(H=[];v--;)H.push(S(K,Y(K)));N(c,K,function(b,q,z,a8,M){for(q=(M=(a8=[],[]),0);q<u;q++){if(z=G[q],!C[q]){for(;z>=M.length;)M.push(Y(b));z=M[z]}a8.push(z)}b.g=iZ((b.O=iZ(H.slice(),b),a8),b)})})),L),function(K,p,c,u){(u=(p=(c=Y(K),W(K)),Y(K)),N)(u,K,S(K,c)>>>p)}),L),function(K,p,c,u){(c=S(K,(u=(p=(u=(c=Y(K),Y(K)),Y)(K),S)(K,u),c)),N)(p,K,c in u|0)}),L),function(K,p,c){n(false,true,K,p)||(p=Y(K),c=Y(K),N(c,K,function(u){return eval(u)}(gK(S(K.Y,p)))))}),72),L,function(K){OZ(K,4)}),L),function(K,p,c,u,G,Z){n(false,true,K,p)||(G=HN(K.Y),p=G.I,c=G.x9,Z=G.o,u=p.length,G=G.pw,p=0==u?new c[Z]:1==u?new c[Z](p[0]):2==u?new c[Z](p[0],p[1]):3==u?new c[Z](p[0],p[1],p[2]):4==u?new c[Z](p[0],p[1],p[2],p[3]):2(),N(G,K,p))}),199),L,0),function(K,p,c,u,G,Z){if(!n(true,true,K,p)){if(K=(G=S((Z=S((p=(G=Y((p=Y((c=(Z=Y(K),Y(K)),K)),K)),S(K,p)),K),Z),K),G),S(K,c)),"object"==eP(Z)){for(u in c=[],Z)c.push(u);Z=c}for(p=(u=Z.length,0<p?p:1),c=0;c<u;c+=p)K(Z.slice(c,(c|0)+(p|0)),G)}})),[])),L),0),L),[]),function(K){OZ(K,3)})),function(K){o8(K,1)})),g)),L),function(K){o8(K,4)}),function(K,p,c){0!=S(K,(c=S(K,(c=(p=Y(K),Y(K)),c)),p))&&N(232,K,c)})),L),L),function(K,p,c,u,G){0!==(p=S((c=S(K,(u=S(K,(G=(c=Y((u=(p=Y(K),Y(K)),K)),G=Y(K),S(K,G)),u)),c)),K.Y),p),p)&&(G=Vu(K,G,c,1,p,u),p.addEventListener(u,G,e),N(29,K,[p,u,G]))})),388),L,x(4)),N(256,L,function(K,p,c,u){if(p=K.JX.pop()){for(c=W(K);0<c;c--)u=Y(K),p[u]=K.J[u];K.J=(p[p[295]=K.J[295],122]=K.J[122],p)}else N(232,K,K.P)}),172),L,function(K){sZ(4,K)}),function(K,p,c,u,G){(p=S(K,(u=(G=(G=(p=Y((u=Y((c=Y(K),K)),K)),Y(K)),S(K,G)),S(K,u)),p)),N)(c,K,Vu(K,p,u,G))})),function(K,p,c,u){p=S(K,(c=S(K,(u=Y((p=Y((c=Y(K),K)),K)),c)),p)),N(u,K,c[p])})),L),function(K,p){dK((p=S(K,Y(K)),p),K.Y)}),w(L,[KU]),[t,B])),V),T]),L),true)},t2=function(T,B,L,E,h,K,p,c){return((c=(E=[-89,58,-74,47,50,50,E,30,(K=Ym,-53),(h=B&7,-90)],y)[T.F](T.Y9),c)[T.F]=function(u){p=(h+=6+7*B,u),h&=7},c).concat=function(u){return(u=(p=(u=(u=L%16+1,-u*p+E[h+35&7]*L*u-68*L*L*p+2*L*L*u-306*p+h+34*p*p)+(K()|0)*u-1972*L*p,void 0),E[u]),E)[(h+77&7)+(B&2)]=u,E[h+(B&2)]=58,u},c},dK=function(T,B){N(232,B,((B.JX.push(B.J.slice()),B.J)[232]=void 0,T))},cN=function(T,B){return(T=T.create().shift(),B.O).create().length||B.g.create().length||(B.g=void 0,B.O=void 0),T},q1=function(T,B){return B=W(T),B&128&&(B=B&127|W(T)<<7),B},J2=function(T,B,L,E){try{E=T[((B|0)+2)%3],T[B]=(T[B]|0)-(T[((B|0)+1)%3]|0)-(E|0)^(1==B?E<<L:E>>>L)}catch(h){throw h;}},A=g.requestIdleCallback?function(T){requestIdleCallback(function(){T()},{timeout:4})}:g.setImmediate?function(T){setImmediate(T)}:function(T){setTimeout(T,0)},eP=function(T,B,L){if((L=typeof T,"object")==L)if(T){if(T instanceof Array)return"array";if(T instanceof Object)return L;if("[object Window]"==(B=Object.prototype.toString.call(T),B))return"object";if("[object Array]"==B||"number"==typeof T.length&&"undefined"!=typeof T.splice&&"undefined"!=typeof T.propertyIsEnumerable&&!T.propertyIsEnumerable("splice"))return"array";if("[object Function]"==B||"undefined"!=typeof T.call&&"undefined"!=typeof T.propertyIsEnumerable&&!T.propertyIsEnumerable("call"))return"function"}else return"null";else if("function"==L&&"undefined"==typeof T.call)return"object";return L},w=function(T,B){T.i.splice(0,0,B)},iZ=function(T,B,L){return(L=y[B.F](B.Oo),L)[B.F]=function(){return T},L.concat=function(E){T=E},L},OZ=function(T,B,L,E,h){((E=S(T,(h=Y((E=(L=B&3,B&=4,Y)(T),T)),E)),B)&&(E=UZ(""+E)),L&&P(h,T,m(E.length,2)),P)(h,T,E)},x=function(T,B){for(B=[];T--;)B.push(255*Math.random()|0);return B},o8=function(T,B,L,E){P((L=(E=Y(T),Y(T)),L),T,m(S(T,E),B))},O=function(T,B,L,E,h,K,p,c,u,G,Z,C,H,d){if((p=S(B,232),p)>=B.P)throw[r,31];for(Z=(c=(K=0,(C=T,B.Pl).length),p);0<C;)h=Z%8,E=Z>>3,H=8-(h|0),H=H<C?H:C,d=B.l[E],L&&(G=B,G.W!=Z>>6&&(G.W=Z>>6,u=S(G,489),G.u=R8(G.X,[0,0,u[1],u[2]],G.W)),d^=B.u[E&c]),K|=(d>>8-(h|0)-(H|0)&(1<<H)-1)<<(C|0)-(H|0),C-=H,Z+=H;return N(232,B,(L=K,(p|0)+(T|0))),L},n=function(T,B,L,E,h,K,p,c,u){if(((L.Y=((h=(K=(p=(u=(B||L.R++,(c=T?255:B?5:2,0<L.H&&L.K&&L.tX&&1>=L.D)&&!L.O&&!L.A&&(!B||1<L.C-E))&&0==document.hidden,(T=4==L.R)||u)?L.T():L.h,p-L.h),K)>>14,L).X&&(L.X^=h*(K<<2)),h)||L.Y,L).U+=h,T)||u)L.R=0,L.h=p;if(!u||p-L.N<L.H-c)return false;return!(L.A=((N(232,(u=S(L,(L.C=E,B?204:232)),L),L.P),L).i.push([X,u,B?E+1:E]),A),0)},S=function(T,B){if(void 0===(T=T.J[B],T))throw[r,30,B];if(T.value)return T.create();return T.create(2*B*B+58*B+9),T.prototype},X3=String.fromCharCode(105,110,116,101,103,67,104,101,99,107,66,121,112,97,115,115),BN=[],r=(Q.prototype.az=false,Q.prototype.v="toString",{}),l=[],V=(Q.prototype.yw=void 0,[]),t=[],X=(Q.prototype.Nm=void 0,[]),KU=[],LU=[],a=[],Ym=(D=(((wK,function(){})(x),function(){})(J2),EZ,Q.prototype),void 0),y=((D.T=(window.performance||{}).now?function(){return this.FT+window.performance.now()}:function(){return+new Date},D.bS=function(T,B,L,E,h,K){for(L=(K=(h=[],0),0);L<T.length;L++)for(K+=B,E=E<<B|T[L];7<K;)K-=8,h.push(E>>K&255);return h},D.S=function(T,B,L,E,h){if(L="array"===eP(L)?L:[L],this.L)T(this.L);else try{E=[],h=!this.i.length,w(this,[l,E,L]),w(this,[a,T,E]),B&&!h||f(true,this,B)}catch(K){R(this,K),T(this.L)}},D).AX=function(){return Math.floor(this.T())},(Q.prototype.F="create",D.k9=function(){return Math.floor(this.Z+(this.T()-this.N))},D.Tk=function(T,B,L){return T^(B^=B<<13,B^=B>>17,(B=(B^B<<5)&L)||(B=1),B)},D).Iz=function(T,B,L,E,h){for(E=h=0;E<T.length;E++)h+=T.charCodeAt(E),h+=h<<10,h^=h>>6;return(h=(h+=h<<3,h^=h>>11,T=h+(h<<15)>>>0,new Number(T&(1<<B)-1)),h)[0]=(T>>>B)%L,h},r).constructor,N1=(Q.prototype.s=function(T,B){return T={},B=(Ym=function(){return B==T?9:-32},{}),function(L,E,h,K,p,c,u,G,Z,C,H,d,U,v,k){B=(G=B,T);try{if(C=L[0],C==t){u=L[1];try{for(v=c=(Z=(p=atob(u),[]),0);c<p.length;c++)d=p.charCodeAt(c),255<d&&(Z[v++]=d&255,d>>=8),Z[v++]=d;N(489,this,[0,(this.P=(this.l=Z,this.l.length<<3),0),0])}catch(J){I(17,J,this);return}h2(8001,this)}else if(C==l)L[1].push(S(this,122),S(this,388).length,S(this,428).length,S(this,475).length),N(85,this,L[2]),this.J[486]&&jP(this,S(this,486),8001);else{if(C==a){this.Y=(H=(Z=L[2],E=m((S(this,475).length|0)+2,2),this.Y),this);try{h=S(this,295),0<h.length&&P(475,this,m(h.length,2).concat(h),10),P(475,this,m(this.U,1),109),P(475,this,m(this[a].length,1)),p=0,K=S(this,388),p+=S(this,199)&2047,p-=(S(this,475).length|0)+5,4<K.length&&(p-=(K.length|0)+3),0<p&&P(475,this,m(p,2).concat(x(p)),15),4<K.length&&P(475,this,m(K.length,2).concat(K),156)}finally{this.Y=H}if((((v=x(2).concat(S(this,475)),v)[1]=v[0]^6,v)[3]=v[1]^E[0],v)[4]=v[1]^E[1],k=this.zk(v))k="!"+k;else for(p=0,k="";p<v.length;p++)U=v[p][this.v](16),1==U.length&&(U="0"+U),k+=U;return S(this,((S(this,(N(122,(c=k,this),Z.shift()),388)).length=Z.shift(),S(this,428)).length=Z.shift(),475)).length=Z.shift(),c}if(C==X)jP(this,L[1],L[2]);else if(C==BN)return jP(this,L[1],8001)}}finally{B=G}}}(),Q.prototype.zk=function(T,B,L,E){if(B=window.btoa){for(L="",E=0;E<T.length;E+=8192)L+=String.fromCharCode.apply(null,T.slice(E,E+8192));T=B(L).replace(/\\+/g,"-").replace(/\\//g,"_").replace(/=/g,"")}else T=void 0;return T},/./);Q.prototype.Wl=0;var fU,SP=t.pop.bind(Q.prototype[Q.prototype[V]=[0,0,1,1,(Q.prototype.Dv=0,0),1,1],l]),gK=function(T,B){return(B=bZ())&&1===T.eval(B.createScript("1"))?function(L){return B.createScript(L)}:function(L){return""+L}}((fU=CU({get:SP},(N1[Q.prototype.v]=SP,Q.prototype.F)),Q.prototype.XT=void 0,g));(40<(F=g.botguard||(g.botguard={}),F.m)||(F.m=41,F.bg=vN,F.a=lZ),F).aBG_=function(T,B,L){return L=new Q(B,T),[function(E){return G8(E,L)}]};}).call(this);'));
}).call(this);
                                    

#3 JavaScript::Eval (size: 22, repeated: 1) - SHA256: 3e395fcf4147462f3acb1949ed85face832449ecde98a7056db31a7336a2dae4

                                        0,
function(K) {
    sZ(1, K)
}
                                    

#4 JavaScript::Eval (size: 22334, repeated: 1) - SHA256: cf3d0c1eb7b7caf1ff36d671b02c3084ed5898e7238739003445abec73e697ae

                                        (function() {
    var T8 = function(T, B) {
            return B[T] << 24 | B[(T | 0) + 1] << 16 | B[(T | 0) + 2] << 8 | B[(T | 0) + 3]
        },
        pU = function(T, B, L, E, h) {
            if (L = B[0], L == l) T.j = 25, T.s(B);
            else if (L == a) {
                E = B[1];
                try {
                    h = T.L || T.s(B)
                } catch (K) {
                    R(T, K), h = T.L
                }
                E(h)
            } else if (L == X) T.s(B);
            else if (L == t) T.s(B);
            else if (L == V) {
                try {
                    for (h = 0; h < T.V.length; h++) try {
                        E = T.V[h], E[0][E[1]](E[2])
                    } catch (K) {}
                } catch (K) {}(0, B[1])(function(K, p) {
                    T.S(K, true, p)
                }, (T.V = [], function(K) {
                    (w(T, (K = !T.i.length, [LU])), K) && f(false, T, true)
                }))
            } else {
                if (L == BN) return h = B[2], N(500, T, B[6]), N(85, T, h), T.s(B);
                L == LU ? (T.l = [], T.G = [], T.J = null) : L == KU && "loading" === g.document.readyState && (T.A = function(K, p) {
                    function c() {
                        p || (p = true, K())
                    }(g.document.addEventListener("DOMContentLoaded", (p = false, c), e), g).addEventListener("load", c, e)
                })
            }
        },
        EZ = function(T, B, L) {
            if (3 == T.length) {
                for (L = 0; 3 > L; L++) B[L] += T[L];
                for (L = [13, 8, 13, (T = 0, 12), 16, 5, 3, 10, 15]; 9 > T; T++) B[3](B, T % 3, L[T])
            }
        },
        Y = function(T, B) {
            if (T.O) return cN(T.g, T);
            return (B = O(8, T, true), B & 128) && (B ^= 128, T = O(2, T, true), B = (B << 2) + (T | 0)), B
        },
        h2 = function(T, B, L, E, h, K) {
            if (!B.L) {
                B.D++;
                try {
                    for (E = (h = (L = void 0, 0), B.P); --T;) try {
                        if (K = void 0, B.O) L = cN(B.O, B);
                        else {
                            if (h = S(B, 232), h >= E) break;
                            L = S(B, (K = Y((N(204, B, h), B)), K))
                        }
                        n(false, false, B, (L && L.call ? L(B, T) : I(0, [r, 21, K], B), T))
                    } catch (p) {
                        S(B, 1) ? I(22, p, B) : N(1, B, p)
                    }
                    if (!T) {
                        if (B.az) {
                            h2((B.D--, 401070463542), B);
                            return
                        }
                        I(0, [r, 33], B)
                    }
                } catch (p) {
                    try {
                        I(22, p, B)
                    } catch (c) {
                        R(B, c)
                    }
                }
                B.D--
            }
        },
        lZ = function(T, B, L, E) {
            return (E = F[T.substring(0, 3) + "_"]) ? E(T.substring(3), B, L) : uZ(T, B)
        },
        G8 = function(T, B, L) {
            return B.S(function(E) {
                L = E
            }, false, T), L
        },
        R8 = function(T, B, L, E, h) {
            for (B = (h = B[2] | (E = 0, 0), B)[3] | 0; 15 > E; E++) L = L >>> 8 | L << 24, L += T | 0, T = T << 3 | T >>> 29, B = B >>> 8 | B << 24, L ^= h + 2278, B += h | 0, h = h << 3 | h >>> 29, T ^= L, B ^= E + 2278, h ^= B;
            return [T >>> 24 & 255, T >>> 16 & 255, T >>> 8 & 255, T >>> 0 & 255, L >>> 24 & 255, L >>> 16 & 255, L >>> 8 & 255, L >>> 0 & 255]
        },
        m = function(T, B, L, E) {
            for (L = (E = (B | 0) - 1, []); 0 <= E; E--) L[(B | 0) - 1 - (E | 0)] = T >> 8 * E & 255;
            return L
        },
        f = function(T, B, L, E, h, K) {
            if (B.i.length) {
                B.tX = (B.K = (B.K && 0(), true), L);
                try {
                    E = B.T(), B.N = E, B.R = 0, B.h = E, K = ZQ(L, B), h = B.T() - B.N, B.Z += h, h < (T ? 0 : 10) || 0 >= B.j-- || (h = Math.floor(h), B.G.push(254 >= h ? h : 254))
                } finally {
                    B.K = false
                }
                return K
            }
        },
        ZQ = function(T, B, L, E) {
            for (; B.i.length;) {
                B.A = null, L = B.i.pop();
                try {
                    E = pU(B, L)
                } catch (h) {
                    R(B, h)
                }
                if (T && B.A) {
                    T = B.A, T(function() {
                        f(true, B, true)
                    });
                    break
                }
            }
            return E
        },
        W = function(T) {
            return T.O ? cN(T.g, T) : O(8, T, true)
        },
        CU = function(T, B) {
            return y[B](y.prototype, {
                call: T,
                splice: T,
                console: T,
                parent: T,
                length: T,
                propertyIsEnumerable: T,
                floor: T,
                stack: T,
                replace: T,
                pop: T,
                prototype: T,
                document: T
            })
        },
        Q = function(T, B, L) {
            L = this;
            try {
                km(T, B, this)
            } catch (E) {
                R(this, E), T(function(h) {
                    h(L.L)
                })
            }
        },
        e = {
            passive: true,
            capture: true
        },
        R = function(T, B) {
            T.L = ((T.L ? T.L + "~" : "E:") + B.message + ":" + B.stack).slice(0, 2048)
        },
        HN = function(T, B, L, E, h, K) {
            for (K = (B = Y((L = (((E = T[X3] || {}, h = Y(T), E).pw = Y(T), E).I = [], T.Y == T ? (W(T) | 0) - 1 : 1), T)), 0); K < L; K++) E.I.push(Y(T));
            for ((E.x9 = S(T, B), E).o = S(T, h); L--;) E.I[L] = S(T, E.I[L]);
            return E
        },
        vN = function(T, B, L, E) {
            function h() {}
            return {
                invoke: (E = lZ(T, (L = void 0, function(K) {
                    h && (B && A(B), L = K, h(), h = void 0)
                }), !!B)[0], function(K, p, c, u) {
                    function G() {
                        L(function(Z) {
                            A(function() {
                                K(Z)
                            })
                        }, c)
                    }
                    if (!p) return p = E(c), K && K(p), p;
                    L ? G() : (u = h, h = function() {
                        u(), A(G)
                    })
                })
            }
        },
        jP = function(T, B, L, E) {
            return S(T, ((h2(((E = S(T, 232), T.l && E < T.P) ? (N(232, T, T.P), dK(B, T)) : N(232, T, B), L), T), N)(232, T, E), 85))
        },
        $m = function(T) {
            return T
        },
        sZ = function(T, B, L, E) {
            for (E = (L = Y(B), 0); 0 < T; T--) E = E << 8 | W(B);
            N(L, B, E)
        },
        uZ = function(T, B) {
            return [(B(function(L) {
                L(T)
            }), function() {
                return T
            })]
        },
        N = function(T, B, L) {
            if (232 == T || 204 == T) B.J[T] ? B.J[T].concat(L) : B.J[T] = iZ(L, B);
            else {
                if (B.B && 489 != T) return;
                475 == T || 388 == T || 428 == T || 295 == T || 229 == T ? B.J[T] || (B.J[T] = t2(B, 46, T, L)) : B.J[T] = t2(B, 145, T, L)
            }
            489 == T && (B.X = O(32, B, false), B.W = void 0)
        },
        P = function(T, B, L, E, h, K) {
            if (B.Y == B)
                for (h = S(B, T), 388 == T ? (T = function(p, c, u, G, Z) {
                        if (h.Qw != (Z = (G = h.length, (G | 0) - 4 >> 3), Z)) {
                            u = (c = [0, 0, K[1], K[2]], (Z << 3) - (h.Qw = Z, 4));
                            try {
                                h.iS = R8(T8(u, h), c, T8((u | 0) + 4, h))
                            } catch (C) {
                                throw C;
                            }
                        }
                        h.push(h.iS[G & 7] ^ p)
                    }, K = S(B, 229)) : T = function(p) {
                        h.push(p)
                    }, E && T(E & 255), B = L.length, E = 0; E < B; E++) T(L[E])
        },
        Vu = function(T, B, L, E, h, K) {
            function p() {
                if (T.Y == T) {
                    if (T.J) {
                        var c = [BN, L, B, void 0, h, K, arguments];
                        if (2 == E) var u = f(false, (w(T, c), T), false);
                        else if (1 == E) {
                            var G = !T.i.length;
                            (w(T, c), G) && f(false, T, false)
                        } else u = pU(T, c);
                        return u
                    }
                    h && K && h.removeEventListener(K, p, e)
                }
            }
            return p
        },
        wK = function(T, B) {
            (B.push(T[0] << 24 | T[1] << 16 | T[2] << 8 | T[3]), B).push(T[4] << 24 | T[5] << 16 | T[6] << 8 | T[7]), B.push(T[8] << 24 | T[9] << 16 | T[10] << 8 | T[11])
        },
        I = function(T, B, L, E, h, K) {
            if (!L.B) {
                if (B = S(((T = (0 == (h = S(L, ((K = void 0, B) && B[0] === r && (K = B[2], T = B[1], B = void 0), 295)), h.length) && (E = S(L, 204) >> 3, h.push(T, E >> 8 & 255, E & 255), void 0 != K && h.push(K & 255)), ""), B) && (B.message && (T += B.message), B.stack && (T += ":" + B.stack)), L), 122), 3 < B) {
                    L.Y = (K = (T = T.slice(0, (B | 0) - 3), B -= (T.length | 0) + 3, T = UZ(T), L.Y), L);
                    try {
                        P(388, L, m(T.length, 2).concat(T), 9)
                    } finally {
                        L.Y = K
                    }
                }
                N(122, L, B)
            }
        },
        g = this || self,
        UZ = function(T, B, L, E, h) {
            for (h = (L = (E = (T = T.replace(/\r\n/g, "\n"), 0), []), 0); h < T.length; h++) B = T.charCodeAt(h), 128 > B ? L[E++] = B : (2048 > B ? L[E++] = B >> 6 | 192 : (55296 == (B & 64512) && h + 1 < T.length && 56320 == (T.charCodeAt(h + 1) & 64512) ? (B = 65536 + ((B & 1023) << 10) + (T.charCodeAt(++h) & 1023), L[E++] = B >> 18 | 240, L[E++] = B >> 12 & 63 | 128) : L[E++] = B >> 12 | 224, L[E++] = B >> 6 & 63 | 128), L[E++] = B & 63 | 128);
            return L
        },
        D, bZ = function(T, B) {
            if (!(B = g.trustedTypes, T = null, B) || !B.createPolicy) return T;
            try {
                T = B.createPolicy("bg", {
                    createHTML: $m,
                    createScript: $m,
                    createScriptURL: $m
                })
            } catch (L) {
                g.console && g.console.error(L.message)
            }
            return T
        },
        F, km = function(T, B, L, E, h) {
            for (h = (L.Oo = (L.Y9 = CU({get: function() {
                        return this.concat()
                    }
                }, (L.Eo = ((L.so = N1, L).Pl = L[a], fU), L.F)), y)[L.F](L.Y9, {
                    value: {
                        value: {}
                    }
                }), []), E = 0; 128 > E; E++) h[E] = String.fromCharCode(E);
            f(true, (w(L, [(w(L, (N(400, (N(10, L, (N(200, L, (N((N((N(257, L, (N(54, (N(30, L, (N(12, (N(4, L, (N(75, L, (N(31, L, (N(428, (N(29, (N(295, L, (N(416, L, (N((N(437, (N((N(327, (N(37, (N(180, (N(312, L, (L.ds = (((N(85, L, (N(91, L, (N(505, (N(((N(113, L, ((N(144, L, (N(229, L, [0, (N(331, (N(192, (N(415, (N(215, L, (N(204, ((L.FT = (L.K = false, (L.h = 0, L.JX = ((L.i = [], L).O = void 0, L.A = (L.N = 0, null), []), (L.G = [], L.tX = (L.J = (L.D = 0, []), false), L.X = (E = (L.P = 0, L.u = void 0, window.performance || {}), (L.V = [], L).U = 1, (L.Lw = (L.lS = 0, L.C = 8001, function(K) {
                this.Y = K
            }), L).R = void 0, void 0), L.l = (L.L = (L.j = 25, void 0), L.W = void 0, []), L.g = void 0, L).Y = L, L.B = false, L).Z = 0, (L.H = 0, E).timeOrigin || (E.timing || {}).navigationStart || 0), N)(232, L, 0), L), 0), function(K, p, c, u) {
                N((u = S(K, (c = (p = (c = Y(K), Y(K)), S(K, c)), p)), p), K, u + c)
            })), L.gs = 0, L), function(K, p, c) {
                N((p = Y((c = Y(K), K)), p), K, "" + S(K, c))
            }), L), function(K, p, c, u, G) {
                for (p = (G = q1((u = Y(K), K)), []), c = 0; c < G; c++) p.push(W(K));
                N(u, K, p)
            }), L), function(K, p, c) {
                N((p = (p = S(K, (c = Y((p = Y(K), K)), p)), eP)(p), c), K, p)
            }), 0), 0]), function(K, p, c, u) {
                !n(false, true, K, p) && (p = HN(K), c = p.x9, u = p.o, K.Y == K || u == K.Lw && c == K) && (N(p.pw, K, u.apply(c, p.I)), K.h = K.T())
            })), L).hX = 0, function(K, p, c, u, G, Z, C) {
                for (Z = (c = (G = S(K, (u = q1((p = Y(K), K)), C = "", 341)), G).length, 0); u--;) Z = ((Z | 0) + (q1(K) | 0)) % c, C += h[G[Z]];
                N(p, K, C)
            })), N)(2, L, function() {}), 475), L, [160, 0, 0]), N(122, L, 2048), L), function(K, p, c, u) {
                (u = (c = Y((p = Y(K), K)), Y(K)), N)(u, K, S(K, p) || S(K, c))
            }), function(K, p, c, u) {
                (c = (p = (u = Y(K), Y)(K), Y(K)), K).Y == K && (c = S(K, c), p = S(K, p), S(K, u)[p] = c, 489 == u && (K.W = void 0, 2 == p && (K.X = O(32, K, false), K.W = void 0)))
            })), N(28, L, function(K, p) {
                (K = S((p = Y(K), K.Y), p), K)[0].removeEventListener(K[1], K[2], e)
            }), {})), N)(1, L, 233), N)(448, L, function(K, p, c, u) {
                (p = S((c = S((p = (c = Y(K), Y(K)), u = Y(K), K), c), K), p), N)(u, K, +(c == p))
            }), 0), function(K, p, c, u, G, Z, C, H, d, U, v, k) {
                function J(b, q) {
                    for (; d < b;) U |= W(K) << d, d += 8;
                    return q = U & (1 << b) - 1, U >>= (d -= b, b), q
                }
                for (Z = k = (u = (v = ((d = (c = Y(K), U = 0), J)(3) | 0) + 1, J(5)), 0), C = []; k < u; k++) p = J(1), C.push(p), Z += p ? 0 : 1;
                for (Z = (G = (k = ((Z | 0) - 1).toString(2).length, []), 0); Z < u; Z++) C[Z] || (G[Z] = J(k));
                for (k = 0; k < u; k++) C[k] && (G[k] = Y(K));
                for (H = []; v--;) H.push(S(K, Y(K)));
                N(c, K, function(b, q, z, a8, M) {
                    for (q = (M = (a8 = [], []), 0); q < u; q++) {
                        if (z = G[q], !C[q]) {
                            for (; z >= M.length;) M.push(Y(b));
                            z = M[z]
                        }
                        a8.push(z)
                    }
                    b.g = iZ((b.O = iZ(H.slice(), b), a8), b)
                })
            })), L), function(K, p, c, u) {
                (u = (p = (c = Y(K), W(K)), Y(K)), N)(u, K, S(K, c) >>> p)
            }), L), function(K, p, c, u) {
                (c = S(K, (u = (p = (u = (c = Y(K), Y(K)), Y)(K), S)(K, u), c)), N)(p, K, c in u | 0)
            }), L), function(K, p, c) {
                n(false, true, K, p) || (p = Y(K), c = Y(K), N(c, K, function(u) {
                    return eval(u)
                }(gK(S(K.Y, p)))))
            }), 72), L, function(K) {
                OZ(K, 4)
            }), L), function(K, p, c, u, G, Z) {
                n(false, true, K, p) || (G = HN(K.Y), p = G.I, c = G.x9, Z = G.o, u = p.length, G = G.pw, p = 0 == u ? new c[Z] : 1 == u ? new c[Z](p[0]) : 2 == u ? new c[Z](p[0], p[1]) : 3 == u ? new c[Z](p[0], p[1], p[2]) : 4 == u ? new c[Z](p[0], p[1], p[2], p[3]) : 2(), N(G, K, p))
            }), 199), L, 0), function(K, p, c, u, G, Z) {
                if (!n(true, true, K, p)) {
                    if (K = (G = S((Z = S((p = (G = Y((p = Y((c = (Z = Y(K), Y(K)), K)), K)), S(K, p)), K), Z), K), G), S(K, c)), "object" == eP(Z)) {
                        for (u in c = [], Z) c.push(u);
                        Z = c
                    }
                    for (p = (u = Z.length, 0 < p ? p : 1), c = 0; c < u; c += p) K(Z.slice(c, (c | 0) + (p | 0)), G)
                }
            })), [])), L), 0), L), []), function(K) {
                OZ(K, 3)
            })), function(K) {
                o8(K, 1)
            })), g)), L), function(K) {
                o8(K, 4)
            }), function(K, p, c) {
                0 != S(K, (c = S(K, (c = (p = Y(K), Y(K)), c)), p)) && N(232, K, c)
            })), L), L), function(K, p, c, u, G) {
                0 !== (p = S((c = S(K, (u = S(K, (G = (c = Y((u = (p = Y(K), Y(K)), K)), G = Y(K), S(K, G)), u)), c)), K.Y), p), p) && (G = Vu(K, G, c, 1, p, u), p.addEventListener(u, G, e), N(29, K, [p, u, G]))
            })), 388), L, x(4)), N(256, L, function(K, p, c, u) {
                if (p = K.JX.pop()) {
                    for (c = W(K); 0 < c; c--) u = Y(K), p[u] = K.J[u];
                    K.J = (p[p[295] = K.J[295], 122] = K.J[122], p)
                } else N(232, K, K.P)
            }), 172), L, function(K) {
                sZ(4, K)
            }), function(K, p, c, u, G) {
                (p = S(K, (u = (G = (G = (p = Y((u = Y((c = Y(K), K)), K)), Y(K)), S(K, G)), S(K, u)), p)), N)(c, K, Vu(K, p, u, G))
            })), function(K, p, c, u) {
                p = S(K, (c = S(K, (u = Y((p = Y((c = Y(K), K)), K)), c)), p)), N(u, K, c[p])
            })), L), function(K, p) {
                dK((p = S(K, Y(K)), p), K.Y)
            }), w(L, [KU]), [t, B])), V), T]), L), true)
        },
        t2 = function(T, B, L, E, h, K, p, c) {
            return ((c = (E = [-89, 58, -74, 47, 50, 50, E, 30, (K = Ym, -53), (h = B & 7, -90)], y)[T.F](T.Y9), c)[T.F] = function(u) {
                p = (h += 6 + 7 * B, u), h &= 7
            }, c).concat = function(u) {
                return (u = (p = (u = (u = L % 16 + 1, -u * p + E[h + 35 & 7] * L * u - 68 * L * L * p + 2 * L * L * u - 306 * p + h + 34 * p * p) + (K() | 0) * u - 1972 * L * p, void 0), E[u]), E)[(h + 77 & 7) + (B & 2)] = u, E[h + (B & 2)] = 58, u
            }, c
        },
        dK = function(T, B) {
            N(232, B, ((B.JX.push(B.J.slice()), B.J)[232] = void 0, T))
        },
        cN = function(T, B) {
            return (T = T.create().shift(), B.O).create().length || B.g.create().length || (B.g = void 0, B.O = void 0), T
        },
        q1 = function(T, B) {
            return B = W(T), B & 128 && (B = B & 127 | W(T) << 7), B
        },
        J2 = function(T, B, L, E) {
            try {
                E = T[((B | 0) + 2) % 3], T[B] = (T[B] | 0) - (T[((B | 0) + 1) % 3] | 0) - (E | 0) ^ (1 == B ? E << L : E >>> L)
            } catch (h) {
                throw h;
            }
        },
        A = g.requestIdleCallback ? function(T) {
            requestIdleCallback(function() {
                T()
            }, {
                timeout: 4
            })
        } : g.setImmediate ? function(T) {
            setImmediate(T)
        } : function(T) {
            setTimeout(T, 0)
        },
        eP = function(T, B, L) {
            if ((L = typeof T, "object") == L)
                if (T) {
                    if (T instanceof Array) return "array";
                    if (T instanceof Object) return L;
                    if ("[object Window]" == (B = Object.prototype.toString.call(T), B)) return "object";
                    if ("[object Array]" == B || "number" == typeof T.length && "undefined" != typeof T.splice && "undefined" != typeof T.propertyIsEnumerable && !T.propertyIsEnumerable("splice")) return "array";
                    if ("[object Function]" == B || "undefined" != typeof T.call && "undefined" != typeof T.propertyIsEnumerable && !T.propertyIsEnumerable("call")) return "function"
                } else return "null";
            else if ("function" == L && "undefined" == typeof T.call) return "object";
            return L
        },
        w = function(T, B) {
            T.i.splice(0, 0, B)
        },
        iZ = function(T, B, L) {
            return (L = y[B.F](B.Oo), L)[B.F] = function() {
                return T
            }, L.concat = function(E) {
                T = E
            }, L
        },
        OZ = function(T, B, L, E, h) {
            ((E = S(T, (h = Y((E = (L = B & 3, B &= 4, Y)(T), T)), E)), B) && (E = UZ("" + E)), L && P(h, T, m(E.length, 2)), P)(h, T, E)
        },
        x = function(T, B) {
            for (B = []; T--;) B.push(255 * Math.random() | 0);
            return B
        },
        o8 = function(T, B, L, E) {
            P((L = (E = Y(T), Y(T)), L), T, m(S(T, E), B))
        },
        O = function(T, B, L, E, h, K, p, c, u, G, Z, C, H, d) {
            if ((p = S(B, 232), p) >= B.P) throw [r, 31];
            for (Z = (c = (K = 0, (C = T, B.Pl).length), p); 0 < C;) h = Z % 8, E = Z >> 3, H = 8 - (h | 0), H = H < C ? H : C, d = B.l[E], L && (G = B, G.W != Z >> 6 && (G.W = Z >> 6, u = S(G, 489), G.u = R8(G.X, [0, 0, u[1], u[2]], G.W)), d ^= B.u[E & c]), K |= (d >> 8 - (h | 0) - (H | 0) & (1 << H) - 1) << (C | 0) - (H | 0), C -= H, Z += H;
            return N(232, B, (L = K, (p | 0) + (T | 0))), L
        },
        n = function(T, B, L, E, h, K, p, c, u) {
            if (((L.Y = ((h = (K = (p = (u = (B || L.R++, (c = T ? 255 : B ? 5 : 2, 0 < L.H && L.K && L.tX && 1 >= L.D) && !L.O && !L.A && (!B || 1 < L.C - E)) && 0 == document.hidden, (T = 4 == L.R) || u) ? L.T() : L.h, p - L.h), K) >> 14, L).X && (L.X ^= h * (K << 2)), h) || L.Y, L).U += h, T) || u) L.R = 0, L.h = p;
            if (!u || p - L.N < L.H - c) return false;
            return !(L.A = ((N(232, (u = S(L, (L.C = E, B ? 204 : 232)), L), L.P), L).i.push([X, u, B ? E + 1 : E]), A), 0)
        },
        S = function(T, B) {
            if (void 0 === (T = T.J[B], T)) throw [r, 30, B];
            if (T.value) return T.create();
            return T.create(2 * B * B + 58 * B + 9), T.prototype
        },
        X3 = String.fromCharCode(105, 110, 116, 101, 103, 67, 104, 101, 99, 107, 66, 121, 112, 97, 115, 115),
        BN = [],
        r = (Q.prototype.az = false, Q.prototype.v = "toString", {}),
        l = [],
        V = (Q.prototype.yw = void 0, []),
        t = [],
        X = (Q.prototype.Nm = void 0, []),
        KU = [],
        LU = [],
        a = [],
        Ym = (D = (((wK, function() {})(x), function() {})(J2), EZ, Q.prototype), void 0),
        y = ((D.T = (window.performance || {}).now ? function() {
            return this.FT + window.performance.now()
        } : function() {
            return +new Date
        }, D.bS = function(T, B, L, E, h, K) {
            for (L = (K = (h = [], 0), 0); L < T.length; L++)
                for (K += B, E = E << B | T[L]; 7 < K;) K -= 8, h.push(E >> K & 255);
            return h
        }, D.S = function(T, B, L, E, h) {
            if (L = "array" === eP(L) ? L : [L], this.L) T(this.L);
            else try {
                E = [], h = !this.i.length, w(this, [l, E, L]), w(this, [a, T, E]), B && !h || f(true, this, B)
            } catch (K) {
                R(this, K), T(this.L)
            }
        }, D).AX = function() {
            return Math.floor(this.T())
        }, (Q.prototype.F = "create", D.k9 = function() {
            return Math.floor(this.Z + (this.T() - this.N))
        }, D.Tk = function(T, B, L) {
            return T ^ (B ^= B << 13, B ^= B >> 17, (B = (B ^ B << 5) & L) || (B = 1), B)
        }, D).Iz = function(T, B, L, E, h) {
            for (E = h = 0; E < T.length; E++) h += T.charCodeAt(E), h += h << 10, h ^= h >> 6;
            return (h = (h += h << 3, h ^= h >> 11, T = h + (h << 15) >>> 0, new Number(T & (1 << B) - 1)), h)[0] = (T >>> B) % L, h
        }, r).constructor,
        N1 = (Q.prototype.s = function(T, B) {
            return T = {}, B = (Ym = function() {
                    return B == T ? 9 : -32
                }, {}),
                function(L, E, h, K, p, c, u, G, Z, C, H, d, U, v, k) {
                    B = (G = B, T);
                    try {
                        if (C = L[0], C == t) {
                            u = L[1];
                            try {
                                for (v = c = (Z = (p = atob(u), []), 0); c < p.length; c++) d = p.charCodeAt(c), 255 < d && (Z[v++] = d & 255, d >>= 8), Z[v++] = d;
                                N(489, this, [0, (this.P = (this.l = Z, this.l.length << 3), 0), 0])
                            } catch (J) {
                                I(17, J, this);
                                return
                            }
                            h2(8001, this)
                        } else if (C == l) L[1].push(S(this, 122), S(this, 388).length, S(this, 428).length, S(this, 475).length), N(85, this, L[2]), this.J[486] && jP(this, S(this, 486), 8001);
                        else {
                            if (C == a) {
                                this.Y = (H = (Z = L[2], E = m((S(this, 475).length | 0) + 2, 2), this.Y), this);
                                try {
                                    h = S(this, 295), 0 < h.length && P(475, this, m(h.length, 2).concat(h), 10), P(475, this, m(this.U, 1), 109), P(475, this, m(this[a].length, 1)), p = 0, K = S(this, 388), p += S(this, 199) & 2047, p -= (S(this, 475).length | 0) + 5, 4 < K.length && (p -= (K.length | 0) + 3), 0 < p && P(475, this, m(p, 2).concat(x(p)), 15), 4 < K.length && P(475, this, m(K.length, 2).concat(K), 156)
                                } finally {
                                    this.Y = H
                                }
                                if ((((v = x(2).concat(S(this, 475)), v)[1] = v[0] ^ 6, v)[3] = v[1] ^ E[0], v)[4] = v[1] ^ E[1], k = this.zk(v)) k = "!" + k;
                                else
                                    for (p = 0, k = ""; p < v.length; p++) U = v[p][this.v](16), 1 == U.length && (U = "0" + U), k += U;
                                return S(this, ((S(this, (N(122, (c = k, this), Z.shift()), 388)).length = Z.shift(), S(this, 428)).length = Z.shift(), 475)).length = Z.shift(), c
                            }
                            if (C == X) jP(this, L[1], L[2]);
                            else if (C == BN) return jP(this, L[1], 8001)
                        }
                    } finally {
                        B = G
                    }
                }
        }(), Q.prototype.zk = function(T, B, L, E) {
            if (B = window.btoa) {
                for (L = "", E = 0; E < T.length; E += 8192) L += String.fromCharCode.apply(null, T.slice(E, E + 8192));
                T = B(L).replace(/\+/g, "-").replace(/\//g, "_").replace(/=/g, "")
            } else T = void 0;
            return T
        }, /./);
    Q.prototype.Wl = 0;
    var fU, SP = t.pop.bind(Q.prototype[Q.prototype[V] = [0, 0, 1, 1, (Q.prototype.Dv = 0, 0), 1, 1], l]),
        gK = function(T, B) {
            return (B = bZ()) && 1 === T.eval(B.createScript("1")) ? function(L) {
                return B.createScript(L)
            } : function(L) {
                return "" + L
            }
        }((fU = CU({get: SP
        }, (N1[Q.prototype.v] = SP, Q.prototype.F)), Q.prototype.XT = void 0, g));
    (40 < (F = g.botguard || (g.botguard = {}), F.m) || (F.m = 41, F.bg = vN, F.a = lZ), F).aBG_ = function(T, B, L) {
        return L = new Q(B, T), [function(E) {
            return G8(E, L)
        }]
    };
}).call(this);
                                    

#5 JavaScript::Eval (size: 60, repeated: 1) - SHA256: 84cc20e6a291f4e4d773bcf60310fb3e4f793fc0dfcb5d4e5371418c29445b0b

                                        0,
function(K, p, c) {
    c = Y((p = Y(K), K)), p = K.J[p] && S(K, p), N(c, K, p)
}
                                    

Executed Writes (3)

#1 JavaScript::Write (size: 190, repeated: 1) - SHA256: 743f6492a5beb847167322304f93922a25b48b4fda556b6039418e53930e9df1

                                        <!-- AppNexus Sync pixel START--><img src="https://secure.adnxs.com/getuidnb?https%3A//zz.connextra.com/sync/data/uid/3bc1d7fd2e/%24UID" width="1" height="1"/><!--AppNexus Sync pixel: END-->
                                    

#2 JavaScript::Write (size: 184, repeated: 1) - SHA256: 9e1c99833a39f42fdcc131a611c618bdda2e0854ac5842b13d55747d0fb2b8ca

                                        <!-- Segment Pixel - BizzoCasino Homepage - DO NOT MODIFY --> <script src="https://secure.adnxs.com/seg?add=30624960&t=1" type="text/javascript"></script> <!-- End of Segment Pixel -->
                                    

#3 JavaScript::Write (size: 6241, repeated: 1) - SHA256: f59a7aa5e9220cfa90ef10c04f1e2035ee4c3c920ff972e788e73caefff37b91

                                        < !DOCTYPE html >
    < html >
    < head >
    < link rel = "stylesheet"
href = "https://fonts.googleapis.com/css?family=Noto+Sans:400,700&subset=latin-ext&display=swap" > < /link> < style >
    * {
        font - family: 'Noto Sans', sans - serif;
        box - sizing: border - box; - webkit - font - smoothing: antialiased; - moz - osx - font - smoothing: grayscale; - webkit - tap - highlight - color: transparent;
    }
body {
    margin: 0;
} < /style> < style data - emotion = "css-global 1yzzujv" > .css - 1 yzzujv {
        max - width: 100 % ;
        position: absolute;
        bottom: 0;
        z - index: 2;
        display: -webkit - box;
        display: -webkit - flex;
        display: -ms - flexbox;
        display: flex; - webkit - align - items: flex - end; - webkit - box - align: flex - end; - ms - flex - align: flex - end;
        align - items: flex - end;
        will - change: width, height, transform, opacity; - webkit - backface - visibility: hidden;
        backface - visibility: hidden;
        padding: 0.5e m 0.5e m 1e m 1e m;
        right: 0; - webkit - box - pack: end; - ms - flex - pack: end; - webkit - justify - content: flex - end;
        justify - content: flex - end;
        --primary - color: #2000F0;--secondary-color:# FFFFFF;
        --tertiary - color: # E3E3E3;
    } < /style><style data-emotion="css-global 1aasxu6">.css-1aasxu6{display:-webkit-box;display:-webkit-flex;display:-ms-flexbox;display:flex;-webkit-flex-direction:column;-ms-flex-direction:column;flex-direction:column;min-width:0;--primary-color:#2000F0;--secondary-color:#FFFFFF;--tertiary-color:#E3E3E3;}</style > < style data - emotion = "css-global 1g9ek8d" > .css - 1 g9ek8d {
        display: -webkit - box;display: -webkit - flex;display: -ms - flexbox;display: flex;min - width: 0;--primary - color: #2000F0;--secondary-color:# FFFFFF;--tertiary - color: # E3E3E3;
    } < /style><style data-emotion="css-global 197w67f">.css-197w67f{display:-webkit-box;display:-webkit-flex;display:-ms-flexbox;display:flex;width:60px;height:60px;box-shadow:0 4px 12px rgba(0,0,0,0.3);border-radius:50%;background:#FFFFFF;-webkit-box-pack:center;-ms-flex-pack:center;-webkit-justify-content:center;justify-content:center;margin-left:auto;--primary-color:#2000F0;--secondary-color:#FFFFFF;--tertiary-color:#E3E3E3;position:relative;background:var(--primary-color);color:#FFFFFF;background-color:#16C935;}.css-197w67f:hover{cursor:pointer;}</style > < style data - emotion = "css-global 2jkngm" > .css - 2 jkngm {
        -webkit - appearance: none; - moz - appearance: none; - ms - appearance: none;
        appearance: none;
        background: transparent;
        border: 0;
        display: inline - block;
        margin: 0;
        padding: 0.5e m;
        color: inherit;
        cursor: pointer;
        --primary - color: #2000F0;--secondary-color:# FFFFFF;
        --tertiary - color: # E3E3E3;
        padding: 0.5e m;
        padding: 0;
        display: -webkit - box;
        display: -webkit - flex;
        display: -ms - flexbox;
        display: flex; - webkit - box - pack: center; - ms - flex - pack: center; - webkit - justify - content: center;
        justify - content: center; - webkit - align - items: center; - webkit - box - align: center; - ms - flex - align: center;
        align - items: center;
        border - radius: 6 px;
        --primary - color: #2000F0;--secondary-color:# FFFFFF;
        --tertiary - color: # E3E3E3;
        padding: 0;
        width: 100 % ;
        display: -webkit - box;
        display: -webkit - flex;
        display: -ms - flexbox;
        display: flex; - webkit - box - pack: center; - ms - flex - pack: center; - webkit - justify - content: center;
        justify - content: center; - webkit - align - items: center; - webkit - box - align: center; - ms - flex - align: center;
        align - items: center;
    }.css - 2 jkngm: disabled {
        cursor: not - allowed;
    } < /style><style data-emotion="css-global eiheq7">.css-eiheq7{position:relative;display:-webkit-box;display:-webkit-flex;display:-ms-flexbox;display:flex;width:32px;height:32px;-webkit-align-items:center;-webkit-box-align:center;-ms-flex-align:center;align-items:center;-webkit-box-pack:center;-ms-flex-pack:center;-webkit-justify-content:center;justify-content:center;--primary-color:#2000F0;--secondary-color:#FFFFFF;--tertiary-color:#E3E3E3;}</style > < style data - emotion = "css-global 1mpchac" > .css - 1 mpchac {
        display: inline - block; - webkit - flex - shrink: 0; - ms - flex - negative: 0;flex - shrink: 0;width: 1e m;height: 1e m;font - size: 2 rem; - webkit - user - select: none; - moz - user - select: none; - ms - user - select: none;user - select: none;fill: currentColor;
    } < /style><style data-emotion="css-global 1adcsh3">.css-1adcsh3{opacity:1;-webkit-transform:scale(1);-moz-transform:scale(1);-ms-transform:scale(1);transform:scale(1);transform-origin:50% 50%;-webkit-transition:200ms cubic-bezier(0.18, 0.89, 0.32, 1.28) 50ms;transition:200ms cubic-bezier(0.18, 0.89, 0.32, 1.28) 50ms;--primary-color:#2000F0;--secondary-color:#FFFFFF;--tertiary-color:#E3E3E3;}</style > < style data - emotion = "css-global 1o92iqh" > .css - 1 o92iqh {
        position: absolute;z - index: 1;left: 0;right: 0;bottom: 1 px; - webkit - transition: opacity 150 ms cubic - bezier(0.33, 0, 0.67, 1) 50 ms;transition: opacity 150 ms cubic - bezier(0.33, 0, 0.67, 1) 50 ms;display: -webkit - box;display: -webkit - flex;display: -ms - flexbox;display: flex;width: 32 px;height: 32 px; - webkit - align - items: center; - webkit - box - align: center; - ms - flex - align: center;align - items: center; - webkit - box - pack: center; - ms - flex - pack: center; - webkit - justify - content: center;justify - content: center;opacity: 0;--primary - color: #2000F0;--secondary-color:# FFFFFF;--tertiary - color: # E3E3E3;
    } < /style><style data-emotion="css "></style >
    < /head> < body > < div dir = "ltr"
role = "main"
data - lc - id = "0"
data - lc - event = "mouseover:01eiouqzw71o;focus:o0fiac6kmzi;blur:vbu7skzpy0k"
class = "css-1yzzujv eqd5v0k0" > < div class = "css-1aasxu6 ek650k30" > < div class = "css-1g9ek8d e108e6fy0" > < /div><div class="css-1g9ek8d e108e6fy0"><div data-lc-id="1" data-lc-event="click:bp776zfcdk7;mouseleave:g8np281ndfg;mouseenter:fuzr6zqqhcr;focus:qppq3bfi3id;blur:09rxg31wao5m" class="css-197w67f e1ybl9g10"><button aria-label="Open LiveChat chat widget" data-lc-id="2" data-lc-event="click:ngqwkf6ewb;focus:etjusvg790p;blur:lr03woncfds" class="e1mwfyk10 css-2jkngm e1m5b1js0" type="button"><div aria-hidden="true" class="css-eiheq7 e1dmt1bi1"><svg color="inherit" viewBox="0 0 32 32" class="css-1mpchac"><path fill="#3B326F" d="M12.63,26.46H8.83a6.61,6.61,0,0,1-6.65-6.07,89.05,89.05,0,0,1,0-11.2A6.5,6.5,0,0,1,8.23,3.25a121.62,121.62,0,0,1,15.51,0A6.51,6.51,0,0,1,29.8,9.19a77.53,77.53,0,0,1,0,11.2,6.61,6.61,0,0,1-6.66,6.07H19.48L12.63,31V26.46"></path > < path fill = "#16C935"
d = "M19.57,21.68h3.67a2.08,2.08,0,0,0,2.11-1.81,89.86,89.86,0,0,0,0-10.38,1.9,1.9,0,0,0-1.84-1.74,113.15,113.15,0,0,0-15,0A1.9,1.9,0,0,0,6.71,9.49a74.92,74.92,0,0,0-.06,10.38,2,2,0,0,0,2.1,1.81h3.81V26.5Z"
class = "css-1adcsh3 e1nep2br0" > < /path></svg > < div class = "css-1o92iqh e1dmt1bi0" > < /div></div > < /button></div > < /div></div > < /div></body >
    < /html>
                                    


HTTP Transactions (388)


Request Response
                                        
                                            GET /pt HTTP/1.1 
Host: bizzoreg.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         172.67.68.203
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Date: Thu, 01 Sep 2022 01:57:01 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://bizzoreg.com/pt
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PpQYXZtEsEpHnshhn56okkQwdedPkdTeEee0MNVMhd8doz%2Fq0vibnuG4fi3hkBOfHywxU4yRgNezOF9sfzyu4PXqBhLvRTauGbtzh8h88JJeOThBdU7McdyMwJ4%2FvA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 743a6489ab25b4ee-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   178
Md5:    bd2695f4b079c71dbddde3436286fb9c
Sha1:   733c05da132193d6cf1d8e242d12e2525c03bab4
Sha256: 2e04a18ff185ba5b16f762a0538339bc4049aceaef9738edd43af77d2ceb788b
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "ECE269E8B9BE8A5839D75C1343823D68B96930C593C2E3E8D522999176EE3149"
Last-Modified: Mon, 29 Aug 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7211
Expires: Thu, 01 Sep 2022 03:57:12 GMT
Date: Thu, 01 Sep 2022 01:57:01 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 01 Sep 2022 01:26:52 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: XDoqBRSmoLhahtMEhfu-4t-VnpXKmmreykHi2wqcDR738Fb-gsBklQ==
Age: 1809


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    99b7d23c1748d0526782b9ff9ea45f09
Sha1:   eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
Sha256: 48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.110
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 31 Aug 2022 02:27:05 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: fSuCsFLiNtBYMaGNoh-zpmjQVhRwkN_wBKYqRqE6stgbR1FzDWHvLA==
age: 84597
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    742edb4038f38bc533514982f3d2e861
Sha1:   cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
Sha256: b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Thu, 01 Sep 2022 01:57:01 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Cache-Control, Pragma, Backoff, Last-Modified, ETag, Expires, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Thu, 01 Sep 2022 01:17:12 GMT
Cache-Control: max-age=3600
Expires: Thu, 01 Sep 2022 01:50:27 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: TZRYztNezJ1FZgl7-WtJF3OyAFmerIm_cGj0ut-0dV9jvo1T7m8s-Q==
Age: 3596


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 88
Cache-Control: 'max-age=158059'
Date: Thu, 01 Sep 2022 01:57:02 GMT
Last-Modified: Thu, 01 Sep 2022 01:55:35 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: v1OLXuqavybmDpR4B34MVg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         34.215.91.121
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: nYQg7BZeffx6BlLDAuA6dipo8SA=

                                        
                                            GET /assets/loader.gif HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/pt
Cookie: preferred-language=pt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/gif
                                        
date: Thu, 01 Sep 2022 01:57:03 GMT
content-length: 226410
last-modified: Wed, 31 Aug 2022 05:31:48 GMT
etag: "630ef244-3746a"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3970
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2KcWeS0DnJsL5KHOs10zz6fkZaRW0CTXimC93C6tcPQ2WYi%2F6z1ccNmJQjvQqV9MUDn6oAYkve%2B9mZTDPWcGNBfMz51Q%2F%2BbCmd10swxsT1htu6dnJffAJfnvKR98iKcTLA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 743a64970eccb500-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 300 x 300\012- data
Size:   226410
Md5:    53684e7cd922afc2ada4d7a223ca2cf1
Sha1:   69bfbb4a548cd152977cd6d004863e4d4c9e7272
Sha256: 4aa82add5b485c28e85dcc9162fa5d279fdcb306e9c417667f842d0edc345f1b
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Sep 2022 01:57:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Sep 2022 01:57:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7845
Expires: Thu, 01 Sep 2022 04:07:48 GMT
Date: Thu, 01 Sep 2022 01:57:03 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7845
Expires: Thu, 01 Sep 2022 04:07:48 GMT
Date: Thu, 01 Sep 2022 01:57:03 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7845
Expires: Thu, 01 Sep 2022 04:07:48 GMT
Date: Thu, 01 Sep 2022 01:57:03 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79bea3b3-c558-48ed-979e-3282a56393da.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8550
x-amzn-requestid: 6a3fd299-a5ef-4069-b686-74356344d6d8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XikiaFbaoAMFyaQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630a8142-1b7fe4644a7045ff0284c401;Sampled=0
x-amzn-remapped-date: Sat, 27 Aug 2022 20:40:34 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 3Nbc4LQ7c0pWsUkWOsDkvON4Kcy_irlBnWdODrmYLn56WFRvOJIjXw==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 18:08:08 GMT
age: 28135
etag: "456dbbf8f3dfcfd63aab4201a04efd20262b9385"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8550
Md5:    0773269fad1678055c52b480b9e87750
Sha1:   456dbbf8f3dfcfd63aab4201a04efd20262b9385
Sha256: 6a65d7520e705c6c20ef97254ed1d6116daca506258368292c58f5f728987191
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bffab86-e623-4ccd-9297-981c9dc6e4cd.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9674
x-amzn-requestid: 79dc68ea-ea2e-4eab-bab9-1c89b0a955a2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XjMSvHJ-oAMF6Jw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630ac0de-2370cf5363d5f308121f0ca4;Sampled=0
x-amzn-remapped-date: Sun, 28 Aug 2022 01:11:58 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 1oGbbOSjJza6WWt0IDMqwsZkCk07uevGo0wML4y5LiexzhqlcHt3lA==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 14:45:21 GMT
age: 40302
etag: "b691ef5e7a302e2678302818130a9637c3efbe3a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9674
Md5:    b0f6c541f6335bb709d2270147bd5aed
Sha1:   b691ef5e7a302e2678302818130a9637c3efbe3a
Sha256: e63922331a4463519e6df77ae7a1ad3316a36e54dd03c00ff6b119ee3fa684c5
                                        
                                            GET /apg-seal.js HTTP/1.1 
Host: c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.125
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
date: Thu, 01 Sep 2022 01:57:03 GMT
x-powered-by: Express
cache-control: max-age=300
etag: W/"dda-bOgQ41XYegjUWs5Fa/zc1x/rnfs"
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 743a6497d8cc9b83-FRA
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: EHsJ_ArbNDk8lpQQRrVuPKXS-R2YS9ql5BXbzUb_LC7qa3z5HqNYtQ==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   8380
Md5:    69d3255fa3cf08a4506f6a3bb66e7737
Sha1:   a96a5daa2690671ccefcfef8be321f02eb35e6e6
Sha256: 74423f2d093269dc58336212321e1eb02b3e3f45be53c94aeeeeb63f5674af26

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcfd1bafb-f92b-46dc-9f17-4df493cefb83.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10137
x-amzn-requestid: 7d5f19c4-7c9b-4aad-928c-bb44da795f1f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XaISzFY1IAMF-zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630720de-0ea5331041f0167a196f9820;Sampled=0
x-amzn-remapped-date: Thu, 25 Aug 2022 07:12:30 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: h1ELVJBwpf4d3Fbspah-2KCSXx08D8_ZAgcZZjQSJdkMIUmtNmGJOw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 04:36:47 GMT
age: 76816
etag: "b844f3dcb14a2995644312406a80842e3f02a114"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10137
Md5:    ac4d5b101c9dc6a6f7e4bf252bfa9ca7
Sha1:   b844f3dcb14a2995644312406a80842e3f02a114
Sha256: e81f08ce6d9c7670f6e291f3d6a674b624386bd550d5c364264c3ff8fb7c797a
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F382fbb98-12b7-491f-a8c7-63afff403010.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9152
x-amzn-requestid: f8805e4a-3e8d-4acc-91a2-16dfd461afc5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xv4mgHKlIAMFR4w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630fd48f-368e07d93f3b3f3573db19d6;Sampled=0
x-amzn-remapped-date: Wed, 31 Aug 2022 21:37:19 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 3XiUGyXS-JRwGTOzn51m425ynmb7aQsrXErnBJBcJGP1CAV0dVDv7w==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 21:37:41 GMT
etag: "151395a70faa075762664fc6cd52a65004b5c81c"
age: 15562
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9152
Md5:    b0d8ed4b8bda662c244b9d26cf143147
Sha1:   151395a70faa075762664fc6cd52a65004b5c81c
Sha256: 49b381815612b7ecb021f243438aae99e399993d91fb38bf5d7bb3d357519d6a
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9564bd06-b264-460b-96bb-6b37cf25a72b.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 16818
x-amzn-requestid: 6950a3c5-2cdc-4a21-854c-10d925e32ecd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XiYLvHRSIAMFotQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630a6d7e-6e98b9a77e592bd01afb1d97;Sampled=0
x-amzn-remapped-date: Sat, 27 Aug 2022 19:16:14 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 3eBLhLH4APXLyj9kLHXNCFT9ccS_bnBp5INvMI93IFvOuBMERe_GgQ==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 13:40:03 GMT
age: 44220
etag: "9fef9b071daea6793cbbdfe391254ac4326b1aa2"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   16818
Md5:    12756903aaa74164feb5f8525398ca36
Sha1:   9fef9b071daea6793cbbdfe391254ac4326b1aa2
Sha256: 6d474a6d96aebfed43a4f6812f18a1be8d100c590f75eb0fbf4ec7277dd0c442
                                        
                                            GET /api/translation/get?locale=pt_WD HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/pt
Cookie: preferred-language=pt
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: application/json
                                        
date: Thu, 01 Sep 2022 01:57:03 GMT
vary: Accept-Encoding
x-powered-by: PHP/7.4.29
cache-control: max-age=0, must-revalidate, private
expires: Thu, 01 Sep 2022 01:57:03 GMT
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BLNAhuzZ8wl6dSrKXlCQm2RQS9zAapmzudYi8gfoaE64CAT5KsBP788lCUpwMKQGBoxNsFINiNOi3vhrIKDq7KzdXsW6a3udO3kjK9qBolVqbqOSqrB%2FyieZlLpbPPL%2BnQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 743a64983f5cb500-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   37931
Md5:    2d9e45266a19e7389835d34857627d7d
Sha1:   4ea4952296fb6853882e16214ab855d677a4c6f7
Sha256: 790ae3445a644e4b924f6c41b371251849bfc7d2c2c7cdc1faa2dfe84d0c376a
                                        
                                            GET /app/styles.2ac83e5d2a7e6951.css HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/pt
Cookie: preferred-language=pt
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: text/css
                                        
date: Thu, 01 Sep 2022 01:57:03 GMT
last-modified: Wed, 31 Aug 2022 05:31:47 GMT
vary: Accept-Encoding
etag: W/"630ef243-3a036"
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eyq7Y%2F3fmd0o1jkVgh4pz6hXUzem0MnzpsdN1vxbNXsA9LqSFYdzVcC1hnuWR4u6xb92TrAlVUnGJjIGwHN613qPn12%2BlnQDkydjrNQj0gtIjOrTWvCFgRxKorFnzWfqbQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 743a6496fec4b500-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   50021
Md5:    c19658b16b25c55756e28b3ff785859e
Sha1:   abb5d078dae1eb44ab9b2856d8bf72b096a18054
Sha256: 7f607c17eb25af19c9b55ce0b43d7f8f0c841c314b5d31a468c1304e453b9ee6
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Sep 2022 01:57:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /sealassets/68e84248ebfeb4342f2ceea9779e3309-bizzocasino.com-f5faf6d82a7be2057527120fa49724355adf2a8c973918d432fa7b70160234e717ac6b01358f27fc0aff52358b79fb11-c3BhY2VyLXNwcml0ZS5wbmc%3D HTTP/1.1 
Host: c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.111.125
HTTP/2 200 OK
content-type: image/png
                                        
content-length: 95
date: Thu, 01 Sep 2022 01:57:03 GMT
x-powered-by: Express
cache-control: max-age=1200
etag: W/"5f-NEKpX+iQzkdps2suzGEbgBpUz7U"
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 743a64999decbbaf-FRA
x-cache: Miss from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: CSjLNSpb__bW9jAAGGKY3qoW5sVmellz3deUgY25kOdY436BpubzXw==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1 x 1, 1-bit colormap, non-interlaced\012- data
Size:   95
Md5:    9591c410148e6883727c5339fd1c02cd
Sha1:   3442a95fe890ce4769b36b2ecc611b801a54cfb5
Sha256: cafbd551d674da240212f6c44988757a728b9dc8cbc2a6c8dcf53c0d9159c323

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /sealassets/68e84248ebfeb4342f2ceea9779e3309-bizzocasino.com-f5faf6d82a7be2057527120fa49724355adf2a8c973918d432fa7b70160234e717ac6b01358f27fc0aff52358b79fb11-c3ByaXRlLXNlYWwucG5n?status=valid HTTP/1.1 
Host: c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.111.125
HTTP/2 200 OK
content-type: image/png
                                        
content-length: 49397
date: Thu, 01 Sep 2022 01:57:03 GMT
x-powered-by: Express
cache-control: max-age=1200
etag: W/"c0f5-y5nfd/SGXZwvKHU5pcpHTPdvfQk"
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 743a649999f89b83-FRA
x-cache: Miss from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: STB2IPaGIyQUvTVARewBs46K5sLHvfcomS9iJhBbcZgoN8lx5mVgoQ==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 512 x 256, 8-bit/color RGBA, non-interlaced\012- data
Size:   49397
Md5:    8ef6782be55b8ce8f5b132d28af8e0d0
Sha1:   cb99df77f4865d9c2f287539a5ca474cf76f7d09
Sha256: d614922fde9604f8899e47f3cc3d69bf952312b996f7cf1421163996710850fa
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Sep 2022 01:57:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /7693683943e78a298c36d469e68b47d8/widgetloader HTTP/1.1 
Host: ws-cdn001.akamaized.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.36.77.10
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
content-security-policy: frame-ancestors 'self' https://st-cdn001.akamaized.net https://ls-cdn001.akamaized.net
cache-control: public, max-age=120, stale-while-revalidate=60, immutable
etag: "7eb2b974fcdaa68ad74284443d227c03-dd508f9061b464bd15a3c0a09bb98e0d"
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
x-ing-v: 2
content-length: 58922
date: Thu, 01 Sep 2022 01:57:03 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (40386)
Size:   58922
Md5:    9cb04254a0f009be706e3c36da5d8c1a
Sha1:   f3e5b946b1467eb14ecb745a908d66af90906581
Sha256: a69c33a08f67df7fd89da550ad612f6bab2722cc3742f1451c2b98aed4c08e3c
                                        
                                            GET /gtm.js?id=GTM-5W7F767 HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.72
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 01 Sep 2022 01:57:03 GMT
expires: Thu, 01 Sep 2022 01:57:03 GMT
cache-control: private, max-age=900
last-modified: Thu, 01 Sep 2022 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 51210
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (15296)
Size:   51210
Md5:    c13f8bc316de6dedcc96fd96a3d752ab
Sha1:   35bf566bef59f090fae1c3e500c5a1c9e4c33dce
Sha256: 353e94921643afefe3f44e1736ce5cf5dc2fa9b01bb1c716a9411b1fef7e0c9e
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Sep 2022 01:57:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /dist/tag-manager.js?id=STM-AAAALW HTTP/1.1 
Host: tm.ads.sportradar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.36.79.43
HTTP/2 200 OK
content-type: application/javascript
                                        
apigw-requestid: XwepfhQUDoEEMtA=
vary: Accept-Encoding
content-encoding: gzip
content-length: 37167
date: Thu, 01 Sep 2022 01:57:03 GMT
cache-control: max-age=900, public
x-n: S
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (62063)
Size:   37167
Md5:    bd4292ddbc63f9243a33edcc270bb481
Sha1:   17614ee4c63d3d263411789464323b3a83827ef1
Sha256: 2976e049043d50dc0014df9e9856efb89b57d30e71ef4a600175e917e713f88d
                                        
                                            GET /app/runtime.14f323a6738447c8.esm.js HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/pt
Cookie: preferred-language=pt
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Thu, 01 Sep 2022 01:57:03 GMT
last-modified: Wed, 31 Aug 2022 05:31:37 GMT
vary: Accept-Encoding
etag: W/"630ef239-db6"
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dJwLcMV7ZX5TXV%2BuC1%2F7AQTNwWnsuhHyRGgUbzre6gFKX4HkvKVRRyhaiBkCMl76WCOykaGpeZV3jqryQOweFRSd2iqunu%2FWACkvoDad2AeY38twCcDyOdACRQrh2ARA5g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 743a64999ff2b500-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3510), with no line terminators
Size:   75719
Md5:    8551a8ff1e3130d6c434d91b36af0893
Sha1:   59e33da723eb65d598fcffcd71389f428f4316e3
Sha256: b22aa985a2812b6c5f7a88b499ad649830bd0192fe5213e94108fb41c32eb9d3
                                        
                                            GET /tag.php?goal=690f08e992705cf61f1bdfe9b5790416 HTTP/1.1 
Host: main.exdynsrv.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         95.211.229.246
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Thu, 01 Sep 2022 01:57:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: goals=a%3A1%3A%7Bi%3A95968%3Ba%3A1%3A%7Bs%3A4%3A%22date%22%3Bs%3A10%3A%222022-08-31%22%3B%7D%7D; expires=Fri, 01 Sep 2023 01:57:03 GMT; path=/; domain=.exdynsrv.com; Secure; SameSite=none
Content-Encoding: gzip

                                        
                                            GET /tag.php?goal=690f08e992705cf61f1bdfe9b5790416 HTTP/1.1 
Host: main.realsrv.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         95.211.229.248
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Thu, 01 Sep 2022 01:57:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: goals=a%3A1%3A%7Bi%3A95968%3Ba%3A1%3A%7Bs%3A4%3A%22date%22%3Bs%3A10%3A%222022-08-31%22%3B%7D%7D; expires=Fri, 01 Sep 2023 01:57:03 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
Content-Encoding: gzip

                                        
                                            GET /dcs/tagController/tag/b00c73e99d55/homepage HTTP/1.1 
Host: zz.connextra.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.85.191.64
HTTP/2 200 OK
content-type: text/javascript;charset=utf-8
                                        
content-encoding: gzip
content-length: 16269
cache-control: must-revalidate, max-age=300
expires: Thu, 01 Sep 2022 02:02:03 GMT
date: Thu, 01 Sep 2022 01:57:03 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- exported SGML document, ASCII text, with very long lines (2407)
Size:   16269
Md5:    9d4a5a7df9ba1a5fa96b0f6bbf7860ec
Sha1:   7a548bd16fa2c063408cc0397647f630ba5e70d0
Sha256: 46c984d5a75af79f60b8d5fd211d5b0032c0e764d51522f609197cf9d2e7c0ae
                                        
                                            GET /api/v1/retargeting/set/a77cc63a-6181-4fc8-be35-59425b45b474 HTTP/1.1 
Host: tsyndicate.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         148.251.19.25
HTTP/2 200 OK
content-type: text/plain; charset=utf-8
                                        
server: nginx
date: Thu, 01 Sep 2022 01:57:03 GMT
content-length: 35
pragma: no-cache
expires: 0
vary: *
x-api-version: 1
x-request-id: f0490c5593f7c855
set-cookie: ts_rt_a77cc63a-6181-4fc8-be35-59425b45b474=AAMC; expires=Fri, 01 Sep 2023 01:57:03 GMT; path=/; HttpOnly; secure; SameSite=None
cache-control: no-cache, no-store, no-transform, must-revalidate, no-transform
x-robots-tag: none, noindex, nofollow
report-to: { "url": "https://pxl.tsyndicate.com/api/v1/heavy-ad/report", "max_age": 86401 }
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   1750
Md5:    d049d33a4823817cbdf9ab4c710ee3db
Sha1:   b30304b8d3375ef737db88ee2fcfd3bada5d4a35
Sha256: 6ce48150ab6a1ef7104159cc1d5ad21c98fc8c3ad3ef1d9f69d86f2a21a113c0
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "1981F80ACD551D3E7917B37E085F2F5D82107DCFCB7C867704D71F111C9BA8A9"
Last-Modified: Mon, 29 Aug 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1211
Expires: Thu, 01 Sep 2022 02:17:15 GMT
Date: Thu, 01 Sep 2022 01:57:04 GMT
Connection: keep-alive

                                        
                                            GET /tag.js?id=DV-4182611165 HTTP/1.1 
Host: tag.growthbuddy.app
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         52.31.198.104
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Thu, 01 Sep 2022 01:57:04 GMT
set-cookie: INGRESSCOOKIE=1661997425.096.51.738913|5f2e1b57d78510d04b0cf9036879032b; Path=/; Secure; HttpOnly
vary: Accept-Encoding
cache-control: public, max-age=7200
x-content-type-options: nosniff
etag: "1378-o315UJ4EOqJDXqC2xDzBS1NJlus"
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4956)
Size:   1957
Md5:    e57ef5f735e9345ed8caad892fc67793
Sha1:   774e4efa4fa09505e2e824103288a8af2c4b27a0
Sha256: 0a310323f324b21973507406cf1a3cdbdb02bd93fd68b0e4a142402127779e66
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Sep 2022 01:57:04 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 01 Sep 2022 00:04:37 GMT
Expires: Thu, 08 Sep 2022 00:04:36 GMT
Etag: "16a8c41fd3388b0f4043ce07199e189abee1015f"
Cache-Control: max-age=597451,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 743a649cdaffb518-OSL

                                        
                                            GET /dist/tracker.js HTTP/1.1 
Host: tracker.ads.sportradar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.43
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Wed, 20 Jan 2021 14:51:32 GMT
accept-ranges: bytes
server: AmazonS3
etag: "5ff82a1c468a89919e9437d33e0402cb"
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: Mv-8IIBmcp0vFVq9YXTT57-4Gu93F_tfPtH40iL3OhfxGj6YljmI4g==
vary: Accept-Encoding
content-encoding: gzip
content-length: 11553
date: Thu, 01 Sep 2022 01:57:04 GMT
cache-control: max-age=900, public
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (34755)
Size:   11553
Md5:    b34b13d85152f71b7fd15289c78c0583
Sha1:   0bb20191b022bbd0e75f2bbce7f6332886079c2c
Sha256: 7a3fc57394ecc6745eb6e18745aa1e5e5d05cb2237c4d0d754ab43d33863a84c
                                        
                                            POST / HTTP/1.1 
Host: ocsp.entrust.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.110.10.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
ETag: "C9E3D588D4F060D064C47990BDA5E1DD99014540E70F15C85277FE2EF355CC22"
Last-Modified: Wed, 31 Aug 2022 22:00:00 UTC
Content-Length: 1586
Cache-Control: public, no-transform, must-revalidate, max-age=1370
Expires: Thu, 01 Sep 2022 02:19:54 GMT
Date: Thu, 01 Sep 2022 01:57:04 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1586
Md5:    c480a472789994375713a8e85d857f12
Sha1:   7441066c93e564a2a1935ef6048a575d3b4c5ac7
Sha256: c9e3d588d4f060d064c47990bda5e1dd99014540e70f15c85277fe2ef355cc22
                                        
                                            POST / HTTP/1.1 
Host: ocsp.entrust.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.110.10.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
ETag: "C9E3D588D4F060D064C47990BDA5E1DD99014540E70F15C85277FE2EF355CC22"
Last-Modified: Wed, 31 Aug 2022 22:00:00 UTC
Content-Length: 1586
Cache-Control: public, no-transform, must-revalidate, max-age=1304
Expires: Thu, 01 Sep 2022 02:18:48 GMT
Date: Thu, 01 Sep 2022 01:57:04 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1586
Md5:    c480a472789994375713a8e85d857f12
Sha1:   7441066c93e564a2a1935ef6048a575d3b4c5ac7
Sha256: c9e3d588d4f060d064c47990bda5e1dd99014540e70f15c85277fe2ef355cc22
                                        
                                            GET /pixel/js?auth=5g3u7sq7&event=visit&uid=undefined&tid={TRANSACTION_ID}&cur=undefined&amount=undefined HTTP/1.1 
Host: track.trackingtraffo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         88.214.195.156
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 01 Sep 2022 01:57:04 GMT
Content-Length: 492
Connection: keep-alive
Cache-Control: no-cache, max-age=0, must-revalidate, proxy-revalidate, no-store
Pragma: no-cache
Expires: Sat, 01 Jan 2000 00:00:00 GMT


--- Additional Info ---
Magic:  ASCII text
Size:   492
Md5:    712d35f5b8479ea398e1f1e5d6c7392d
Sha1:   8cab2d9a27680c9dbb7291f4772c629d072a32bf
Sha256: 8e3058c3170bbb8436acac9f9c9bb0c4abba060775eae6e98c064c6a0c58112b
                                        
                                            GET /pixel?type=js&aid=1312&id=3945 HTTP/1.1 
Host: a.sportradarserving.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         3.120.11.127
HTTP/1.1 302 Moved Temporarily
                                        
Cache-Control: no-cache, no-store, must-revalidate
Date: Thu, 01 Sep 2022 01:57:04 GMT
Location: https://a.sportradarserving.com/ul_cb/pixel?type=js&aid=1312&id=3945
Set-Cookie: zuuid=34ae5661-8faa-4087-8622-82692bd634ce; path=/; expires=Fri, 01-Sep-2023 01:57:04 GMT; domain=sportradarserving.com; samesite=none; secure c=1661997424; path=/; expires=Fri, 01-Sep-2023 01:57:04 GMT; domain=sportradarserving.com; samesite=none; secure zuuid_lu=1661997424; path=/; expires=Fri, 01-Sep-2023 01:57:04 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 0
Connection: keep-alive

                                        
                                            GET /sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId= HTTP/1.1 
Host: a.sportradarserving.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         3.120.11.127
HTTP/1.1 302 Moved Temporarily
                                        
Cache-Control: no-cache, no-store, must-revalidate
Date: Thu, 01 Sep 2022 01:57:04 GMT
Location: https://a.sportradarserving.com/ul_cb/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
Set-Cookie: zuuid=27a44814-6ff2-4d0a-bf05-ecc22c6ac642; path=/; expires=Fri, 01-Sep-2023 01:57:04 GMT; domain=sportradarserving.com; samesite=none; secure c=1661997424; path=/; expires=Fri, 01-Sep-2023 01:57:04 GMT; domain=sportradarserving.com; samesite=none; secure zuuid_lu=1661997424; path=/; expires=Fri, 01-Sep-2023 01:57:04 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 0
Connection: keep-alive

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Sep 2022 01:57:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /pixel?auth=5g3u7sq7&event=visit&uid=undefined&tid=%7BTRANSACTION_ID%7D&cur=undefined&amount=undefined&site=bizzocasino.com&ln=en-US HTTP/1.1 
Host: track.trackingtraffo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         88.214.195.156
HTTP/1.1 200 OK
                                        
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 01 Sep 2022 01:57:04 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-cache, max-age=0, must-revalidate, proxy-revalidate, no-store
Pragma: no-cache
Expires: Sat, 01 Jan 2000 00:00:00 GMT

                                        
                                            GET /dist//sp-2.14.0.js HTTP/1.1 
Host: tracker.ads.sportradar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.43
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Wed, 20 Jan 2021 14:51:32 GMT
accept-ranges: bytes
server: AmazonS3
etag: "8dba669b94e3865c9205ef8fd15ee4d1"
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: 6MAdKqhhdwmf90BjAZCPWoRdIY0PXmNu5YyIRIUIEiZBK48TayCg9w==
vary: Accept-Encoding
content-encoding: gzip
date: Thu, 01 Sep 2022 01:57:04 GMT
content-length: 30370
cache-control: max-age=900, public
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (64903)
Size:   30370
Md5:    44f237857b8d03f32b53fe551e83c95a
Sha1:   91536fe6c60d947d29dfcb5f04d09b752b5ccf03
Sha256: a5e10dc2f3c729300afe8fe24aa430f57d91fdefa8112c0b35dd424ba612caa7
                                        
                                            GET /recaptcha/api.js?render=6Lfp3sIbAAAAAJ37H0nwMOrTaY-Qv4xUHUwkqVeu HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.164
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
expires: Thu, 01 Sep 2022 01:57:04 GMT
date: Thu, 01 Sep 2022 01:57:04 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 586
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (884), with no line terminators
Size:   586
Md5:    3d0d9426a2a2149f93870d64da56e9fc
Sha1:   4176a7703a1a3f34b225acc64286b25a17018038
Sha256: 24ee374ee6b45620c24c27fadcce53fd90d9534e3440b58aae01e06fc6fd5d24
                                        
                                            GET /ul_cb/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId= HTTP/1.1 
Host: a.sportradarserving.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizzocasino.com/
Connection: keep-alive
Cookie: zuuid=27a44814-6ff2-4d0a-bf05-ecc22c6ac642; c=1661997424; zuuid_lu=1661997424
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         3.120.11.127
HTTP/1.1 302 Moved Temporarily
                                        
Cache-Control: no-cache, no-store, must-revalidate
Date: Thu, 01 Sep 2022 01:57:04 GMT
Location: https://x.bidswitch.net/syncd?dsp_id=409&user_group=1&user_id=27a44814-6ff2-4d0a-bf05-ecc22c6ac642&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3D27a44814-6ff2-4d0a-bf05-ecc22c6ac642
Set-Cookie: zuuid=27a44814-6ff2-4d0a-bf05-ecc22c6ac642; path=/; expires=Fri, 01-Sep-2023 01:57:04 GMT; domain=sportradarserving.com; samesite=none; secure zuuid_lu=1661997424; path=/; expires=Fri, 01-Sep-2023 01:57:04 GMT; domain=sportradarserving.com; samesite=none; secure zuuid_k=1; path=/; expires=Fri, 01-Sep-2023 01:57:04 GMT; domain=sportradarserving.com; samesite=none; secure zuuid_k_lu=1661997424; path=/; expires=Fri, 01-Sep-2023 01:57:04 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 0
Connection: keep-alive

                                        
                                            GET /ul_cb/pixel?type=js&aid=1312&id=3945 HTTP/1.1 
Host: a.sportradarserving.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizzocasino.com/
Connection: keep-alive
Cookie: zuuid=27a44814-6ff2-4d0a-bf05-ecc22c6ac642; c=1661997424; zuuid_lu=1661997424
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         3.120.11.127
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Cache-Control: no-cache, no-store, must-revalidate
Date: Thu, 01 Sep 2022 01:57:04 GMT
Set-Cookie: zuuid=27a44814-6ff2-4d0a-bf05-ecc22c6ac642; path=/; expires=Fri, 01-Sep-2023 01:57:04 GMT; domain=sportradarserving.com; samesite=none; secure zuuid_lu=1661997424; path=/; expires=Fri, 01-Sep-2023 01:57:04 GMT; domain=sportradarserving.com; samesite=none; secure zuuid_k=1; path=/; expires=Fri, 01-Sep-2023 01:57:04 GMT; domain=sportradarserving.com; samesite=none; secure zuuid_k_lu=1661997424; path=/; expires=Fri, 01-Sep-2023 01:57:04 GMT; domain=sportradarserving.com; samesite=none; secure bss=!bidswitch,431254624; path=/; expires=Fri, 01-Sep-2023 01:57:04 GMT; domain=sportradarserving.com; samesite=none; secure cm2=!bidswitch,431326624; path=/; expires=Fri, 01-Sep-2023 01:57:04 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 2325
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (2325), with no line terminators
Size:   2325
Md5:    3d97a3cf90d96a051846de46638cc628
Sha1:   1828d53f7c355f3ca4940c35adf710faf8fd5c95
Sha256: cf049ee993db4ea3bc0396959199781f2e73f52932f875c0ed048dc4fbdf9cc4
                                        
                                            POST /g/collect?v=2&tid=G-89BGS3MKPL&gtm=2oe8t0&_p=620081193&cid=1831617670.1661997423&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1661997423&sct=1&seg=0&dl=https%3A%2F%2Fbizzocasino.com%2Fpt&dt=Casino%20Online%20com%20Dinheiro%20Real%20%7C%20Jogo%20Online%20%E1%9A%91%20Bizzo%20Casino&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1 
Host: region1.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bizzocasino.com
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

                                         
                                         216.239.32.36
HTTP/2 204 No Content
content-type: text/plain
                                        
access-control-allow-origin: https://bizzocasino.com
date: Thu, 01 Sep 2022 01:57:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Sep 2022 01:57:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Sep 2022 01:57:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            OPTIONS /api/data/get-currencies HTTP/1.1 
Host: platform.bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://bizzocasino.com/
Origin: https://bizzocasino.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 204 No Content
                                        
date: Thu, 01 Sep 2022 01:57:04 GMT
access-control-allow-origin: https://bizzocasino.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Y2nkGlwlzJsTDm%2BX%2Fv41gVrbzpgx45c%2B8S7fQgJOKHnJQeTtQm7Y1evb4vdwioM%2BcHPF%2Bb1EYlkC49pvU2i6Lh9td%2FWod3lMmTQeF05%2BH3PgSrfY2F5nljspuvBGntZercjxpzcwGdRgZQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 743a649faa9eb500-OSL
X-Firefox-Spdy: h2

                                        
                                            OPTIONS /api/data/get-countries HTTP/1.1 
Host: platform.bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://bizzocasino.com/
Origin: https://bizzocasino.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         172.67.68.182
HTTP/2 204 No Content
                                        
date: Thu, 01 Sep 2022 01:57:04 GMT
access-control-allow-origin: https://bizzocasino.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CQLCkCXyjSC2jw3Wh3Eg3PDeVtr2vXn5ljf9c0D477nF%2FqPOouXGvDzPVMuFJFyAcUt%2BgRHeQ%2BF9K%2BrxBHCknziVLkF578x%2Bn%2FJ9BBiqhTGUvu5MfTrq5u6dXL%2BkxDG8tNjc1N4o3lUlzQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 743a649fbf0bb4f3-OSL
X-Firefox-Spdy: h2

                                        
                                            OPTIONS /api/data/provinces HTTP/1.1 
Host: platform.bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://bizzocasino.com/
Origin: https://bizzocasino.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         172.67.68.182
HTTP/2 204 No Content
                                        
date: Thu, 01 Sep 2022 01:57:04 GMT
access-control-allow-origin: https://bizzocasino.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sKl%2F7KVgTvZFUxZ65HaCJn8WOY3hjUkCDVkfb3iIanRxwW6xhyO%2BhPdcHW7WRgcxMCAR4ZhfyuecsMCWY25Ye7SRqn4L7tMH0d4MTbT9w1Xqrk%2F6HqCSb9nQonWG3%2FkfW0IytsuaguRx4g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 743a649fbf0cb4f3-OSL
X-Firefox-Spdy: h2

                                        
                                            OPTIONS /api/v2/casino/category?auth=false HTTP/1.1 
Host: platform.bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://bizzocasino.com/
Origin: https://bizzocasino.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         172.67.68.182
HTTP/2 204 No Content
                                        
date: Thu, 01 Sep 2022 01:57:04 GMT
access-control-allow-origin: https://bizzocasino.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=THy9CuPfmyhcb%2B6ger6m5JkfO8yvoZrHdSDNVdBY5Mbzl6LsJu1WDx8jA6dMpsfPvZKoJH9xB3cMCkMIrPkX4vjVudsf7T%2Bk4K%2FnpXqV8iXDmEGkw9ivvfyvzbbiO4fsCppwf%2BxDANy%2BiA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 743a649fcf12b4f3-OSL
X-Firefox-Spdy: h2

                                        
                                            OPTIONS /api/v2/ip-data HTTP/1.1 
Host: platform.bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://bizzocasino.com/
Origin: https://bizzocasino.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 204 No Content
                                        
date: Thu, 01 Sep 2022 01:57:04 GMT
access-control-allow-origin: https://bizzocasino.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wl3k5tcKL8uscLpV0kYeUBI4piikrq%2B2zscIiT%2B2zI5jQ8qTqvEEtoqGdcOPRJBJV7csF7BfS%2BfMR99%2BbrME5laR3hRcdnE6fiEkzbxlemMSPnfOBga5a9vUkkZD27MffB3Tk2yRiDK3zA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 743a649f9a92b500-OSL
X-Firefox-Spdy: h2

                                        
                                            OPTIONS /api/v2/configurations HTTP/1.1 
Host: platform.bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://bizzocasino.com/
Origin: https://bizzocasino.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

                                         
                                         172.67.68.182
HTTP/2 204 No Content
                                        
date: Thu, 01 Sep 2022 01:57:04 GMT
access-control-allow-origin: https://bizzocasino.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0qPqYMZmd4JT6aULIbGdepOC%2B57CUSePLw6Mh4smH6jkEX8nG2FuIb5%2B7mxKlunnT0f9pl102le95GPsWFNonUYzaAT%2B8C4gp%2Fzgsy9iO5t1i%2FGTk1cn7QgVk%2BB5lGwpiPOYLmFeXCZu6Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 743a649faf06b4f3-OSL
X-Firefox-Spdy: h2

                                        
                                            POST /s/gts1d4/Bz2q3fRhivk HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Sep 2022 01:57:04 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /s/gts1d4/mhuqZ1vnJhs HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Sep 2022 01:57:04 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            OPTIONS /api/v2/casino/producer?is_desktop=1&is_live=0 HTTP/1.1 
Host: platform.bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://bizzocasino.com/
Origin: https://bizzocasino.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         172.67.68.182
HTTP/2 204 No Content
                                        
date: Thu, 01 Sep 2022 01:57:04 GMT
access-control-allow-origin: https://bizzocasino.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=C47YBTsGDS0l1mxvyyza1FkCFYcVFf27cFsLz73GaBfj8VYGqbifMb9UjTh%2FhQZhEbXo0roGkgROJL7q58%2BTUZnPQ%2FYNXaDXPymJO%2BlyUrHsN2qJS6SFU5WT%2FhY4VBS5KGOTYAzO73sI%2Fw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 743a649fcf10b4f3-OSL
X-Firefox-Spdy: h2

                                        
                                            OPTIONS /api/v2/casino/producer?is_desktop=1&is_live=1 HTTP/1.1 
Host: platform.bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://bizzocasino.com/
Origin: https://bizzocasino.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         172.67.68.182
HTTP/2 204 No Content
                                        
date: Thu, 01 Sep 2022 01:57:04 GMT
access-control-allow-origin: https://bizzocasino.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=V%2F8nwebpYtr7sVGYeAkxWosf%2BaiUlUygqoH%2FTR%2FE0fZqabG7Zp85a124zh%2BXfVi7ixXkVYaIn%2FrhRcAlt%2FuNqOmmCEEUz6KPMnhajvY96bpih6Gi%2B9t2A3%2Bxm%2FXAgEipKv0LmQ2WRPgBNw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 743a649fcf11b4f3-OSL
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Sep 2022 01:57:04 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 29 Aug 2022 06:25:19 GMT
Expires: Mon, 05 Sep 2022 06:25:18 GMT
Etag: "d20d93c4ed1b30a5e65d3a37c8873836a2e5c291"
Cache-Control: max-age=361093,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 743a649fcca4b518-OSL

                                        
                                            GET /1.1/web/usersyncs?b=8461718b-151b-486e-8ea2-a9b349f07f98&u=27a44814-6ff2-4d0a-bf05-ecc22c6ac642 HTTP/1.1 
Host: api.feedad.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         216.239.38.21
HTTP/2 200 OK
content-type: image/gif
                                        
set-cookie: fa_8461718b-151b-486e-8ea2-a9b349f07f98_u=27a44814-6ff2-4d0a-bf05-ecc22c6ac642; Domain=.feedad.com; Path=/; Max-Age=2592000; HttpOnly; SameSite=None; Secure
x-cloud-trace-context: 1fd29e8510b983c4f9a027f948f63d16
date: Thu, 01 Sep 2022 01:57:04 GMT
server: Google Frontend
content-length: 42
expires: Thu, 01 Sep 2022 01:57:04 GMT
cache-control: private
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /1/usersyncs?b=8461718b-151b-486e-8ea2-a9b349f07f98&u=27a44814-6ff2-4d0a-bf05-ecc22c6ac642 HTTP/1.1 
Host: tags.feedad.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         216.239.38.21
HTTP/2 200 OK
content-type: image/gif
                                        
set-cookie: fa_8461718b-151b-486e-8ea2-a9b349f07f98_u=27a44814-6ff2-4d0a-bf05-ecc22c6ac642; Domain=.feedad.com; Path=/; Max-Age=2592000; HttpOnly; SameSite=None; Secure
x-cloud-trace-context: 8e7f1946f46ba63315b8656e937401d4
date: Thu, 01 Sep 2022 01:57:04 GMT
server: Google Frontend
content-length: 42
expires: Thu, 01 Sep 2022 01:57:04 GMT
cache-control: private
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /p.js?f=sync&lr=1&partner=d52d64e3ae130730ea33c02cfefc955af6fb94275ad1752dd9486271dd6cf068 HTTP/1.1 
Host: my.rtmark.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         139.45.195.8
HTTP/2 200 OK
content-type: text/javascript
                                        
server: nginx
date: Thu, 01 Sep 2022 01:57:04 GMT
content-length: 697
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   697
Md5:    d0faf6100c68eca3bd5782a5b94fc212
Sha1:   27a475c79e1b4728005805ffe000f54a0101d9af
Sha256: 6378b5c7e59ed7146d4c8a4130e3506701be02869ee31d527599ea60dcaaee6e
                                        
                                            GET /api/data/get-countries HTTP/1.1 
Host: platform.bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://bizzocasino.com
Connection: keep-alive
Referer: https://bizzocasino.com/
Cookie: _ga_89BGS3MKPL=GS1.1.1661997423.1.0.1661997423.0.0.0; _ga=GA1.1.1831617670.1661997423; DV_TRACK=c72b554e-dfa6-4792-b306-f23fdec93466
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
                                        
date: Thu, 01 Sep 2022 01:57:04 GMT
vary: Accept-Encoding
x-powered-by: PHP/7.4.30
access-control-allow-origin: https://bizzocasino.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vEYx4597SdoCny%2FM%2Ff7X69Ct%2FrVRlAT1AyMVkFZomFxwVMOYR7PxCpWqAHMvo3UXgfxdzQiURuys8JJ45XnDFBFC%2BzRCAd5gkRHwSMznJK4z1QU6x2BpTiLol2YCP9UMvXRzpXO1qns4Aw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 743a64a07adcb500-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Size:   4370
Md5:    25d0dfbc75e03921c1cb4bffaba68f6c
Sha1:   8cf1ebfc5d0b0ae7a7d46b1ceda906eae63ecd28
Sha256: e13b6930bee79e146a0d810304a8038dfa12bca401a3da6f29c77a5f2c073dc2
                                        
                                            GET /recaptcha/releases/3TZgZIog-UsaFDv31vC4L9R_/recaptcha__en.js HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bizzocasino.com
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: text/javascript
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 158046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 11:01:04 GMT
expires: Thu, 31 Aug 2023 11:01:04 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 21 Aug 2022 22:02:06 GMT
age: 53761
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (565)
Size:   158046
Md5:    5394f2e9f2582c5f0fdb4a75afc867b9
Sha1:   2f07b881d60b4882909b4960c7daa00df12ed0b6
Sha256: 8acfac4ce6dc9331af0cb251d1ddb8cb2db19bff78e09489dd4556ce636e1339
                                        
                                            GET /api/v2/configurations HTTP/1.1 
Host: platform.bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://bizzocasino.com
Connection: keep-alive
Referer: https://bizzocasino.com/
Cookie: _ga_89BGS3MKPL=GS1.1.1661997423.1.0.1661997423.0.0.0; _ga=GA1.1.1831617670.1661997423; DV_TRACK=c72b554e-dfa6-4792-b306-f23fdec93466
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
                                        
date: Thu, 01 Sep 2022 01:57:05 GMT
vary: Accept-Encoding
x-powered-by: PHP/7.4.30
access-control-allow-origin: https://bizzocasino.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rEnYYLoBklIn19rZQUTzaX4TUAglMwIn3DJ8X3wY84BnFeBBIyBO95B0GWE4qyAgczYCGvg4ueTe4wMBO8iSqqsyehy5z92j0l6UgtloNG8o1RY2PgOXkLkKzoiXEcj0N7jUfWRezsXD5Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 743a64a0aaf0b500-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Size:   26122
Md5:    c99a0352f6d8ddc5938ed05065740748
Sha1:   5751d79a67e132a801b6f30a88b624b10478a9a2
Sha256: 819b4866ae2ff5b77ea948813bcb24faf0cfab0c98fbd1821ad0ae5c960bf332
                                        
                                            GET /api/v2/casino/category?auth=false HTTP/1.1 
Host: platform.bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://bizzocasino.com
Connection: keep-alive
Referer: https://bizzocasino.com/
Cookie: _ga_89BGS3MKPL=GS1.1.1661997423.1.0.1661997423.0.0.0; _ga=GA1.1.1831617670.1661997423; DV_TRACK=c72b554e-dfa6-4792-b306-f23fdec93466
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
                                        
date: Thu, 01 Sep 2022 01:57:05 GMT
vary: Accept-Encoding
x-powered-by: PHP/7.4.30
access-control-allow-origin: https://bizzocasino.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nStzOO19Ui41A1QDEH%2F8%2FZc89FQTCetbLwBcS%2B3DqqJHUGO1zMXii1e3D5yoOKrxr%2BcU5eg52S9b7582i0v0J8wJU6wTKE8%2FZUli6E0NVM7NLmetZms9Ei12TP8VC9yICopo7pVeFaPbLw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 743a64a08ae3b500-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (2050), with no line terminators
Size:   780
Md5:    19c1772bf7e9e09312ba8b933ceba075
Sha1:   d56ef24c76e9197b9cd51fabebe9f937bfc6314b
Sha256: 2ec05e5e892d92d6156f9c6f4df8657f05c523c8fcdc3f671cf8f8f2e3b7310b
                                        
                                            GET /tag.php?goal=690f08e992705cf61f1bdfe9b5790416 HTTP/1.1 
Host: main.exoclick.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         95.211.229.248
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Thu, 01 Sep 2022 01:57:05 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: goals=a%3A1%3A%7Bi%3A95968%3Ba%3A1%3A%7Bs%3A4%3A%22date%22%3Bs%3A10%3A%222022-08-31%22%3B%7D%7D; expires=Fri, 01 Sep 2023 01:57:05 GMT; path=/; domain=.exoclick.com; Secure; SameSite=none
Content-Encoding: gzip

                                        
                                            GET /api/data/provinces HTTP/1.1 
Host: platform.bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://bizzocasino.com
Connection: keep-alive
Referer: https://bizzocasino.com/
Cookie: _ga_89BGS3MKPL=GS1.1.1661997423.1.0.1661997423.0.0.0; _ga=GA1.1.1831617670.1661997423; DV_TRACK=c72b554e-dfa6-4792-b306-f23fdec93466
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
                                        
date: Thu, 01 Sep 2022 01:57:04 GMT
vary: Accept-Encoding
x-powered-by: PHP/7.4.30
access-control-allow-origin: https://bizzocasino.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NgQr3Xkt2EnNxI6KoOPG%2F43amBVmwotDJrGT31f8nkYO%2B72d%2Fs0DUvTSt2GZfCk2G1g0%2BX0p0eice3MZVS8E5cWTzZKuNyepMGYtI5AKz2NCEv%2BFsn5s7%2B6oN%2FMKZcg7ZhnPV1Kw%2BiBJUQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 743a64a07addb500-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (1894), with no line terminators
Size:   460
Md5:    9d64a58449b5ae53a1d6a0226e16307d
Sha1:   5797c25b18cc381aabf2c5e4f92d34c4b78031be
Sha256: 10d1c2fe39ffcf59a02c9d84ff50ed86feca9cab23657739ecbf96926a2d65bd
                                        
                                            GET /api/promotion/tournaments?lang=pt_WD HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://bizzocasino.com/pt
Cookie: preferred-language=pt; _ga_89BGS3MKPL=GS1.1.1661997423.1.0.1661997423.0.0.0; _ga=GA1.1.1831617670.1661997423; DV_TRACK=c72b554e-dfa6-4792-b306-f23fdec93466
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: application/json
                                        
date: Thu, 01 Sep 2022 01:57:04 GMT
vary: Accept-Encoding
x-powered-by: PHP/7.4.29
cache-control: max-age=0, must-revalidate, private
expires: Thu, 01 Sep 2022 01:57:04 GMT
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aAUj79sgXA22tn8hSHzEXq4B56oc0fy4grOy1fvC28CSLCI3d04v9wyhlztcpFuKq%2BeWedylkdAlO%2FE2QYGIeEMuj3ruYYBSmxSjwfAaXBknzUK6MLVHstNXedaUoZtu6A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 743a649fbaa4b500-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (6454), with no line terminators
Size:   39799
Md5:    3ae013ffdab44e90b62ecf56cf21468e
Sha1:   d066698240c36ff4fcb48ee30ac923542f91ff5c
Sha256: fa8580fc4e90fc7d3a7548d9ca63d2f59bdcc9c6ad1379ad627453608969fc1b
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Sep 2022 01:57:05 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 30 Aug 2022 13:56:49 GMT
Expires: Tue, 06 Sep 2022 13:56:48 GMT
Etag: "992ddfd1fa25e3ed2fbef82f29b5bc7049b27bd0"
Cache-Control: max-age=474582,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 743a64a45e301c06-OSL

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Sep 2022 01:57:05 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 30 Aug 2022 13:56:49 GMT
Expires: Tue, 06 Sep 2022 13:56:48 GMT
Etag: "992ddfd1fa25e3ed2fbef82f29b5bc7049b27bd0"
Cache-Control: max-age=474582,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 743a64a45dcdb4f9-OSL

                                        
                                            GET /api/v2/bonuses/tournaments?lang=pt&frontendIdentifier_in%5B%5D=oracle-slot-race&frontendIdentifier_in%5B%5D=luxury-table-battle HTTP/1.1 
Host: platform.bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://bizzocasino.com
Connection: keep-alive
Referer: https://bizzocasino.com/
Cookie: _ga_89BGS3MKPL=GS1.1.1661997423.1.0.1661997423.0.0.0; _ga=GA1.1.1831617670.1661997423; DV_TRACK=c72b554e-dfa6-4792-b306-f23fdec93466; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=6c288e08-3829-41d4-bb45-5edd0ea6595d.1661997424.1.1661997424.1661997424.b9548649-7bf2-4b83-beb9-7c12fa145751
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
                                        
date: Thu, 01 Sep 2022 01:57:05 GMT
vary: Accept-Encoding
x-powered-by: PHP/7.4.30
access-control-allow-origin: https://bizzocasino.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IpjiS3CF4DiFYtK6zFwuj8kauN0%2BJge0Rj1rxEVP3W9dB3jCpjFeQ36VwJxLIRrBXuRZDKMUoMTgREpu0ih2wJGlw4thsByyaJcucceiadtmCdtcyt%2BYCWkoQaJNJtJHWowfsrZshNkMrQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 743a64a22bc6b500-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (802), with no line terminators
Size:   365
Md5:    de8d94ee3f94e27a2e73a0f5f95135df
Sha1:   d3191e520d7863c18bac7293a8c7204eebc2558b
Sha256: 683487d9df63512562d617df05703f29dcf8c578b36d63b1632dc518451829f5
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Sep 2022 01:57:05 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 30 Aug 2022 13:56:49 GMT
Expires: Tue, 06 Sep 2022 13:56:48 GMT
Etag: "992ddfd1fa25e3ed2fbef82f29b5bc7049b27bd0"
Cache-Control: max-age=474582,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 743a64a46db6b509-OSL

                                        
                                            GET /sync?dsp_id=409&expires=14&user_group=2&user_id=27a44814-6ff2-4d0a-bf05-ecc22c6ac642&cb=8fe91af9-ed83-4a40-812d-542db401ce56 HTTP/1.1 
Host: x.bidswitch.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         52.58.218.78
HTTP/1.1 302 Moved Temporarily
                                        
Cache-Control: no-cache, no-store, must-revalidate
Date: Thu, 01 Sep 2022 01:57:05 GMT
Location: https://x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=2&user_id=27a44814-6ff2-4d0a-bf05-ecc22c6ac642&cb=8fe91af9-ed83-4a40-812d-542db401ce56
Set-Cookie: tuuid=14f6070c-a8f0-4357-b4ae-b29d7c097fdf; path=/; expires=Fri, 01-Sep-2023 01:57:05 GMT; domain=.bidswitch.net; samesite=none; secure c=1661997425; path=/; expires=Fri, 01-Sep-2023 01:57:05 GMT; domain=.bidswitch.net; samesite=none; secure tuuid_lu=1661997425; path=/; expires=Fri, 01-Sep-2023 01:57:05 GMT; domain=.bidswitch.net; samesite=none; secure c=1661997425; path=/; expires=Fri, 01-Sep-2023 01:57:05 GMT; domain=.bidswitch.net; samesite=none; secure
Content-Length: 0
Connection: keep-alive

                                        
                                            GET /syncd?dsp_id=409&user_group=1&user_id=27a44814-6ff2-4d0a-bf05-ecc22c6ac642&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3D27a44814-6ff2-4d0a-bf05-ecc22c6ac642 HTTP/1.1 
Host: x.bidswitch.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizzocasino.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         52.58.218.78
HTTP/1.1 302 Moved Temporarily
                                        
Cache-Control: no-cache, no-store, must-revalidate
Date: Thu, 01 Sep 2022 01:57:05 GMT
Location: https://x.bidswitch.net/ul_cb/syncd?dsp_id=409&user_group=1&user_id=27a44814-6ff2-4d0a-bf05-ecc22c6ac642&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3D27a44814-6ff2-4d0a-bf05-ecc22c6ac642
Set-Cookie: tuuid=c6c35dc1-1a54-4a13-8a67-80a7bfdd08b0; path=/; expires=Fri, 01-Sep-2023 01:57:05 GMT; domain=.bidswitch.net; samesite=none; secure c=1661997425; path=/; expires=Fri, 01-Sep-2023 01:57:05 GMT; domain=.bidswitch.net; samesite=none; secure tuuid_lu=1661997425; path=/; expires=Fri, 01-Sep-2023 01:57:05 GMT; domain=.bidswitch.net; samesite=none; secure c=1661997425; path=/; expires=Fri, 01-Sep-2023 01:57:05 GMT; domain=.bidswitch.net; samesite=none; secure
Content-Length: 0
Connection: keep-alive

                                        
                                            GET /syncd?dsp_id=409&user_id=27a44814-6ff2-4d0a-bf05-ecc22c6ac642&user_group=2&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D HTTP/1.1 
Host: x.bidswitch.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         52.58.218.78
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: no-cache, no-store, must-revalidate
Date: Thu, 01 Sep 2022 01:57:05 GMT
Content-Length: 43
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    df3e567d6f16d040326c7a0ea29a4f41
Sha1:   ea7df583983133b62712b5e73bffbcd45cc53736
Sha256: 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
                                        
                                            GET /sync?dsp_id=409&expires=14&user_group=2&user_id=27a44814-6ff2-4d0a-bf05-ecc22c6ac642&cb=e6080b8e-b133-4f3f-be2a-f931a7efdb4b HTTP/1.1 
Host: x.bidswitch.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         52.58.218.78
HTTP/1.1 302 Moved Temporarily
                                        
Cache-Control: no-cache, no-store, must-revalidate
Date: Thu, 01 Sep 2022 01:57:05 GMT
Location: //match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=27a44814-6ff2-4d0a-bf05-ecc22c6ac642&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
Content-Length: 0
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.165
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 01 Sep 2022 01:57:05 GMT
Last-Modified: Thu, 01 Sep 2022 01:28:56 GMT
Server: ECS (nyb/1D23)
X-Cache: Miss from cloudfront
Via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: xm9Gprr5LC-anOw7UGePW762xHyfqBlTxjoocEhCeU7anJI6TYUOfw==
Age: 1689

                                        
                                            GET /xuid?mid=7963&xuid=27a44814-6ff2-4d0a-bf05-ecc22c6ac642&dongle=3oy7 HTTP/1.1 
Host: eb2.3lift.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         76.223.111.18
HTTP/2 200 OK
content-type: image/gif
                                        
date: Thu, 01 Sep 2022 01:57:05 GMT
content-length: 37
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   37
Md5:    3eacd0132310ea44cad756b378a3bc07
Sha1:   e2216a7e9b73f5cb0279351c78ce61c33475cea7
Sha256: bb229a48bee31f5d54ca12dc9bd960c63a671f0d4be86a054c1d324a44499d96
                                        
                                            GET /img.gif?f=sync&partner=d52d64e3ae130730ea33c02cfefc955af6fb94275ad1752dd9486271dd6cf068&ttl=&rurl=https%3A%2F%2Fbizzocasino.com%2Fpt HTTP/1.1 
Host: my.rtmark.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         139.45.195.8
HTTP/2 200 OK
content-type: image/gif
                                        
server: nginx
date: Thu, 01 Sep 2022 01:57:05 GMT
content-length: 43
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=3aece40b76a747ad85e11d3aa9b92296; expires=Fri, 01 Sep 2023 01:57:05 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    b4491705564909da7f9eaf749dbbfbb1
Sha1:   279315d507855c6a4351e1e2c2f39dd9cd2fccd8
Sha256: 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Sep 2022 01:57:05 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 30 Aug 2022 13:56:49 GMT
Expires: Tue, 06 Sep 2022 13:56:48 GMT
Etag: "992ddfd1fa25e3ed2fbef82f29b5bc7049b27bd0"
Cache-Control: max-age=474582,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 743a64a44e5cb518-OSL

                                        
                                            GET /ul_cb/syncd?dsp_id=409&user_group=1&user_id=27a44814-6ff2-4d0a-bf05-ecc22c6ac642&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3D27a44814-6ff2-4d0a-bf05-ecc22c6ac642 HTTP/1.1 
Host: x.bidswitch.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizzocasino.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         52.58.218.78
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: no-cache, no-store, must-revalidate
Date: Thu, 01 Sep 2022 01:57:05 GMT
Content-Length: 43
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    df3e567d6f16d040326c7a0ea29a4f41
Sha1:   ea7df583983133b62712b5e73bffbcd45cc53736
Sha256: 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
                                        
                                            GET /ul_cb/sync?dsp_id=409&expires=14&user_group=2&user_id=27a44814-6ff2-4d0a-bf05-ecc22c6ac642&cb=8fe91af9-ed83-4a40-812d-542db401ce56 HTTP/1.1 
Host: x.bidswitch.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizzocasino.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         52.58.218.78
HTTP/1.1 302 Moved Temporarily
                                        
Cache-Control: no-cache, no-store, must-revalidate
Date: Thu, 01 Sep 2022 01:57:05 GMT
Location: //match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=27a44814-6ff2-4d0a-bf05-ecc22c6ac642&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
Content-Length: 0
Connection: keep-alive

                                        
                                            GET /api/promotion/list?onlyPromotionType=0&lang=pt_WD HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://bizzocasino.com/pt
Cookie: preferred-language=pt; _ga_89BGS3MKPL=GS1.1.1661997423.1.0.1661997423.0.0.0; _ga=GA1.1.1831617670.1661997423; DV_TRACK=c72b554e-dfa6-4792-b306-f23fdec93466
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: application/json
                                        
date: Thu, 01 Sep 2022 01:57:05 GMT
vary: Accept-Encoding
x-powered-by: PHP/7.4.29
cache-control: max-age=0, must-revalidate, private
expires: Thu, 01 Sep 2022 01:57:05 GMT
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nxSkpCMi7Vi8gjpl4ZEVIZyGd3uTHgZBaYwYgClXUQal%2FPxH02I97R2ydALy8MqCKFHT0Yrhc3wrfeVsi5BYG8ajY6X15m2FOMxaacvpbZLugho0356uJU5tKvDSEf5Wzg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 743a649fbaa3b500-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (13602), with no line terminators
Size:   2292
Md5:    fd7a0fa13b2780cd3deda70b470aa70d
Sha1:   403fa8bc0876bf2ae8e428ed91d814a4902c9108
Sha256: 285c09f354a3934844792130b91ec5ae16b688064ac3d85f7c8d7c6438830534
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.165
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 01 Sep 2022 01:57:05 GMT
Last-Modified: Thu, 01 Sep 2022 00:07:22 GMT
Server: ECS (nyb/1D23)
X-Cache: Miss from cloudfront
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: cZ0rU-o-1XH2U_AVPPJ2f9nST5UvkSglH-QK2QerAAQj2k3pLIBSYA==
Age: 6583

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.165
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 01 Sep 2022 01:57:05 GMT
Last-Modified: Thu, 01 Sep 2022 01:57:03 GMT
Server: ECS (dcb/7F82)
X-Cache: Miss from cloudfront
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: _LPFgyH8TL9a9tDl5Pz5KmWn7c72mBXKbSLGHlh1AT_f5QRGC67lIA==
Age: 3

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.165
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 01 Sep 2022 01:57:05 GMT
Last-Modified: Thu, 01 Sep 2022 00:07:46 GMT
Server: ECS (nyb/1D06)
X-Cache: Miss from cloudfront
Via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: I1Fv7PRZPoOE7EmpCcUKPg6-aasUGchrBLTpAfIiR5NqhYnSnODEJg==
Age: 6559

                                        
                                            GET /sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=27a44814-6ff2-4d0a-bf05-ecc22c6ac642&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy= HTTP/1.1 
Host: match.sharethrough.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizzocasino.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         52.57.48.124
HTTP/2 204 No Content
                                        
date: Thu, 01 Sep 2022 01:57:05 GMT
X-Firefox-Spdy: h2

                                        
                                            GET /sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=27a44814-6ff2-4d0a-bf05-ecc22c6ac642&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy= HTTP/1.1 
Host: match.sharethrough.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizzocasino.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         52.57.48.124
HTTP/2 204 No Content
                                        
date: Thu, 01 Sep 2022 01:57:05 GMT
X-Firefox-Spdy: h2

                                        
                                            GET /sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=27a44814-6ff2-4d0a-bf05-ecc22c6ac642&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy= HTTP/1.1 
Host: match.sharethrough.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizzocasino.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         52.57.48.124
HTTP/2 204 No Content
                                        
date: Thu, 01 Sep 2022 01:57:05 GMT
X-Firefox-Spdy: h2

                                        
                                            GET /54f396e0-b046-49b1-9cb3-0c69281d7ea9-beacon.png HTTP/1.1 
Host: c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.111.125
HTTP/2 200 OK
content-type: image/png
                                        
content-length: 68
last-modified: Tue, 15 Dec 2020 08:04:53 GMT
accept-ranges: bytes
server: AmazonS3
date: Sat, 13 Aug 2022 23:26:57 GMT
cache-control: no-cache, no-store, must-revalidate
etag: "e679fbd466a2d656f194a5da4fa083cd"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Ks0ZItN-aVhclbPsJfudEu90pQzby5NU0hzp4hinpiKcMrGzAUtJtA==
age: 1564410
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Size:   68
Md5:    e679fbd466a2d656f194a5da4fa083cd
Sha1:   2aa795c7607aa6ea41313be88f1b7a9c1ab516b3
Sha256: f309b7c03d9cae63a9bedbee6ed655f3dbcdb194132943639344dead5f3b9710
                                        
                                            GET /app/common.173fe4ce0d3b6746.esm.js HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/pt
Cookie: preferred-language=pt; _ga_89BGS3MKPL=GS1.1.1661997423.1.0.1661997423.0.0.0; _ga=GA1.2.1831617670.1661997423; DV_TRACK=c72b554e-dfa6-4792-b306-f23fdec93466; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=6c288e08-3829-41d4-bb45-5edd0ea6595d.1661997424.1.1661997424.1661997424.b9548649-7bf2-4b83-beb9-7c12fa145751; _gid=GA1.2.1800359139.1661997425; _gat_UA-207151463-1=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Thu, 01 Sep 2022 01:57:05 GMT
last-modified: Wed, 31 Aug 2022 05:31:32 GMT
vary: Accept-Encoding
etag: W/"630ef234-7a33"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3964
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XCSKZZZSMVxQd2sNDssfaI3eVrb9ROW3Om3qZfeVuaBABkFDShx40JnYtkyFXnw4J%2Fu8iccipsi1M%2F%2BETWZ4xuDPohiN49oob1gyOm1%2ByTMJCA%2Bsqscrp6SKzmqRJm1lkQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 743a64a77e38b500-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (31283), with no line terminators
Size:   10603
Md5:    d9ef5dfed61f56b4707a7ac241dc63e3
Sha1:   0492613c1d8e63b679d213b05691bf28a67ee625
Sha256: 8b7f9605990c9d0d686caf80fe52805f1d5054de88865fe284a98b41b9b51dc7
                                        
                                            GET /app/29.502b22de40f751b8.esm.js HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/pt
Cookie: preferred-language=pt; _ga_89BGS3MKPL=GS1.1.1661997423.1.0.1661997423.0.0.0; _ga=GA1.2.1831617670.1661997423; DV_TRACK=c72b554e-dfa6-4792-b306-f23fdec93466; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=6c288e08-3829-41d4-bb45-5edd0ea6595d.1661997424.1.1661997424.1661997424.b9548649-7bf2-4b83-beb9-7c12fa145751; _gid=GA1.2.1800359139.1661997425; _gat_UA-207151463-1=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Thu, 01 Sep 2022 01:57:05 GMT
last-modified: Wed, 31 Aug 2022 05:31:37 GMT
vary: Accept-Encoding
etag: W/"630ef239-6cf7"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3964
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DiEED8bBR5Mmm8NtMSjJbVQ0PdqOrr%2BPRTUMvTM4K7b0xYNz73hqfkZ6NieZE%2Fzxo%2BDRQZL4ETZZGRkQimmLKPmdsBMoZgMmDbWWA%2FOI%2FWjwm1fMT2tETo82rexlc0WHZw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 743a64a76e32b500-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (27895), with no line terminators
Size:   9442
Md5:    ab4b6e073b146cedc7c397f32b1da837
Sha1:   de48e85e0dd12a589606c292c229bf8070fa6c72
Sha256: 0d12bdfce9618eae1a4179b5bf7426b6c886026a7d25523b09c75addf2237904
                                        
                                            GET /tracking.js HTTP/1.1 
Host: cdn.livechatinc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.36.79.17
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
last-modified: Wed, 31 Aug 2022 10:16:05 GMT
x-amz-version-id: Egqmf1pgeyDlcCg5BbgUwW.yVQDQ30QB
server: AmazonS3
content-encoding: br
etag: W/"6a4fa4403464477a31b3b06855e18d08"
vary: Accept-Encoding
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: mH04D7NbRR2kXM7KE2J_1uwKzDQpV1If2_5TkER3t-DEqDjdpdCvPQ==
content-length: 25546
cache-control: max-age=28800
expires: Thu, 01 Sep 2022 09:57:05 GMT
date: Thu, 01 Sep 2022 01:57:05 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   25546
Md5:    c18ce241a51a28e18707370bc0787989
Sha1:   3cf6674db85f22f1056451b145eb759b8b902020
Sha256: 20c4bf80339a7f034068bbb56db340bbee46b3129e794427426d4419d4b73173
                                        
                                            GET /assets/bizzo-logo.svg HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/pt
Cookie: preferred-language=pt; _ga_89BGS3MKPL=GS1.1.1661997423.1.0.1661997423.0.0.0; _ga=GA1.2.1831617670.1661997423; DV_TRACK=c72b554e-dfa6-4792-b306-f23fdec93466; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=6c288e08-3829-41d4-bb45-5edd0ea6595d.1661997424.1.1661997424.1661997424.b9548649-7bf2-4b83-beb9-7c12fa145751; _gid=GA1.2.1800359139.1661997425; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Thu, 01 Sep 2022 01:57:05 GMT
last-modified: Wed, 31 Aug 2022 05:31:39 GMT
vary: Accept-Encoding
etag: W/"630ef23b-6df1"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3965
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4nX1sX6ZaEKXPxAgxnFU1lDj2o6T8274lNaHf907LzqjDdt4EQddScU4%2F097D%2FdSrErPPDn%2BdyLxxItwQnr4JWF2bp3iY5ClccBNgSvmZkT2VcuqetidYWZCpkMoYne%2BqQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 743a64a72e15b500-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1635)
Size:   15067
Md5:    cdff66bd525688f01a66bc6c147d68b5
Sha1:   852e0087f861f0b5265b188574454f88b7311175
Sha256: dd29ead6f98e5f1e437c04fd36833c6eeedbc1e80b78296d61097a4ec63de83f
                                        
                                            GET /assets/track-eu.js HTTP/1.1 
Host: assets.customer.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.44
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Wed, 03 Aug 2022 22:26:28 GMT
server: AmazonS3
content-encoding: gzip
date: Wed, 31 Aug 2022 05:56:21 GMT
etag: W/"7be9268d91749af572ef7c37de587c70"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3tQcI8QWghOAxCQ_rLzSzUE7Gdj4IzSGj2fAY-46J-CAcAY3BTVovg==
age: 72043
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5387)
Size:   2261
Md5:    fa735d9728de37613584e66c17ae58f7
Sha1:   ac7ffc3f210d18559ce85a713ac97b5995084163
Sha256: c077fac4ec11f5ca8828766bd23849a16e4e2fe3c464441bed9c43c27ea9c7ed
                                        
                                            GET /app/national-casino.43560e9be334e28bf33f.ttf?l1lc9r HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/app/styles.2ac83e5d2a7e6951.css
Cookie: preferred-language=pt; _ga_89BGS3MKPL=GS1.1.1661997423.1.0.1661997423.0.0.0; _ga=GA1.2.1831617670.1661997423; DV_TRACK=c72b554e-dfa6-4792-b306-f23fdec93466; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=6c288e08-3829-41d4-bb45-5edd0ea6595d.1661997424.1.1661997424.1661997424.b9548649-7bf2-4b83-beb9-7c12fa145751; _gid=GA1.2.1800359139.1661997425; _gat_UA-207151463-1=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: application/octet-stream
                                        
date: Thu, 01 Sep 2022 01:57:06 GMT
content-length: 45520
last-modified: Wed, 31 Aug 2022 05:31:42 GMT
etag: "630ef23e-b1d0"
cache-control: max-age=14400
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qohVEOvMXdNU4L7X3K245SF1EjH%2FSM2SHrKSLMuQWxmR70a9aVvX2G76zu%2BLprHgfjib%2F3pJvuaBpRDD%2FJuOa7nL%2BmPLV%2B%2FcRcWzpnHcZN2SgRJ2rvnBbwVmEf3OgbQVLA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 743a64a7ee69b500-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, national-casino\012- data
Size:   45520
Md5:    43560e9be334e28bf33fe43cfc88efc3
Sha1:   491d12bd3c88b681d4bcf3b83da0af7ca1aa723b
Sha256: 8a568d26f70a3f143c096bcb6fe5ce956cbf0683b6b0bc3fc7862149db5fdcc5
                                        
                                            GET /assets/banners/main/welcome-image-left.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/pt
Cookie: preferred-language=pt; _ga_89BGS3MKPL=GS1.1.1661997423.1.0.1661997423.0.0.0; _ga=GA1.2.1831617670.1661997423; DV_TRACK=c72b554e-dfa6-4792-b306-f23fdec93466; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=6c288e08-3829-41d4-bb45-5edd0ea6595d.1661997424.1.1661997424.1661997424.b9548649-7bf2-4b83-beb9-7c12fa145751; _gid=GA1.2.1800359139.1661997425; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Thu, 01 Sep 2022 01:57:06 GMT
content-length: 73504
last-modified: Wed, 31 Aug 2022 05:31:39 GMT
etag: "630ef23b-11f20"
cache-control: max-age=14400
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MOG4UI6XSSu%2B%2BDfif9DUgFbYNqQmqYGKR%2B7Wfc1ja5gZrXMXHv4a%2BUwyziq%2Ft0%2FDzxLZ%2FOYPP%2Bb0dJoeSVhFt7b%2BlbgZW2jXq8EMV5Ang2jQMqk24TwoGSWg5fwPK0fbsg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 743a64a8aeb8b500-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   73504
Md5:    e4d794eba1d03e0c07a5447ff5ce2d38
Sha1:   e776f63113d73db2769498e9ca39c9126fb1d9b9
Sha256: d027381473f45aaf50053eff4cd7fc33f45eee1986ca7495f3b845c0e63ae6bd
                                        
                                            GET /assets/vip/icons/1.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/pt
Cookie: preferred-language=pt; _ga_89BGS3MKPL=GS1.1.1661997423.1.0.1661997423.0.0.0; _ga=GA1.2.1831617670.1661997423; DV_TRACK=c72b554e-dfa6-4792-b306-f23fdec93466; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=6c288e08-3829-41d4-bb45-5edd0ea6595d.1661997424.1.1661997424.1661997424.b9548649-7bf2-4b83-beb9-7c12fa145751; _gid=GA1.2.1800359139.1661997425; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Thu, 01 Sep 2022 01:57:06 GMT
content-length: 10568
last-modified: Wed, 31 Aug 2022 05:31:35 GMT
etag: "630ef237-2948"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3962
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BT7iJu1edg6%2Fwkts58zdJy6Z7YSRPAMHBSLVHvMtCnFc6gaOIG5Y2LOEajvJ17y%2BoGvE9VXobJcnUsREuAmfGYuFl%2FiIi%2BkS32Npf6BjxKlclijEf%2BVF4AONd2XdbNZQrA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 743a64a8fef1b500-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   10568
Md5:    aa8810b9291dccb20cdb07ca9f256dbb
Sha1:   e9d0b6499f82ccd6d73bd06c7fb1097db4448df2
Sha256: c42ee8d1d4601e46e5248799c9a1025149fa7a5300d9412e49d601b0a3745d72
                                        
                                            POST / HTTP/1.1 
Host: e1.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 344
ETag: "482FE1451018DD898CB57966BB837DB96FEFAD4DA177BC82D99409B769869770"
Last-Modified: Tue, 30 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5095
Expires: Thu, 01 Sep 2022 03:22:01 GMT
Date: Thu, 01 Sep 2022 01:57:06 GMT
Connection: keep-alive

                                        
                                            GET /assets/vip/icons/2.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/pt
Cookie: preferred-language=pt; _ga_89BGS3MKPL=GS1.1.1661997423.1.0.1661997423.0.0.0; _ga=GA1.2.1831617670.1661997423; DV_TRACK=c72b554e-dfa6-4792-b306-f23fdec93466; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=6c288e08-3829-41d4-bb45-5edd0ea6595d.1661997424.1.1661997424.1661997424.b9548649-7bf2-4b83-beb9-7c12fa145751; _gid=GA1.2.1800359139.1661997425; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Thu, 01 Sep 2022 01:57:06 GMT
content-length: 10568
last-modified: Wed, 31 Aug 2022 05:31:44 GMT
etag: "630ef240-2948"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3962
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=W0Rq1us5ObwYEmbb30YeT%2FBJF4s44bLAhOjijZzvUuUN3aBnE%2F6gMigo4uCEQ%2BhZJqlPaA9uFkNNhpQqcJnZQ%2BF47nJ9gIUvXmgjUWJ4Hcmg%2BStLpvOFuHxXsu0Uvfq%2F1w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 743a64a90ef7b500-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   10568
Md5:    e9e706dd53846755c650f65b767a9a19
Sha1:   8d8b2e56133302a6bbe35539928b8cb367e9a666
Sha256: 99425a392b23289ac3d05896d6eb60e6092e6205db3029778d7bf422dcf11951
                                        
                                            GET /assets/vip/icons/3.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/pt
Cookie: preferred-language=pt; _ga_89BGS3MKPL=GS1.1.1661997423.1.0.1661997423.0.0.0; _ga=GA1.2.1831617670.1661997423; DV_TRACK=c72b554e-dfa6-4792-b306-f23fdec93466; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=6c288e08-3829-41d4-bb45-5edd0ea6595d.1661997424.1.1661997424.1661997424.b9548649-7bf2-4b83-beb9-7c12fa145751; _gid=GA1.2.1800359139.1661997425; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Thu, 01 Sep 2022 01:57:06 GMT
content-length: 10350
last-modified: Wed, 31 Aug 2022 05:31:40 GMT
etag: "630ef23c-286e"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3962
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Bj6U5bpsFY%2B2hj4DmZsDuj%2FYvcxchl2IpeAWOW6i294Q6SNlpB81xKJMaSDIp2cDP8iKgolYER%2BErnfOfKQw5nQZU5LX2UJke%2FeglzoA%2FTvBJ4RiofV4oeld6CAJH2iXCw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 743a64a90ef9b500-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   10350
Md5:    338e5e43058429909b0202a131cefa9c
Sha1:   5ba1d9d6389671aaacefabf7ab23e89df2cfdc14
Sha256: ab910df33494241c27ecb165c021b2bb386a9e1f8ea1cbb20ded5464bc1a9b9c
                                        
                                            GET /assets/vip/icons/4.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/pt
Cookie: preferred-language=pt; _ga_89BGS3MKPL=GS1.1.1661997423.1.0.1661997423.0.0.0; _ga=GA1.2.1831617670.1661997423; DV_TRACK=c72b554e-dfa6-4792-b306-f23fdec93466; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=6c288e08-3829-41d4-bb45-5edd0ea6595d.1661997424.1.1661997424.1661997424.b9548649-7bf2-4b83-beb9-7c12fa145751; _gid=GA1.2.1800359139.1661997425; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Thu, 01 Sep 2022 01:57:06 GMT
content-length: 8954
last-modified: Wed, 31 Aug 2022 05:31:49 GMT
etag: "630ef245-22fa"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3962
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Wy%2BBfGVGJ%2FNVLISXScn%2Bs5HXOEDE0ur%2BAEMpEG6Gp5e%2BbUsCnyQw0JsowGi2k2DPLxb1hLKtrrlvGEaDu0HDgprJW%2BEZGxnvZoYlJca7TAqUPnbBKocD%2Febq0i5Px4lTXQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 743a64a91efcb500-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   8954
Md5:    2f86873f0b60783714a20dac903041f9
Sha1:   255d0205514976c8e966a9b5a6677f555348e4f6
Sha256: ca75ea65191f139f3f9315d81f9707d933a1da8e9a2b723cbc56afa44976d5ef
                                        
                                            GET /assets/banners/games-search/games-search-image-left.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/pt
Cookie: preferred-language=pt; _ga_89BGS3MKPL=GS1.1.1661997423.1.0.1661997423.0.0.0; _ga=GA1.2.1831617670.1661997423; DV_TRACK=c72b554e-dfa6-4792-b306-f23fdec93466; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=6c288e08-3829-41d4-bb45-5edd0ea6595d.1661997424.1.1661997424.1661997424.b9548649-7bf2-4b83-beb9-7c12fa145751; _gid=GA1.2.1800359139.1661997425; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Thu, 01 Sep 2022 01:57:06 GMT
content-length: 46506
last-modified: Wed, 31 Aug 2022 05:31:44 GMT
etag: "630ef240-b5aa"
cache-control: max-age=14400
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ceDaoZgiEu8uf83%2FiDBwkWDugufeDzL4og5euAhuC1s8bx7T3XUNGyzpVxrgDHPJ51rer6RbGH5K9k1tUe6xXuHZgQ5x%2B8x1Nzkl8PwomaoMhpxPjSvt2Srbe3pytKUiBA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 743a64a8beccb500-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   46506
Md5:    60749a7b12dc1ff49b830cab90a5564d
Sha1:   5d2c9e33a2248e1355de6cd1de4e83c4ea20d5ad
Sha256: d6760fd97d417da496a608da40283d7899f03877bb6affae6202fba0aae10c65
                                        
                                            GET /assets/vip/icons/5.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/pt
Cookie: preferred-language=pt; _ga_89BGS3MKPL=GS1.1.1661997423.1.0.1661997423.0.0.0; _ga=GA1.2.1831617670.1661997423; DV_TRACK=c72b554e-dfa6-4792-b306-f23fdec93466; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=6c288e08-3829-41d4-bb45-5edd0ea6595d.1661997424.1.1661997424.1661997424.b9548649-7bf2-4b83-beb9-7c12fa145751; _gid=GA1.2.1800359139.1661997425; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Thu, 01 Sep 2022 01:57:06 GMT
content-length: 9806
last-modified: Wed, 31 Aug 2022 05:31:40 GMT
etag: "630ef23c-264e"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3962
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wxFfLbwc0CsBoZZgDEn2JnBMHp1xyiM9qQ5i6TDrhbwqEbunM8FTT6PU7m2sDJ%2FGO7FHUFmL2w1KGqRoa2XStNHmLEADTrHyweyRSLzlrEnomv%2BO%2FOe%2BqqYYQ9mgEwzelA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 743a64a91f01b500-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   9806
Md5:    a895ff5062ab90520d33c4627c563502
Sha1:   fe78380309a22aa32a5efc24389d1c110af295ad
Sha256: b4f9fdd273ac43942220249602a7bcdefb2ce0759b1f12e68e69c9ccdbe23e8a
                                        
                                            GET /assets/vip/icons/6.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/pt
Cookie: preferred-language=pt; _ga_89BGS3MKPL=GS1.1.1661997423.1.0.1661997423.0.0.0; _ga=GA1.2.1831617670.1661997423; DV_TRACK=c72b554e-dfa6-4792-b306-f23fdec93466; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=6c288e08-3829-41d4-bb45-5edd0ea6595d.1661997424.1.1661997424.1661997424.b9548649-7bf2-4b83-beb9-7c12fa145751; _gid=GA1.2.1800359139.1661997425; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Thu, 01 Sep 2022 01:57:06 GMT
content-length: 9380
last-modified: Wed, 31 Aug 2022 05:31:35 GMT
etag: "630ef237-24a4"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3962
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7ct3tLV%2Be2%2BbrTQTBlDyJS49Mewk2%2FaidX8MLSttbMlaeodQ%2F8O6OmV0OJbOiB8q%2B%2FfOx4T%2B7Mtfj%2BeKhmvL15hTfNWFyapiM2VMdt6eaio6PDEfQ3B%2BGyVi2EdCASP%2FnA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 743a64a91f02b500-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   9380
Md5:    ac3bb6c734c0fe610f0e1ee95549c52a
Sha1:   ab7470b82d056f3635bd4cb168132a1e0c46a535
Sha256: 84cad39a9c2b343e92ed1015d7fbacc0ba84fcc18cd51f248499af2e79d7b1bf
                                        
                                            GET /assets/vip/icons/7.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/pt
Cookie: preferred-language=pt; _ga_89BGS3MKPL=GS1.1.1661997423.1.0.1661997423.0.0.0; _ga=GA1.2.1831617670.1661997423; DV_TRACK=c72b554e-dfa6-4792-b306-f23fdec93466; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=6c288e08-3829-41d4-bb45-5edd0ea6595d.1661997424.1.1661997424.1661997424.b9548649-7bf2-4b83-beb9-7c12fa145751; _gid=GA1.2.1800359139.1661997425; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Thu, 01 Sep 2022 01:57:06 GMT
content-length: 9052
last-modified: Wed, 31 Aug 2022 05:31:35 GMT
etag: "630ef237-235c"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3962
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Z8k5pCjRA%2F3yM%2BHewOcrQUHBh2%2BCiGRI8JZ58lmO2zVY%2BCLzW8QfNyoW5ywBILDx1JFh1EBzDhr2m8IGujb3xb4h5vdMq1099jyj6nkCB4ndsV08zT%2BGBFlFgbC2E3eghA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 743a64a91f03b500-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   9052
Md5:    884cc8f5c4dc5cd56c0abc710b5ce8a6
Sha1:   e2a65215c8dcb4591267c59606b79647290dd14c
Sha256: 2dd5aaed61e0e6da8ac7b14ba941cd329f26973556a0c02e542d68191e2c5ada
                                        
                                            GET /assets/vip/icons/8.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/pt
Cookie: preferred-language=pt; _ga_89BGS3MKPL=GS1.1.1661997423.1.0.1661997423.0.0.0; _ga=GA1.2.1831617670.1661997423; DV_TRACK=c72b554e-dfa6-4792-b306-f23fdec93466; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=6c288e08-3829-41d4-bb45-5edd0ea6595d.1661997424.1.1661997424.1661997424.b9548649-7bf2-4b83-beb9-7c12fa145751; _gid=GA1.2.1800359139.1661997425; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Thu, 01 Sep 2022 01:57:06 GMT
content-length: 8778
last-modified: Wed, 31 Aug 2022 05:31:44 GMT
etag: "630ef240-224a"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3962
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=z9ufC6zYAncRv%2FYMdPdmZmbYPHbByitIAQ6J8nM5WMumLbq55rmXA0l9OnEVk%2F1Iixk6JJ3%2FIIZjraiXp4%2BMGDr9kQFIFvEdQEF3pmIGA0Dv3xu6vmbiLhxZKKgBBtK6JA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 743a64a92f08b500-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   8778
Md5:    020fb5c660d170e3050bda7d5e09b8e1
Sha1:   f0d811f81ca0c6b99d271fe60357b144dc83a075
Sha256: 17e997a3827be7fa6b2b83e99d3c1c4f77ec12176d7c96cdcecf4af980833144
                                        
                                            GET /assets/vip/icons/9.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/pt
Cookie: preferred-language=pt; _ga_89BGS3MKPL=GS1.1.1661997423.1.0.1661997423.0.0.0; _ga=GA1.2.1831617670.1661997423; DV_TRACK=c72b554e-dfa6-4792-b306-f23fdec93466; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=6c288e08-3829-41d4-bb45-5edd0ea6595d.1661997424.1.1661997424.1661997424.b9548649-7bf2-4b83-beb9-7c12fa145751; _gid=GA1.2.1800359139.1661997425; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Thu, 01 Sep 2022 01:57:06 GMT
content-length: 10620
last-modified: Wed, 31 Aug 2022 05:31:35 GMT
etag: "630ef237-297c"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3962
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7RP5IcaPJmb%2B5uH%2FhYwPURXak%2BVSAtK0KE0X89RLQbI4zvuXWfzJNAGDIC1GcBhgnq18p%2FvtWUJ3U5YtFgOpadt%2BJ%2BOA%2BZWIz2P5jkWSYAyWi7w06WH6189sTarEJ47skg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 743a64a92f11b500-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   10620
Md5:    f990a98b0dab1ba0000f01ff6372d5c6
Sha1:   da414f04d6f1f5f28b725abd7d01319aee7aff81
Sha256: ee3632dd58d7ba2adfb5855b4d8b9b3d5bf05b90709b346f84c83e85b37dca1a
                                        
                                            GET /assets/vip/icons/10.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/pt
Cookie: preferred-language=pt; _ga_89BGS3MKPL=GS1.1.1661997423.1.0.1661997423.0.0.0; _ga=GA1.2.1831617670.1661997423; DV_TRACK=c72b554e-dfa6-4792-b306-f23fdec93466; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=6c288e08-3829-41d4-bb45-5edd0ea6595d.1661997424.1.1661997424.1661997424.b9548649-7bf2-4b83-beb9-7c12fa145751; _gid=GA1.2.1800359139.1661997425; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Thu, 01 Sep 2022 01:57:06 GMT
content-length: 8786
last-modified: Wed, 31 Aug 2022 05:31:49 GMT
etag: "630ef245-2252"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3962
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GAPohaJ1n7ICUz%2BJQstBeblX%2FFFqUlFcq%2FWlbqQNZ6R%2FfJxHZUC4N%2Bt3n2HWrr38kvFW1qTGtya%2BEA%2BHH1VljBOtlnxbG6GbTkxeHKlAK0Oy0oQLq6L7gXiJFsHA1Bat3A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 743a64a93f12b500-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   8786
Md5:    8e799f6ef49e65ea297a282fd4a68cd6
Sha1:   cbd59770203e55178f7541b304e6f2f98e4b354a
Sha256: b01cf606388299205158b27a95989ef982fe7c2ed7c5db966cb9b540ce122c63
                                        
                                            GET /assets/vip/icons/11.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/pt
Cookie: preferred-language=pt; _ga_89BGS3MKPL=GS1.1.1661997423.1.0.1661997423.0.0.0; _ga=GA1.2.1831617670.1661997423; DV_TRACK=c72b554e-dfa6-4792-b306-f23fdec93466; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=6c288e08-3829-41d4-bb45-5edd0ea6595d.1661997424.1.1661997424.1661997424.b9548649-7bf2-4b83-beb9-7c12fa145751; _gid=GA1.2.1800359139.1661997425; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Thu, 01 Sep 2022 01:57:06 GMT
content-length: 8604
last-modified: Wed, 31 Aug 2022 05:31:49 GMT
etag: "630ef245-219c"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3962
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0WkM%2Bqf9G6IbNFO1bWJgp0bccb7PaM%2F77JAq7kp80tmGSoahlqkCWYYICuCliLmUEtd1QNEhy2Co8bRIPdiYLQCykGqWIPvBiGv8yNRkErTVDvu%2FJ7JtTG5W9crAkJh2ig%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 743a64a93f14b500-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   8604
Md5:    381b9572392b9662ca38a10d5df5922a
Sha1:   d72f9020008f3be991bf04962fbbef4c43f75ea6
Sha256: 3fdeef6eb27a501b9003768342333c4ccbb0e756148e9c1cdf87da33633db0e4
                                        
                                            GET /assets/vip/icons/13.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/pt
Cookie: preferred-language=pt; _ga_89BGS3MKPL=GS1.1.1661997423.1.0.1661997423.0.0.0; _ga=GA1.2.1831617670.1661997423; DV_TRACK=c72b554e-dfa6-4792-b306-f23fdec93466; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=6c288e08-3829-41d4-bb45-5edd0ea6595d.1661997424.1.1661997424.1661997424.b9548649-7bf2-4b83-beb9-7c12fa145751; _gid=GA1.2.1800359139.1661997425; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Thu, 01 Sep 2022 01:57:06 GMT
content-length: 12852
last-modified: Wed, 31 Aug 2022 05:31:40 GMT
etag: "630ef23c-3234"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3961
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=f9Mb3F58yWqYedH%2ByiJdecysXcTju1Yz8T26bL3oH2n7AdxiwK6ecFOTD3dwWikvFntZx7g8rdDj%2B3MmC8SsdP%2BNaPSLfbGqM2rejNp14zvVKmt46zStXOJPQ4MTnamWYg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 743a64a94f1bb500-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   12852
Md5:    6c1abcc9c4f997f30d7cd20ecf2aafea
Sha1:   a0b3eb22724ff2fc5af0307b03e3e4f9a16dabd7
Sha256: 942f30a3f864f014db9d52494f5c60088b30b6c716b8f4c5967257853e69dd8a
                                        
                                            GET /assets/vip/icons/12.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/pt
Cookie: preferred-language=pt; _ga_89BGS3MKPL=GS1.1.1661997423.1.0.1661997423.0.0.0; _ga=GA1.2.1831617670.1661997423; DV_TRACK=c72b554e-dfa6-4792-b306-f23fdec93466; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=6c288e08-3829-41d4-bb45-5edd0ea6595d.1661997424.1.1661997424.1661997424.b9548649-7bf2-4b83-beb9-7c12fa145751; _gid=GA1.2.1800359139.1661997425; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Thu, 01 Sep 2022 01:57:06 GMT
content-length: 9802
last-modified: Wed, 31 Aug 2022 05:31:44 GMT
etag: "630ef240-264a"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3962
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4dW48P12oTgpfuhzQdzwQBPNrolRiBXXnahjpD6Zsg59CH0aHK03qerRPTADPGZcWqYRInj4OzZXkSGKN4CsEtI3IbkKsG1xtoMT%2B%2F3xanXZf9EHEDC12cy0wo4aCdsT8w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 743a64a94f1ab500-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   9802
Md5:    7d7c8b5db2030c1cc059f93bf2521b63
Sha1:   8f741b6bde45aa1847f2be6c6d23048c9266cb1a
Sha256: 33ce1fcbeb09f5bc05721931bb91b9e6629f7fa84d082a4f139052d57ea83b97
                                        
                                            GET /assets/vip/icons/14.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/pt
Cookie: preferred-language=pt; _ga_89BGS3MKPL=GS1.1.1661997423.1.0.1661997423.0.0.0; _ga=GA1.2.1831617670.1661997423; DV_TRACK=c72b554e-dfa6-4792-b306-f23fdec93466; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=6c288e08-3829-41d4-bb45-5edd0ea6595d.1661997424.1.1661997424.1661997424.b9548649-7bf2-4b83-beb9-7c12fa145751; _gid=GA1.2.1800359139.1661997425; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Thu, 01 Sep 2022 01:57:06 GMT
content-length: 10118
last-modified: Wed, 31 Aug 2022 05:31:49 GMT
etag: "630ef245-2786"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3961
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eMvTCM825dsO%2FR7TZrqnD80lTF0%2BuR3rBe793R7bykbIBYKuiQYNkf%2BOqmuieU2MulZ%2FWrnFnrqQ9S%2FJNAMZrjvukMhYcSpc8eEUMm7W%2FyvzUD%2FG71Pgzd%2B6v8O3Uam1mw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 743a64a94f1cb500-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   10118
Md5:    353f6ae487cd93511fb7ad316bd1533e
Sha1:   307e8c4dd47b5b501becc23de56571dc8e20d306
Sha256: cc3b414fd681b3990c26051d3a348cdb3052f8206c9c342d3bac1aaa6d4d1068
                                        
                                            GET /assets/vip/icons/16.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/pt
Cookie: preferred-language=pt; _ga_89BGS3MKPL=GS1.1.1661997423.1.0.1661997423.0.0.0; _ga=GA1.2.1831617670.1661997423; DV_TRACK=c72b554e-dfa6-4792-b306-f23fdec93466; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=6c288e08-3829-41d4-bb45-5edd0ea6595d.1661997424.1.1661997424.1661997424.b9548649-7bf2-4b83-beb9-7c12fa145751; _gid=GA1.2.1800359139.1661997425; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Thu, 01 Sep 2022 01:57:06 GMT
content-length: 11922
last-modified: Wed, 31 Aug 2022 05:31:35 GMT
etag: "630ef237-2e92"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3961
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=E0Sat7Vs1jPj8zqeriOaRNdgCzeObzWzE7OQmdEoQjkWlepQVVa4u5N3hjwE%2B3PBUaFuwfZXG71c656yHQL6%2FIsuV%2BKE34cQYAhz6VimXziS5NgNPqos6b8QBl56m4g5PQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 743a64a94f1eb500-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   11922
Md5:    12066b42720b4a79e1a0cd9a19f4d1c8
Sha1:   44b28d7073a2c439c5ce140e6ddd42ecc0d1d03c
Sha256: 1e1a74407142019b56a37395d68fa290a09b3929503247683a9aff589c93e08c
                                        
                                            GET /assets/vip/icons/15.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/pt
Cookie: preferred-language=pt; _ga_89BGS3MKPL=GS1.1.1661997423.1.0.1661997423.0.0.0; _ga=GA1.2.1831617670.1661997423; DV_TRACK=c72b554e-dfa6-4792-b306-f23fdec93466; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=6c288e08-3829-41d4-bb45-5edd0ea6595d.1661997424.1.1661997424.1661997424.b9548649-7bf2-4b83-beb9-7c12fa145751; _gid=GA1.2.1800359139.1661997425; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Thu, 01 Sep 2022 01:57:06 GMT
content-length: 11078
last-modified: Wed, 31 Aug 2022 05:31:44 GMT
etag: "630ef240-2b46"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3961
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5IGusjJmKOkVk4M9oqk060rENNKAr8qhx9srVlipZhmKeUpRpolsCqeKqmV8mZRm9aKvsojEHdjNA4tiTu4raWLYMS0LRuZYmkGT1U5T%2FsDxiQ0eKd2mI93XX%2FzVzrftnw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 743a64a94f1db500-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   11078
Md5:    b9cff7d986f7ea5402a036fbcab7cf44
Sha1:   77593da0682895fa63d384c6f91c2dcf24f5e3bb
Sha256: a521ebc8d93e092d55576b8572959c02ce007a6bc7aaa1034b803d3926209241
                                        
                                            GET /assets/vip/icons/17.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/pt
Cookie: preferred-language=pt; _ga_89BGS3MKPL=GS1.1.1661997423.1.0.1661997423.0.0.0; _ga=GA1.2.1831617670.1661997423; DV_TRACK=c72b554e-dfa6-4792-b306-f23fdec93466; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=6c288e08-3829-41d4-bb45-5edd0ea6595d.1661997424.1.1661997424.1661997424.b9548649-7bf2-4b83-beb9-7c12fa145751; _gid=GA1.2.1800359139.1661997425; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Thu, 01 Sep 2022 01:57:06 GMT
content-length: 10780
last-modified: Wed, 31 Aug 2022 05:31:40 GMT
etag: "630ef23c-2a1c"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3961
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8o48j8f6BxN5toq9mADkZ1XhcfrfvYBJb4BAAdPTKG9dPd6kTefCw7%2Bf8taYiFGw4%2B917IiM5%2FpS2s05PUcsBW8CdHzQ3gL%2BuZTaY2N72HiSiof8asfXUpbEtmEZz6oNMw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 743a64a94f1fb500-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   10780
Md5:    10fc8c05a8f933d2d48f815af48693f6
Sha1:   482a15b442b4d60d9b58a1f3b09caa632208148a
Sha256: e006ad8128d7b18c0b519f08f6022933eb0b147ef4fa6992a62be1b17fec9f59
                                        
                                            GET /assets/vip/icons/18.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/pt
Cookie: preferred-language=pt; _ga_89BGS3MKPL=GS1.1.1661997423.1.0.1661997423.0.0.0; _ga=GA1.2.1831617670.1661997423; DV_TRACK=c72b554e-dfa6-4792-b306-f23fdec93466; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=6c288e08-3829-41d4-bb45-5edd0ea6595d.1661997424.1.1661997424.1661997424.b9548649-7bf2-4b83-beb9-7c12fa145751; _gid=GA1.2.1800359139.1661997425; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Thu, 01 Sep 2022 01:57:06 GMT
content-length: 9856
last-modified: Wed, 31 Aug 2022 05:31:49 GMT
etag: "630ef245-2680"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3961
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rWaIhz1FcYd5n8viS6cs6iCCsys84YK9SSHgqgv%2BYbYI1v38Uv0vDoIhB%2FN0%2F5PRm1ppMVR%2BzvmlVEIeGmrVyqfmW1fFwdHxYW6MonwB6aD3s%2Bb4V4cnDq76TLF7VC2V0g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 743a64a94f20b500-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   9856
Md5:    66d44a04392389e81e7dc39060fb44fd
Sha1:   76fea386f04f1f1237fb4462059f6c1d7df322ac
Sha256: 810d5f27c3272cb706a3f86d095fc87260f7ee85e627a9e5d42ecf537f6d9410
                                        
                                            GET /assets/vip/icons/19.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/pt
Cookie: preferred-language=pt; _ga_89BGS3MKPL=GS1.1.1661997423.1.0.1661997423.0.0.0; _ga=GA1.2.1831617670.1661997423; DV_TRACK=c72b554e-dfa6-4792-b306-f23fdec93466; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=6c288e08-3829-41d4-bb45-5edd0ea6595d.1661997424.1.1661997424.1661997424.b9548649-7bf2-4b83-beb9-7c12fa145751; _gid=GA1.2.1800359139.1661997425; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Thu, 01 Sep 2022 01:57:06 GMT
content-length: 11630
last-modified: Wed, 31 Aug 2022 05:31:44 GMT
etag: "630ef240-2d6e"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3961
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=orc1CTiTPhoS22V6PtwCSWj9l8Bl02hEfAjosCSBNYQE%2B%2BE0qBGZwv%2BeKg2bCP%2FHz2xe%2BMh1V0c60uEA985XQAnLKKi7plQ7Nyt1x2L5BOYalpFQtdnFZcpzPnYEppTrgA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 743a64a94f21b500-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   11630
Md5:    c7bffcc354f7f90146a214baef97afcd
Sha1:   454d51b399d318d947dde5547a5589e00a97d37f
Sha256: 04eef2d081f3567500a6de0afeff5347c04de56103cbb81865148f788096adb6
                                        
                                            GET /assets/vip/icons/20.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/pt
Cookie: preferred-language=pt; _ga_89BGS3MKPL=GS1.1.1661997423.1.0.1661997423.0.0.0; _ga=GA1.2.1831617670.1661997423; DV_TRACK=c72b554e-dfa6-4792-b306-f23fdec93466; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=6c288e08-3829-41d4-bb45-5edd0ea6595d.1661997424.1.1661997424.1661997424.b9548649-7bf2-4b83-beb9-7c12fa145751; _gid=GA1.2.1800359139.1661997425; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Thu, 01 Sep 2022 01:57:06 GMT
content-length: 10676
last-modified: Wed, 31 Aug 2022 05:31:44 GMT
etag: "630ef240-29b4"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3960
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DHNbMJyouRSsnJc8fbwXOh7r4T1YAZsFSUYrCjNceHnQMTvFkwwetQrqH9KWvcOfnG5VgJ%2B5GT3yHLFYX9n3bbk%2FkbJe7b7AEboroHZ5Te3E7BWY7hgjqK%2FwRxcbcHGOfw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 743a64a94f23b500-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   10676
Md5:    9791d6584ecbf166ccadfc46f131dd44
Sha1:   090614a86342d640efc5e5ae2230fe4e295398c2
Sha256: e2a913c76f934c3239cdbea857dfc7d74403585bd7695c73834d698e8221ccb2
                                        
                                            GET /assets/vip/icons/21.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/pt
Cookie: preferred-language=pt; _ga_89BGS3MKPL=GS1.1.1661997423.1.0.1661997423.0.0.0; _ga=GA1.2.1831617670.1661997423; DV_TRACK=c72b554e-dfa6-4792-b306-f23fdec93466; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=6c288e08-3829-41d4-bb45-5edd0ea6595d.1661997424.1.1661997424.1661997424.b9548649-7bf2-4b83-beb9-7c12fa145751; _gid=GA1.2.1800359139.1661997425; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Thu, 01 Sep 2022 01:57:06 GMT
content-length: 10644
last-modified: Wed, 31 Aug 2022 05:31:35 GMT
etag: "630ef237-2994"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3960
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sGm5rY6pR3bFo8lnvLhnnETdAeX9%2BW6VvU9o%2FS6nQgpaUjLPadjDn5E1cl3RVGMHEGWyDsOQAjMLs7u16dnM6bHC%2BLdMy7H0NQkmJhBNrkbfxe%2BwfmGE98oSiwZ7n3os%2FA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 743a64a94f24b500-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   10644
Md5:    66ede55252751218ae6c8178e05eadb4
Sha1:   27605d67f37f53d372d40e9b24830b69ac408e2f
Sha256: 3590a3df093ebb4fae91300f95eeb6266a36f843123e7dcb8e7e083c82dc064b
                                        
                                            GET /assets/vip/icons/23.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/pt
Cookie: preferred-language=pt; _ga_89BGS3MKPL=GS1.1.1661997423.1.0.1661997423.0.0.0; _ga=GA1.2.1831617670.1661997423; DV_TRACK=c72b554e-dfa6-4792-b306-f23fdec93466; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=6c288e08-3829-41d4-bb45-5edd0ea6595d.1661997424.1.1661997424.1661997424.b9548649-7bf2-4b83-beb9-7c12fa145751; _gid=GA1.2.1800359139.1661997425; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Thu, 01 Sep 2022 01:57:06 GMT
content-length: 9782
last-modified: Wed, 31 Aug 2022 05:31:35 GMT
etag: "630ef237-2636"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3960
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=itFYWzQEgDe1cPWAFc7lKyiqbVkJMgeUyekyhB3Fd%2BgN8WoCVY3w7pdzmke8nmgK4GmONcyX97rRHdRSOUmDNlF2FxloToWYFUJMg%2BE5bRz9%2FfPR0iC30SXKpNh5gNLbdA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 743a64a94f26b500-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   9782
Md5:    5251f6b0a1a8d2ea2c0243db12ab3059
Sha1:   f24a1d9d4e7d150c81cc4a87daf288d4332e404d
Sha256: 9a6cf7aa944b25e57f33da7e6dddb5676395426ee699a268c171b5b1bcc7d5ca
                                        
                                            GET /api/user/is-auth HTTP/1.1 
Host: platform.bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://bizzocasino.com
Connection: keep-alive
Referer: https://bizzocasino.com/
Cookie: _ga_89BGS3MKPL=GS1.1.1661997423.1.0.1661997423.0.0.0; _ga=GA1.2.1831617670.1661997423; DV_TRACK=c72b554e-dfa6-4792-b306-f23fdec93466; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=6c288e08-3829-41d4-bb45-5edd0ea6595d.1661997424.1.1661997424.1661997424.b9548649-7bf2-4b83-beb9-7c12fa145751; _gid=GA1.2.1800359139.1661997425; _gat_UA-207151463-1=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
                                        
date: Thu, 01 Sep 2022 01:57:06 GMT
vary: Accept-Encoding
x-powered-by: PHP/7.4.30
access-control-allow-origin: https://bizzocasino.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZeDK9lrjD4HS%2F7DTndLQiyTRV9uh2ljgIwuUpI19aepsMZH1RpcMalaPsbIUK%2Bieb%2FiH5UT3bOTQdMslBRIGy014T6d6fuPXkmQ%2BmiajNaQunrg7eItQreetqrjVMOm6AciVyTp3Ws6ffg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 743a64a89eb4b500-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12215
Md5:    e078a858531285b2e0a1d16c8bc320da
Sha1:   cd43162e68dc5e461d2a537f5073201c16485b95
Sha256: 17af6b880fd75702d7a48786b61888d23d8ce8c64ab2e4a613ed7c0318515307
                                        
                                            GET /assets/vip/icons/24.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/pt
Cookie: preferred-language=pt; _ga_89BGS3MKPL=GS1.1.1661997423.1.0.1661997423.0.0.0; _ga=GA1.2.1831617670.1661997423; DV_TRACK=c72b554e-dfa6-4792-b306-f23fdec93466; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=6c288e08-3829-41d4-bb45-5edd0ea6595d.1661997424.1.1661997424.1661997424.b9548649-7bf2-4b83-beb9-7c12fa145751; _gid=GA1.2.1800359139.1661997425; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Thu, 01 Sep 2022 01:57:06 GMT
content-length: 10682
last-modified: Wed, 31 Aug 2022 05:31:40 GMT
etag: "630ef23c-29ba"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3960
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Y4F%2Bt6QSoo0yCKdYpeQBZ2T%2FplPMJHCiWDzp2VhS3u5GsmOupsu%2BUOWvJ3OjFJetV1rA%2FUiS51JvxdGtc%2FRCpmcRNLK9pw2adgys2oPa2Ne0o6dM5vA5Sv6GkM8U3LY3tQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 743a64a95f2bb500-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   10682
Md5:    a1982711858bfcedb04da409aeccc420
Sha1:   300140cfcb775363befe60a8c13667e75c9a7265
Sha256: 2358fce1ccbcce736c340a1fe19db8a10764867e59f683ce5a44d031a736f32a
                                        
                                            GET /assets/vip/icons/25.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/pt
Cookie: preferred-language=pt; _ga_89BGS3MKPL=GS1.1.1661997423.1.0.1661997423.0.0.0; _ga=GA1.2.1831617670.1661997423; DV_TRACK=c72b554e-dfa6-4792-b306-f23fdec93466; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=6c288e08-3829-41d4-bb45-5edd0ea6595d.1661997424.1.1661997424.1661997424.b9548649-7bf2-4b83-beb9-7c12fa145751; _gid=GA1.2.1800359139.1661997425; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Thu, 01 Sep 2022 01:57:06 GMT
content-length: 9944
last-modified: Wed, 31 Aug 2022 05:31:49 GMT
etag: "630ef245-26d8"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3960
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FK%2FdC5aiSYhmBjtuZlxD6jwhbNwow5%2BU83fZ%2Frq2lrgVtHTkMGnJ0FGXzpY%2BZlW4iGCrypa3CBbzMEOGvYPIFtP6fasUorRPYWsLb80aaom2ZaL%2F4%2F6M5B2KrZrJoGOp%2Fg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 743a64a95f2eb500-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   9944
Md5:    4304db1770fdde0c7000230fde7d42a7
Sha1:   096104cfb6c8674c77387b82560d4350644744fc
Sha256: da65f1ec914740ab0120b41c5692d5a765b09ada2710bf224ec43366d207e367
                                        
                                            GET /assets/vip/icons/26.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/pt
Cookie: preferred-language=pt; _ga_89BGS3MKPL=GS1.1.1661997423.1.0.1661997423.0.0.0; _ga=GA1.2.1831617670.1661997423; DV_TRACK=c72b554e-dfa6-4792-b306-f23fdec93466; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=6c288e08-3829-41d4-bb45-5edd0ea6595d.1661997424.1.1661997424.1661997424.b9548649-7bf2-4b83-beb9-7c12fa145751; _gid=GA1.2.1800359139.1661997425; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Thu, 01 Sep 2022 01:57:06 GMT
content-length: 9794
last-modified: Wed, 31 Aug 2022 05:31:44 GMT
etag: "630ef240-2642"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3960
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0pmuQkCY2cfmmMqhSQQ1ptKCHqkNw1m0Af2LjbBAa%2FNbDh0A6nkkEJR5aE3zYIXF7rXQ0U5YIrn7yRHC6hRH6QoPYq5vk1BbWhfT%2Fk72apXmNQnaGj5OMuosd8Gv8SVfYw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 743a64a95f2fb500-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   9794
Md5:    25cd3abb42af7533a1346685948fb0b8
Sha1:   19db92740da728c141d57ea4c1547cca255d5220
Sha256: 85c04de39d9cb91c8a0c72cacc871e6b48fec79a8057a5a9ab596631722b2b13
                                        
                                            GET /assets/vip/icons/28.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/pt
Cookie: preferred-language=pt; _ga_89BGS3MKPL=GS1.1.1661997423.1.0.1661997423.0.0.0; _ga=GA1.2.1831617670.1661997423; DV_TRACK=c72b554e-dfa6-4792-b306-f23fdec93466; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=6c288e08-3829-41d4-bb45-5edd0ea6595d.1661997424.1.1661997424.1661997424.b9548649-7bf2-4b83-beb9-7c12fa145751; _gid=GA1.2.1800359139.1661997425; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Thu, 01 Sep 2022 01:57:06 GMT
content-length: 13462
last-modified: Wed, 31 Aug 2022 05:31:44 GMT
etag: "630ef240-3496"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3960
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NSV5ZmIiAuc5xIDXpoQaYuZrspgTq1oR%2FIIGznYi4prN0rt%2FSBRKnkkeh0AefqYH1%2FZpf5vN7f3d2mQXvUIoq8dO%2FY1%2B1sGOmpXkfCc6L69hdoNVx784U37QRRYahsbigw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 743a64a95f37b500-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   13462
Md5:    11985736b6d949d2594087ad52ec60bf
Sha1:   0592c92d9e96497fbb3b77a2179d0a9f242d041e
Sha256: fa6afdd3e04f106cbba5bb2c4cfd093189c2650678c616fe214e4794037b9246
                                        
                                            GET /assets/vip/icons/27.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br