| |  185.174.235.85 | 302 | 0 B |
URL User Request GET HTTP/1.1IP185.174.235.85:443 ASN#47768 UK Intis Telecom LTD
CertificateIssuerSectigo Limited Subjectmlb.et FingerprintF1:39:32:83:91:37:D0:A5:86:B6:C7:07:41:CD:F7:0F:1F:9C:ED:8C ValidityFri, 12 Jan 2024 00:00:00 GMT - Tue, 11 Feb 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: mlb.et
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302
Server: nginx/1.25.4
Date: Tue, 07 May 2024 06:22:35 GMT
Content-Length: 0
Connection: keep-alive
Location: https://1xbet.com
|
|
| v2l.traincdn.com/default/js/core/popup.js |  185.244.209.62 | | 755 B |
URL v2l.traincdn.com/default/js/core/popup.js IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typeJavaScript source, Unicode text, UTF-8 text Hash313ac2d42b7a02e192f01ed5bdb70b45 82486c78b2bfb08becd04731ae588ba8e94ecf39 7b507fc0bd5aa3b98b989d5628c491a81a3ffcf4514d99c38185dcfb4434eed2
GET /default/js/core/popup.js HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:36 GMT
content-type: application/javascript; charset=utf-8
content-length: 755
last-modified: Wed, 28 Feb 2024 06:18:31 GMT
etag: "65ded037-2f3"
expires: Wed, 28 Feb 2024 07:20:54 GMT
cache-control: max-age=600
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.008
traceparent: 00-95a06c8a7c93b1396f3264ee5b088600-c3787b44c455b9f6-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-07T06:18:28+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/styles/css/notify/main.3c9c5975d727e4878ec02d20d7a4e239.css | 185.244.209.62 | | 810 B |
URL v2l.traincdn.com/styles/css/notify/main.3c9c5975d727e4878ec02d20d7a4e239.css IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typeASCII text, with very long lines (809) Hash3c9c5975d727e4878ec02d20d7a4e239 75b04084a9b1968479fd9372e1fcbdc1705fdbc5 3c60a1eed510f2de6512f21e07834480a48a6d6e3e4ccec04d5a1326a87aa383
GET /styles/css/notify/main.3c9c5975d727e4878ec02d20d7a4e239.css HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:36 GMT
content-type: text/css
content-length: 810
last-modified: Thu, 11 Apr 2024 14:19:26 GMT
etag: "6617f16e-32a"
expires: Thu, 16 May 2024 08:01:50 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.001
traceparent: 00-e4e7671e5cc0d9cea148c5bb23b4d102-af7cd1f35e15421b-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-04-16T08:00:02+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/styles/css/scoreboard-sette-e-mezzo/main.c098b7486987314b233584bdfeb29cc5.css | 185.244.209.62 | | 2.7 kB |
URL v2l.traincdn.com/styles/css/scoreboard-sette-e-mezzo/main.c098b7486987314b233584bdfeb29cc5.css IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typegzip compressed data, max speed, from Unix Hash39b36f0b6a93b6fd3eb06d0df43ccec3 eea597d857951d05b397f56b5977b4088b1e08a0 693e49c49e09ca98e03982a6c56b8ce5cdde543e0faa4461c3599a8136559392
GET /styles/css/scoreboard-sette-e-mezzo/main.c098b7486987314b233584bdfeb29cc5.css HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:36 GMT
content-type: text/css
last-modified: Thu, 11 Apr 2024 14:19:37 GMT
etag: W/"6617f179-28fc"
expires: Thu, 16 May 2024 08:18:20 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.001
traceparent: 00-46cde333840294dfbbabcdab2fe87698-885b201baa76d5d8-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-04-16T08:16:33+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/styles/css/scoreboard-killer-joker/main.87201069d513d3520fb78df05e8168e5.css | 185.244.209.62 | | 2.6 kB |
URL v2l.traincdn.com/styles/css/scoreboard-killer-joker/main.87201069d513d3520fb78df05e8168e5.css IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typegzip compressed data, max speed, from Unix Hash235f524c895fde3fcc9ac593e735e1d7 62656f1691d97c8468b46831c59bda2200f7879f 341e968db1ce7fdc3db5c02e66ae6567422d0416da01cc2570d13ff42752889a
GET /styles/css/scoreboard-killer-joker/main.87201069d513d3520fb78df05e8168e5.css HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:36 GMT
content-type: text/css
last-modified: Thu, 11 Apr 2024 14:19:37 GMT
etag: W/"6617f179-2617"
expires: Thu, 16 May 2024 08:18:20 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.001
traceparent: 00-ffb9c0f3cdc9a78cc4e29aa78def6780-4e6191b19a0047c8-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-04-16T08:16:33+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/styles/css/crystal-game/main.3aad8745adc00b42bed2767cba4694f1.css | 185.244.209.62 | | 3.2 kB |
URL v2l.traincdn.com/styles/css/crystal-game/main.3aad8745adc00b42bed2767cba4694f1.css IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typegzip compressed data, max speed, from Unix Hash9b5e8203d3f51fe49d2fff8146268828 d8470e6200e8b9ab41367a85c8cb45708ec1bcd0 56bdd5172533f365a02083498fd6ad5acf6b6ea57c8ff395cc2d071142156931
GET /styles/css/crystal-game/main.3aad8745adc00b42bed2767cba4694f1.css HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:36 GMT
content-type: text/css
last-modified: Thu, 11 Apr 2024 14:18:44 GMT
etag: W/"6617f144-34b4"
expires: Thu, 16 May 2024 08:18:20 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.001
traceparent: 00-308681ff0c421f7390310242af6ba4a9-cd9e03db112b3121-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-04-16T08:16:33+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| 1xbet.com/ |  104.18.41.64 | | 14 kB |
IP104.18.41.64:0
Hash1c9a2fcf0ffd3a187bf50f359c399e0a 4361c0e321a631a2ccc74e638deb52a2d387f6ab 09fd2722a46bd0a90d81892794aba5ddf785210915758e80d0670448bc651c6e
GET / HTTP/1.1
Host: 1xbet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 307 Temporary Redirect
date: Tue, 07 May 2024 06:22:35 GMT
content-type: text/html; charset=UTF-8
location: https://1xbet.com/en
cache-control: no-cache, private
server-timing: p;dur=71, dt_total;dur=75.708, wf-uht;dur=0.081
set-cookie: SESSION=48c304108dc7c16478f28f0e1826a0f3; path=/; secure; HttpOnly; SameSite=Lax
ua=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
_glhf=1715080731; expires=Tue, 07-May-2024 07:22:35 GMT; Max-Age=3600; path=/
dnb=1; path=/; secure; httponly; samesite=lax
platform_type=desktop; Path=/; Expires=Fri, 10 May 2024 06:22:35 GMT; Secure; SameSite=None; Partitioned
auid=mjmZBWY5yKs9D2/OCKszAg==; path=/; secure; httponly; samesite=lax
traceparent: 00-647ff0670ac076577d9c01c1e2881f1d-c3dc08ae5ec034be-01
x-dt: 70
x-frame-options: SAMEORIGIN
x-reason: 1079,1015
x-time-ng: 0.075
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 87ff1dd04f2d7127-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/styles/css/scoreboard-card-football/main.b72066b2d09684352d98d69e9942cab5.css | 185.244.209.62 | | 20 kB |
URL v2l.traincdn.com/styles/css/scoreboard-card-football/main.b72066b2d09684352d98d69e9942cab5.css IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typegzip compressed data, max speed, from Unix Hashe71200e8fc68f81dad34076dad4d7edb f27e5688be8b7bc928c973126da43d13f2f5d8ed 40daec09ccd94ea5af1732fcedcac440268294b5dbda53772383b4ab24f26df9
GET /styles/css/scoreboard-card-football/main.b72066b2d09684352d98d69e9942cab5.css HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:36 GMT
content-type: text/css
last-modified: Thu, 11 Apr 2024 14:19:37 GMT
etag: W/"6617f179-a9b5"
expires: Thu, 16 May 2024 08:18:20 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.001
traceparent: 00-e3b6169237ea13118da5027decb2627e-37f5fce1840dcfdf-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-04-16T08:16:33+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/default/css/modal-g.css | 185.244.209.62 | 200 OK | 9.3 kB |
URL GET HTTP/2v2l.traincdn.com/default/css/modal-g.css IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typegzip compressed data, max speed, from Unix Hashc7e38db079b0b0c10411e11ee340bfb5 dda5c79308970345d03328bcf7976cf446403d0d aca9cc510d691107d40e5b939367f5c76fe39b79153ba81b31fb6816a329b164
GET /default/css/modal-g.css HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:36 GMT
content-type: text/css
last-modified: Wed, 28 Feb 2024 06:18:25 GMT
etag: W/"65ded031-141b"
expires: Wed, 28 Feb 2024 07:09:24 GMT
cache-control: max-age=600
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-d9373c0811f544416d02bd8815085b91-d71a578ef508dbaf-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-07T06:18:28+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-189.png |  213.183.34.23 | | 13 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-189.png IP213.183.34.23:0
File typePNG image data, 100 x 50, 8-bit/color RGBA, non-interlaced Hash34175547bf2c2f5f54b65115be9f710f aaf583ebb7241ae4201c0f4dff87ba5cb948a8d1 dddcff47bc2a0a24c381c024f75ae103fc798a7f6805528b012720b705c72194
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-189.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 13331
last-modified: Mon, 04 Mar 2024 13:15:21 GMT
etag: "34175547bf2c2f5f54b65115be9f710f"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:49:34.249Z
expires: Tue, 07 May 2024 13:17:47 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.051
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/styles/css/coupon/main.e0006488b0e8b3c18cdbe0297094b64c.css | 185.244.209.62 | | 39 kB |
URL v2l.traincdn.com/styles/css/coupon/main.e0006488b0e8b3c18cdbe0297094b64c.css IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typegzip compressed data, max speed, from Unix Hash5f8bd9b9c00d427594ec40570b4f5584 29bb1059de01fbd60879eb3107e6898b24f6a0f2 1c2f93bc538f28ebe0eb4d77acb1cf92b57400c095918a22da5e3b6e7fc5dcda
GET /styles/css/coupon/main.e0006488b0e8b3c18cdbe0297094b64c.css HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:36 GMT
content-type: text/css
last-modified: Tue, 16 Apr 2024 12:01:39 GMT
etag: W/"661e68a3-25430"
expires: Thu, 16 May 2024 12:13:02 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-5de517f24e8085d4499f52e6a3a4df72-b2a2ea919d5bd78e-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-04-16T12:11:14+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/styles/css/w-express/main.433cc968a3cf5c0f7fd7be63ef668319.css | 185.244.209.62 | | 18 kB |
URL v2l.traincdn.com/styles/css/w-express/main.433cc968a3cf5c0f7fd7be63ef668319.css IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typegzip compressed data, max speed, from Unix Hash2bfb227c69703134d8e22a9167f12d7b 625f6e883cccb0d08dc7c8044a11d69e7ae4a968 e7856af6554889828b178c231cb784dc3f5b2b026e5bd18af9e83ab7b6355a16
GET /styles/css/w-express/main.433cc968a3cf5c0f7fd7be63ef668319.css HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:36 GMT
content-type: text/css
last-modified: Thu, 11 Apr 2024 14:19:52 GMT
etag: W/"6617f188-2d5f"
expires: Thu, 16 May 2024 08:18:20 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.001
traceparent: 00-f0c88167a13575968423e38626b139bc-fe77de2c43cf179c-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-04-16T08:16:33+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/genfiles/web-app-v2/dictionary/prod/main/en/dictionary_7ded275b1b784c7c6e656e5849aea8ed.js | 185.244.209.62 | 200 OK | 39 kB |
URL GET HTTP/2v2l.traincdn.com/genfiles/web-app-v2/dictionary/prod/main/en/dictionary_7ded275b1b784c7c6e656e5849aea8ed.js IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typegzip compressed data, max speed, from Unix Hash519639baa807e11680b285eb891658ec a265c57cb0a21a3a4086a98138e198e726a9146d 44882695f0bff6e60497ed4f4f98e2af9dbd8a3f7d05aadef7599e1dd1c35e2a
GET /genfiles/web-app-v2/dictionary/prod/main/en/dictionary_7ded275b1b784c7c6e656e5849aea8ed.js HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:36 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 06 May 2024 09:54:05 GMT
etag: W/"7ded275b1b784c7c6e656e5849aea8ed"
cache-control: max-age=600
content-encoding: gzip
expires: Mon, 06 May 2024 10:06:44 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-029a6e3da5ba1440eb8d980c2070d55b-b1b9fcc64f6ee8b2-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-07T06:14:51+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/default/js/core/crypt.js | 185.244.209.62 | | 16 kB |
URL v2l.traincdn.com/default/js/core/crypt.js IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typegzip compressed data, max speed, from Unix Hasheb00a11ee8f1c36601bc21f5aca16d0c 0c2838079884aebbef38b9ac7744ad58d3f36fd8 098671014ede12d0b142bbab1ca3f1e2acd69b59f56c2181fe05ef03225b5d85
GET /default/js/core/crypt.js HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:36 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 28 Feb 2024 06:18:31 GMT
etag: W/"65ded037-143d"
expires: Wed, 28 Feb 2024 07:09:24 GMT
cache-control: max-age=600
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-e5ec73c0d4a59dea762ddedf31b9bb55-6bb7a702d2fe6582-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-07T06:18:28+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/styles/css/alert/main.56c3e5b28fe35d7840d2ce9f61870254.css | 185.244.209.62 | 200 OK | 7.9 kB |
URL GET HTTP/2v2l.traincdn.com/styles/css/alert/main.56c3e5b28fe35d7840d2ce9f61870254.css IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typegzip compressed data, max speed, from Unix Hashd794b798e495f927d08f12da938075c6 aec349fad87a84fefc48d46b70d1893fa3379c74 fa5eb1365951251a1607b5e43311ac5c164a8c1599f5cf0b40f4081659a3ebbd
GET /styles/css/alert/main.56c3e5b28fe35d7840d2ce9f61870254.css HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:36 GMT
content-type: text/css
last-modified: Thu, 11 Apr 2024 14:18:22 GMT
etag: W/"6617f12e-4ec"
expires: Tue, 04 Jun 2024 09:55:20 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.003
traceparent: 00-bf7ff1cb2ce56b8e48b59b2c12e580b6-b69abd5243af3a94-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-05T09:52:47+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/default/js/popup.js?v=07052024 | 185.244.209.62 | 200 OK | 12 kB |
URL GET HTTP/2v2l.traincdn.com/default/js/popup.js?v=07052024 IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typegzip compressed data, max speed, from Unix Hash18b107059ab8fe87316783b07a41a712 026b8d686388195ddfd2f3eefb9fc436bac1d255 5e7161c21b12e457cea2f0eb830c7caa5ca969eadd1d0a339c6bcebdfde993b4
GET /default/js/popup.js?v=07052024 HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:36 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 28 Feb 2024 06:18:31 GMT
etag: W/"65ded037-6029"
expires: Mon, 06 May 2024 21:15:24 GMT
cache-control: max-age=600
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-318563a7783df831e8585e8214c1665f-2f68ec35716ae0b8-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-07T06:18:28+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/styles/css/top-champs-modal/main.ca36012f8eb2664f8f9a4ccb5f684f76.css | 185.244.209.62 | | 17 kB |
URL v2l.traincdn.com/styles/css/top-champs-modal/main.ca36012f8eb2664f8f9a4ccb5f684f76.css IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typegzip compressed data, max speed, from Unix Hash044286c9a1f5a6bcdef864ce250fa3da 5a47b2a107631cfca3c59a63e1825851d920e234 7400938cefcb8e289c261c46e47d01a23c95388f681d0a50a6aef75e8dbe75b4
GET /styles/css/top-champs-modal/main.ca36012f8eb2664f8f9a4ccb5f684f76.css HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:36 GMT
content-type: text/css
last-modified: Tue, 09 Apr 2024 10:55:45 GMT
etag: W/"66151eb1-4f35"
expires: Thu, 09 May 2024 11:07:36 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-220da0994b05e4f92e4919a11cb36250-4fbb3b7bf7d55fbb-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-04-09T11:06:05+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/bundle/app/Default/Desktop/select2.d14c9842d60175d887e5.css | 185.244.209.62 | | 15 kB |
URL v2l.traincdn.com/bundle/app/Default/Desktop/select2.d14c9842d60175d887e5.css IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typegzip compressed data, max speed, from Unix Hashe058d2461eaacc3bc5d62ccf5c7efd85 3a5a35dabb7c9ae3a95362f8428114ba42b66422 4813607421ab8043f3ada880398ca5e1b46523422ef1ca8482f9d6631ea86013
GET /bundle/app/Default/Desktop/select2.d14c9842d60175d887e5.css HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:36 GMT
content-type: text/css
last-modified: Tue, 16 Apr 2024 06:31:10 GMT
etag: W/"661e1b2e-2efa"
expires: Thu, 16 May 2024 08:18:21 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.001
traceparent: 00-57439693922e981e27173ced6f833691-9afe507c1bc8b18e-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-04-16T08:16:33+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-526.png | 213.183.34.23 | 200 OK | 4.3 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-526.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 44, 8-bit colormap, non-interlaced Hash8dc885c743ae42c5d2be8dbbe1307fd5 5ad7f292704462b011538ccb9a41274ef357aa34 6995fc6e47f8d8b652295a71ccbff2fb42a81b617fbdb763305c5766e76a9557
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-526.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 4311
last-modified: Fri, 15 Mar 2024 08:40:16 GMT
etag: "8dc885c743ae42c5d2be8dbbe1307fd5"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-14T16:35:22.000Z
expires: Tue, 07 May 2024 09:21:12 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.095
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-190.png | 213.183.34.23 | | 11 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-190.png IP213.183.34.23:0
File typePNG image data, 100 x 61, 8-bit/color RGBA, non-interlaced Hashea4d4fb8bc7c36ee196e3d4e280767fc 385392c76c8da4ae505d14372fd776f5611ee7b7 b2820901a8c5788bf7b0d422708e690c93ded91e979fc26d4a3adf103ef9fffc
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-190.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 10895
last-modified: Mon, 04 Mar 2024 13:15:21 GMT
etag: "ea4d4fb8bc7c36ee196e3d4e280767fc"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:47:02.526Z
expires: Tue, 07 May 2024 13:19:30 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.061
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-85.png | 213.183.34.23 | | 17 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-85.png IP213.183.34.23:0
File typePNG image data, 100 x 81, 8-bit/color RGBA, non-interlaced Hashba449d4de8e5faf45879650fae67dcff 7a3985b5fea0b42f42277856804eacf4131d9e5c bcd6f098aac240b15ad45bcc0ed182d794081551c7f4e0023992ef172b5927a6
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-85.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 17042
last-modified: Mon, 04 Mar 2024 13:15:33 GMT
etag: "ba449d4de8e5faf45879650fae67dcff"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:48:36.140Z
expires: Tue, 07 May 2024 13:17:48 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.088
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-158.png | 213.183.34.23 | 200 OK | 13 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-158.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 50, 8-bit/color RGBA, non-interlaced Hash51c469f78f3595c998611f2c4b1e84db e3381dd2f93f2c5682e763658c3162503001de78 4e9e1a271599eeab85cb4a0d6baf9dee9cbd6aef7e0aa368576730e39f2cd2d5
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-158.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 13002
last-modified: Mon, 04 Mar 2024 13:15:19 GMT
etag: "51c469f78f3595c998611f2c4b1e84db"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:50:30.839Z
expires: Tue, 07 May 2024 13:17:26 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.074
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/styles/css/c-bottom-msg/main.16c30533f2f068afba2a1c10e00dead2.css | 185.244.209.62 | 200 OK | 6.8 kB |
URL GET HTTP/2v2l.traincdn.com/styles/css/c-bottom-msg/main.16c30533f2f068afba2a1c10e00dead2.css IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typegzip compressed data, max speed, from Unix Hash60ebc976fd4fdd8aca25c11ecdc2ff97 412d96d2159d938df5a4eebfbb2ab65dc7f30cb0 4be0d529b74d288cdfba2b256bf0ff9ec6788eff61a93b21bd20c392d77ed06a
GET /styles/css/c-bottom-msg/main.16c30533f2f068afba2a1c10e00dead2.css HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:36 GMT
content-type: text/css
last-modified: Tue, 16 Apr 2024 12:01:35 GMT
etag: W/"661e689f-731"
expires: Thu, 16 May 2024 12:13:02 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-9108faca1f98c97ba82f0411a027ade9-0a4670e02f84c08d-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-04-16T12:11:14+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-68.png | 213.183.34.23 | 200 OK | 15 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-68.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 74, 8-bit/color RGBA, non-interlaced Hash3b45ea812af83922dbb5e37f4ec2db33 e6f68cb5619cc9a40d3e31b54132390776793aa8 f37634fea9b06193b19c33e2b33eaf42974ed886dd3710fb45d719d64651cda0
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-68.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 14904
last-modified: Mon, 04 Mar 2024 13:15:32 GMT
etag: "3b45ea812af83922dbb5e37f4ec2db33"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:50:30.851Z
expires: Tue, 07 May 2024 13:17:37 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.049
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-219.png | 213.183.34.23 | | 17 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-219.png IP213.183.34.23:0
File typePNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced Hash072a10fa3dbfaf50b3da26dabab004c2 6a8676dade70742a2575f7d3258ee9b533b3caf6 6f4e9eebccaf4ed121d30914b4f1f491851446eb523ae112054b4058778a3a27
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-219.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 16932
last-modified: Mon, 04 Mar 2024 13:15:23 GMT
etag: "072a10fa3dbfaf50b3da26dabab004c2"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:47:02.008Z
expires: Tue, 07 May 2024 13:09:40 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.061
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-508.png | 213.183.34.23 | 200 OK | 9.7 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-508.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 52, 8-bit/color RGBA, non-interlaced Hash336e1d4b10f67528feeef8e8d1111042 9566b9d3a90b2a1338ba54b07ceeddab85299d7e ff77f4dabd49b093bb457db7b7c3726cc7524b79a77db1807374cff41f900846
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-508.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 9680
last-modified: Mon, 04 Mar 2024 13:15:31 GMT
etag: "336e1d4b10f67528feeef8e8d1111042"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:47:01.957Z
expires: Tue, 07 May 2024 13:10:58 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.091
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-384.png | 213.183.34.23 | | 11 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-384.png IP213.183.34.23:0
File typePNG image data, 100 x 61, 8-bit/color RGBA, non-interlaced Hash9ec2f341204a5e483637c517edf22dcf f407a0c1de2a9afcffb5ecfaa2f850efcd0bc6b0 4b32b5d2c22e2cb6db21198fbfaf10f40119ebc051a96b84341c5aaf93287c6f
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-384.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 11073
last-modified: Mon, 04 Mar 2024 13:15:28 GMT
etag: "9ec2f341204a5e483637c517edf22dcf"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:47:01.891Z
expires: Tue, 07 May 2024 13:17:26 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.049
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-269.png | 213.183.34.23 | | 8.2 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-269.png IP213.183.34.23:0
File typePNG image data, 100 x 50, 8-bit/color RGBA, non-interlaced Hash45b9da952dda5ee52854a0a52e0ca828 2528fb87f4423d63c517cdf3cd6095285cae5a5a aec3ec38d5bd82e2c6872f2ef34f0c200b0fccababd4534a1116d33d2363775b
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-269.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 8213
last-modified: Mon, 04 Mar 2024 13:15:25 GMT
etag: "45b9da952dda5ee52854a0a52e0ca828"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:48:35.974Z
expires: Tue, 07 May 2024 13:17:26 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.060
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/styles/css/registration/main.616b4fdf850ba31844e18dcc657805fc.css | 185.244.209.62 | | 27 kB |
URL v2l.traincdn.com/styles/css/registration/main.616b4fdf850ba31844e18dcc657805fc.css IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typegzip compressed data, max speed, from Unix Hash77a4c29aca5aa516c61cb21cfb732180 7ff9fb91fdbcf54c2f2f0ab209af323fa883dc50 a598591697323af101e76f5b50c1d55e248283b1593e897656c8f86471e178bc
GET /styles/css/registration/main.616b4fdf850ba31844e18dcc657805fc.css HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:36 GMT
content-type: text/css
last-modified: Fri, 19 Apr 2024 08:05:27 GMT
etag: W/"662225c7-14148"
expires: Sun, 19 May 2024 08:10:18 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.002
traceparent: 00-0f4c8169dc4951192ade2f6aedec5d20-5f3ca8af64da1d60-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-04-19T08:08:23+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-446.png | 213.183.34.23 | 200 OK | 12 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-446.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 50, 8-bit/color RGBA, non-interlaced Hash073122a86d65dd039934d473aa112f84 f9c8b43aa8431a6e0ef2ae7ef415846d037c7cbe 9bf3861e86a66ae0a9dbe963a3cee29e4924c4717109a5e2a1b0b2c94e161e11
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-446.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 11619
last-modified: Mon, 04 Mar 2024 13:15:30 GMT
etag: "073122a86d65dd039934d473aa112f84"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:47:02.033Z
expires: Tue, 07 May 2024 13:41:53 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.063
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/bundle/app/Default/Desktop/fontAwesome.7ec4f0ceba0acf0d1899.css | 185.244.209.62 | | 19 kB |
URL v2l.traincdn.com/bundle/app/Default/Desktop/fontAwesome.7ec4f0ceba0acf0d1899.css IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typegzip compressed data, max speed, from Unix Hash41ce16ee7503f20ab3488a375a895222 1357f18c7a5d4bf91d0da640deda2a9bdcf3f5d8 8a7e706b86436045662404df529fef2e15618e83658b710a5466a6407d0968f7
GET /bundle/app/Default/Desktop/fontAwesome.7ec4f0ceba0acf0d1899.css HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:36 GMT
content-type: text/css
last-modified: Tue, 16 Apr 2024 06:31:10 GMT
etag: W/"661e1b2e-7914"
expires: Thu, 16 May 2024 08:18:21 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.002
traceparent: 00-88bbe35a96452f128987b89603bc2154-ece7346947b358e8-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-04-16T08:16:33+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-324.png | 213.183.34.23 | 200 OK | 10 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-324.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 50, 8-bit/color RGBA, non-interlaced Hash249aed93ddbbfc90b256c63cba2a646f 630bfb7e7bca965caee9a53355fbdfac5d5e7251 05320b8891b9b572ebf70a14b80bbb1a0ec102eb6c862d8a614db50ca7b9595b
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-324.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 10175
last-modified: Mon, 04 Mar 2024 13:15:26 GMT
etag: "249aed93ddbbfc90b256c63cba2a646f"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:52:24.575Z
expires: Tue, 07 May 2024 13:14:11 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.092
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-127.png | 213.183.34.23 | | 44 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-127.png IP213.183.34.23:0
File typePNG image data, 100 x 50, 8-bit/color RGBA, non-interlaced Hasha1093055fbc2af3c003c2c6d33070028 6243eae5fdb028ea78adaa7276a383592abb820e 130a071269d5ecd4cb2709a7215d34c7f7425b9f9a83c293de7dcc80a862d95e
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-127.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 44378
last-modified: Mon, 04 Mar 2024 13:15:18 GMT
etag: "a1093055fbc2af3c003c2c6d33070028"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:47:02.276Z
expires: Tue, 07 May 2024 13:19:34 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.057
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/default/js/core/util.js | 185.244.209.62 | | 11 kB |
URL v2l.traincdn.com/default/js/core/util.js IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typegzip compressed data, max speed, from Unix Hash5ccd0072561720b4aafbacd691b8fa22 eb9fd7405326ec9a1a0c357a9ef7529f4bace079 6653c1547c94d6dccd07c85ddd6b60ad67c06c1bb00f700ef2b507b75af253d4
GET /default/js/core/util.js HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:36 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 28 Feb 2024 06:18:31 GMT
etag: W/"65ded037-10bb"
expires: Wed, 28 Feb 2024 07:09:24 GMT
cache-control: max-age=600
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-45a51d5c584e9762655ea482c66e603a-8a6ab19cd7601aba-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-07T06:18:28+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-290.png | 213.183.34.23 | 200 OK | 7.4 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-290.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 37, 8-bit/color RGBA, non-interlaced Hash9905df49a96c9ff6403809b2ca45f414 d66007f462f98db40800c16daae3bf340c61432a e56cb6a08f71230a3970dc1361dd6c7d9d05f904362a23f8661785628d4f15a2
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-290.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 7423
last-modified: Mon, 04 Mar 2024 13:15:26 GMT
etag: "9905df49a96c9ff6403809b2ca45f414"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:49:34.595Z
expires: Tue, 07 May 2024 13:18:57 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-223.png | 213.183.34.23 | 200 OK | 12 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-223.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 49, 8-bit/color RGBA, non-interlaced Hash82ff782c4380fe4afa005b0d27bf02cc de547246e955dfb113e6278a425247d1b50dcd30 987a7e028f839e64904a8fbaca2747d743a7b3a692312b2369920c1633de1bdb
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-223.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 11855
last-modified: Mon, 04 Mar 2024 13:15:23 GMT
etag: "82ff782c4380fe4afa005b0d27bf02cc"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:50:30.659Z
expires: Tue, 07 May 2024 13:17:37 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.090
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/styles/css/favorite/main.7c6cd077036966bed28c60f7afd945f6.css | 185.244.209.62 | | 11 kB |
URL v2l.traincdn.com/styles/css/favorite/main.7c6cd077036966bed28c60f7afd945f6.css IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typegzip compressed data, max speed, from Unix Hasha5359898d8d46ca3f26af2b2a3ccd0fb 3e82eb36b27134427910aceabd9aee37fd85f41b d770028826c28f69f23d8b7055e952aaac74cf4dfbb3dfebd316288a3721d8ff
GET /styles/css/favorite/main.7c6cd077036966bed28c60f7afd945f6.css HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:36 GMT
content-type: text/css
last-modified: Thu, 11 Apr 2024 14:18:47 GMT
etag: W/"6617f147-36d9"
expires: Thu, 16 May 2024 08:18:20 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.001
traceparent: 00-941ac79995fd61787d3a9cfd52d6b2d6-93ea6b4304f26dbd-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-04-16T08:16:32+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-130.png | 213.183.34.23 | | 11 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-130.png IP213.183.34.23:0
File typePNG image data, 100 x 51, 8-bit/color RGBA, non-interlaced Hash5f29bb706958e60c950983207ec84977 ee99668392b76e480d83b362dcb7df47d3408286 4f9cdbda661c55565d594ff7b5f7da21d4a6770b9e9d38930df5f1ff29ba894d
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-130.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 10779
last-modified: Mon, 04 Mar 2024 13:15:18 GMT
etag: "5f29bb706958e60c950983207ec84977"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:47:02.264Z
expires: Tue, 07 May 2024 13:19:48 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.043
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-460.png | 213.183.34.23 | | 12 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-460.png IP213.183.34.23:0
File typePNG image data, 100 x 50, 8-bit/color RGBA, non-interlaced Hashd8be05a5876b332928b7311f423438e5 876e224cb7a8b879c88717ae0d1bd059b28f5080 aa79d8e9eff5eff10c1f8f8860a78121c000f13bb5d8edd94f5be186cb7d1255
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-460.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 11828
last-modified: Mon, 04 Mar 2024 13:15:31 GMT
etag: "d8be05a5876b332928b7311f423438e5"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:50:30.707Z
expires: Tue, 07 May 2024 13:24:40 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.057
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-488.png | 213.183.34.23 | | 8.9 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-488.png IP213.183.34.23:0
File typePNG image data, 100 x 50, 8-bit/color RGBA, non-interlaced Hash2be8671a2243f0c17507bc83e8e36bae 4d0534512fa5504d544dcc2226d7d0d54f43600a 0e7d320695bce48774be7c1c91386193435cc90ae4b08c91666b77432a97b95a
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-488.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 8904
last-modified: Mon, 04 Mar 2024 13:15:31 GMT
etag: "2be8671a2243f0c17507bc83e8e36bae"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:47:02.481Z
expires: Tue, 07 May 2024 13:41:04 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.065
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/bundle/app/Default/Desktop/webpack_vue.5f95987c58f148c17c67.css | 185.244.209.62 | 200 OK | 13 kB |
URL GET HTTP/2v2l.traincdn.com/bundle/app/Default/Desktop/webpack_vue.5f95987c58f148c17c67.css IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typegzip compressed data, max speed, from Unix Hash2420c171795a616bf936d7de7086fc36 ffce132c12fa9a4c218c149a2b7060a4a49cfb74 f5d5f6a4eb9411a1694ded64439dfa60c0f3e872225c07f34669df50d2d129f6
GET /bundle/app/Default/Desktop/webpack_vue.5f95987c58f148c17c67.css HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:36 GMT
content-type: text/css
last-modified: Tue, 16 Apr 2024 06:31:10 GMT
etag: W/"661e1b2e-2aef"
expires: Thu, 16 May 2024 08:18:20 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.001
traceparent: 00-4974ce98bc5607f5d2bc8ac17335e193-e6700754aa95dd55-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-04-16T08:16:32+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-270.png | 213.183.34.23 | | 12 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-270.png IP213.183.34.23:0
File typePNG image data, 100 x 50, 8-bit/color RGBA, non-interlaced Hashb9ae028bac50d88a0e6231e7d17fb1c9 5ee5f484969ccd321a768735057840c1eda31d2f dc85c2581c5f765c16b758c456f473fe7f95bff44d08910a6596ad0558ed4e61
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-270.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 12395
last-modified: Mon, 04 Mar 2024 13:15:25 GMT
etag: "b9ae028bac50d88a0e6231e7d17fb1c9"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:48:35.987Z
expires: Tue, 07 May 2024 13:17:18 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.064
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-228.png | 213.183.34.23 | | 11 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-228.png IP213.183.34.23:0
File typePNG image data, 100 x 50, 8-bit/color RGBA, non-interlaced Hash8d144daf2be3eac130c2571ef56d3fa2 e438893e62662e81c611ed898763b734a7f5cf7c ba6f4fbbb29b23cda92ad82ca3f73927cf11f8fc754bd3b1cb32c2bc13f6e810
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-228.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 11087
last-modified: Mon, 04 Mar 2024 13:15:24 GMT
etag: "8d144daf2be3eac130c2571ef56d3fa2"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:50:30.635Z
expires: Tue, 07 May 2024 13:31:17 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.084
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/styles/css/arctic-modal/main.747cc92e3567513c30802f59030d68b2.css | 185.244.209.62 | 200 OK | 9.8 kB |
URL GET HTTP/2v2l.traincdn.com/styles/css/arctic-modal/main.747cc92e3567513c30802f59030d68b2.css IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typegzip compressed data, max speed, from Unix Hash83a1f32f189b2b606126f1943fdcd06a f963ad46190c574970ab8b671c9ab2a40f43e949 20d99ae2de07b7eafe48fb5f3843ea7c6efbfcff2307072102f8b50c2163e277
GET /styles/css/arctic-modal/main.747cc92e3567513c30802f59030d68b2.css HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:36 GMT
content-type: text/css
last-modified: Tue, 16 Apr 2024 12:01:29 GMT
etag: W/"661e6899-1579"
expires: Thu, 16 May 2024 12:13:02 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-59eb7f7b494df66354ae2a76d663ba9f-cc2c0ad0dab66215-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-04-16T12:11:14+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-343.png | 213.183.34.23 | | 12 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-343.png IP213.183.34.23:0
File typePNG image data, 100 x 55, 8-bit/color RGBA, non-interlaced Hash1d16d2980a3330ae0173300ed0a5760e 61c0470a7ae6d8b14e08cae39b8215f5674311bd fb6b6c5316e8ac14494aa7e19b28709c6ae4b0bdddfd6e859df4dd3baefd46b8
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-343.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 12109
last-modified: Mon, 04 Mar 2024 13:15:27 GMT
etag: "1d16d2980a3330ae0173300ed0a5760e"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:47:01.970Z
expires: Tue, 07 May 2024 13:17:37 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.104
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-412.png | 213.183.34.23 | 200 OK | 4.8 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-412.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 22, 8-bit/color RGBA, non-interlaced Hashcddc8e4d81e209ea932c555006a4b4ae f2ac2e81d6affe91833b51a0254a5c4453d69ddd 414d6511c1204b5c70df4d069fab2420836e96d952fd506faa4eee65fb513943
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-412.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 4787
last-modified: Mon, 04 Mar 2024 13:15:29 GMT
etag: "cddc8e4d81e209ea932c555006a4b4ae"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:47:02.204Z
expires: Tue, 07 May 2024 13:24:49 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.056
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/styles/css/phone-input/main.e785e02965a2eed51c7de3991f82853e.css | 185.244.209.62 | | 12 kB |
URL v2l.traincdn.com/styles/css/phone-input/main.e785e02965a2eed51c7de3991f82853e.css IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typegzip compressed data, max speed, from Unix Hashaca71637b2a8755720d8e187e4335dfa f6b0d40f1e1c1651c22ac4ac3cd7d17832069b9a d9487d53ccb8a90d2c801d8c2828cea3f0965fc79ebe74a096ddb061f533b782
GET /styles/css/phone-input/main.e785e02965a2eed51c7de3991f82853e.css HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:36 GMT
content-type: text/css
last-modified: Thu, 18 Apr 2024 07:41:06 GMT
etag: W/"6620ce92-2493"
expires: Sat, 18 May 2024 07:46:58 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-7675045f35440555818699f3c4a48497-c81ecb2e22a00c4c-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-04-18T07:45:05+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-386.png | 213.183.34.23 | | 8.3 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-386.png IP213.183.34.23:0
File typePNG image data, 100 x 53, 8-bit/color RGBA, non-interlaced Hash4512f37dbbc1a7fb120d6cf09afda255 626571c50e499251cfba5f6b4665be2f188666cb d730c14d5b03037cdfbdb5876356c682ac8e3236cdc6b2b01932d5deb019e07a
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-386.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 8257
last-modified: Mon, 04 Mar 2024 13:15:28 GMT
etag: "4512f37dbbc1a7fb120d6cf09afda255"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:47:02.157Z
expires: Tue, 07 May 2024 13:17:37 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.050
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-425.png | 213.183.34.23 | | 5.5 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-425.png IP213.183.34.23:0
File typePNG image data, 100 x 25, 8-bit/color RGBA, non-interlaced Hashea2f99254cfc1ad0fcdf0a71fa0da9f5 6bdde48aee0a491cc7c30c70f24090eb14c8a0a1 ddd0e26362a2f87152abdca6bf32eaf932fbe3e053c779dc543012ad575b91df
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-425.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 5538
last-modified: Mon, 04 Mar 2024 13:15:30 GMT
etag: "ea2f99254cfc1ad0fcdf0a71fa0da9f5"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:49:34.288Z
expires: Tue, 07 May 2024 13:10:28 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.067
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-214.png | 213.183.34.23 | | 6.2 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-214.png IP213.183.34.23:0
File typePNG image data, 100 x 50, 8-bit gray+alpha, non-interlaced Hash7804d929d22dca49b5e0ed1488dc236c ca8ea00081fda1641fb93f39aef17b37e2e7a1ae 36e99eab3dc06aa5aeca39100a80472277efc3b6a58788e737d879c361373255
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-214.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 6162
last-modified: Mon, 04 Mar 2024 13:15:23 GMT
etag: "7804d929d22dca49b5e0ed1488dc236c"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:52:24.528Z
expires: Tue, 07 May 2024 13:17:37 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.057
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-276.png | 213.183.34.23 | | 6.0 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-276.png IP213.183.34.23:0
File typePNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced Hash035290f570d9765b5b32f4b469b45e29 f536669ef74391221dbe94d8d49ae2b7a4f9c377 b087c3edadf5bc84d12f3369f3ac837df41033037d417105f230e2fda2b356fd
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-276.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 6002
last-modified: Mon, 04 Mar 2024 13:15:25 GMT
etag: "035290f570d9765b5b32f4b469b45e29"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:48:36.103Z
expires: Tue, 07 May 2024 13:10:28 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.039
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-202.png | 213.183.34.23 | | 22 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-202.png IP213.183.34.23:0
File typePNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced Hash5bb53488f569dbcf9d30fdb5610b4bf2 961f43acac3e19a86c14cb0e643163a1d75ca742 0437d44de804ac081dc8ae4e53cf760f43f6c62b596aea8189eb251443434b83
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-202.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 21870
last-modified: Mon, 04 Mar 2024 13:15:22 GMT
etag: "5bb53488f569dbcf9d30fdb5610b4bf2"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:52:24.491Z
expires: Tue, 07 May 2024 13:17:33 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.050
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-388.png | 213.183.34.23 | 200 OK | 11 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-388.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 50, 8-bit/color RGBA, non-interlaced Hash75686e44e5b5e787f8414a2002a90322 6f44db03c2b5c894b9f2d5625be96c46cd420adf d5ae1370fd1b423afea4d73ce4cd08326966a2b9373adaf411993ebf2c576f30
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-388.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 10849
last-modified: Mon, 04 Mar 2024 13:15:29 GMT
etag: "75686e44e5b5e787f8414a2002a90322"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:52:24.540Z
expires: Tue, 07 May 2024 13:19:44 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.083
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/styles/css/footer/main.7361d396d2ea9cb39d2114c5ae709005.css | 185.244.209.62 | | 20 kB |
URL v2l.traincdn.com/styles/css/footer/main.7361d396d2ea9cb39d2114c5ae709005.css IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typegzip compressed data, max speed, from Unix Hash1595ae70c8dfd13bb1bc9391d6d6031d 3293f6ed2ece8934720feb6608df64b37de6fae9 862cb71258b9d872b385fbb75ce1ad2dd029486a7192e183acbedb366b635677
GET /styles/css/footer/main.7361d396d2ea9cb39d2114c5ae709005.css HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:36 GMT
content-type: text/css
last-modified: Wed, 24 Apr 2024 12:26:39 GMT
etag: W/"6628fa7f-cbe5"
expires: Fri, 24 May 2024 12:33:00 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-0517bd992dcc4c77c84ef70b6340964b-d471288ee2570718-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-04-24T12:30:53+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-307.png | 213.183.34.23 | 200 OK | 9.2 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-307.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 37, 8-bit/color RGBA, non-interlaced Hash96408264264a57b8c1e95c80bd47a630 f314710119772e4fedccf0563da33dee5346d58b b485898b6b6bcbfeca070028a938144fea259ade1ae5a3e00fe611827a8ddbb7
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-307.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 9236
last-modified: Mon, 04 Mar 2024 13:15:26 GMT
etag: "96408264264a57b8c1e95c80bd47a630"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:49:34.336Z
expires: Tue, 07 May 2024 13:19:47 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.060
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/styles/css/global/main.a68183362a4c6816384f7000d677a582.css | 185.244.209.62 | 200 OK | 20 kB |
URL GET HTTP/2v2l.traincdn.com/styles/css/global/main.a68183362a4c6816384f7000d677a582.css IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typegzip compressed data, max speed, from Unix Hash27f0cef178180ec92e074ef0be42c5da 45b7cdad243ff985604302a2a59e6c27768c8a8c dab08bde1e9b2c3ba3911abc9b533e824645e0263e92c5fccd50608379746675
GET /styles/css/global/main.a68183362a4c6816384f7000d677a582.css HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:36 GMT
content-type: text/css
last-modified: Mon, 06 May 2024 07:50:06 GMT
etag: W/"66388bae-369d"
expires: Wed, 05 Jun 2024 07:58:06 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-5dc5d9b9953ee779ca8ae1ef14cf4ebe-e1d74fffbeb260aa-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-06T07:55:31+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-482.png | 213.183.34.23 | 200 OK | 31 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-482.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 71, 8-bit/color RGBA, non-interlaced Hashf25aef0c398b78d65e08c3c6e4560bcd 2d6462f18b9b792c2ce2f6306b05f273c4cc01e3 689ce8a87d8c99b27910bc9d232c294262bfc5b0a196fb131fdf7efce9a31021
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-482.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 31207
last-modified: Mon, 04 Mar 2024 13:15:31 GMT
etag: "f25aef0c398b78d65e08c3c6e4560bcd"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:48:35.999Z
expires: Tue, 07 May 2024 13:11:26 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.049
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/styles/css/main-preloader/main.7bce0452135f60c9c583ee7eb561a15a.css | 185.244.209.62 | 200 OK | 12 kB |
URL GET HTTP/2v2l.traincdn.com/styles/css/main-preloader/main.7bce0452135f60c9c583ee7eb561a15a.css IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typegzip compressed data, max speed, from Unix Hashef756419b0c5360a7210a997a21a1de4 65422d4bc8ed7060d34e24bcf9696b3bc7aa5c61 3b4f91b9764f06c82a2cfd984c9fcd66be062c712a6ca93ca60ce80c8b424821
GET /styles/css/main-preloader/main.7bce0452135f60c9c583ee7eb561a15a.css HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:36 GMT
content-type: text/css
last-modified: Thu, 11 Apr 2024 14:19:04 GMT
etag: W/"6617f158-103a"
expires: Thu, 16 May 2024 08:18:21 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.004
traceparent: 00-b8f253c3cd132bcce47b85deb77d6608-f686fc9580061802-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-04-16T08:16:33+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-70.png | 213.183.34.23 | 200 OK | 10 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-70.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 64, 8-bit/color RGBA, non-interlaced Hashca01492ec0280faa323e9d41090ad57e 4221d44ba9cc9011f03e468d37dabc5803e4b49b 65b1fb14b73dd430d8e19a0ad159b71a006b8bfcf27bc0dbb3b4516286a69343
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-70.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 10538
last-modified: Mon, 04 Mar 2024 13:15:32 GMT
etag: "ca01492ec0280faa323e9d41090ad57e"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:49:34.465Z
expires: Tue, 07 May 2024 13:14:08 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.066
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-181.png | 213.183.34.23 | 200 OK | 12 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-181.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 50, 8-bit/color RGBA, non-interlaced Hashd556d90f5694c0f2156c2403097330f5 8ece322f9b7ca7264ee0a1f6a594c38e8eb1ebf0 a533342134b804619dcb6b4306b69215c9d3f0d9bdfe6cc2b50fb253624576bf
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-181.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 11834
last-modified: Mon, 04 Mar 2024 13:15:21 GMT
etag: "d556d90f5694c0f2156c2403097330f5"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:47:02.447Z
expires: Tue, 07 May 2024 13:19:41 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.092
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-90.png | 213.183.34.23 | | 8.3 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-90.png IP213.183.34.23:0
File typePNG image data, 100 x 50, 8-bit/color RGBA, non-interlaced Hash0a9e48477bc3c9176882d6992142a1e7 ecc66fcfe332b386198a8cb29ea83bf86ef74c43 7bbe2e58990eee3da558ec68e39a75bdbcdb9389c434a50dbfbaf38782bc6b27
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-90.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 8344
last-modified: Mon, 04 Mar 2024 13:15:33 GMT
etag: "0a9e48477bc3c9176882d6992142a1e7"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:47:02.538Z
expires: Tue, 07 May 2024 13:19:41 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.049
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-171.png | 213.183.34.23 | | 14 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-171.png IP213.183.34.23:0
File typePNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced Hash9ac20066c1abfb3a27e76297933a85d5 3521cdcf01754b39930ad573889194efa0e80465 d5fa4b4bee677f2406983bf927ac98a98a671373f74bf9a9c43dda5623a0f723
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-171.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 13517
last-modified: Mon, 04 Mar 2024 13:15:20 GMT
etag: "9ac20066c1abfb3a27e76297933a85d5"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:49:34.560Z
expires: Tue, 07 May 2024 13:19:58 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.053
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-359.png | 213.183.34.23 | | 8.0 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-359.png IP213.183.34.23:0
File typePNG image data, 100 x 57, 8-bit/color RGBA, non-interlaced Hash81eba15ddc2182c5e2f7ac9f93953ece 45a16ff01d2b9582de61f41d1f27e98067aacfb1 ddf995878a80002748ff90528ae51a4b7897a8cc1acc486db88965ea9518db8e
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-359.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 7983
last-modified: Mon, 04 Mar 2024 13:15:27 GMT
etag: "81eba15ddc2182c5e2f7ac9f93953ece"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:48:36.080Z
expires: Tue, 07 May 2024 13:17:30 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.066
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-226.png | 213.183.34.23 | 200 OK | 23 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-226.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced Hasha0c046257dcc89b903e6af4222f6bed0 255749f6a505f9207406004fd5dce4a14c18436d f4ca8f2b59b01f4d9b3c6f1fed523c7465048f1545c37e6bc80796dbe0148428
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-226.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 22902
last-modified: Mon, 04 Mar 2024 13:15:23 GMT
etag: "a0c046257dcc89b903e6af4222f6bed0"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:49:34.418Z
expires: Tue, 07 May 2024 13:19:58 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.064
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-421.png | 213.183.34.23 | | 6.5 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-421.png IP213.183.34.23:0
File typePNG image data, 100 x 50, 8-bit/color RGBA, non-interlaced Hash0eec15cef34749a63d79bee98f382166 10bcef34a78c9722e65ba3cfee0386fc0e6c976b 6c6d167703783675b0221bd2034c1703761e13c913f8fb6663247ca155409e18
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-421.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 6503
last-modified: Mon, 04 Mar 2024 13:15:29 GMT
etag: "0eec15cef34749a63d79bee98f382166"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:47:01.944Z
expires: Tue, 07 May 2024 13:19:48 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.070
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-54.png | 213.183.34.23 | | 10 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-54.png IP213.183.34.23:0
File typePNG image data, 100 x 50, 8-bit/color RGBA, non-interlaced Hashc22f493835098b47d081c11239f20426 43b31f4c61325d3e585cab34e9361c11b907ebf6 a77e55713e9f1b17661e10b4f9dbd21f299486c13409b791763aa109fb5b6426
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-54.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 10084
last-modified: Mon, 04 Mar 2024 13:15:32 GMT
etag: "c22f493835098b47d081c11239f20426"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:47:02.069Z
expires: Tue, 07 May 2024 13:10:30 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.050
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/styles/css/fonts/fallback_fonts.06073f53675cb22cbef2c1e851d066e2.css | 185.244.209.62 | | 12 kB |
URL v2l.traincdn.com/styles/css/fonts/fallback_fonts.06073f53675cb22cbef2c1e851d066e2.css IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typegzip compressed data, max speed, from Unix Hashc3c7da3641532b45a21a298440fa3967 11589cf3097f04b3d4ab817f10d615aa1331d409 02324952c1e3a81341e5b6b6d1e68ae0112176f3398bf2b91403e0f92d6f6e42
GET /styles/css/fonts/fallback_fonts.06073f53675cb22cbef2c1e851d066e2.css HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:36 GMT
content-type: text/css
last-modified: Thu, 11 Apr 2024 14:18:49 GMT
etag: W/"6617f149-9b1e"
expires: Thu, 16 May 2024 08:18:21 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.003
traceparent: 00-57b0e04abbbbf966e47377a066b45a68-d6077b26228397b5-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-04-16T08:16:33+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-164.png | 213.183.34.23 | | 6.2 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-164.png IP213.183.34.23:0
File typePNG image data, 100 x 50, 8-bit/color RGBA, non-interlaced Hashd5b7fbb2cc058e38510be4cf5db1c425 0d468825b08f505ddfce901a4491d4b1859a358e 220d427faf46b4715e7355dbc5a38342f7692072d23f0048527d93be318bb740
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-164.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 6173
last-modified: Mon, 04 Mar 2024 13:15:20 GMT
etag: "d5b7fbb2cc058e38510be4cf5db1c425"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:48:36.115Z
expires: Tue, 07 May 2024 13:19:58 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.041
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-139.png | 213.183.34.23 | 200 OK | 7.9 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-139.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 58, 8-bit/color RGBA, non-interlaced Hashb997711fdfb51b73aaaf3053a59f5dda 64f5192d90769c221260d5cf8d3b689dea1e1459 88078f0722c7c8b01b27e352523a37f996d67176aa779c5045350918c062638f
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-139.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 7876
last-modified: Mon, 04 Mar 2024 13:15:19 GMT
etag: "b997711fdfb51b73aaaf3053a59f5dda"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:49:34.358Z
expires: Tue, 07 May 2024 13:19:58 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.058
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-173.png | 213.183.34.23 | | 13 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-173.png IP213.183.34.23:0
File typePNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced Hasha40c40be58172efb0a6b5439b0a054c7 9504b93ce83577fb1d31e42aef2ee2314f46b2f0 92864af77ae17b4a859508a1c61766e5425a0c3300b39932452d70e19df59cf0
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-173.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 13374
last-modified: Mon, 04 Mar 2024 13:15:20 GMT
etag: "a40c40be58172efb0a6b5439b0a054c7"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:52:24.503Z
expires: Tue, 07 May 2024 13:10:31 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.105
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-72.png | 213.183.34.23 | 200 OK | 9.9 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-72.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 59, 8-bit/color RGBA, non-interlaced Hash45420c530b4bf1fdffe700b669f89424 cc053311193a8ecd5569d665fe050c2cfdd1e84b b3320684baa1a78ed70960d56685b3dba02b2da649e412da46c715ac75eaafb1
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-72.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 9883
last-modified: Mon, 04 Mar 2024 13:15:33 GMT
etag: "45420c530b4bf1fdffe700b669f89424"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:49:34.441Z
expires: Tue, 07 May 2024 13:17:26 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.048
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-517.png | 213.183.34.23 | | 18 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-517.png IP213.183.34.23:0
File typePNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced Hash6c1f611ca5e0dd1c11d3e87b83f2a1fe 3c832c189ead94d1a862905971e1e2f1064ceb6b efa1a98091be0acb239ee01b132ed58c07891c8da2a3f976684dc51793cffb3b
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-517.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 18290
last-modified: Mon, 04 Mar 2024 13:15:31 GMT
etag: "6c1f611ca5e0dd1c11d3e87b83f2a1fe"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:47:02.117Z
expires: Tue, 07 May 2024 13:35:33 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.095
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-434.png | 213.183.34.23 | 200 OK | 14 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-434.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 63, 8-bit/color RGBA, non-interlaced Hash1eede2d0afd84abfbc01ed66c521d7d7 d3cde032dc742af486029fa3ea48f0bd8b836d72 0597b8f8c26bb4d09ec31fcb2d9702f274ca79513fab92949cffc0fd3ce4f2ab
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-434.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 14212
last-modified: Mon, 04 Mar 2024 13:15:30 GMT
etag: "1eede2d0afd84abfbc01ed66c521d7d7"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:48:36.068Z
expires: Tue, 07 May 2024 13:24:39 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.087
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-128.png | 213.183.34.23 | 200 OK | 7.6 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-128.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 48, 8-bit/color RGBA, non-interlaced Hash6f4965ce9f5f0ab848bf0212ae21bd68 170d68d8fc7db711ea0c32373a90a3d98a2805cc 9b85b27f87cb695a22252268920988ccfc79dbe4d7f2be551d159404aaa98c08
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-128.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 7633
last-modified: Mon, 04 Mar 2024 13:15:18 GMT
etag: "6f4965ce9f5f0ab848bf0212ae21bd68"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:47:02.413Z
expires: Tue, 07 May 2024 13:24:49 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.052
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-167.png | 213.183.34.23 | | 4.1 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-167.png IP213.183.34.23:0
File typePNG image data, 100 x 100, 8-bit colormap, non-interlaced Hash32c6b682957e3fa7ebfb148487986eb1 1faeb98f69d2065ba1dedbddb875341ad707c0d9 0e024bade64121e9536d828edf6c7f85a45c10b40aa8538725e2808dbf256224
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-167.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 4098
last-modified: Mon, 04 Mar 2024 13:15:20 GMT
etag: "32c6b682957e3fa7ebfb148487986eb1"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:47:02.514Z
expires: Tue, 07 May 2024 13:13:35 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.071
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-137.png | 213.183.34.23 | 200 OK | 11 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-137.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 50, 8-bit/color RGBA, non-interlaced Hashb10237b278b45ee720e2c161d01f68f2 2eb6362707f2563a3f53c16842cb8a26515385dc ba09c6c4baa139ba14a0149abe9e9b5fccf3c2d8d492dc0fcf820399bf5b4326
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-137.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 11008
last-modified: Mon, 04 Mar 2024 13:15:18 GMT
etag: "b10237b278b45ee720e2c161d01f68f2"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:47:02.390Z
expires: Tue, 07 May 2024 13:24:50 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.073
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-207.png | 213.183.34.23 | 200 OK | 8.7 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-207.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 50, 8-bit/color RGBA, non-interlaced Hashf228ea992fcfe5906a28cd124bd6642f 8382ca82f6377289c51666e1d0e92356105da3a9 78e17b756d2b2aa666844eb34d65dc75386f5180ed5be82c0e3c2091e034862b
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-207.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 8683
last-modified: Mon, 04 Mar 2024 13:15:22 GMT
etag: "f228ea992fcfe5906a28cd124bd6642f"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:48:36.236Z
expires: Tue, 07 May 2024 13:24:23 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.071
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-142.png | 213.183.34.23 | | 18 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-142.png IP213.183.34.23:0
File typePNG image data, 100 x 92, 8-bit/color RGBA, non-interlaced Hash76e6ef6584d88b4564d42a48764c2988 e404462628348b70c553b9f362235205952aee6e 8c5e8a88b40cac6574f89200e0496f9fc69a9de61209071daf446891e9e1aea5
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-142.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 18543
last-modified: Mon, 04 Mar 2024 13:15:19 GMT
etag: "76e6ef6584d88b4564d42a48764c2988"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:49:34.405Z
expires: Tue, 07 May 2024 13:24:49 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.058
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/styles/css/result/main.a767c3011e2bc3920f2311d14352e66e.css | 185.244.209.62 | 200 OK | 61 kB |
URL GET HTTP/2v2l.traincdn.com/styles/css/result/main.a767c3011e2bc3920f2311d14352e66e.css IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typegzip compressed data, max speed, from Unix Hash31ed9e2f293a0cea9318e58460c07f91 e2d6734447141f3cc5674ed41bbd9a54303492fd 90be38cc2c79c684c464983e5d3465bc2ee6ffc95e75137bca19a5d650daf911
GET /styles/css/result/main.a767c3011e2bc3920f2311d14352e66e.css HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:36 GMT
content-type: text/css
last-modified: Tue, 30 Apr 2024 07:23:32 GMT
etag: W/"66309c74-379cd"
expires: Thu, 30 May 2024 07:28:49 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-db302bb3e6b6c1335a1d56161d0c035d-499718a34c70d3e3-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-04-30T07:26:28+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-249.png | 213.183.34.23 | | 6.1 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-249.png IP213.183.34.23:0
File typePNG image data, 100 x 50, 8-bit/color RGBA, non-interlaced Hash082f37c90b3d9b95c1980d3bed0bd086 21b63dded7d6bd8545e4267cedced6791eddc877 e233fa0bd786a6ef671e93c7ac06ef8ea2fa577b5fa13c27ad8e4f97c2123b1a
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-249.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 6122
last-modified: Mon, 04 Mar 2024 13:15:24 GMT
etag: "082f37c90b3d9b95c1980d3bed0bd086"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:47:01.837Z
expires: Tue, 07 May 2024 13:16:09 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.069
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Roboto:300,300i,400,400i,500,500i,700,700i,900,900i&subset=cyrillic,cyrillic-ext,latin-ext |  142.250.74.74 | | 7.1 kB |
URL fonts.googleapis.com/css?family=Roboto:300,300i,400,400i,500,500i,700,700i,900,900i&subset=cyrillic,cyrillic-ext,latin-ext IP142.250.74.74:0
File typegzip compressed data, max compression Hash59dc4d04c9869846837027492305fa36 4c072679674fcc30e206ec243458072d4efd3099 7742daa74c5c272ed366d5922bc3457eb312c79daaff7d9590d7ed2627d3efe7
GET /css?family=Roboto:300,300i,400,400i,500,500i,700,700i,900,900i&subset=cyrillic,cyrillic-ext,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 07 May 2024 06:22:36 GMT
date: Tue, 07 May 2024 06:22:36 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-116.png | 213.183.34.23 | | 11 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-116.png IP213.183.34.23:0
File typePNG image data, 100 x 72, 8-bit/color RGBA, non-interlaced Hash9614cc097bee66b14b8d8ca8ddec3b2f 3eb2760de9a0705eb85833def42896c6220d807f c6aa9653fbdbc331b067746169996bf389d0ca356b825d350d4dc91bd315305c
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-116.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 10673
last-modified: Mon, 04 Mar 2024 13:15:18 GMT
etag: "9614cc097bee66b14b8d8ca8ddec3b2f"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:47:02.081Z
expires: Tue, 07 May 2024 13:10:31 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.071
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-126.png | 213.183.34.23 | | 10 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-126.png IP213.183.34.23:0
File typePNG image data, 100 x 39, 8-bit/color RGBA, non-interlaced Hashb3def3dcf05a6d2929e1fed1d0cd9c01 a7db3088759acc33d9486d29b08c665ae47caf2a 98f954961518b3662d979aca3ade977597f4933548dd25c8587a5f3bc05133ca
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-126.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 10228
last-modified: Mon, 04 Mar 2024 13:15:18 GMT
etag: "b3def3dcf05a6d2929e1fed1d0cd9c01"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:47:02.333Z
expires: Tue, 07 May 2024 13:24:49 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.054
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-394.png | 213.183.34.23 | | 8.1 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-394.png IP213.183.34.23:0
File typePNG image data, 100 x 47, 8-bit/color RGBA, non-interlaced Hashbf0c4bcc5aa5018b3cb518a1e4538e32 fc5689e6aef07987ca00d9d44ca319050c107a27 5387b0725c20705f43ea708309f8f20f3d51260440dc78ec81020f0a7b1965af
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-394.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 8119
last-modified: Mon, 04 Mar 2024 13:15:29 GMT
etag: "bf0c4bcc5aa5018b3cb518a1e4538e32"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:47:02.045Z
expires: Tue, 07 May 2024 13:24:50 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.089
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/styles/css/main-page/main.1cf6fcf00e9d41168b1f599acbaf0aed.css | 185.244.209.62 | | 26 kB |
URL v2l.traincdn.com/styles/css/main-page/main.1cf6fcf00e9d41168b1f599acbaf0aed.css IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typegzip compressed data, max speed, from Unix Hash412acd5d24694a66acd2545abad95a4d a129ccf9cae504d342036c63654ca74f45670888 e5211a74955b039ca6c9e4b9e97e15487df7eb5858136806304b2d6fb9b26922
GET /styles/css/main-page/main.1cf6fcf00e9d41168b1f599acbaf0aed.css HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: text/css
last-modified: Thu, 18 Apr 2024 07:40:36 GMT
etag: W/"6620ce74-130cd"
expires: Sat, 18 May 2024 07:49:46 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-54569cdb697b902fc5f78e3901ada83c-a25791857431c5e6-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-04-18T07:47:54+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/default/css/vendor/animate.css | 185.244.209.62 | 200 OK | 19 kB |
URL GET HTTP/2v2l.traincdn.com/default/css/vendor/animate.css IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typegzip compressed data, max speed, from Unix Hash0716bc564de7341ae7e8d03590fe5726 e1c431e71ac34217598fc6e2c143975b67ebd3b5 809afd5af1e9fe368ceea71ee1ffc9110e6396d913f1b383a89362db9ef6f085
GET /default/css/vendor/animate.css HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:36 GMT
content-type: text/css
last-modified: Wed, 28 Feb 2024 06:18:25 GMT
etag: W/"65ded031-1182e"
expires: Wed, 28 Feb 2024 07:10:16 GMT
cache-control: max-age=600
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-a934675b398bb55019bf6e9590dd2ac0-eb3187285b0be267-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-07T06:18:28+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-180.png | 213.183.34.23 | 200 OK | 7.6 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-180.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 50, 8-bit/color RGBA, non-interlaced Hashef1a0fe1381c9aa61cdbb9f2d7883028 f855741f53b81bfb0357d750e2dc2f0f16cbcd06 2c57f893fa4ea2af3072b6b187e8a5c7f8ae1978a341f1ad8a98f9f4b539673e
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-180.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 7605
last-modified: Mon, 04 Mar 2024 13:15:21 GMT
etag: "ef1a0fe1381c9aa61cdbb9f2d7883028"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:47:02.492Z
expires: Tue, 07 May 2024 13:10:51 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.058
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-345.png | 213.183.34.23 | 200 OK | 9.1 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-345.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 50, 8-bit/color RGBA, non-interlaced Hash000f7b8c3fa913c984aea910f49b0f73 3ab098082f4c5784a1f3544869b03c9e43df79cf 029f2c9693c4d3db8b784518c0cdf85ce847dc950db9b9e7439423a6677de002
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-345.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 9051
last-modified: Mon, 04 Mar 2024 13:15:27 GMT
etag: "000f7b8c3fa913c984aea910f49b0f73"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:47:01.822Z
expires: Tue, 07 May 2024 13:24:50 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.058
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-195.png | 213.183.34.23 | | 7.0 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-195.png IP213.183.34.23:0
File typePNG image data, 100 x 50, 8-bit/color RGBA, non-interlaced Hash40e93d1b0d54c9e4f4793ee2f8b36605 df91554cd0882923a12fb34fcceea37e6f4dd7f2 b8edc80bbc353ee765ddababf02c1248591cc923e12a49dbef2a8c401a117345
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-195.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 7004
last-modified: Mon, 04 Mar 2024 13:15:22 GMT
etag: "40e93d1b0d54c9e4f4793ee2f8b36605"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:47:02.458Z
expires: Tue, 07 May 2024 13:24:56 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.053
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-152.png | 213.183.34.23 | | 12 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-152.png IP213.183.34.23:0
File typePNG image data, 100 x 70, 8-bit/color RGBA, non-interlaced Hash8d9f7a71d53b30f657562d0025656424 6e2b4aa23292d6dcd5f47bfbe7fd83a9965f666e aaedfb5cf74f652b3dfd42a7703a899eb0408fbfe09c2bfa3b0c1b3968499a7b
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-152.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 12394
last-modified: Mon, 04 Mar 2024 13:15:19 GMT
etag: "8d9f7a71d53b30f657562d0025656424"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:49:34.264Z
expires: Tue, 07 May 2024 13:24:56 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.063
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-285.png | 213.183.34.23 | | 7.4 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-285.png IP213.183.34.23:0
File typePNG image data, 100 x 47, 8-bit/color RGBA, non-interlaced Hashe70e642309bcf02b769b08b7cd68be45 44d7cdc106184a6c4b28f7ad469abef3441a2767 84070b9f1e80ca6d134a8f3f52bf7ab9d9872e549800b6e4dbbabefd7db10d5f
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-285.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 7363
last-modified: Mon, 04 Mar 2024 13:15:25 GMT
etag: "e70e642309bcf02b769b08b7cd68be45"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:47:02.168Z
expires: Tue, 07 May 2024 13:24:56 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.058
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-210.png | 213.183.34.23 | | 12 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-210.png IP213.183.34.23:0
File typePNG image data, 100 x 50, 8-bit/color RGBA, non-interlaced Hash73f11fd66906fa64aa55b90c4d09320c 6ff0032b3c51aa5c33cc20821f9ac87cb75eb562 d31c4eaddd11eb9659b3f6ef66a9f61ac20b568273d1a328ad389ae2c84ba12b
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-210.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 11626
last-modified: Mon, 04 Mar 2024 13:15:22 GMT
etag: "73f11fd66906fa64aa55b90c4d09320c"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:49:34.513Z
expires: Tue, 07 May 2024 13:24:56 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.070
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Roboto+Condensed:400,400i,300,300i,700,700i&subset=cyrillic-ext,latin-ext | 142.250.74.74 | 200 OK | 9.3 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Roboto+Condensed:400,400i,300,300i,700,700i&subset=cyrillic-ext,latin-ext IP142.250.74.74:443
CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typegzip compressed data, max compression Hash41a2f08cd195438b4029d829ff1d276e a451153d0aff81f73f56bcfd154a5d00953cb0a9 1baceac7f6a42075f079408d28ce38ed9c268dcddc1d74b3756ac9b5737e68b8
GET /css?family=Roboto+Condensed:400,400i,300,300i,700,700i&subset=cyrillic-ext,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 07 May 2024 06:22:36 GMT
date: Tue, 07 May 2024 06:22:36 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-398.png | 213.183.34.23 | | 5.8 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-398.png IP213.183.34.23:0
File typePNG image data, 100 x 24, 8-bit/color RGBA, non-interlaced Hashb7869d4ee2aa8787190c959303bf3871 99ccb0d546e28451f0dd578799f9e26acf3a2342 9e1f61b97f378a2ee86d3e18181537c94d4c6805702a5bdbb05500f756e31c40
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-398.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 5775
last-modified: Mon, 04 Mar 2024 13:15:29 GMT
etag: "b7869d4ee2aa8787190c959303bf3871"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:48:36.212Z
expires: Tue, 07 May 2024 13:24:50 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.061
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-297.png | 213.183.34.23 | | 7.9 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-297.png IP213.183.34.23:0
File typePNG image data, 100 x 50, 8-bit/color RGBA, non-interlaced Hash6f169aa7e5edabeaf40570673bbe6cea 150f355ed614fa943778d11a97ae95e8305f92df d21af75bd7a708a59ca6a5c33d702ad42f175948a1f33cf2e9d8b35cf37c6acc
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-297.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 7944
last-modified: Mon, 04 Mar 2024 13:15:26 GMT
etag: "6f169aa7e5edabeaf40570673bbe6cea"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:50:30.766Z
expires: Tue, 07 May 2024 13:13:54 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.077
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-317.png | 213.183.34.23 | | 7.8 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-317.png IP213.183.34.23:0
File typePNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced Hash3f4757c39ed4255eb3309be09c98d71d 24787d241915654edaf913d904326cfa484abea2 e761de21f175b0670a0a838231a67f27f752966d94ca17aea53281736ef14591
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-317.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 7766
last-modified: Mon, 04 Mar 2024 13:15:26 GMT
etag: "3f4757c39ed4255eb3309be09c98d71d"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:47:02.192Z
expires: Tue, 07 May 2024 13:11:15 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.059
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-363.png | 213.183.34.23 | 200 OK | 17 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-363.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 65, 8-bit/color RGBA, non-interlaced Hash24ec0059d16965c6e0d998c9589f8e03 8937dd9fae21682cf8702d0085aebac49371fcae 09840d09520f26e6697b73e9f69e5006e1aefcd627d790755265fc3f0ebd2c07
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-363.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 16727
last-modified: Mon, 04 Mar 2024 13:15:28 GMT
etag: "24ec0059d16965c6e0d998c9589f8e03"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:47:02.356Z
expires: Tue, 07 May 2024 13:45:07 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.061
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-233.png | 213.183.34.23 | | 5.2 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-233.png IP213.183.34.23:0
File typePNG image data, 100 x 21, 8-bit/color RGBA, non-interlaced Hash12c36d2b17425097c6fa4c0b72e11ed1 fe69fa9b74a7cbf32c9d7bbcaf82302ebf44a985 d8eb4a6f75b9bc655822398ce85c4f89a62809ce297cc61d536f3c76d50ee5e0
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-233.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 5249
last-modified: Mon, 04 Mar 2024 13:15:24 GMT
etag: "12c36d2b17425097c6fa4c0b72e11ed1"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:47:01.996Z
expires: Tue, 07 May 2024 13:24:50 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.080
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-197.png | 213.183.34.23 | | 12 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-197.png IP213.183.34.23:0
File typePNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced Hasha8d9c38f20cead1ca4c0dc6e4b1892f9 d6a5b9bd09e2a02c897c556f4c9f3a9878b316d2 a0ffe0a5ae413eb3f4c757425079f298457a278153b07add1446b00ef73f0ece
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-197.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 11566
last-modified: Mon, 04 Mar 2024 13:15:22 GMT
etag: "a8d9c38f20cead1ca4c0dc6e4b1892f9"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:47:02.322Z
expires: Tue, 07 May 2024 13:11:15 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.114
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/sfiles/logo-champ/0dfc89d2253d58ea0dd40d1f17fb2af8.png | 185.244.209.62 | 200 OK | 7.1 kB |
URL GET HTTP/2v2l.traincdn.com/sfiles/logo-champ/0dfc89d2253d58ea0dd40d1f17fb2af8.png IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typePNG image data, 96 x 96, 8-bit/color RGBA, non-interlaced Hash61c8eb49a94de59c583ffe67f15b33e6 49d995a28948a0ee565dfa264409fcab82a1b335 adf6655280581e1a618617a6d84697aa26608e90cafb1ef857008d2a40fe0ba1
GET /sfiles/logo-champ/0dfc89d2253d58ea0dd40d1f17fb2af8.png HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: image/png
content-length: 7066
last-modified: Sat, 28 Jan 2023 07:31:59 GMT
etag: "61c8eb49a94de59c583ffe67f15b33e6"
x-amz-server-side-encryption: AES256
cache-control: max-age=3600
expires: Tue, 07 May 2024 06:49:09 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-cc45410fd2e04194bcca03b97a6a1d9f-fdb3f85d0053f245-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-07T05:46:31+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-390.png | 213.183.34.23 | | 13 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-390.png IP213.183.34.23:0
File typePNG image data, 100 x 55, 8-bit/color RGBA, non-interlaced Hash767f1489012c4e867c2d8c806c64e997 bcd2794349f7dd3bf9c0e2469b669187e514c9c8 a3b560d671f2c5d1f53bb232c0c263aac8bb32183d2179b11071770ea9f97d2a
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-390.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 12844
last-modified: Mon, 04 Mar 2024 13:15:29 GMT
etag: "767f1489012c4e867c2d8c806c64e997"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:48:36.176Z
expires: Tue, 07 May 2024 13:11:53 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/bundle/app/Default/Desktop/polyfill.7cb730d106ad6fbc2a05.bundle.js | 185.244.209.62 | 200 OK | 40 kB |
URL GET HTTP/2v2l.traincdn.com/bundle/app/Default/Desktop/polyfill.7cb730d106ad6fbc2a05.bundle.js IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typegzip compressed data, max speed, from Unix Hashb0cec52d1ec6234f77d077f9d9d8eb03 704ea70778b99084c4c012a76232f92ec4efca71 8727d414c56fd35f2d2fef9b462f7dce996b36ec3677b185b9efe3fd581064f0
GET /bundle/app/Default/Desktop/polyfill.7cb730d106ad6fbc2a05.bundle.js HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 06 May 2024 09:35:45 GMT
etag: W/"6638a471-14cdb"
expires: Wed, 05 Jun 2024 09:53:22 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-fe293d0f4b1dc42fac9f89ff7db8a130-a9180949cb506937-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-06T09:50:47+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-230.png | 213.183.34.23 | | 10 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-230.png IP213.183.34.23:0
File typePNG image data, 100 x 53, 8-bit gray+alpha, non-interlaced Hasha87d9e6fe116abf18a3ce7a259c537a8 695c382494c365c8b0ae63f70dd7c13e9ed0fee6 38c26439a6f89613428b5c28e5e5462100a91c0a71dfbf378659b8a730caa41b
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-230.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 10530
last-modified: Mon, 04 Mar 2024 13:15:24 GMT
etag: "a87d9e6fe116abf18a3ce7a259c537a8"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:47:02.239Z
expires: Tue, 07 May 2024 13:25:01 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.099
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/sfiles/logo-champ/86b3049b3592a71249e7cc77927822d4.png | 185.244.209.62 | | 12 kB |
URL v2l.traincdn.com/sfiles/logo-champ/86b3049b3592a71249e7cc77927822d4.png IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typePNG image data, 96 x 96, 8-bit/color RGBA, non-interlaced Hashcfc9675e1314ae7bfa7c5189ae5d7e25 69c3921c0a2f02a9c90f5160aa5ad58ebabb6600 dc08b9223b75270764833cedad897d75b1dacd98e5c56c1c31fb5b5060ece99d
GET /sfiles/logo-champ/86b3049b3592a71249e7cc77927822d4.png HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: image/png
content-length: 11533
last-modified: Wed, 04 Jan 2023 08:00:16 GMT
etag: "cfc9675e1314ae7bfa7c5189ae5d7e25"
x-amz-server-side-encryption: AES256
cache-control: max-age=3600
expires: Mon, 18 Dec 2023 12:20:36 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-8c430b53d1d43e453e0553bc55152d11-d561ba7ae3475fde-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-07T05:50:37+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-220.png | 213.183.34.23 | 200 OK | 3.1 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-220.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 100, 8-bit colormap, non-interlaced Hash6cd2b80cf04f5b1d68831f01b88754fa 278820873fbaf0a864c22279d13556607a4beaca 0e5ef72440d948a5994dd867df1ee1102916e6ae947ec7815a062edcd1281f49
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-220.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 3055
last-modified: Mon, 04 Mar 2024 13:15:23 GMT
etag: "6cd2b80cf04f5b1d68831f01b88754fa"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:50:30.815Z
expires: Tue, 07 May 2024 13:12:05 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.102
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-168.png | 213.183.34.23 | 200 OK | 3.1 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-168.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 75, 8-bit gray+alpha, non-interlaced Hash824de001a0194801091cceab8fad1481 81d06728dd315b029545e54fa5af88057ad01382 465688fc6cedf418a8f3d1703aa727091d7cbcc6ffc8d03d652013a5dc84e5cb
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-168.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 3128
last-modified: Mon, 04 Mar 2024 13:15:20 GMT
etag: "824de001a0194801091cceab8fad1481"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:47:02.378Z
expires: Tue, 07 May 2024 13:13:34 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.088
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/sfiles/logo-champ/a77b9d632ad5933f8f0d32727e773a47.png | 185.244.209.62 | | 4.1 kB |
URL v2l.traincdn.com/sfiles/logo-champ/a77b9d632ad5933f8f0d32727e773a47.png IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typePNG image data, 96 x 96, 8-bit/color RGBA, non-interlaced Hash8f58aa7c75b65ad276cccc7a4b780494 1e5386b4066a3ce2a54b333053e20d8c6e4dd3ad 876f220805c65fd318c1b0e4658b0f17af752c1214a2bed7275533508ea1ba6a
GET /sfiles/logo-champ/a77b9d632ad5933f8f0d32727e773a47.png HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: image/png
content-length: 4126
last-modified: Tue, 03 Jan 2023 16:57:08 GMT
etag: "8f58aa7c75b65ad276cccc7a4b780494"
x-amz-server-side-encryption: AES256
cache-control: max-age=3600
expires: Sun, 31 Mar 2024 15:40:10 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.048
traceparent: 00-1db6bed5db91fc2e9418049c83c59fbb-3063a166f6955e33-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-07T06:18:28+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-339.png | 213.183.34.23 | | 11 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-339.png IP213.183.34.23:0
File typePNG image data, 100 x 50, 8-bit/color RGBA, non-interlaced Hashc84b2443b658b6432d5b5a3cae261398 3bb98b4d87b8d6d65e0a0844045a0d1a9e04635e cc7afc581b1aad2ee1ae3f74c13975d1fb18c60edc543157e757369d8e908c8a
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-339.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 11288
last-modified: Mon, 04 Mar 2024 13:15:27 GMT
etag: "c84b2443b658b6432d5b5a3cae261398"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:47:01.983Z
expires: Tue, 07 May 2024 13:24:50 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.059
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/sfiles/logo-champ/7df66795ddefdd41c5ce3b421d2a0bf2.png | 185.244.209.62 | 200 OK | 4.1 kB |
URL GET HTTP/2v2l.traincdn.com/sfiles/logo-champ/7df66795ddefdd41c5ce3b421d2a0bf2.png IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typePNG image data, 96 x 96, 8-bit/color RGBA, non-interlaced Hash8f58aa7c75b65ad276cccc7a4b780494 1e5386b4066a3ce2a54b333053e20d8c6e4dd3ad 876f220805c65fd318c1b0e4658b0f17af752c1214a2bed7275533508ea1ba6a
GET /sfiles/logo-champ/7df66795ddefdd41c5ce3b421d2a0bf2.png HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: image/png
content-length: 4126
last-modified: Tue, 03 Jan 2023 16:57:13 GMT
etag: "8f58aa7c75b65ad276cccc7a4b780494"
x-amz-server-side-encryption: AES256
cache-control: max-age=3600
expires: Mon, 19 Feb 2024 07:58:19 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-3a5536654daae74cbf5c033c27562450-c2b9c71d679ed662-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-07T05:50:37+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-172.png | 213.183.34.23 | | 10 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-172.png IP213.183.34.23:0
File typePNG image data, 100 x 46, 8-bit/color RGBA, non-interlaced Hashdef29da30c97eafadd636196fa3cda32 f5d783ad38b4ce16544506c3efb21d256473f88b 3b7bf512ec19d443765064b04e4e373e88f17a6ce15fe2095454e86040ce58fd
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-172.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 10379
last-modified: Mon, 04 Mar 2024 13:15:20 GMT
etag: "def29da30c97eafadd636196fa3cda32"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:49:34.276Z
expires: Tue, 07 May 2024 13:24:50 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.058
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/sfiles/logo_teams/5280.png | 185.244.209.62 | 200 OK | 19 kB |
URL GET HTTP/2v2l.traincdn.com/sfiles/logo_teams/5280.png IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typePNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced Hash8735b25175e7e02cb1116dfc59523f67 a1c18bf8e0ffd544ea1cc8390ef7d88a14b7283b 897fcb6227004705e920f958e28120f12168d2af14ef135779860dbed8c44dbb
GET /sfiles/logo_teams/5280.png HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: image/png
content-length: 19345
x-amz-id-2: /PuWs5T7djmrnFTAo1soJ43V4p6d+ji4hKddDKaYXdlSAYEehCTxAEnmiqmlZphxwchGaLgqAAEnzOoQDDyQAw==
x-amz-request-id: CQ5T8YGMRKYWZ55R
last-modified: Tue, 31 Jan 2023 13:33:38 GMT
etag: "8735b25175e7e02cb1116dfc59523f67"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=86400
x-amz-version-id: PxqkE2JTCXOPVr8tqXFjT9TLE9eHrp1q
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.023
traceparent: 00-3a3ab39fcdd21017f4a54a05c572557e-6d6d0c952a30a970-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-07T02:20:29+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-314.png | 213.183.34.23 | 200 OK | 12 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-314.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 50, 8-bit/color RGBA, non-interlaced Hash0bc7e6604b820e01d85b2b1607a6fb1b 1aca8cadd3e1881ac7fb883607b317c11d935ff9 6e4d25283f6c33debdb1836ebb8a9d80fcd409617f6a96bc35c931338644c69f
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-314.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 12211
last-modified: Mon, 04 Mar 2024 13:15:26 GMT
etag: "0bc7e6604b820e01d85b2b1607a6fb1b"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:50:30.611Z
expires: Tue, 07 May 2024 13:13:35 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.096
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-224.png | 213.183.34.23 | | 7.5 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-224.png IP213.183.34.23:0
File typePNG image data, 100 x 36, 8-bit/color RGBA, non-interlaced Hash46d2834f2c0b9255827bcca04610ccfe 2eccf5b88b9483a5593fccdbc768daf5f79aaf5e 87a8239c224989e7bf762bee66d8abbb05d55d7bed9503f9fe9a00c2541367eb
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-224.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 7500
last-modified: Mon, 04 Mar 2024 13:15:23 GMT
etag: "46d2834f2c0b9255827bcca04610ccfe"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:48:36.248Z
expires: Tue, 07 May 2024 13:11:57 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.071
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/sfiles/logo_teams/2c00163238eb3b254debbc851815b59a.PNG | 185.244.209.62 | | 13 kB |
URL v2l.traincdn.com/sfiles/logo_teams/2c00163238eb3b254debbc851815b59a.PNG IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typePNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced Hash2c00163238eb3b254debbc851815b59a 9e1ec64639ebbe34e327fc82570216662b431b42 f2d0eaba648f80db61d03d6a924d57b27666d0dd41f23848c1f6d572711ef1e8
GET /sfiles/logo_teams/2c00163238eb3b254debbc851815b59a.PNG HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: image/png
content-length: 13024
x-amz-id-2: vnX9Sg9QIqzKZ1uuyO7ny4dPr8GK/ALyhjeNAmtj9uLIsCqHtq1RW00WQDqdBZG9u6NyDh6L/IHUpxWW50IxCw==
x-amz-request-id: NSQ1N8EG8P7V1SFW
last-modified: Wed, 01 Feb 2023 12:14:02 GMT
etag: "2c00163238eb3b254debbc851815b59a"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=86400
x-amz-version-id: 3qkXrbZRh2XcEp7JrXgDOgOHc5BaEEMB
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.019
traceparent: 00-bada5ab6eb805ef3e1c0e4ff5ac09dd8-4cc7224a01f0d01b-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-06T09:33:20+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-227.png | 213.183.34.23 | 200 OK | 11 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-227.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 50, 8-bit/color RGBA, non-interlaced Hashc6add0977ba0f85c7cfea50389890210 6d4316c83fba34588188a6fa5d6841ffcff90507 12e2fcf578f7856dd489163e1d68cf8af6abff7f9c73023d6e21dcf7658447a4
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-227.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 10908
last-modified: Mon, 04 Mar 2024 13:15:24 GMT
etag: "c6add0977ba0f85c7cfea50389890210"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:48:36.092Z
expires: Tue, 07 May 2024 13:25:01 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.067
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/sfiles/logo_teams/2028.png | 185.244.209.62 | 200 OK | 1.5 kB |
URL GET HTTP/2v2l.traincdn.com/sfiles/logo_teams/2028.png IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typePNG image data, 100 x 100, 8-bit colormap, non-interlaced Hashd42bc31e4e0207d23dfc0f90860d6507 0513d24420d5fc92aa335ff0f19291616c244c3d b9049f63458b1fe32fbe79a2cc6f3ca1bc202f332086e3c40498d9383388bd40
GET /sfiles/logo_teams/2028.png HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: image/png
content-length: 1471
x-amz-id-2: ltJPPEPju/g0+0HqhA2xf3xK3/Cukq+jgdBo3ssun5dsrNjlc3lrITSBLS2J44WjwUP2qc0Se9o=
x-amz-request-id: FV51TSW0Y38358RJ
last-modified: Tue, 31 Jan 2023 13:32:52 GMT
etag: "d42bc31e4e0207d23dfc0f90860d6507"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=86400
x-amz-version-id: MuL4IvNy2wGtR4_0JFyITsTt4qoEuY0f
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-d197ccf43d4c5d36c96a2e2fdc72efed-d89e94445fb54081-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-06T19:02:02+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-519.png | 213.183.34.23 | | 6.6 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-519.png IP213.183.34.23:0
File typePNG image data, 100 x 50, 8-bit/color RGBA, non-interlaced Hash0b0f07edd3abb3776121e059c5c3eb16 18ec7bdcae5d0b45da78f5f7158d3022f4490f35 d4858384558a1d9477be27bc4cc62d8f3d7c3ab42267bf98dd00970137ca60e9
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-519.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 6582
last-modified: Mon, 04 Mar 2024 13:15:32 GMT
etag: "0b0f07edd3abb3776121e059c5c3eb16"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:47:01.918Z
expires: Tue, 07 May 2024 13:11:58 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.060
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-229.png | 213.183.34.23 | | 6.3 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-229.png IP213.183.34.23:0
File typePNG image data, 100 x 50, 8-bit/color RGBA, non-interlaced Hashcb3646cf7a554519f33376e4f4243d44 df39706554ae025d2da46cb8e1032c6c5647b91f 02573d262a3b167a9fc8fefe6ba54a2f341ea369f5e27f057444a99811922128
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-229.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 6290
last-modified: Mon, 04 Mar 2024 13:15:24 GMT
etag: "cb3646cf7a554519f33376e4f4243d44"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:49:34.325Z
expires: Tue, 07 May 2024 13:14:11 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.192
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-217.png | 213.183.34.23 | | 13 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-217.png IP213.183.34.23:0
File typePNG image data, 100 x 76, 8-bit/color RGBA, non-interlaced Hash9434921fee2371e3d9ffdfc20e26fbbb 6a8c41cddcc32d221f74a7986c3edef880ec6e80 a8afe2d8ccef371e80cf408d997735cc3d4fa47409963435512883288be5a947
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-217.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 12721
last-modified: Mon, 04 Mar 2024 13:15:23 GMT
etag: "9434921fee2371e3d9ffdfc20e26fbbb"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:47:01.904Z
expires: Tue, 07 May 2024 13:14:11 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.068
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-377.png | 213.183.34.23 | 200 OK | 8.8 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-377.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 41, 8-bit/color RGBA, non-interlaced Hash6236882ffce3df5081a0591df1ab4f20 47ca184af3d0d4a975c41fd98d203056e708898e 6a99f30a99bac507f7999ecdb0ea2cc128443c0ab08574f104299b45e8d12bd6
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-377.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 8792
last-modified: Mon, 04 Mar 2024 13:15:28 GMT
etag: "6236882ffce3df5081a0591df1ab4f20"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:50:30.790Z
expires: Tue, 07 May 2024 13:14:11 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.079
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-76.png | 213.183.34.23 | | 10 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-76.png IP213.183.34.23:0
File typePNG image data, 74 x 68, 8-bit/color RGBA, non-interlaced Hashae76f75a34299324bcef439faa3d48c6 1388483aa2e5cb20d9bd831f9e69d47042f2b3db cabae3b5d403adfb58de3974a7f9798152c88659d1fd54e42839694e8dd43256
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-76.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 10258
last-modified: Mon, 11 Mar 2024 09:28:25 GMT
etag: "ae76f75a34299324bcef439faa3d48c6"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2023-07-17T10:20:12.172Z
expires: Tue, 07 May 2024 13:14:11 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.074
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-118.png | 213.183.34.23 | | 6.5 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-118.png IP213.183.34.23:0
File typePNG image data, 100 x 86, 8-bit gray+alpha, non-interlaced Hash8e9a40217b9962036e2b65e2b7309914 7d70a3980f0c31bf0bb799f711b675207d00f805 977c5beb5c45f658a66677949fca753ddbbefdcaeb0be9189abb7479bd729101
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-118.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 6514
last-modified: Mon, 04 Mar 2024 13:15:18 GMT
etag: "8e9a40217b9962036e2b65e2b7309914"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:47:02.287Z
expires: Tue, 07 May 2024 13:14:11 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.041
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-298.png | 213.183.34.23 | 200 OK | 10 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-298.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 54, 8-bit/color RGBA, non-interlaced Hashbf1c9fd0c80451c0e00a78eb74810e82 0051665f1fdda80b026f9fccd04749eadcf2d103 108c039be23c1cd4de1c53e3419ee539473815c32cadba493a43f1f55c2765be
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-298.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 10500
last-modified: Mon, 04 Mar 2024 13:15:26 GMT
etag: "bf1c9fd0c80451c0e00a78eb74810e82"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:48:36.224Z
expires: Tue, 07 May 2024 13:14:12 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.044
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-183.png | 213.183.34.23 | 200 OK | 8.0 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-183.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 50, 8-bit/color RGBA, non-interlaced Hash203bb426d83c096b29084e9a7860ff90 09bbdad68ea544f3467a7beffa5c0cf7d3685ca6 f95c88553b2fb55ba2baa8c589200008d64ee3ea82ffbf8a00b9204ec4c1f334
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-183.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: image/png
content-length: 8044
last-modified: Mon, 04 Mar 2024 13:15:21 GMT
etag: "203bb426d83c096b29084e9a7860ff90"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:48:36.021Z
expires: Tue, 07 May 2024 13:14:12 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.059
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-432.png | 213.183.34.23 | | 14 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-432.png IP213.183.34.23:0
File typePNG image data, 100 x 93, 8-bit/color RGBA, non-interlaced Hashdb990227f5cad0aff638eef81074ae20 2a61f9807ce6a0753ff2680888fb423035d4349e 78635cf1621f984cbf6c9e8198cd868c93dc03859ffbb7ac99e5609ef6882d36
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-432.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: image/png
content-length: 13774
last-modified: Mon, 04 Mar 2024 13:15:30 GMT
etag: "db990227f5cad0aff638eef81074ae20"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:50:30.526Z
expires: Tue, 07 May 2024 13:15:41 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.092
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-286.png | 213.183.34.23 | | 11 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-286.png IP213.183.34.23:0
File typePNG image data, 100 x 50, 8-bit/color RGBA, non-interlaced Hash31550b234ab6b75a3ffe17a08a9ae509 7ab4e72ae465a3ee0a8bd2a344352b0c60c5843b afee3edfb6554140224dcd22a105d2bfd4d843835eeeb13ecb14a69987cba5dd
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-286.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: image/png
content-length: 10977
last-modified: Mon, 04 Mar 2024 13:15:25 GMT
etag: "31550b234ab6b75a3ffe17a08a9ae509"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:52:24.598Z
expires: Tue, 07 May 2024 13:14:12 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.071
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-262.png | 213.183.34.23 | | 6.3 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-262.png IP213.183.34.23:0
File typePNG image data, 100 x 50, 8-bit/color RGBA, non-interlaced Hasha228c56e7abca6cbfeedc468f94f3966 3de261cf120b16c4c65a01e4f39b901fe670f80a bfab12281eec0a373c543b0ff4d2e991bf1f3b0a1faaa1af0abac906205b059e
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-262.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: image/png
content-length: 6322
last-modified: Mon, 04 Mar 2024 13:15:25 GMT
etag: "a228c56e7abca6cbfeedc468f94f3966"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:50:30.695Z
expires: Tue, 07 May 2024 13:28:19 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.055
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-253.png | 213.183.34.23 | | 18 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-253.png IP213.183.34.23:0
File typePNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced Hashea936788ef9d0565bb0b069e395192fe 250e3375b2daa6c5c77d161451ed02e0c0afe683 1df6f7f577ff5c8967b24cb01d6449f463e14b721dc4cce2cd6dbd815eee61ff
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-253.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: image/png
content-length: 18444
last-modified: Mon, 04 Mar 2024 13:15:24 GMT
etag: "ea936788ef9d0565bb0b069e395192fe"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:49:34.370Z
expires: Tue, 07 May 2024 13:14:12 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.085
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-221.png | 213.183.34.23 | | 14 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-221.png IP213.183.34.23:0
File typePNG image data, 100 x 79, 8-bit/color RGBA, non-interlaced Hash6408d5d56c8e4389d2daa013ef162f79 d7ff131caf46ef86d6c474a552ad9894799af16b e33f522a7e874e998f3a8bfbbd3eaf41d77e368b43c85964f441b20cc9730305
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-221.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: image/png
content-length: 13798
last-modified: Mon, 04 Mar 2024 13:15:23 GMT
etag: "6408d5d56c8e4389d2daa013ef162f79"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:48:36.271Z
expires: Tue, 07 May 2024 13:12:08 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.062
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-196.png | 213.183.34.23 | 200 OK | 9.4 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-196.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 34, 8-bit/color RGBA, non-interlaced Hash6412df7a29da2f771a499bc01afef658 44936dd21d1e2ec978e473f884184fecd6f12673 8369b756bd09295f2ee0f4a1cdc248647f1b8521e2e3b3bdc6787f9d2a02d413
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-196.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: image/png
content-length: 9361
last-modified: Mon, 04 Mar 2024 13:15:22 GMT
etag: "6412df7a29da2f771a499bc01afef658"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:47:02.144Z
expires: Tue, 07 May 2024 13:14:12 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.114
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/sfiles/logo_teams/2052.png | 185.244.209.62 | | 20 kB |
URL v2l.traincdn.com/sfiles/logo_teams/2052.png IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typePNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced Hash58caff8afa7566a6807d14383faa4fc0 96bb6db53492afdd39bb9105ea21d68a7b3b1a07 1fb68ef3bb283c0155027fe5800ad949b6d1bf16bf1e09988314f9c5046d786e
GET /sfiles/logo_teams/2052.png HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: image/png
content-length: 20064
x-amz-id-2: 3dVO+VMXcAoJj+kXDk8yEW49Ldq6EVv134LHub1CRMq58Oe4ezEUm2HiajQXRA5uMYGjwAN1JFQ=
x-amz-request-id: 8R12PHSRCA090P1Q
last-modified: Wed, 01 Feb 2023 08:48:53 GMT
etag: "58caff8afa7566a6807d14383faa4fc0"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=86400
x-amz-version-id: HGPNoJUI7I8GGDkyCQqSPkSpv2y1r8FA
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-51b5e445e81ab6ca4c9133de5e0c7447-d276988b552b4be4-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-06T19:02:02+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/styles/css/scoreboard-higher-vs-lower/main.f6dd5abc9f1c001efdc4382c23db11e8.css | 185.244.209.62 | | 9.5 kB |
URL v2l.traincdn.com/styles/css/scoreboard-higher-vs-lower/main.f6dd5abc9f1c001efdc4382c23db11e8.css IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typegzip compressed data, max speed, from Unix Hash15ce5552ae62b3be4f5ccb92e67ca1e6 d5ef20c1c81ef6bc61ea58f2596707f19c749455 c4796b8ee112206308a9536d5bc8b549fd782f363bd441e32522ff166c34de64
GET /styles/css/scoreboard-higher-vs-lower/main.f6dd5abc9f1c001efdc4382c23db11e8.css HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:36 GMT
content-type: text/css
last-modified: Thu, 11 Apr 2024 14:19:37 GMT
etag: W/"6617f179-2820"
expires: Thu, 16 May 2024 08:18:20 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.003
traceparent: 00-aff4396f16ee0f3aa3c77466df93f99c-69a6e8c1e222e287-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-04-16T08:16:33+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/sfiles/logo_teams/e7401d0a426df1a90e60c6c0040fd6a2.png | 185.244.209.62 | | 34 kB |
URL v2l.traincdn.com/sfiles/logo_teams/e7401d0a426df1a90e60c6c0040fd6a2.png IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typePNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced Hash0ce01187dedf43262750b74bb1b0b57f b134d40ba5d5901ccd67e901c5aa6930242f714a eb476eac50b554768e8f44215dfb2804e6c73da9779bddadc7f1a05527232c50
GET /sfiles/logo_teams/e7401d0a426df1a90e60c6c0040fd6a2.png HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: image/png
content-length: 33698
x-amz-id-2: bEkCBHZBBbGkTDWzSAxltJNncq7Bm0PsI01JjMVPZ6i9RoOAJrP3FgCn9VYZaj29A9GKTRPEbis=
x-amz-request-id: 6QFDRAJ96M5CWR6J
last-modified: Tue, 31 Jan 2023 09:25:05 GMT
etag: "0ce01187dedf43262750b74bb1b0b57f"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=86400
x-amz-version-id: I7.ShGVTyJQaYU5OoO1SF1DR8vV8Qrit
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.039
traceparent: 00-a2eec226435f7219b563e0e354ecb6bc-89e339bca0c5c839-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-06T08:01:57+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/sfiles/logo_teams/65e3e972954419765c3ce21698edf6cb.png | 185.244.209.62 | 200 OK | 10 kB |
URL GET HTTP/2v2l.traincdn.com/sfiles/logo_teams/65e3e972954419765c3ce21698edf6cb.png IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typePNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced Hashf7a469da8a047ad39b9f047d096663b2 d03070229851e59eba6ec4f21dbc77f64ccbe21c f5d985cf840546bbd65ebed255606e52b1f8cfce48fc1bc61cee5a705b3fb43e
GET /sfiles/logo_teams/65e3e972954419765c3ce21698edf6cb.png HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: image/png
content-length: 10284
x-amz-id-2: zcoNw0X+LohOHahQRk5JTfCC0cXapJ6aG/KK1Af0cYyBcGe8uaO1kUMVj1epoiLTOiOn+XxJVR4=
x-amz-request-id: EGMBXH81W8BCY7MH
last-modified: Tue, 31 Jan 2023 13:33:34 GMT
etag: "f7a469da8a047ad39b9f047d096663b2"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=86400
x-amz-version-id: I6Hql_BO5Ufn.roel0vAyEEbOVvsb6Pl
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.048
traceparent: 00-1801fdf58ad24cb27e6eb3d5153c5282-c642fed828487846-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-06T15:56:23+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/sfiles/logo_teams/f5db46d24aea0f9d3d07d0be290981ee.png | 185.244.209.62 | 200 OK | 6.6 kB |
URL GET HTTP/2v2l.traincdn.com/sfiles/logo_teams/f5db46d24aea0f9d3d07d0be290981ee.png IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typePNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced Hashf7de1322f1bf14d144ccff1621616e48 5f2313d13085ac71d9f0e7bf31d2ff620c17d256 0690c75893673eef666a89feeead373f4472dd43e0e0423973b5addf6debc543
GET /sfiles/logo_teams/f5db46d24aea0f9d3d07d0be290981ee.png HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: image/png
content-length: 6639
x-amz-id-2: vN2wtBknD9l/3V7BnSgkJgHG3tyJ5kIRJpVGZgpaynDdbWBqjoUDLqaBtgdCe4DcaZIiEDnAcHc=
x-amz-request-id: RRDT0BQAQYTJ9PX7
last-modified: Thu, 12 Oct 2023 08:25:24 GMT
etag: "f7de1322f1bf14d144ccff1621616e48"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=86400
x-amz-version-id: GngX5IbBF3NOPlAxV7T5Y5oizA16.4T_
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.021
traceparent: 00-86e40ba995eada52d2a79e971a66c6cb-6e83bc6c9f43942d-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-07T05:57:51+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/genfiles/cms/1/desktop/media_asset/visa_mastercard.png | 185.244.209.62 | | 8.1 kB |
URL v2l.traincdn.com/genfiles/cms/1/desktop/media_asset/visa_mastercard.png IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typePNG image data, 150 x 50, 8-bit/color RGBA, non-interlaced Hashf8983dd31b0fa2067266f68df3996eab 1f35340211a1510f6d80513be180e73db5541924 21ce8aadfc42dcf3109ce0c14dccee8678c0728aa138710172046e2c566a7b27
GET /genfiles/cms/1/desktop/media_asset/visa_mastercard.png HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: image/png
content-length: 8107
last-modified: Sat, 23 Dec 2023 09:27:36 GMT
etag: "f8983dd31b0fa2067266f68df3996eab"
cache-control: max-age=3600
expires: Thu, 07 Mar 2024 09:30:20 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-48a4faa51774b5a6fe271756edab2858-0d647bf27a106dff-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-07T05:31:00+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-418.png | 213.183.34.23 | | 3.2 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-418.png IP213.183.34.23:0
File typePNG image data, 100 x 70, 8-bit colormap, non-interlaced Hash6efbf0fc0617dca33d5e88a3d96a7a72 c6b9e27de9336a222240930ca20f34ffe9bab2dc 140cb2032ab6a9098ae816d3787890264ab1c911a06c3f1e708b199ceec51f1d
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-418.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: image/png
content-length: 3186
last-modified: Mon, 04 Mar 2024 13:15:29 GMT
etag: "6efbf0fc0617dca33d5e88a3d96a7a72"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:49:34.454Z
expires: Tue, 07 May 2024 13:11:45 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/bundle/app/Default/Desktop/bannerSliderMain.c884da33d080de7a84b9.css | 185.244.209.62 | | 235 B |
URL v2l.traincdn.com/bundle/app/Default/Desktop/bannerSliderMain.c884da33d080de7a84b9.css IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typeASCII text, with no line terminators Hash1e95d3128604b085b8fc5fbc72353dcd f9ade71f7072cc6035b221349d65a19d11805900 7ef4bb2e3b294b8c1fd395435f9d7e639a6161f4b73c47d1867f0305018cde7b
GET /bundle/app/Default/Desktop/bannerSliderMain.c884da33d080de7a84b9.css HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: text/css
content-length: 235
last-modified: Tue, 16 Apr 2024 06:31:10 GMT
etag: "661e1b2e-eb"
expires: Thu, 16 May 2024 08:18:21 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.001
traceparent: 00-1cf900c12b34b8ad6e05ecaa85a0d751-b5e0333696d4b3d4-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-04-16T08:16:34+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-413.png | 213.183.34.23 | | 5.6 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-413.png IP213.183.34.23:0
File typePNG image data, 100 x 50, 8-bit/color RGBA, non-interlaced Hash7089e4d578b474e58b63ddd9dc3670a6 6c25cc1786531972f48bd49f3556a7a703fd10c1 02b7ad77e7eef35b3e8e17e412bbd16182ba6598d2311415907339cdcd4c8f4f
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-413.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: image/png
content-length: 5606
last-modified: Mon, 04 Mar 2024 13:15:29 GMT
etag: "7089e4d578b474e58b63ddd9dc3670a6"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:47:02.503Z
expires: Tue, 07 May 2024 13:12:09 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.060
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-431.png | 213.183.34.23 | 200 OK | 14 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-431.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 93, 8-bit/color RGBA, non-interlaced Hashcc14281f8f07d1e9459a1a93415648b0 4e4bae6fe5a06881255b0e82d86751c50f0791a8 1d2b7e594f4a4f8e8ca391e147abb03274cb42dcca3f3c59b715a1dc4cafead1
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-431.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: image/png
content-length: 14268
last-modified: Mon, 04 Mar 2024 13:15:30 GMT
etag: "cc14281f8f07d1e9459a1a93415648b0"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:50:30.671Z
expires: Tue, 07 May 2024 13:15:41 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.057
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-417.png | 213.183.34.23 | 200 OK | 9.8 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-417.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 50, 8-bit/color RGBA, non-interlaced Hash967b20a67d1376a550455f699a3f2e3f fc3f97a80442b1015bcaba05a6d94cde4dfc4bcb d6aed0cfc4239085c8884fb1e2c7664ad95bc858dacb20c74b9b00b1ea1195bd
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-417.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: image/png
content-length: 9789
last-modified: Mon, 04 Mar 2024 13:15:29 GMT
etag: "967b20a67d1376a550455f699a3f2e3f"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:47:01.931Z
expires: Tue, 07 May 2024 13:14:12 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.089
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-361.png | 213.183.34.23 | | 3.4 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-361.png IP213.183.34.23:0
File typePNG image data, 100 x 53, 8-bit gray+alpha, non-interlaced Hash8dda84dfdc9a04a64f905e172e88091b a39dde908f96606251001cb1bc30f0b5087d141c 1ecf89b5b18f8235a8de90dde12c52f4ac868f58a120b000deba385228917fa4
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-361.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: image/png
content-length: 3421
last-modified: Mon, 04 Mar 2024 13:15:28 GMT
etag: "8dda84dfdc9a04a64f905e172e88091b"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:50:30.551Z
expires: Tue, 07 May 2024 13:14:13 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.063
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-182.png | 213.183.34.23 | 200 OK | 15 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-182.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 50, 8-bit/color RGBA, non-interlaced Hash568521f65df7c875696f69cb30b1c73e fd5a6a468a0b16e9653551b562247f3f56c2f91b 9e2bb13325c6a09b7121468fc5349ed0843c306e14823b39a6f6f649815e4f99
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-182.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: image/png
content-length: 15040
last-modified: Mon, 04 Mar 2024 13:15:21 GMT
etag: "568521f65df7c875696f69cb30b1c73e"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:48:36.010Z
expires: Tue, 07 May 2024 13:14:12 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.049
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-222.png | 213.183.34.23 | | 6.6 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-222.png IP213.183.34.23:0
File typePNG image data, 100 x 60, 8-bit/color RGBA, non-interlaced Hash9219f3937a4ee1af1c968ed68c50cb84 77fbce03b6f7c484cbb8076f496ffddd96876699 4eee6c7aff33b5f7a5f2766b74ab4789467fc549481facc5730b9b0ef1b4b9b9
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-222.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: image/png
content-length: 6602
last-modified: Mon, 04 Mar 2024 13:15:23 GMT
etag: "9219f3937a4ee1af1c968ed68c50cb84"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:50:30.647Z
expires: Tue, 07 May 2024 13:14:13 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.101
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-188.png | 213.183.34.23 | | 9.1 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-188.png IP213.183.34.23:0
File typePNG image data, 100 x 50, 8-bit/color RGBA, non-interlaced Hashaca2311842e62147748ee53254106421 211c2014e852ad8ea7ab355ead840760aa8131d2 89f7b6faa47d59ee71c9159f6ddbae85340f37e8852d23c3385d0c76b987ed3f
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-188.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: image/png
content-length: 9147
last-modified: Mon, 04 Mar 2024 13:15:21 GMT
etag: "aca2311842e62147748ee53254106421"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:52:24.479Z
expires: Tue, 07 May 2024 13:14:13 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.068
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-312.png | 213.183.34.23 | | 4.9 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-312.png IP213.183.34.23:0
File typePNG image data, 100 x 50, 8-bit/color RGBA, non-interlaced Hashc6097a90651af2d7aeeb1f936eaf2564 5e55d25da8d881d279b0056b56faca88072c99a0 5b564fcad049e191eb4aa3652b89f18f24f57f3401ec03c05f2d41f8e8420dbd
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-312.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: image/png
content-length: 4902
last-modified: Mon, 11 Mar 2024 09:35:36 GMT
etag: "c6097a90651af2d7aeeb1f936eaf2564"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-11T09:34:28.563Z
expires: Tue, 07 May 2024 13:14:13 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.045
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/bundle/app/Default/Desktop/webpack_vue.79482c6bebc291d93aeb.bundle.js | 185.244.209.62 | | 315 kB |
URL v2l.traincdn.com/bundle/app/Default/Desktop/webpack_vue.79482c6bebc291d93aeb.bundle.js IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typegzip compressed data, max speed, from Unix Size315 kB (315302 bytes) Hash62a3bf0841828d5abd351a08af68de41 885a00c086d0faa641d05f828f9dc8ebd4705185 a0ff7cc85943d16d10d2f8e737fbb068ba6a1a48b7e56b597c6f0fd8239da7e1
GET /bundle/app/Default/Desktop/webpack_vue.79482c6bebc291d93aeb.bundle.js HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 06 May 2024 12:00:33 GMT
etag: W/"6638c661-f1bd5"
expires: Wed, 05 Jun 2024 12:12:01 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-7c97352ae34258b4e567be0b2cebd9a8-b8303c9a07726740-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-06T12:09:26+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/genfiles/cms/betstemplates/betsNames_full_en.js | 185.244.209.62 | | 257 kB |
URL v2l.traincdn.com/genfiles/cms/betstemplates/betsNames_full_en.js IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typegzip compressed data, max speed, from Unix Size257 kB (257053 bytes) Hashe41861e31a93cbd59df29718046c4fc7 df41fc9e3a780bc7badbfa2653a7a7c9133931d1 dd4efae62564fbe87b0937a646c7ba664b2a51ad3169b5ee5be7bb33cefbb518
GET /genfiles/cms/betstemplates/betsNames_full_en.js HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: text/javascript
last-modified: Thu, 02 May 2024 09:18:49 GMT
etag: W/"d71ba70f89f935888e4058843da9acb1"
content-encoding: gzip
cache-control: max-age=600
expires: Thu, 02 May 2024 09:53:20 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-710a397f4d4988f2b5e425a0f3e6c13a-8705684d38fa3b20-01
x-id: osix-hw-edge-gc4
cache: STALE
x-cached-since: 2024-05-07T06:10:53+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-364.png | 213.183.34.23 | 200 OK | 13 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-364.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 71, 8-bit/color RGBA, non-interlaced Hash386ee9fcf987c1668641bddc47d61472 1e0582b845bc701d297eff948ca1b05837a42420 a844b606cb20c604af7b7e09cc7a9732c7a7ac8b7b1e68600b1b30bff20ed924
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-364.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: image/png
content-length: 12863
last-modified: Mon, 04 Mar 2024 13:15:28 GMT
etag: "386ee9fcf987c1668641bddc47d61472"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:47:02.251Z
expires: Tue, 07 May 2024 13:24:44 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.046
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-208.png | 213.183.34.23 | 200 OK | 21 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-208.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced Hash187426646f88a77730b973e559206462 79b398469360ebd9c16b48b2e615611b9563742c 0fdfe6de40d6595d21b87f65886685a542eadc745663dec111ecb8de2495b3a6
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-208.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: image/png
content-length: 21376
last-modified: Mon, 04 Mar 2024 13:15:22 GMT
etag: "187426646f88a77730b973e559206462"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:48:35.938Z
expires: Tue, 07 May 2024 13:12:14 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.095
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/bundle/app/Default/Desktop/global_alerts.49df67e4251e8e0c935b.bundle.js | 185.244.209.62 | | 186 kB |
URL v2l.traincdn.com/bundle/app/Default/Desktop/global_alerts.49df67e4251e8e0c935b.bundle.js IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typegzip compressed data, max speed, from Unix Size186 kB (185553 bytes) Hash2a33a249b677b6d94cd94882e6038e49 88c6b40a2993f66cd08c59f69c52089918f88e6d f4712eebf51e7b1802cd9f2824843aa7dd6724a622f83e5c84a79d8960a510cc
GET /bundle/app/Default/Desktop/global_alerts.49df67e4251e8e0c935b.bundle.js HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 06 May 2024 09:35:45 GMT
etag: W/"6638a471-80fe5"
expires: Wed, 05 Jun 2024 09:53:22 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-be6bd21e9644b9443d6264fcdab6773b-91656d8d0275bc88-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-06T09:50:47+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-212.png | 213.183.34.23 | | 5.6 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-212.png IP213.183.34.23:0
File typePNG image data, 100 x 29, 8-bit/color RGBA, non-interlaced Hash80355637f402e85628db4a5e9a2123b7 cb03ac42e54e21d2e3d5d5e3ce3dbc07f0e8762a f380c64fd8976f98948a267e38163b013c1caa83f1479c0b4f88f6d153c6063a
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-212.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: image/png
content-length: 5580
last-modified: Mon, 04 Mar 2024 13:15:22 GMT
etag: "80355637f402e85628db4a5e9a2123b7"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:48:36.127Z
expires: Tue, 07 May 2024 13:13:57 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.057
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-454.png | 213.183.34.23 | | 7.8 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-454.png IP213.183.34.23:0
File typePNG image data, 100 x 56, 8-bit/color RGBA, non-interlaced Hash8a0f604826f1647792c89781c976e2a7 0bb634472f6d648bd28c159fb602818cfa1c26f5 1ea9fcb45e071e0fbf7215e701d663e79d6f65ce5506e22cd2476b9607a8246e
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-454.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: image/png
content-length: 7799
last-modified: Mon, 04 Mar 2024 13:15:30 GMT
etag: "8a0f604826f1647792c89781c976e2a7"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:48:36.056Z
expires: Tue, 07 May 2024 13:14:14 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.050
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/styles/css/scoreboard-loto/main.1523ea62833c106830770ad16bfe4317.css | 185.244.209.62 | | 16 kB |
URL v2l.traincdn.com/styles/css/scoreboard-loto/main.1523ea62833c106830770ad16bfe4317.css IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typegzip compressed data, max speed, from Unix Hashcf260eb5cd0fa36fb67a442ec7ef8f35 de3b42411018a9cfc687b386666953e170ea8800 407e67db873c3df84717829ceb89fe2858eb3f13e91205a4e58c9b9d8dac62f9
GET /styles/css/scoreboard-loto/main.1523ea62833c106830770ad16bfe4317.css HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:36 GMT
content-type: text/css
last-modified: Thu, 11 Apr 2024 14:19:37 GMT
etag: W/"6617f179-7ffa"
expires: Thu, 16 May 2024 08:18:20 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.003
traceparent: 00-ee4c3bbee9b59ca39e71d5490783acba-d374db7ef7a1fcb4-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-04-16T08:16:33+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/styles/css/scoreboard-21/main.c80af903e7169463c4eedc89f6df5e97.css | 185.244.209.62 | | 20 kB |
URL v2l.traincdn.com/styles/css/scoreboard-21/main.c80af903e7169463c4eedc89f6df5e97.css IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typegzip compressed data, max speed, from Unix Hasheecd35e88cac59b978a2e635b3f27754 5cf9100c1373e41a0b2b2a17c80dcaf743aacf6b bddb19b3d0aa5d88651353344fac078ea918c9bf9d95b622ac6cc23fdccec8ea
GET /styles/css/scoreboard-21/main.c80af903e7169463c4eedc89f6df5e97.css HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:36 GMT
content-type: text/css
last-modified: Thu, 11 Apr 2024 14:19:37 GMT
etag: W/"6617f179-2044"
expires: Tue, 04 Jun 2024 06:30:22 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.003
traceparent: 00-41675c88eee813059db5f79691bc032b-e4d50bbd06b13d15-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-05T06:27:49+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/styles/css/new1x2/main.8cf685047cef5dfa866fcd09ce097ab0.css | 185.244.209.62 | 200 OK | 20 kB |
URL GET HTTP/2v2l.traincdn.com/styles/css/new1x2/main.8cf685047cef5dfa866fcd09ce097ab0.css IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typegzip compressed data, max speed, from Unix Hashd9ba885316153da7b14ed97c4ac9b4e1 c93675d8ef901e996efffa08baa84415a65fb169 d887148536810d9829adc1d32cff05475ed132d74b08cfc1c994f587eabf34fc
GET /styles/css/new1x2/main.8cf685047cef5dfa866fcd09ce097ab0.css HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:36 GMT
content-type: text/css
last-modified: Thu, 11 Apr 2024 14:19:25 GMT
etag: W/"6617f16d-b4e2"
expires: Sat, 25 May 2024 13:55:54 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-b6128b5309afe829df3df167b99fd8d7-1466190ec5895e8c-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-04-25T13:53:44+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/default/min_js/common_socket.274741550a910226008d752a01c49eba.js | 185.244.209.62 | 200 OK | 14 kB |
URL GET HTTP/2v2l.traincdn.com/default/min_js/common_socket.274741550a910226008d752a01c49eba.js IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typegzip compressed data, max speed, from Unix Hashda9f2650abc097da06358946f1bfbd88 67992cfca6f7327d0e6f07216349507f1acfaf7c a8784a9c169bfbc8aaa5253ee0670afdb0ddc1fd5d921302af956ca1dc12800a
GET /default/min_js/common_socket.274741550a910226008d752a01c49eba.js HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 23 Apr 2024 07:13:23 GMT
etag: W/"66275f93-4035"
expires: Tue, 23 Apr 2024 07:31:23 GMT
cache-control: max-age=600
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.004
traceparent: 00-b7f42984600efbc0466e088682e36e5c-8dfc30f713797101-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-07T06:18:28+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-140.png | 213.183.34.23 | | 8.7 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-140.png IP213.183.34.23:0
File typePNG image data, 100 x 40, 8-bit/color RGBA, non-interlaced Hash0a121e4593031a52a9548e0df38b815b 8fa3c73fe416513788acf4b0ea4e00958d15a992 495f64ee552657b9ddff57e168988e3be996275e8dc2ff14369a538dbd184f04
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-140.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: image/png
content-length: 8688
last-modified: Mon, 04 Mar 2024 13:15:19 GMT
etag: "0a121e4593031a52a9548e0df38b815b"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:47:02.131Z
expires: Tue, 07 May 2024 13:24:45 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.086
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-273.png | 213.183.34.23 | | 7.9 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-273.png IP213.183.34.23:0
File typePNG image data, 100 x 50, 8-bit/color RGBA, non-interlaced Hash4d966a573b0690ebb0ca5038886660ea 014ae012b184ff2ab7cb039994dd539cfbadff7d 3ed65dfe817115d0df1ac7bcca089e5c7227edd186c0025bca993dcd6abdc147
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-273.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: image/png
content-length: 7927
last-modified: Mon, 04 Mar 2024 13:15:25 GMT
etag: "4d966a573b0690ebb0ca5038886660ea"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:47:02.093Z
expires: Tue, 07 May 2024 13:24:45 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.064
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-433.png | 213.183.34.23 | | 16 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-433.png IP213.183.34.23:0
File typePNG image data, 100 x 110, 8-bit/color RGBA, non-interlaced Hash65b1cd4721dde3ee26a6533a85cced6d 47555406d9976aa2f250799b45e6a101d97326cc f2385425933ffbdd8892f264727854dea63e8f86ad0b1465fa0f865ba20891ea
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-433.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: image/png
content-length: 16316
last-modified: Mon, 04 Mar 2024 13:15:30 GMT
etag: "65b1cd4721dde3ee26a6533a85cced6d"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:50:30.576Z
expires: Tue, 07 May 2024 13:24:45 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.102
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-328.png | 213.183.34.23 | | 8.5 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-328.png IP213.183.34.23:0
File typePNG image data, 100 x 50, 8-bit/color RGBA, non-interlaced Hash9038c782ec1bb27b3d513d86608972f7 c68f337bea77da849189d00cfdc3146b23a69eca 957d47ac825ecdcbad72a7a45cd1b35fb8428f2e7b1e0dfa87f3b3fee32b02db
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-328.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: image/png
content-length: 8479
last-modified: Mon, 04 Mar 2024 13:15:26 GMT
etag: "9038c782ec1bb27b3d513d86608972f7"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:49:34.572Z
expires: Tue, 07 May 2024 13:09:58 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.050
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-362.png | 213.183.34.23 | | 4.7 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-362.png IP213.183.34.23:0
File typePNG image data, 100 x 50, 8-bit/color RGBA, non-interlaced Hasha64af55429446d2a1368d1572764c5e6 21819c31bdb6a1d8db0348f1757ecec84f002cf1 5f8a90212939b6d2470f0ff90000dcdd53aef686f759f37358ec4f524d6f1262
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-362.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: image/png
content-length: 4661
last-modified: Mon, 04 Mar 2024 13:15:28 GMT
etag: "a64af55429446d2a1368d1572764c5e6"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:52:24.516Z
expires: Tue, 07 May 2024 13:24:45 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.082
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-143.png | 213.183.34.23 | 200 OK | 9.1 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-143.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 74, 8-bit/color RGBA, non-interlaced Hashfbacd7bb55670f3dbc6ffed11a606ab8 5578405c561432e7e8ba449726cc07649f146fa4 cbd7824b1805fdf49ffee7f32441d3aae939453585ffd03c83cf2813a8e714c2
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-143.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: image/png
content-length: 9106
last-modified: Mon, 04 Mar 2024 13:15:19 GMT
etag: "fbacd7bb55670f3dbc6ffed11a606ab8"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:47:02.228Z
expires: Tue, 07 May 2024 13:25:15 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.094
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-213.png | 213.183.34.23 | | 8.2 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-213.png IP213.183.34.23:0
File typePNG image data, 100 x 50, 8-bit/color RGBA, non-interlaced Hashc84b4d6ef7972cbb33ef4517831a3f2f 0ec5bb6701b5a2d618ab15e8f38c131bda4063dd 0cf67917b14783725ee521d0f28f65d86f2dcde7052abf558d3910fa6089e6df
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-213.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: image/png
content-length: 8235
last-modified: Mon, 04 Mar 2024 13:15:23 GMT
etag: "c84b4d6ef7972cbb33ef4517831a3f2f"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:47:02.344Z
expires: Tue, 07 May 2024 13:24:45 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.054
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-170.png | 213.183.34.23 | | 6.5 kB |
URL www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-170.png IP213.183.34.23:0
File typePNG image data, 100 x 47, 8-bit/color RGBA, non-interlaced Hash072de3e002100fde0c7d33410109b815 c2acbc58ba1051371055b8e2f56b886e2cf80f8c dd35b2c3aa8f0815de5dcf1ba0c4f27c6ea7c0e00880c515db34040e9fef529c
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-170.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: image/png
content-length: 6463
last-modified: Mon, 04 Mar 2024 13:15:20 GMT
etag: "072de3e002100fde0c7d33410109b815"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:50:30.778Z
expires: Tue, 07 May 2024 13:09:58 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.075
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-278.png | 213.183.34.23 | 200 OK | 8.9 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-278.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 50, 8-bit/color RGBA, non-interlaced Hashdad5853c1658406f332d5a716e9984e9 4e0aa5c327e077eb63703dea39705d01992576d8 40786dd21a72c2af5476385b2e9ae5baedcaf241c3563e6e6c50f115a0216330
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-278.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: image/png
content-length: 8939
last-modified: Mon, 04 Mar 2024 13:15:25 GMT
etag: "dad5853c1658406f332d5a716e9984e9"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:50:30.563Z
expires: Tue, 07 May 2024 13:44:35 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.051
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-35.png | 213.183.34.23 | 200 OK | 14 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-35.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 104, 8-bit/color RGBA, non-interlaced Hash2b9258066e7b6d452a0a775b9d3e7d21 9e83d5c6cf50dd1847df1dde38fcb9ebc9bee1e3 795691304720bb6c51887a87ef23f3a929df5bc5023bf7888aa66f155856259a
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-35.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: image/png
content-length: 13631
last-modified: Mon, 04 Mar 2024 13:15:27 GMT
etag: "2b9258066e7b6d452a0a775b9d3e7d21"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:49:34.583Z
expires: Tue, 07 May 2024 13:35:15 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.040
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-109.png | 213.183.34.23 | 200 OK | 3.0 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-109.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 53, 8-bit colormap, non-interlaced Hashd49c1f4d6065818bc6719d55ac30e560 37a29e79b9aa855d5f21369f9fd36f12ab35a705 664f8b62b2812fe7308e93bafb0e1c85a72e41c876078d023f0dfcddfb0d3d75
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-109.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: image/png
content-length: 2952
last-modified: Mon, 04 Mar 2024 13:15:18 GMT
etag: "d49c1f4d6065818bc6719d55ac30e560"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:49:34.347Z
expires: Tue, 07 May 2024 13:35:15 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.052
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| verification.curacao-egaming.com/validate.ashx?domain=1x-bet.com | 157.245.28.47 | 200 OK | 61 kB |
URL GET HTTP/1.1verification.curacao-egaming.com/validate.ashx?domain=1x-bet.com IP157.245.28.47:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerSectigo Limited Subject*.curacao-egaming.com Fingerprint1A:06:FF:1F:E4:BE:3C:05:00:7C:C5:8E:17:F6:F0:6A:3D:2D:09:39 ValidityWed, 28 Jun 2023 00:00:00 GMT - Wed, 10 Jul 2024 23:59:59 GMT
File typePNG image data, 200 x 222, 8-bit/color RGBA, non-interlaced Hash911cbc88545fc51efbb534c5a73b42bc 463ea139e09ed4fa2d24748a2e678df3b2705581 e3a49d7dc5e101489e6b77c233107f917c27947c24d3a9671c4690df7948c241
GET /validate.ashx?domain=1x-bet.com HTTP/1.1
Host: verification.curacao-egaming.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: public, no-cache="Set-Cookie", max-age=120
Transfer-Encoding: chunked
Content-Type: image/png
Expires: Tue, 07 May 2024 06:24:38 GMT
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
Set-Cookie: ReqId=a99c1dda-b629-4959-9786-e576b9d48ed9; path=/
X-Powered-By: ASP.NET
Date: Tue, 07 May 2024 06:22:38 GMT
Connection: close
|
|
| v2l.traincdn.com/bundle/app/Default/Desktop/static/fontawesome-webfont.af7ae505a9eed503f8b8e6982036873e.woff2 | 185.244.209.62 | | 77 kB |
URL v2l.traincdn.com/bundle/app/Default/Desktop/static/fontawesome-webfont.af7ae505a9eed503f8b8e6982036873e.woff2 IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typeWeb Open Font Format (Version 2), TrueType, length 77160, version 4.459 Hashaf7ae505a9eed503f8b8e6982036873e d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c 2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /bundle/app/Default/Desktop/static/fontawesome-webfont.af7ae505a9eed503f8b8e6982036873e.woff2 HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://1xbet.com
DNT: 1
Connection: keep-alive
Referer: https://v2l.traincdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:41 GMT
content-type: font/woff2
content-length: 77160
last-modified: Tue, 16 Apr 2024 06:31:09 GMT
etag: "661e1b2d-12d68"
expires: Thu, 16 May 2024 08:31:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.004
traceparent: 00-897445252fe70e6193103901652ebbe5-7f34220c4cda7201-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-04-16T08:29:46+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/default/css/rollbar_custom.css | 185.244.209.62 | | 18 kB |
URL v2l.traincdn.com/default/css/rollbar_custom.css IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typegzip compressed data, max speed, from Unix Hash4b404efa4e2ff5fbd68b4e175f50f626 9d7d1dcbc101732c24dfe5779b8fa320bf5d365d 52eeb3824eb7b330cbde4257ae44ea8c6e2102bc28f0a224319c857d441b13cd
GET /default/css/rollbar_custom.css HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: text/css
last-modified: Wed, 28 Feb 2024 06:18:25 GMT
etag: W/"65ded031-408"
expires: Wed, 28 Feb 2024 07:09:24 GMT
cache-control: max-age=600
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-b5b895dab022460957c7594f997b5a1a-f1420965e785a9e7-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-07T06:18:28+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/genfiles/cms/1/desktop/right-banners/br-banner-bg-decoration.png | 185.244.209.62 | | 16 kB |
URL v2l.traincdn.com/genfiles/cms/1/desktop/right-banners/br-banner-bg-decoration.png IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typePNG image data, 502 x 242, 4-bit colormap, non-interlaced Hash81275d5c996e2296b55c9a94e2ced8e2 0bc74f5fe9c7408ff72a35139a55dbb104ea2d4e 041fd25b4c5b4bcbd77da18dd229be37197a5d59e012a82aea97294410ebd5e4
GET /genfiles/cms/1/desktop/right-banners/br-banner-bg-decoration.png HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v2l.traincdn.com/styles/css/column-right/main.f547e417ef032a83f213a93abc19c716.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:41 GMT
content-type: image/png
content-length: 16175
last-modified: Tue, 09 Apr 2024 12:39:53 GMT
etag: "81275d5c996e2296b55c9a94e2ced8e2"
cache-control: max-age=3600
expires: Wed, 17 Apr 2024 12:19:31 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-f0719858b4cd2dd857fbd62eca14f0fd-e2aa5f1c8d9a3f80-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-07T05:41:26+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/genfiles/cms/1/desktop/right-banners/bgvs.png | 185.244.209.62 | 200 OK | 907 B |
URL GET HTTP/2v2l.traincdn.com/genfiles/cms/1/desktop/right-banners/bgvs.png IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typePNG image data, 129 x 77, 4-bit colormap, non-interlaced Hash944d32bd50fed0bcf512a32cb1e1b3fb aaaeb6638a0b398a1f1327941bdd8d30581fa1d6 2e2885fe2233a11c8c507075423b9dbc770d6ac9b6c2983d93fb2e31c33cea71
GET /genfiles/cms/1/desktop/right-banners/bgvs.png HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v2l.traincdn.com/styles/css/column-right/main.f547e417ef032a83f213a93abc19c716.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:41 GMT
content-type: image/png
content-length: 907
last-modified: Tue, 09 Apr 2024 12:39:53 GMT
etag: "944d32bd50fed0bcf512a32cb1e1b3fb"
cache-control: max-age=3600
expires: Wed, 17 Apr 2024 12:19:31 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-44a48f43b2e5f5fc50fe6d2aa505f6d9-5964f3a99f22a6ae-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-07T05:41:26+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/genfiles/cms/1/desktop/ourpartners/logo-serie_new.png | 185.244.209.62 | | 19 kB |
URL v2l.traincdn.com/genfiles/cms/1/desktop/ourpartners/logo-serie_new.png IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typePNG image data, 180 x 320, 8-bit/color RGBA, non-interlaced Hasheebc2093ed37610949fddb757fb411c2 f7964e29e324fe613114a2d8a574819735d4e8a4 2573852f7e996aaf5d4ae5280f600e384f8b5d75e8c4de9e06100af2d9f55e5c
GET /genfiles/cms/1/desktop/ourpartners/logo-serie_new.png HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v2l.traincdn.com/styles/css/footer/main.7361d396d2ea9cb39d2114c5ae709005.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:41 GMT
content-type: image/png
content-length: 18675
last-modified: Mon, 11 Sep 2023 16:13:30 GMT
etag: "eebc2093ed37610949fddb757fb411c2"
cache-control: max-age=3600
expires: Mon, 04 Mar 2024 21:36:27 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.009
traceparent: 00-0230bb3f270b7816264b020f9b5b1850-de0fbb4e2f5ef4d9-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-07T05:41:26+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| 1xbet.com/bundle/app/Default/Desktop/pushfree_integrate.9a1f2b0e6801b7590698.css | 104.18.41.64 | 200 OK | 463 kB |
URL GET HTTP/31xbet.com/bundle/app/Default/Desktop/pushfree_integrate.9a1f2b0e6801b7590698.css IP104.18.41.64:443
CertificateIssuerGoogle Trust Services LLC Subject1xbet.com FingerprintA0:4A:36:06:EE:9B:04:BA:25:2E:97:EA:45:A0:70:63:51:97:25:CD ValiditySat, 16 Mar 2024 20:46:45 GMT - Fri, 14 Jun 2024 20:46:44 GMT
File typeASCII text, with very long lines (10406), with no line terminators Size463 kB (463350 bytes) Hash4a410db21b7c468f11afea8ec051af0e 5b8aeaffc349f8e4222b1139b664c90247658fc7 88971183592efb1d6cc059da99bdf474e7a29b2f92944ee21b576729a72bcc90
GET /bundle/app/Default/Desktop/pushfree_integrate.9a1f2b0e6801b7590698.css HTTP/1.1
Host: 1xbet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/en
Cookie: SESSION=48c304108dc7c16478f28f0e1826a0f3; _glhf=1715080731; dnb=1; platform_type=desktop; auid=mjmZBWY5yKs9D2/OCKszAg==; is_rtl=1; visit=1-c0f3effbd860b15d31261e1342c7d750; fast_coupon=true; v3fr=1; lng=en; flaglng=en; typeBetNames=full; coefview=0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 06:22:38 GMT
content-type: text/css
last-modified: Mon, 06 May 2024 10:06:25 GMT
vary: Accept-Encoding
etag: W/"6638aba1-28a6"
expires: Tue, 07 May 2024 11:17:50 GMT
cache-control: max-age=86400
content-encoding: br
strict-transport-security: max-age=63072000; includeSubDomains; preload
server-timing: wf-uht;dur=0.001
cf-cache-status: HIT
age: 48657
server: cloudflare
cf-ray: 87ff1de019e9b529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| v2l.traincdn.com/styles/css/coupon-modal/main.f821604fbe4b21e9ea3f390fdc64f173.css | 185.244.209.62 | | 9.8 kB |
URL v2l.traincdn.com/styles/css/coupon-modal/main.f821604fbe4b21e9ea3f390fdc64f173.css IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typegzip compressed data, max speed, from Unix Hash12aa35fb628a19f4e6adaed9991ff8ae 1a4a1be23181866b2d73c06d62ea1032e8ea87ab d6d826ecfc93b6f68c282ae3199d52608eb30e7857ac3c38c81028f8520a17f4
GET /styles/css/coupon-modal/main.f821604fbe4b21e9ea3f390fdc64f173.css HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: text/css
last-modified: Thu, 11 Apr 2024 14:18:37 GMT
etag: W/"6617f13d-5b3e"
expires: Thu, 16 May 2024 08:18:21 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.002
traceparent: 00-f55b27a02a25f90006ae2746d565a76e-f84d81339ce92ca3-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-04-16T08:16:34+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/styles/sprites/css/sports-icons-fea2001a59.min.css | 185.244.209.62 | | 13 kB |
URL v2l.traincdn.com/styles/sprites/css/sports-icons-fea2001a59.min.css IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typegzip compressed data, max speed, from Unix Hash5d963807a195ec9723575c567ed6a92b a474531d605b2d86901449d542984112f98469e3 841609df19441c44c4e64a8ae2aa6bb89e1b9d24cde6283aa970a2b551fa1c68
GET /styles/sprites/css/sports-icons-fea2001a59.min.css HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: text/css
last-modified: Sat, 27 Apr 2024 10:16:40 GMT
etag: W/"662cd088-16114"
expires: Sat, 27 Apr 2024 11:23:43 GMT
cache-control: max-age=3600
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-84a1629abafc99f06cf775ea368754bc-0d06939ff9135096-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-07T05:41:24+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/styles/css/popup-doublewin/main.98d621083a81e6d4aec4cd0bbee60371.css | 185.244.209.62 | | 36 kB |
URL v2l.traincdn.com/styles/css/popup-doublewin/main.98d621083a81e6d4aec4cd0bbee60371.css IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typegzip compressed data, max speed, from Unix Hash50f7a8dd4d52e84185b8e70d988a0859 0826fdc2db708c683341891dde2a2a79be77f4a5 11fdb7fce884da5a1f5cb252dbbd59510d5a78292b71fb9fb9ae0c3dedac3f9b
GET /styles/css/popup-doublewin/main.98d621083a81e6d4aec4cd0bbee60371.css HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: text/css
last-modified: Tue, 09 Apr 2024 10:55:24 GMT
etag: W/"66151e9c-27d7"
expires: Thu, 09 May 2024 11:07:36 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-a6d9570a5b263a5b91021114929234e3-0c797edbceffef59-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-04-09T11:06:05+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/styles/css/auth/main.7d4d7d1ccfe1a2cd258f5799f8b87da6.css | 185.244.209.62 | 200 OK | 17 kB |
URL GET HTTP/2v2l.traincdn.com/styles/css/auth/main.7d4d7d1ccfe1a2cd258f5799f8b87da6.css IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typegzip compressed data, max speed, from Unix Hashfae1041ef63b0d6e9eba953229499bb4 5f6ff57f183e0974682189dd9870a9f23f6e7147 f88a153a886865fe6f5b2595bb5ec6d4b3fd7aafc3617b5611cfa17bcf129cc9
GET /styles/css/auth/main.7d4d7d1ccfe1a2cd258f5799f8b87da6.css HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: text/css
last-modified: Thu, 11 Apr 2024 14:18:24 GMT
etag: W/"6617f130-57d8"
expires: Wed, 05 Jun 2024 09:49:20 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.004
traceparent: 00-997e6bdc1aef061fc077cce123c0d729-b1232e0f63ac6ff1-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-06T09:46:45+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| 1xbet.com/bundle/app/Default/Desktop/cdnChecker.a88e8a5b1d4c6380d7ad.bundle.js | 104.18.41.64 | | 11 kB |
URL 1xbet.com/bundle/app/Default/Desktop/cdnChecker.a88e8a5b1d4c6380d7ad.bundle.js IP104.18.41.64:0
File typeJavaScript source, ASCII text, with very long lines (3271), with no line terminators Hash5f8ac0fe992b40ddce5e104c26479a51 7a820a19b45bbcbdd701d086f269e4af169d2759 a6d7340bad6afdaa4de625159c5b71b64196416929a6950509fa1fdf34d89dc3
GET /bundle/app/Default/Desktop/cdnChecker.a88e8a5b1d4c6380d7ad.bundle.js HTTP/1.1
Host: 1xbet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/en
Cookie: SESSION=48c304108dc7c16478f28f0e1826a0f3; _glhf=1715080731; dnb=1; platform_type=desktop; auid=mjmZBWY5yKs9D2/OCKszAg==; is_rtl=1; visit=1-c0f3effbd860b15d31261e1342c7d750; fast_coupon=true; v3fr=1; lng=en; flaglng=en; typeBetNames=full; coefview=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 06:22:38 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 06 May 2024 09:35:45 GMT
vary: Accept-Encoding
etag: W/"6638a471-cc7"
expires: Tue, 07 May 2024 09:50:43 GMT
cache-control: max-age=86400
content-encoding: br
strict-transport-security: max-age=63072000; includeSubDomains; preload
server-timing: wf-uht;dur=
cf-cache-status: HIT
age: 73903
server: cloudflare
cf-ray: 87ff1de03a09b529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| 1xbet.com/bundle/app/Default/Desktop/pushfree_integrate.f869e4542575e3b84ef0.bundle.js | 104.18.41.64 | | 154 kB |
URL 1xbet.com/bundle/app/Default/Desktop/pushfree_integrate.f869e4542575e3b84ef0.bundle.js IP104.18.41.64:0
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size154 kB (154390 bytes) Hashc268f4d1807ec94f009e96c72f438b7c 36949238a44c1b7cc78a3f7dd12ada404927f245 7e49fe82978816a5231df8a5a570ea73cdcbc25e84511d9806baad64cc7e85ef
GET /bundle/app/Default/Desktop/pushfree_integrate.f869e4542575e3b84ef0.bundle.js HTTP/1.1
Host: 1xbet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/en
Cookie: SESSION=48c304108dc7c16478f28f0e1826a0f3; _glhf=1715080731; dnb=1; platform_type=desktop; auid=mjmZBWY5yKs9D2/OCKszAg==; is_rtl=1; visit=1-c0f3effbd860b15d31261e1342c7d750; fast_coupon=true; v3fr=1; lng=en; flaglng=en; typeBetNames=full; coefview=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 06:22:38 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 06 May 2024 09:35:45 GMT
vary: Accept-Encoding
etag: W/"6638a471-84fec"
expires: Tue, 07 May 2024 09:50:55 GMT
cache-control: max-age=86400
content-encoding: br
strict-transport-security: max-age=63072000; includeSubDomains; preload
server-timing: wf-uht;dur=
cf-cache-status: HIT
age: 73903
server: cloudflare
cf-ray: 87ff1de03a0cb529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| v2l.traincdn.com/genfiles/cms/1-285/desktop/footer/logos/og_red_bull.png | 185.244.209.62 | 200 OK | 149 kB |
URL GET HTTP/2v2l.traincdn.com/genfiles/cms/1-285/desktop/footer/logos/og_red_bull.png IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typePNG image data, 2187 x 3222, 8-bit/color RGBA, non-interlaced Size149 kB (149244 bytes) Hashab837a9cb89291146ad8b371c052fe8d bf89d8ec4fa8ac43004ceb74bd49199aa3436ca2 14a017c6bf332ef819755c66546f9847b291c056239bc0289d92063fcd17648b
GET /genfiles/cms/1-285/desktop/footer/logos/og_red_bull.png HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v2l.traincdn.com/styles/css/footer/main.7361d396d2ea9cb39d2114c5ae709005.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:41 GMT
content-type: image/png
content-length: 149244
last-modified: Tue, 11 Apr 2023 17:53:05 GMT
etag: "ab837a9cb89291146ad8b371c052fe8d"
cache-control: max-age=3600
expires: Mon, 18 Dec 2023 08:57:27 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-e9d2a111c60c945a12fa4e4ed449842f-554c7281296e1a30-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-07T05:41:26+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/genfiles/cms/desktop/all-types-images/cdn_checker.png | 185.244.209.62 | 200 OK | 95 B |
URL GET HTTP/2v2l.traincdn.com/genfiles/cms/desktop/all-types-images/cdn_checker.png IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typePNG image data, 1 x 1, 1-bit colormap, non-interlaced Hash9591c410148e6883727c5339fd1c02cd 3442a95fe890ce4769b36b2ecc611b801a54cfb5 cafbd551d674da240212f6c44988757a728b9dc8cbc2a6c8dcf53c0d9159c323
GET /genfiles/cms/desktop/all-types-images/cdn_checker.png HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:41 GMT
content-type: image/png
content-length: 95
last-modified: Sat, 30 Mar 2024 08:39:04 GMT
etag: "9591c410148e6883727c5339fd1c02cd"
cache-control: max-age=3600
expires: Tue, 16 Apr 2024 13:12:29 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-55e65706210f49230ec582172ed06398-6a1c61ca9905bd2d-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-07T06:00:10+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 | 142.250.74.67 | | 16 kB |
URL fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP142.250.74.67:0
File typeWeb Open Font Format (Version 2), TrueType, length 15920, version 1.0 Hash3a44e06eb954b96aa043227f3534189d 23cef6993ddb2b2979e8e7647fc3763694e2ba7d b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://1xbet.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:03:54 GMT
expires: Fri, 02 May 2025 02:03:54 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
age: 447528
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 142.250.74.67 | | 16 kB |
URL fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP142.250.74.67:0
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0 Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://1xbet.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 04 May 2024 09:28:37 GMT
expires: Sun, 04 May 2025 09:28:37 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 248045
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/robotocondensed/v27/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2 | 142.250.74.67 | 200 OK | 51 kB |
URL GET HTTP/2fonts.gstatic.com/s/robotocondensed/v27/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2 IP142.250.74.67:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 51404, version 1.0 Hashb904fcdf1c4c6059fadd6893a7bc7619 f41d1674f02616f03ef77d4e84b3ad8ba28a36fc 517edd119c5b2719e6ac4b30bf1fd864a6395179a41d273c0afc0696e7495d8e
GET /s/robotocondensed/v27/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://1xbet.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 51404
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:26:22 GMT
expires: Fri, 02 May 2025 02:26:22 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 18 Oct 2023 17:52:59 GMT
content-type: font/woff2
age: 446180
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2 | 142.250.74.67 | | 9.6 kB |
URL fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2 IP142.250.74.67:0
File typeWeb Open Font Format (Version 2), TrueType, length 9628, version 1.0 Hashd9ac47c7e500fb7083b8d595eaf6fe12 112a2fc5f4ff9b85ee3a706fa9b8c47f79b05933 495d38d4b9741e8aa4204002414069e2d8db9f3c60b60e195e4d74381462dee9
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://1xbet.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9628
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 May 2024 10:54:17 GMT
expires: Tue, 06 May 2025 10:54:17 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 70105
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/robotocondensed/v27/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2 | 142.250.74.67 | 200 OK | 51 kB |
URL GET HTTP/2fonts.gstatic.com/s/robotocondensed/v27/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2 IP142.250.74.67:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 51404, version 1.0 Hashb904fcdf1c4c6059fadd6893a7bc7619 f41d1674f02616f03ef77d4e84b3ad8ba28a36fc 517edd119c5b2719e6ac4b30bf1fd864a6395179a41d273c0afc0696e7495d8e
GET /s/robotocondensed/v27/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://1xbet.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 51404
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:26:22 GMT
expires: Fri, 02 May 2025 02:26:22 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 18 Oct 2023 17:52:59 GMT
content-type: font/woff2
age: 446180
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 | 142.250.74.67 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 IP142.250.74.67:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15860, version 1.0 Hashe9f5aaf547f165386cd313b995dddd8e acdef5603c2387b0e5bffd744b679a24a8bc1968 f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://1xbet.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 01:55:00 GMT
expires: Fri, 02 May 2025 01:55:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 448062
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| 1xbet.com/default/img/sports-icon/icons.svg | 104.18.41.64 | 200 OK | 161 kB |
URL GET HTTP/31xbet.com/default/img/sports-icon/icons.svg IP104.18.41.64:443
CertificateIssuerGoogle Trust Services LLC Subject1xbet.com FingerprintA0:4A:36:06:EE:9B:04:BA:25:2E:97:EA:45:A0:70:63:51:97:25:CD ValiditySat, 16 Mar 2024 20:46:45 GMT - Fri, 14 Jun 2024 20:46:44 GMT
File typeSVG Scalable Vector Graphics image Size161 kB (161108 bytes) Hash835de4af5ddcce65f93eab3985e803ce 15a90c0ff8780463c5d635cf60be1d85ecec22ff f025a51d1f2f472ef49b94d665d38fc914b40bb0385c95ed005e1ac5150132d2
GET /default/img/sports-icon/icons.svg HTTP/1.1
Host: 1xbet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/en
Cookie: SESSION=48c304108dc7c16478f28f0e1826a0f3; _glhf=1715080731; dnb=1; platform_type=desktop; auid=mjmZBWY5yKs9D2/OCKszAg==; is_rtl=1; visit=1-c0f3effbd860b15d31261e1342c7d750; fast_coupon=true; v3fr=1; lng=en; flaglng=en; typeBetNames=full; coefview=0; tzo=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 06:22:41 GMT
content-type: image/svg+xml
last-modified: Fri, 12 Apr 2024 07:57:05 GMT
vary: Accept-Encoding
etag: W/"6618e951-6e1f3"
content-encoding: br
strict-transport-security: max-age=63072000; includeSubDomains; preload
server-timing: wf-uht;dur=0.017
cf-cache-status: HIT
age: 6173
server: cloudflare
cf-ray: 87ff1df77f07b529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| v2l.traincdn.com/bundle/app/Default/Desktop/legacy_betting.85442e94e8286978508b.bundle.js | 185.244.209.62 | 200 OK | 1.0 MB |
URL GET HTTP/2v2l.traincdn.com/bundle/app/Default/Desktop/legacy_betting.85442e94e8286978508b.bundle.js IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typegzip compressed data, max speed, from Unix Size1.0 MB (1040758 bytes) Hashf386cb5cecbf7d97fd802dd8f7144677 27aa3f23ec68b0cee57889ba76e97bdf012805d3 353cbce736a1a5a9769eedc992517d5b36eefa8db90cae9db09459508cffff8b
GET /bundle/app/Default/Desktop/legacy_betting.85442e94e8286978508b.bundle.js HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:44 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 06 May 2024 12:00:33 GMT
etag: W/"6638c661-338867"
expires: Wed, 05 Jun 2024 12:12:01 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-d04f975daeebb2e737ed014467a2a152-0dabeb2152bddf1b-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-06T12:09:26+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/bundle/library/vendor.338b68ca988cbf750dad.js | 185.244.209.62 | | 209 kB |
URL v2l.traincdn.com/bundle/library/vendor.338b68ca988cbf750dad.js IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typegzip compressed data, max speed, from Unix Size209 kB (209216 bytes) Hash82ae4f2390aaa4e7dfc6120d83306665 ae610cd01792ffc7cad89f5de5a5f94c4bdfec76 427c41dac5f45e9cfa393b24d6261b8b0143a50d086570a8b5e57d38f1b66f08
GET /bundle/library/vendor.338b68ca988cbf750dad.js HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: application/javascript; charset=utf-8
last-modified: Thu, 11 Apr 2024 14:04:48 GMT
etag: W/"6617ee00-66207"
expires: Wed, 22 May 2024 09:48:39 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.004
traceparent: 00-6dda2ebbcc188cc92496c72344508fb6-337e2942f94a9d79-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-04-22T09:46:37+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-7V60YW2S5H | 142.250.74.168 | 200 OK | 102 kB |
URL GET HTTP/2www.googletagmanager.com/gtag/js?id=G-7V60YW2S5H IP142.250.74.168:443
CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (5955) Size102 kB (101847 bytes) Hash46e0d9c7b35947eb2f9d0bf1867ab268 8f9dbd71345491a73915b8be039fe69c1fd758fa 3b729631599f96047d255d083a5be792ff32e46e9110af23831c598f7a76cdc7
GET /gtag/js?id=G-7V60YW2S5H HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 07 May 2024 06:22:45 GMT
expires: Tue, 07 May 2024 06:22:45 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 101847
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| 1xbet.com/LiveFeed/GetSportsShortZip?lng=en&gr=70&country=137&virtualSports=true&groupChamps=true | 104.18.41.64 | | 2.7 kB |
URL 1xbet.com/LiveFeed/GetSportsShortZip?lng=en&gr=70&country=137&virtualSports=true&groupChamps=true IP104.18.41.64:0
Hashab998f9a60d6f489f0ce40b6c33f46a3 b70ca7414435856e7d1444f98932dd6790de0459 1e96a5f2a681d599f8413294f3c643f37fd480cfeb03f38be4405456ed9e3f79
GET /LiveFeed/GetSportsShortZip?lng=en&gr=70&country=137&virtualSports=true&groupChamps=true HTTP/1.1
Host: 1xbet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/en
Cookie: SESSION=48c304108dc7c16478f28f0e1826a0f3; _glhf=1715080731; dnb=1; platform_type=desktop; auid=mjmZBWY5yKs9D2/OCKszAg==; is_rtl=1; visit=1-c0f3effbd860b15d31261e1342c7d750; fast_coupon=true; v3fr=1; lng=en; flaglng=en; typeBetNames=full; coefview=0; tzo=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 06:22:45 GMT
content-type: application/json; charset=utf-8
content-length: 2680
cache-control: public, max-age=5
content-encoding: br
last-modified: Tue, 07 May 2024 06:22:45 GMT
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
server-timing: wf-uht;dur=0.010
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 87ff1e0f8cefb529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| v2l.traincdn.com/bundle/app/Default/Desktop/34.36aa098e217f0e3ef227.chunk.js | 185.244.209.62 | | 9.9 kB |
URL v2l.traincdn.com/bundle/app/Default/Desktop/34.36aa098e217f0e3ef227.chunk.js IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typegzip compressed data, max speed, from Unix Hash60de9471099c4028f46956ee220548c1 3459e6164394cc1cf6778a912885dfc0d4e1be1c b506f51940a8bb380c6054f9cb8fe99f7ed673aa37f57e1cb343bb210f4119c8
GET /bundle/app/Default/Desktop/34.36aa098e217f0e3ef227.chunk.js HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:45 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 06 May 2024 09:35:45 GMT
etag: W/"6638a471-3fae"
expires: Wed, 05 Jun 2024 09:53:30 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-ea4056119c71059354f8a3047cc34ad0-a09ddf8ceb87d19c-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-06T09:50:55+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| 1xbet.com/LineFeed/BestGamesExtVZip?count=10&lng=en&mode=4&country=137&tf=2200000 | 104.18.41.64 | 200 OK | 4.9 kB |
URL GET HTTP/31xbet.com/LineFeed/BestGamesExtVZip?count=10&lng=en&mode=4&country=137&tf=2200000 IP104.18.41.64:443
CertificateIssuerGoogle Trust Services LLC Subject1xbet.com FingerprintA0:4A:36:06:EE:9B:04:BA:25:2E:97:EA:45:A0:70:63:51:97:25:CD ValiditySat, 16 Mar 2024 20:46:45 GMT - Fri, 14 Jun 2024 20:46:44 GMT
Hash7c6f5ac611f989d77cdaf678c1395ba6 1df12ad075b8a8ad3d8338f7e3463e0b4fcca4ad 0030d8119606824fb1616d719075331a2dfcbc0f294c2dcba931ccc6250ac3e6
GET /LineFeed/BestGamesExtVZip?count=10&lng=en&mode=4&country=137&tf=2200000 HTTP/1.1
Host: 1xbet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/en
Cookie: SESSION=48c304108dc7c16478f28f0e1826a0f3; _glhf=1715080731; dnb=1; platform_type=desktop; auid=mjmZBWY5yKs9D2/OCKszAg==; is_rtl=1; visit=1-c0f3effbd860b15d31261e1342c7d750; fast_coupon=true; v3fr=1; lng=en; flaglng=en; typeBetNames=full; coefview=0; tzo=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 06:22:45 GMT
content-type: application/json; charset=utf-8
content-length: 4915
cache-control: public, max-age=5
content-encoding: br
last-modified: Tue, 07 May 2024 06:22:45 GMT
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
server-timing: wf-uht;dur=0.028
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 87ff1e0fad07b529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| v2l.traincdn.com/sfiles/logo-champ/0dfc89d2253d58ea0dd40d1f17fb2af8.webp | 185.244.209.62 | | 3.7 kB |
URL v2l.traincdn.com/sfiles/logo-champ/0dfc89d2253d58ea0dd40d1f17fb2af8.webp IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typeRIFF (little-endian) data, Web/P image Hash9a95e3840ab8ac77449d48901f23a27c 0bfd3f6376b613b4d18e0aa61b5913c7ab7df027 483fb0bc1076f87f81f8febc9c2e4b29570faf4065e4ecb07b7d35810db50033
GET /sfiles/logo-champ/0dfc89d2253d58ea0dd40d1f17fb2af8.webp HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:45 GMT
content-type: image/webp
content-length: 3682
last-modified: Sat, 28 Jan 2023 07:31:59 GMT
etag: "9a95e3840ab8ac77449d48901f23a27c"
x-amz-server-side-encryption: AES256
cache-control: max-age=3600
expires: Tue, 07 May 2024 06:24:53 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-ecda1db359134aceb2dac6f0bc4a7a4a-dfe930b70e9c0638-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-07T06:22:24+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| 1xbet.com/default/img/sports-icon/favorites-icon.svg | 104.18.41.64 | 200 OK | 2.4 kB |
URL GET HTTP/31xbet.com/default/img/sports-icon/favorites-icon.svg IP104.18.41.64:443
CertificateIssuerGoogle Trust Services LLC Subject1xbet.com FingerprintA0:4A:36:06:EE:9B:04:BA:25:2E:97:EA:45:A0:70:63:51:97:25:CD ValiditySat, 16 Mar 2024 20:46:45 GMT - Fri, 14 Jun 2024 20:46:44 GMT
File typeSVG Scalable Vector Graphics image Hash7280bedfbc587276397b85263d06f072 a232f2ec14723f874a6c684b3bb54a9716cbbfd0 cf174dfb63ef80c63fba374f24bf9466d21b67b0e56a018010c9631f3196ccbd
GET /default/img/sports-icon/favorites-icon.svg HTTP/1.1
Host: 1xbet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/en
Cookie: SESSION=48c304108dc7c16478f28f0e1826a0f3; _glhf=1715080731; dnb=1; platform_type=desktop; auid=mjmZBWY5yKs9D2/OCKszAg==; is_rtl=1; visit=1-c0f3effbd860b15d31261e1342c7d750; fast_coupon=true; v3fr=1; lng=en; flaglng=en; typeBetNames=full; coefview=0; tzo=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 06:22:46 GMT
content-type: image/svg+xml
last-modified: Thu, 25 Apr 2024 07:39:13 GMT
vary: Accept-Encoding
etag: W/"662a08a1-f23"
content-encoding: br
strict-transport-security: max-age=63072000; includeSubDomains; preload
server-timing: wf-uht;dur=
cf-cache-status: HIT
age: 6177
server: cloudflare
cf-ray: 87ff1e12588fb529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| v2l.traincdn.com/styles/css/popup/main.c040fe101e09308e25c2fc4dd8baaf6c.css | 185.244.209.62 | | 35 kB |
URL v2l.traincdn.com/styles/css/popup/main.c040fe101e09308e25c2fc4dd8baaf6c.css IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typegzip compressed data, max speed, from Unix Hashb29f227efec25c116e21153b51eedc9d 6cc32b51d29f9e6d2cca4eba547ad40660ecce9c 4b55fae947e4fa02eba9bd506dd599ec397d6b80c1885b3beb0658f33ebd0467
GET /styles/css/popup/main.c040fe101e09308e25c2fc4dd8baaf6c.css HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:36 GMT
content-type: text/css
last-modified: Tue, 30 Apr 2024 09:10:49 GMT
etag: W/"6630b599-23c07"
expires: Thu, 30 May 2024 09:20:54 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-9a4904e63bb5cbead3d23117e395ba96-97dde40e876e766d-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-04-30T09:18:33+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/styles/css/filters/main.955755f3fb0ca846fd3e55237d4c4cab.css | 185.244.209.62 | 200 OK | 10 kB |
URL GET HTTP/2v2l.traincdn.com/styles/css/filters/main.955755f3fb0ca846fd3e55237d4c4cab.css IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typegzip compressed data, max speed, from Unix Hash17ad92ad9aed419c73d68e9f9d2dfa3f 8ed157a09af08d5e7bcfcbcd26a43dbacbcbb6f8 25a7e1949768b4e2743468a7f62aa68f1238359e1fd703cc9a0c49c36117e48b
GET /styles/css/filters/main.955755f3fb0ca846fd3e55237d4c4cab.css HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:36 GMT
content-type: text/css
last-modified: Tue, 16 Apr 2024 12:01:44 GMT
etag: W/"661e68a8-a03a"
expires: Thu, 16 May 2024 12:13:02 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-7eab0aefaed3768b14c4b96e1f564bed-dd8162bbeaa4b46f-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-04-16T12:11:14+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/default/legacy/min_js/jquery_pack.js | 185.244.209.62 | | 222 kB |
URL v2l.traincdn.com/default/legacy/min_js/jquery_pack.js IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typegzip compressed data, max speed, from Unix Size222 kB (222011 bytes) Hash38c61a69484db5a295adc24a28339040 49a94801206ba0ce8a5a249223a69d053c8d6dc8 0e0857205bfb43aa61cad6be303ca1b672f56f92b6dd5fbd37be1fa59a71b34b
GET /default/legacy/min_js/jquery_pack.js HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 28 Feb 2024 06:18:33 GMT
etag: W/"65ded039-93e8d"
expires: Wed, 28 Feb 2024 07:08:45 GMT
cache-control: max-age=600
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-51e93274fb023ad9a635e8b5d735862c-d65ee6048788422d-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-07T06:18:20+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/default/legacy/min_css/jquery_pack.css | 185.244.209.62 | | 28 kB |
URL v2l.traincdn.com/default/legacy/min_css/jquery_pack.css IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typegzip compressed data, max speed, from Unix Hash8936f650290dcdd10ec4681fbdf8acf0 cf2d1bb3f3da90df75a2b95317fe623a2fd9beba ac211815ac33ca0e2c195192820d0aba7eae02f7a1b4b859df48c411e1ef50c8
GET /default/legacy/min_css/jquery_pack.css HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:36 GMT
content-type: text/css
last-modified: Tue, 12 Mar 2024 08:45:38 GMT
etag: W/"65f01632-dccc"
expires: Tue, 12 Mar 2024 10:12:23 GMT
cache-control: max-age=600
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-8781364def1b6ca3f437cc67fbe259ce-c278dbf0c7760619-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-07T06:18:28+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/styles/css/header/main.d1a6b518599db1ddf992892e696f3884.css | 185.244.209.62 | 200 OK | 24 kB |
URL GET HTTP/2v2l.traincdn.com/styles/css/header/main.d1a6b518599db1ddf992892e696f3884.css IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typegzip compressed data, max speed, from Unix Hash2a93d3fb19c5cf6fc6bf4fdecd065772 4a7a905c5843b7d9fbf719bb8ddb538f27fd5132 50fee3723ef4d2361f4c71f4555df296d67c2fd5cac91df14f992a6a070a3927
GET /styles/css/header/main.d1a6b518599db1ddf992892e696f3884.css HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:36 GMT
content-type: text/css
last-modified: Fri, 26 Apr 2024 11:12:03 GMT
etag: W/"662b8c03-1c318"
expires: Sun, 26 May 2024 11:18:37 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-c14b167c4c7020b522b897248415dca9-3fbd4ea546395b8b-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-04-26T11:16:26+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| 1xbet.com/genfiles/cms/1/desktop/header/header-icons.svg | 104.18.41.64 | | 3.5 kB |
URL 1xbet.com/genfiles/cms/1/desktop/header/header-icons.svg IP104.18.41.64:0
File typeSVG Scalable Vector Graphics image Hash56b55c4723ce6b2545eaaf1e31631605 025c5234b710b24bb74bff94d9961975d9044a1e 3d298a2685ab141e2ce7f4ae1c3b1cd11449243d40c3c780d5eee2528ee5f2de
GET /genfiles/cms/1/desktop/header/header-icons.svg HTTP/1.1
Host: 1xbet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/en
Cookie: SESSION=48c304108dc7c16478f28f0e1826a0f3; _glhf=1715080731; dnb=1; platform_type=desktop; auid=mjmZBWY5yKs9D2/OCKszAg==; is_rtl=1; visit=1-c0f3effbd860b15d31261e1342c7d750; fast_coupon=true; v3fr=1; lng=en; flaglng=en; typeBetNames=full; coefview=0; tzo=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 06:22:44 GMT
content-type: image/svg+xml
last-modified: Sat, 09 Mar 2024 11:01:25 GMT
etag: W/"56b55c4723ce6b2545eaaf1e31631605"
access-control-allow-origin: *
cache-control: public,max-age=120,s-maxage=600
strict-transport-security: max-age=63072000; includeSubDomains; preload
server-timing: wf-uht;dur=
cf-cache-status: HIT
age: 254
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ff1e077b40b529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| 1xbet.com/api/internal/eventlogo | 104.18.41.64 | 200 OK | 78 kB |
URL GET HTTP/31xbet.com/api/internal/eventlogo IP104.18.41.64:443
CertificateIssuerGoogle Trust Services LLC Subject1xbet.com FingerprintA0:4A:36:06:EE:9B:04:BA:25:2E:97:EA:45:A0:70:63:51:97:25:CD ValiditySat, 16 Mar 2024 20:46:45 GMT - Fri, 14 Jun 2024 20:46:44 GMT
Hash0b59ca21d2090b3cc5beb251304d0a25 cf79084191a2c354ac0501e364c46e0d33efc74f adbca411000271cf782af917241a7f0287026663554481255df7c353efb71fed
GET /api/internal/eventlogo HTTP/1.1
Host: 1xbet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/en
Cookie: SESSION=48c304108dc7c16478f28f0e1826a0f3; _glhf=1715080731; dnb=1; platform_type=desktop; auid=mjmZBWY5yKs9D2/OCKszAg==; is_rtl=1; visit=1-c0f3effbd860b15d31261e1342c7d750; fast_coupon=true; v3fr=1; lng=en; flaglng=en; typeBetNames=full; coefview=0; tzo=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 06:22:44 GMT
content-type: application/vnd.api+json
vary: Accept-Encoding
cache-control: no-cache, private
server-timing: p;dur=134, dt_total;dur=135.479, wf-uht;dur=0.144
traceparent: 00-cf143b9f07ef879381c53bcef69c6c05-d34a337e90a0b4f5-01
x-dt: 70
x-time-ng: 0.135
content-encoding: br
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 87ff1e05b8d3b529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| v2l.traincdn.com/genfiles/cms/desktop/all-types-images/icon-warning.svg | 185.244.209.62 | | 544 B |
URL v2l.traincdn.com/genfiles/cms/desktop/all-types-images/icon-warning.svg IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typeSVG Scalable Vector Graphics image Hash1d37f1f690d51539770e5d4ace91ab93 563a20216a01dd4f14d829555e4844e716adb91f 75f81138f6215043571fc7f33d14a458a33f583195fcec59113dd530ce476415
GET /genfiles/cms/desktop/all-types-images/icon-warning.svg HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v2l.traincdn.com/styles/css/c-bottom-msg/main.16c30533f2f068afba2a1c10e00dead2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:49 GMT
content-type: image/svg+xml
content-length: 544
last-modified: Sat, 30 Mar 2024 13:15:56 GMT
etag: "1d37f1f690d51539770e5d4ace91ab93"
cache-control: max-age=3600
expires: Tue, 16 Apr 2024 13:13:05 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-3ec1673836510b9d3653e701af81e4da-383ed2795f0ba6eb-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-07T05:45:18+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| 1xbet.com/genfiles/cms/pg/70/images/1e8cea173ae783083167c71e360a287b.png | 104.18.41.64 | 200 OK | 380 B |
URL GET HTTP/31xbet.com/genfiles/cms/pg/70/images/1e8cea173ae783083167c71e360a287b.png IP104.18.41.64:443
CertificateIssuerGoogle Trust Services LLC Subject1xbet.com FingerprintA0:4A:36:06:EE:9B:04:BA:25:2E:97:EA:45:A0:70:63:51:97:25:CD ValiditySat, 16 Mar 2024 20:46:45 GMT - Fri, 14 Jun 2024 20:46:44 GMT
File typePNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced Hashd4bc8a7a35d39b931a87c9f1cd557096 5cea0c6fcf50976a91d41b59e9d2718d8c3db5ab 8b944e0279717d43858657adff29e42a5ab7c3d5bf1efddf0c8b52e65f67688f
GET /genfiles/cms/pg/70/images/1e8cea173ae783083167c71e360a287b.png HTTP/1.1
Host: 1xbet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/en
Cookie: SESSION=48c304108dc7c16478f28f0e1826a0f3; _glhf=1715080731; dnb=1; platform_type=desktop; auid=mjmZBWY5yKs9D2/OCKszAg==; is_rtl=1; visit=1-c0f3effbd860b15d31261e1342c7d750; fast_coupon=true; v3fr=1; lng=en; flaglng=en; typeBetNames=full; coefview=0; tzo=0; ggru=139; right_side=right; completed_user_settings=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 06:22:50 GMT
content-type: image/png
content-length: 380
last-modified: Tue, 11 Apr 2023 22:55:56 GMT
etag: "d4bc8a7a35d39b931a87c9f1cd557096"
access-control-allow-origin: *
cache-control: public,max-age=120,s-maxage=600
strict-transport-security: max-age=63072000; includeSubDomains; preload
server-timing: wf-uht;dur=0.023
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ff1e2c3a32b529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| 1xbet.com/genfiles/cms/desktop/all-types-images/social-sprite.svg | 104.18.41.64 | | 214 kB |
URL 1xbet.com/genfiles/cms/desktop/all-types-images/social-sprite.svg IP104.18.41.64:0
File typeSVG Scalable Vector Graphics image Size214 kB (213816 bytes) Hashc34d38188d64d5353fdd3b7b33f58058 788318ce224844280c8071d64d6e1e13ff4d0c24 bccaa08a6766820d7b6ba71866adddff355e8cfc21b653150c7ff6c82cb8683a
GET /genfiles/cms/desktop/all-types-images/social-sprite.svg HTTP/1.1
Host: 1xbet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/en
Cookie: SESSION=48c304108dc7c16478f28f0e1826a0f3; _glhf=1715080731; dnb=1; platform_type=desktop; auid=mjmZBWY5yKs9D2/OCKszAg==; is_rtl=1; visit=1-c0f3effbd860b15d31261e1342c7d750; fast_coupon=true; v3fr=1; lng=en; flaglng=en; typeBetNames=full; coefview=0; tzo=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 06:22:41 GMT
content-type: image/svg+xml
vary: Accept-Encoding
last-modified: Sat, 30 Mar 2024 13:10:49 GMT
etag: W/"c34d38188d64d5353fdd3b7b33f58058"
content-encoding: br
access-control-allow-origin: *
cache-control: public,max-age=120,s-maxage=600
strict-transport-security: max-age=63072000; includeSubDomains; preload
server-timing: wf-uht;dur=
cf-cache-status: HIT
age: 253
server: cloudflare
cf-ray: 87ff1df77f0db529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.googletagmanager.com/gtag/js?id=UA-131019888-1&l=dataLayer&cx=c | 142.250.74.168 | | 71 kB |
URL www.googletagmanager.com/gtag/js?id=UA-131019888-1&l=dataLayer&cx=c IP142.250.74.168:0
CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (1822) Hash3bbb9882408e37db89edb8627943ba53 465160289fe0c9bca7d1f60a36e9562f21141e8b 6799647c93fc55cb534a3397b319a35eee46538c78cad6a5b1b9f7cb0da2a13a
GET /gtag/js?id=UA-131019888-1&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 07 May 2024 06:22:50 GMT
expires: Tue, 07 May 2024 06:22:50 GMT
cache-control: private, max-age=900
last-modified: Tue, 07 May 2024 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 70750
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-7V60YW2S5H&cid=42826394.1715062971>m=45je4560h2v893859730za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&frm=0&z=1689028942 | 142.250.74.163 | 200 OK | 42 B |
URL GET HTTP/2www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-7V60YW2S5H&cid=42826394.1715062971>m=45je4560h2v893859730za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&frm=0&z=1689028942 IP142.250.74.163:443
CertificateIssuerGoogle Trust Services LLC Subject*.google.no Fingerprint7D:68:6D:B1:32:34:52:51:20:C9:53:FF:B9:B7:8F:7E:05:F9:F5:97 ValidityTue, 16 Apr 2024 04:31:00 GMT - Tue, 09 Jul 2024 04:30:59 GMT
File typeGIF image data, version 89a, 1 x 1 Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-7V60YW2S5H&cid=42826394.1715062971>m=45je4560h2v893859730za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&frm=0&z=1689028942 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 07 May 2024 06:22:51 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/styles__ltr.css | 142.250.74.35 | 200 OK | 25 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/styles__ltr.css IP142.250.74.35:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&k=6LcNBXgpAAAAAABPc9IqtedASd5Fl5BlTyer8EVh CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeASCII text, with very long lines (56412), with no line terminators Hash2c00b9f417b688224937053cd0c284a5 17b4c18ebc129055dd25f214c3f11e03e9df2d82 1e754b107428162c65a26d399b66db3daaea09616bf8620d9de4bc689ce48eed
GET /recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24617
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 01:09:29 GMT
expires: Sat, 03 May 2025 01:09:29 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2024 21:03:35 GMT
content-type: text/css
vary: Accept-Encoding
age: 364402
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js | 142.250.74.35 | 200 OK | 206 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js IP142.250.74.35:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&k=6LcNBXgpAAAAAABPc9IqtedASd5Fl5BlTyer8EVh CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeJavaScript source, ASCII text, with very long lines (631) Size206 kB (205803 bytes) Hashe2e79d6b927169d9e0e57e3baecc0993 1299473950b2999ba0b7f39bd5e4a60eafd1819d 231336ed913a5ebd4445b85486e053caf2b81cab91318241375f3f7a245b6c6b
GET /recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 205803
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 01:56:11 GMT
expires: Fri, 02 May 2025 01:56:11 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2024 21:03:35 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 448000
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js | 142.250.74.35 | 200 OK | 206 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js IP142.250.74.35:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&k=6LcNBXgpAAAAAABPc9IqtedASd5Fl5BlTyer8EVh CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeJavaScript source, ASCII text, with very long lines (631) Size206 kB (205803 bytes) Hashe2e79d6b927169d9e0e57e3baecc0993 1299473950b2999ba0b7f39bd5e4a60eafd1819d 231336ed913a5ebd4445b85486e053caf2b81cab91318241375f3f7a245b6c6b
GET /recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 205803
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 01:56:11 GMT
expires: Fri, 02 May 2025 01:56:11 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2024 21:03:35 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 448000
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| 1xbet.com/genfiles/cms/1/desktop/registration/icons.svg | 104.18.41.64 | | 47 kB |
URL 1xbet.com/genfiles/cms/1/desktop/registration/icons.svg IP104.18.41.64:0
File typeSVG Scalable Vector Graphics image Hashead169bcaed82e927fc0e03d77fdce2b 32ef7b8a41d38b380e385beb828a1fe839b58b8f 90ee0abbf14557674cc77d2cbb8ad0a452696398086e4f48cf1a98e125480641
GET /genfiles/cms/1/desktop/registration/icons.svg HTTP/1.1
Host: 1xbet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/en
Cookie: SESSION=48c304108dc7c16478f28f0e1826a0f3; _glhf=1715080731; dnb=1; platform_type=desktop; auid=mjmZBWY5yKs9D2/OCKszAg==; is_rtl=1; visit=1-c0f3effbd860b15d31261e1342c7d750; fast_coupon=true; v3fr=1; lng=en; flaglng=en; typeBetNames=full; coefview=0; tzo=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 06:22:41 GMT
content-type: image/svg+xml
vary: Accept-Encoding
last-modified: Thu, 18 Apr 2024 10:15:59 GMT
etag: W/"ead169bcaed82e927fc0e03d77fdce2b"
content-encoding: br
access-control-allow-origin: *
cache-control: public,max-age=120,s-maxage=600
strict-transport-security: max-age=63072000; includeSubDomains; preload
server-timing: wf-uht;dur=
cf-cache-status: HIT
age: 18
server: cloudflare
cf-ray: 87ff1df77f0bb529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| v2l.traincdn.com/sfiles/logo-champ/a77b9d632ad5933f8f0d32727e773a47.webp | 185.244.209.62 | | 1.4 kB |
URL v2l.traincdn.com/sfiles/logo-champ/a77b9d632ad5933f8f0d32727e773a47.webp IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typeRIFF (little-endian) data, Web/P image Hash144c63ffbf2346e0e0105f6da18e1f72 05818a758c864fa118405a0b152e31216e047dbf 40c8cc803649193320f5d674d7f7b4dd2b17ce3eb29d49e1cba609668229b8dd
GET /sfiles/logo-champ/a77b9d632ad5933f8f0d32727e773a47.webp HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:51 GMT
content-type: image/webp
content-length: 1406
last-modified: Tue, 03 Jan 2023 16:57:08 GMT
etag: "144c63ffbf2346e0e0105f6da18e1f72"
x-amz-server-side-encryption: AES256
cache-control: max-age=3600
expires: Sun, 31 Mar 2024 16:20:21 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.052
traceparent: 00-942ef3e5600609c29bb8669a81b2e198-f7a37b9a3952f4ec-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-07T06:18:30+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/sfiles/logo-champ/7df66795ddefdd41c5ce3b421d2a0bf2.webp | 185.244.209.62 | 200 OK | 1.4 kB |
URL GET HTTP/2v2l.traincdn.com/sfiles/logo-champ/7df66795ddefdd41c5ce3b421d2a0bf2.webp IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image Hash144c63ffbf2346e0e0105f6da18e1f72 05818a758c864fa118405a0b152e31216e047dbf 40c8cc803649193320f5d674d7f7b4dd2b17ce3eb29d49e1cba609668229b8dd
GET /sfiles/logo-champ/7df66795ddefdd41c5ce3b421d2a0bf2.webp HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:51 GMT
content-type: image/webp
content-length: 1406
last-modified: Tue, 03 Jan 2023 16:57:13 GMT
etag: "144c63ffbf2346e0e0105f6da18e1f72"
x-amz-server-side-encryption: AES256
cache-control: max-age=3600
expires: Mon, 19 Feb 2024 11:42:39 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.073
traceparent: 00-4ebb88562ecab26d574dffbe54c2af99-24a0f948a8fd83b8-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-07T05:57:59+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-7V60YW2S5H>m=45je4560h2v893859730za200&_p=1715062965238&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=42826394.1715062971&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_s=1&sid=1715062970&sct=1&seg=0&dl=https%3A%2F%2F1xbet.com%2Fen&dt=1XBET%20%E2%80%93%20Betting%20company%20%E1%90%89%20Online%20sports%20betting%201xBet&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&ep.optimize_id=GTM-5R4MT54&tfd=15175 | 216.239.32.36 | | 0 B |
URL region1.analytics.google.com/g/collect?v=2&tid=G-7V60YW2S5H>m=45je4560h2v893859730za200&_p=1715062965238&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=42826394.1715062971&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_s=1&sid=1715062970&sct=1&seg=0&dl=https%3A%2F%2F1xbet.com%2Fen&dt=1XBET%20%E2%80%93%20Betting%20company%20%E1%90%89%20Online%20sports%20betting%201xBet&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&ep.optimize_id=GTM-5R4MT54&tfd=15175 IP216.239.32.36:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-7V60YW2S5H>m=45je4560h2v893859730za200&_p=1715062965238&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=42826394.1715062971&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_s=1&sid=1715062970&sct=1&seg=0&dl=https%3A%2F%2F1xbet.com%2Fen&dt=1XBET%20%E2%80%93%20Betting%20company%20%E1%90%89%20Online%20sports%20betting%201xBet&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&ep.optimize_id=GTM-5R4MT54&tfd=15175 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://1xbet.com
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://1xbet.com
date: Tue, 07 May 2024 06:22:51 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.google.com/recaptcha/api2/anchor?ar=1&k=6LcNBXgpAAAAAABPc9IqtedASd5Fl5BlTyer8EVh&co=aHR0cHM6Ly8xeGJldC5jb206NDQz&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=wgxn7qgbeyl6 | 142.250.74.164 | 200 OK | 44 kB |
URL GET HTTP/3www.google.com/recaptcha/api2/anchor?ar=1&k=6LcNBXgpAAAAAABPc9IqtedASd5Fl5BlTyer8EVh&co=aHR0cHM6Ly8xeGJldC5jb206NDQz&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=wgxn7qgbeyl6 IP142.250.74.164:443
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0 ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
Hashcc28f3aaaf5de6cdd8619389c117c848 fe9f65939ab84c8ec57252c4bec173edbf0eced8 c2cc61bd25eec89530a0dae6882404567c09249af99c613eaf4256792e0eddc2
GET /recaptcha/api2/anchor?ar=1&k=6LcNBXgpAAAAAABPc9IqtedASd5Fl5BlTyer8EVh&co=aHR0cHM6Ly8xeGJldC5jb206NDQz&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=wgxn7qgbeyl6 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 07 May 2024 06:22:50 GMT
content-security-policy: script-src 'nonce-MvjtFWMxlZdK37XFLAzy0g' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.com/recaptcha/api2/anchor?ar=1&k=6LcNBXgpAAAAAABPc9IqtedASd5Fl5BlTyer8EVh&co=aHR0cHM6Ly8xeGJldC5jb206NDQz&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&theme=light&size=invisible&badge=bottomright&cb=29ox7irlzwfj | 142.250.74.164 | 200 OK | 44 kB |
URL GET HTTP/3www.google.com/recaptcha/api2/anchor?ar=1&k=6LcNBXgpAAAAAABPc9IqtedASd5Fl5BlTyer8EVh&co=aHR0cHM6Ly8xeGJldC5jb206NDQz&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&theme=light&size=invisible&badge=bottomright&cb=29ox7irlzwfj IP142.250.74.164:443
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0 ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
Hash67c792ff7c833d215defb724042884d2 855b1225a7d264d265f1cc5a5ecd7b6503a485e5 fb003dc6d59380003ced33175242b6ff41fb2e0ca00c1093d59ad329ce299fe8
GET /recaptcha/api2/anchor?ar=1&k=6LcNBXgpAAAAAABPc9IqtedASd5Fl5BlTyer8EVh&co=aHR0cHM6Ly8xeGJldC5jb206NDQz&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&theme=light&size=invisible&badge=bottomright&cb=29ox7irlzwfj HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 07 May 2024 06:22:50 GMT
content-security-policy: script-src 'nonce-Q0DPAFFr6qaE8o8wCpDH3w' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 15 kB |
URL GET HTTP/3fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcNBXgpAAAAAABPc9IqtedASd5Fl5BlTyer8EVh&co=aHR0cHM6Ly8xeGJldC5jb206NDQz&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=wgxn7qgbeyl6 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15344, version 1.0 Hash5d4aeb4e5f5ef754e307d7ffaef688bd 06db651cdf354c64a7383ea9c77024ef4fb4cef8 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 16:31:04 GMT
expires: Sat, 03 May 2025 16:31:04 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 309107
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 | 216.58.207.227 | | 16 kB |
URL fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 15552, version 1.0 Hash285467176f7fe6bb6a9c6873b3dad2cc ea04e4ff5142ddd69307c183def721a160e0a64e 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 01:50:52 GMT
expires: Fri, 02 May 2025 01:50:52 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
age: 448319
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js | 142.250.74.35 | 200 OK | 206 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js IP142.250.74.35:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&k=6LcNBXgpAAAAAABPc9IqtedASd5Fl5BlTyer8EVh CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeJavaScript source, ASCII text, with very long lines (631) Size206 kB (205803 bytes) Hashe2e79d6b927169d9e0e57e3baecc0993 1299473950b2999ba0b7f39bd5e4a60eafd1819d 231336ed913a5ebd4445b85486e053caf2b81cab91318241375f3f7a245b6c6b
GET /recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 205803
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 01:56:11 GMT
expires: Fri, 02 May 2025 01:56:11 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2024 21:03:35 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 448000
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.com/js/bg/bUdxsAjTAIzRSD77hvzEWafZZa_dWpPwAsOs2AXeH2g.js | 142.250.74.164 | 200 OK | 7.5 kB |
URL GET HTTP/3www.google.com/js/bg/bUdxsAjTAIzRSD77hvzEWafZZa_dWpPwAsOs2AXeH2g.js IP142.250.74.164:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcNBXgpAAAAAABPc9IqtedASd5Fl5BlTyer8EVh&co=aHR0cHM6Ly8xeGJldC5jb206NDQz&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=wgxn7qgbeyl6 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0 ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
File typeJavaScript source, ASCII text, with very long lines (17649) Hash85eff967b6703760e0e562179e7ef0ef a4567db32ae2ea7049209561d2edde3d26fbef88 6d4771b008d3008cd1483efb86fcc459a7d965afdd5a93f002c3acd805de1f68
GET /js/bg/bUdxsAjTAIzRSD77hvzEWafZZa_dWpPwAsOs2AXeH2g.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcNBXgpAAAAAABPc9IqtedASd5Fl5BlTyer8EVh&co=aHR0cHM6Ly8xeGJldC5jb206NDQz&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&theme=light&size=invisible&badge=bottomright&cb=29ox7irlzwfj
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 7493
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 01:57:44 GMT
expires: Fri, 02 May 2025 01:57:44 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 23 Apr 2024 17:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 447907
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.com/js/bg/bUdxsAjTAIzRSD77hvzEWafZZa_dWpPwAsOs2AXeH2g.js | 142.250.74.164 | 200 OK | 7.5 kB |
URL GET HTTP/3www.google.com/js/bg/bUdxsAjTAIzRSD77hvzEWafZZa_dWpPwAsOs2AXeH2g.js IP142.250.74.164:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcNBXgpAAAAAABPc9IqtedASd5Fl5BlTyer8EVh&co=aHR0cHM6Ly8xeGJldC5jb206NDQz&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=wgxn7qgbeyl6 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0 ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
File typeJavaScript source, ASCII text, with very long lines (17649) Hash85eff967b6703760e0e562179e7ef0ef a4567db32ae2ea7049209561d2edde3d26fbef88 6d4771b008d3008cd1483efb86fcc459a7d965afdd5a93f002c3acd805de1f68
GET /js/bg/bUdxsAjTAIzRSD77hvzEWafZZa_dWpPwAsOs2AXeH2g.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcNBXgpAAAAAABPc9IqtedASd5Fl5BlTyer8EVh&co=aHR0cHM6Ly8xeGJldC5jb206NDQz&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=wgxn7qgbeyl6
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 7493
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 01:57:44 GMT
expires: Fri, 02 May 2025 01:57:44 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 23 Apr 2024 17:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 447907
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.com/recaptcha/api2/webworker.js?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m | 142.250.74.164 | | 2.3 kB |
URL www.google.com/recaptcha/api2/webworker.js?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m IP142.250.74.164:0
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0 ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
Hash318383482baab4f7d17507373bd8a84f 8804baca752ff3c292113e637e66a770af980145 791703d6d03807b8efb032a6d6d512f21e878c701bd25e218bedac25bb79a8e2
GET /recaptcha/api2/webworker.js?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcNBXgpAAAAAABPc9IqtedASd5Fl5BlTyer8EVh&co=aHR0cHM6Ly8xeGJldC5jb206NDQz&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&theme=light&size=invisible&badge=bottomright&cb=29ox7irlzwfj
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/javascript; charset=utf-8
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Tue, 07 May 2024 06:22:51 GMT
date: Tue, 07 May 2024 06:22:51 GMT
cache-control: private, max-age=300
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js | 142.250.74.35 | 200 OK | 206 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js IP142.250.74.35:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&k=6LcNBXgpAAAAAABPc9IqtedASd5Fl5BlTyer8EVh CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeJavaScript source, ASCII text, with very long lines (631) Size206 kB (205803 bytes) Hashe2e79d6b927169d9e0e57e3baecc0993 1299473950b2999ba0b7f39bd5e4a60eafd1819d 231336ed913a5ebd4445b85486e053caf2b81cab91318241375f3f7a245b6c6b
GET /recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 205803
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 01:56:11 GMT
expires: Fri, 02 May 2025 01:56:11 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2024 21:03:35 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 448000
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| 1xbet.com/hd-api/external/api/web/v1/converslon/load | 104.18.41.64 | 200 OK | 22 kB |
URL GET HTTP/31xbet.com/hd-api/external/api/web/v1/converslon/load IP104.18.41.64:443
CertificateIssuerGoogle Trust Services LLC Subject1xbet.com FingerprintA0:4A:36:06:EE:9B:04:BA:25:2E:97:EA:45:A0:70:63:51:97:25:CD ValiditySat, 16 Mar 2024 20:46:45 GMT - Fri, 14 Jun 2024 20:46:44 GMT
Hash1728d174cc09bb63787128b12df269f5 a8e735d9926cf0e0e39e101e4460a3b13e999706 dc223e2a1c964c38359fa4dcc21cdaf59fd2a4d29cb2e4a99f06f34aa96de1ab
GET /hd-api/external/api/web/v1/converslon/load HTTP/1.1
Host: 1xbet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/en
Cookie: SESSION=48c304108dc7c16478f28f0e1826a0f3; _glhf=1715080731; dnb=1; platform_type=desktop; auid=mjmZBWY5yKs9D2/OCKszAg==; is_rtl=1; visit=1-c0f3effbd860b15d31261e1342c7d750; fast_coupon=true; v3fr=1; lng=en; flaglng=en; typeBetNames=full; coefview=0; tzo=0; ggru=139; right_side=right; completed_user_settings=true; _ga_7V60YW2S5H=GS1.1.1715062970.1.0.1715062970.60.0.0; _ga=GA1.1.42826394.1715062971
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 06:22:51 GMT
content-type: application/json
vary: Accept-Encoding
x-request-guid: e19d20f1c24b5032d25ffa59ab9b66ff
strict-transport-security: max-age=63072000; includeSubDomains; preload
server-timing: wf-uht;dur=0.006
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 87ff1e358dc2b529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| v2l.traincdn.com/sfiles/logo_teams/a1aa5735a468b8d9a2fba9093f9fed40.png | 185.244.209.62 | | 19 kB |
URL v2l.traincdn.com/sfiles/logo_teams/a1aa5735a468b8d9a2fba9093f9fed40.png IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typePNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced Hasha1aa5735a468b8d9a2fba9093f9fed40 47032315282be16cd370a3f0e757a9985d6409f4 4087bcc7be1acf82c1cbb5b7ec5a38a44cb8419c2bebd02128dbeccb57faaac2
GET /sfiles/logo_teams/a1aa5735a468b8d9a2fba9093f9fed40.png HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:51 GMT
content-type: image/png
content-length: 18822
x-amz-id-2: otJWAbyEe/fRf+ZXd5FDGLUWtYNPQvBhp4nwtNxt3RJ9MqSwZDHQu0UBCiWjhK2aggwNKd+vFXriEaqGYrSCzaUX4us5G5Q5CSt7sIXyRDA=
x-amz-request-id: ZMT4B61T96Y3B72K
last-modified: Fri, 06 Jan 2023 17:53:37 GMT
etag: "a1aa5735a468b8d9a2fba9093f9fed40"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=86400
x-amz-version-id: CJT_yhrL8Xxii35069uYxHWAHX9XjmTV
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-01334027e3354b39bce2ff669141cb32-5f7fbeac267d38be-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-06T10:11:30+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/sfiles/logo_teams/369519.png | 185.244.209.62 | | 12 kB |
URL v2l.traincdn.com/sfiles/logo_teams/369519.png IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typePNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced Hasha48cc39bee1c7317671c862087c47a66 251b1791aede87ccef8a2507a32289f885bbe77c e362cdba2cfc16fafbbb22651956deb4a714765ac6cc1c73e929e09304dc99d4
GET /sfiles/logo_teams/369519.png HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:51 GMT
content-type: image/png
content-length: 11949
x-amz-id-2: w4kefIa/AGgRtsuwvvCsIfGPomujFszP4gnDbLdeUY1WVMt8jgAEEERc7OBNcl2Lmn4mugxY7oGptXTnR+r2CQ==
x-amz-request-id: DED1END32YAKQK9W
last-modified: Fri, 06 Jan 2023 18:02:54 GMT
etag: "a48cc39bee1c7317671c862087c47a66"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=86400
x-amz-version-id: PHbXJZvuJEeeacpug6gP0kpKkkd8K_oa
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-d7fe5e9a60c56fe967c340426567713e-4923b0909c336778-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-07T04:37:18+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/sfiles/logo_teams/821611.png | 185.244.209.62 | 200 OK | 13 kB |
URL GET HTTP/2v2l.traincdn.com/sfiles/logo_teams/821611.png IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typePNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced Hashf2b8973b4def5048f7d43fd98550961c 43df76d89a8e038d4081cd89a47efcebffae92a0 ef26b113ea62ce1d0da58cbeaa343fab90a33f6d1d1914b5c512ee62d7fd8c50
GET /sfiles/logo_teams/821611.png HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:51 GMT
content-type: image/png
content-length: 12826
x-amz-id-2: 7dhqsehPOnavlFyMlVBfqJRxmS3q+7hH9qRH918ZGF+tGHGOh74Dffjh0qSh4XUZqZrnuro2YIY=
x-amz-request-id: DEDEPV1STY5NB228
last-modified: Fri, 06 Jan 2023 17:59:36 GMT
etag: "f2b8973b4def5048f7d43fd98550961c"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=86400
x-amz-version-id: DOdj15puWFzb6DwXdshF7fNjiTyQU4iH
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-3501e2efbdaf155bdc3d0d2976f92035-1e17d54706229088-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-07T04:37:18+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/sfiles/logo_teams/41f34495ed138dffc08ff5e3d6627cda.png | 185.244.209.62 | | 15 kB |
URL v2l.traincdn.com/sfiles/logo_teams/41f34495ed138dffc08ff5e3d6627cda.png IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typePNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced Hash44cbc5bb70ff063a0a872a16f541e488 153dff6db39e2e1a72e321e580da4aa84de679ff e9ba0f23f2b7d5d7d3af8e76c3058e69e1a33c6462328f1194f3059166b7b7ce
GET /sfiles/logo_teams/41f34495ed138dffc08ff5e3d6627cda.png HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:51 GMT
content-type: image/png
content-length: 14557
x-amz-id-2: yp0bOJ34lNMkzqnM4PVLwedBKMC9h8PszywsxuFlx34HLz9Ghof6YhDt0SvdDEjLdMxnh+qG/oNpzzhjVBC1qCxoTpyT1O3rAS+ZTL7rXps=
x-amz-request-id: S1K5XZF2FW5Z4KQN
last-modified: Wed, 01 Feb 2023 10:02:39 GMT
etag: "44cbc5bb70ff063a0a872a16f541e488"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=86400
x-amz-version-id: c6OvHE73eds8fvI1CwFhAZjySrO6ekJE
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-a358fc88b58f38263816cd1193c50670-0323fb1f2cd09aff-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-07T05:34:19+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/sfiles/logo_teams/41695.png | 185.244.209.62 | | 13 kB |
URL v2l.traincdn.com/sfiles/logo_teams/41695.png IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typePNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced Hash5cb7235d096b467ba849ce46af7059e5 db61d1b1638eeba806b0a9d15d65a3f4d5285019 864718d89792436920fd1af0f38114e8cacaf4eef58c288a103f4c02aad205b1
GET /sfiles/logo_teams/41695.png HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:51 GMT
content-type: image/png
content-length: 12636
x-amz-id-2: +gBTEW8/mWX1TH7/65DwVsnJz0SbRkn8VbMN7x12U0DuQY07usvmuuhmpF2jKFLviLZfR8gYKKLaGPELvUFHS32Gmky4JoSDOWe2/m0cEHE=
x-amz-request-id: S1K3CCRXMNYK7A8K
last-modified: Wed, 01 Feb 2023 14:04:33 GMT
etag: "5cb7235d096b467ba849ce46af7059e5"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=86400
x-amz-version-id: FpXO78Y_H79NBkiAFu4qIt.mXDER0R76
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-a014930512e9614324aa680154cb5a89-e687b7b06a252698-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-07T05:34:19+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/sfiles/logo_teams/cb05a7bf9ca019802dec84300baf3137.png | 185.244.209.62 | | 18 kB |
URL v2l.traincdn.com/sfiles/logo_teams/cb05a7bf9ca019802dec84300baf3137.png IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typePNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced Hashd72f67270fc8ce636e367f5c419032f4 9db251850043f0c0827dcac54235daf49f6d496f b015c2c6049fd1d8e08caf3223f24e4828f706acc797d69ba1b696453f199494
GET /sfiles/logo_teams/cb05a7bf9ca019802dec84300baf3137.png HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:51 GMT
content-type: image/png
content-length: 17983
x-amz-id-2: 6ovWClfwGvRjU7HOm3NAtz1xeuk+fi0i5G22MZdWXF3F7M3/VVsv72v++JvH+JvqkaIAG4YdhmM=
x-amz-request-id: 22GDZ4Q6PGVMYYKV
last-modified: Tue, 21 Mar 2023 09:05:01 GMT
etag: "d72f67270fc8ce636e367f5c419032f4"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=86400
x-amz-version-id: v_GsbwHCG67T.40nU9BvQvYksd4GT.Di
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-d8fb8da5d52b564d6d0c8b062bfe0389-54272b795469d4b0-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-07T05:25:18+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/sfiles/logo_teams/98a92a1f165023d687dcffddd06a9ce9.png | 185.244.209.62 | | 16 kB |
URL v2l.traincdn.com/sfiles/logo_teams/98a92a1f165023d687dcffddd06a9ce9.png IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typePNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced Hashbc5d1d2858dd73e24f23df8bfc7135c7 71428db15f7d9f8da8660ced1211f62c72c34d3f 420049f643b1113ec952b59282d2503358d658247ca816a04fd0f0e55a427e01
GET /sfiles/logo_teams/98a92a1f165023d687dcffddd06a9ce9.png HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:51 GMT
content-type: image/png
content-length: 15584
x-amz-id-2: P6zGUDBjloe3LMK39dC6L7UWoGOmyTE4S2NEXEe5MY65tAfVbCsRqp1LCHUXlXpU3/Kd/V/L7eE=
x-amz-request-id: N5SW4DX9SS9HV43D
last-modified: Wed, 28 Jun 2023 14:01:13 GMT
etag: "bc5d1d2858dd73e24f23df8bfc7135c7"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=86400
x-amz-version-id: hzyPUht4KrdNf1dUF5D10ikAsPoc2KaG
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-b0288e9de5249205710e420128330b2b-df5affce6be34749-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-07T04:50:18+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/sfiles/logo_teams/144745.png | 185.244.209.62 | | 21 kB |
URL v2l.traincdn.com/sfiles/logo_teams/144745.png IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typePNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced Hash66070bd300d1559ab349a80882ab7d0a 6ae2fae3ca24f702e0c4e131fadaaed4ee664a99 f596ac4a1d5aa686e991b74a0d61561ff927fcace848ffd3526d522b4f88d4f8
GET /sfiles/logo_teams/144745.png HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:51 GMT
content-type: image/png
content-length: 20993
x-amz-id-2: 0vMdWtJGIdSCL7BXXP6dmHABnLnui4VrV9fOMQBY5D0IhYoUDkRzIlCbMg269B0Jt/1+TGwOfLVnmiVGwKkh5nid1IbSGOnlBgrKEfGPIZg=
x-amz-request-id: 940GV170SHFAPNJ6
last-modified: Tue, 17 Jan 2023 12:06:41 GMT
etag: "66070bd300d1559ab349a80882ab7d0a"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=86400
x-amz-version-id: LnP.bsUhu96jM9gQMwsxca.ddWqQALrs
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.049
traceparent: 00-c08dfa23e1f00c916512d0f1bbbcf769-fbb0392026600e0c-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-07T04:50:18+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/sfiles/logo_teams/d823fb52b00a53074892a9b238e3f5d9.png | 185.244.209.62 | 200 OK | 24 kB |
URL GET HTTP/2v2l.traincdn.com/sfiles/logo_teams/d823fb52b00a53074892a9b238e3f5d9.png IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typePNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced Hash1ec4e6331897ba41acad36e05c8311b0 faad8f7b1fbc9152d9539f51eabed79625a5d4b4 36f1566be852228f96fa33c4116ce0587eb1d65b7f9071b39a6ccd046a58f95e
GET /sfiles/logo_teams/d823fb52b00a53074892a9b238e3f5d9.png HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:51 GMT
content-type: image/png
content-length: 24004
x-amz-id-2: DyY1s1+Nn/0XeFqLmNbBRJz+KEUOlxHzbAioDKSHY+LQTzYDHH8kbFsHpcA1/bARXNhTuiDEsKmxqcJPzc7WJQ==
x-amz-request-id: 22GBNPCZDSGC2DBB
last-modified: Thu, 26 Jan 2023 09:59:32 GMT
etag: "1ec4e6331897ba41acad36e05c8311b0"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=86400
x-amz-version-id: d.fsxM0M0AfJADBUNrfsj0EK1JmobnqW
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-5a792d6bc69b75fd3950807c811f6004-b551a8b73bf04c94-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-07T05:25:18+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/sfiles/logo_teams/1986.png | 185.244.209.62 | | 3.1 kB |
URL v2l.traincdn.com/sfiles/logo_teams/1986.png IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typePNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced Hashb585d5ea46553a93cbd433ebe03dd909 7eee8e59773b5b39bf2f70ba87e2385556bb96f6 1ccc4a3ea29c80dc94e531a465e731c964bba638639778bb522fb4fa6a6491fc
GET /sfiles/logo_teams/1986.png HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:51 GMT
content-type: image/png
content-length: 3085
x-amz-id-2: Jp7YZhF8qJsA/YRjAlwy1xSxOc1Xp6X9egKsHXUjGE6qucKlqM2NUX0bpszPy63TnqAg1x6Gj8w=
x-amz-request-id: PDJSDGAPTKPZVPFQ
last-modified: Tue, 31 Jan 2023 13:33:28 GMT
etag: "b585d5ea46553a93cbd433ebe03dd909"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=86400
x-amz-version-id: uwJGfe1paHL0iHeilwt4KKXWg4G1XbsL
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.021
traceparent: 00-8825458bc7ca4ac681b00bb1e640dd57-497754c6307ab91d-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-06T13:17:52+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/sfiles/logo_teams/57060f6368da70fbdfff37cb4b0280a5.png | 185.244.209.62 | | 15 kB |
URL v2l.traincdn.com/sfiles/logo_teams/57060f6368da70fbdfff37cb4b0280a5.png IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typePNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced Hash6c3b8a1f1a1bcff9d1e46b71bad8e495 0f637111b891dad188eb7472ca7f5e39ab9a712e 079f7161c05c29cf58c9fb0c550d4de1fdd10f6ec5c7639cbe107c1b85c89c28
GET /sfiles/logo_teams/57060f6368da70fbdfff37cb4b0280a5.png HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:51 GMT
content-type: image/png
content-length: 15232
x-amz-id-2: 5dhMHyFzL899VXUgUaNYaeK8zV7hBtytQyQ1xODYp+eL0+L7Cy1rxgTJPVPsViBgp1Hyk884vw4=
x-amz-request-id: CPXB6GTJRMD5E4XS
last-modified: Wed, 01 Feb 2023 08:49:43 GMT
etag: "6c3b8a1f1a1bcff9d1e46b71bad8e495"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=86400
x-amz-version-id: XFDgeQ3NHZn_Ar0S2NB2bKNxnX8TL7JF
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.053
traceparent: 00-81608fdca7f0ec43d5c85d3cb8bc198c-18e8d549f12ed7de-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-06T16:17:21+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/sfiles/logo_teams/3472.png | 185.244.209.62 | 200 OK | 3.7 kB |
URL GET HTTP/2v2l.traincdn.com/sfiles/logo_teams/3472.png IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typePNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced Hash0834e8035d3dc85458facd2318961e7c 5c543b59b697a37dae9fadd5c33b778aaf064eae 3decbba4cbc6c6e5889b88ff32689c9f59782823b5443f0c2760aae2554bf321
GET /sfiles/logo_teams/3472.png HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:51 GMT
content-type: image/png
content-length: 3667
x-amz-id-2: BmpXXvb7KSeusRYzUbpshQOtJvzHGLdbfGnyqQU76vUICs4ISTmxyXiCGNpJaHQ/iZEmWe097G93c4MiQM4o6nVFe5yst9E7ZTKLKgUPJ34=
x-amz-request-id: 7QMZ9EN24PFS15N2
last-modified: Tue, 31 Jan 2023 14:37:45 GMT
etag: "0834e8035d3dc85458facd2318961e7c"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=86400
x-amz-version-id: KXh2Oe1srxUJir7lI8WFtIvvxwKcDSXR
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.049
traceparent: 00-dab128c9171f938bae7b52fd2739992e-a2c21227f90dee7c-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-06T23:04:08+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/sfiles/logo_teams/2b7d9a9f081b747caced4aaad6f6890e.png | 185.244.209.62 | | 8.7 kB |
URL v2l.traincdn.com/sfiles/logo_teams/2b7d9a9f081b747caced4aaad6f6890e.png IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typePNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced Hash2b7d9a9f081b747caced4aaad6f6890e c02c03c62929b705ba7ebeacfaec45424a821148 df634896bcaec5923aab4609860bdedca24cc899495166a3f7e27c1113a9b868
GET /sfiles/logo_teams/2b7d9a9f081b747caced4aaad6f6890e.png HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:52 GMT
content-type: image/png
content-length: 8714
x-amz-id-2: 32WX9QCSjWiEIqE5IYAvDdi5aKklNxTip8dD/xDLphjR/M0rYEzzfqm8BB2eMa55b68QmsgTu7rbjO+ZE8DZrw==
x-amz-request-id: MDKTP430A0MCRFV0
last-modified: Thu, 26 Jan 2023 10:12:39 GMT
etag: "2b7d9a9f081b747caced4aaad6f6890e"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=86400
x-amz-version-id: DXC0ioWGBhuXqOxMxR3AZBq35.XzYs3J
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.026
traceparent: 00-c44ef85617098e4c04495afc1a69f229-6f9b1021e912504b-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-06T11:26:00+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/sfiles/logo_teams/12741.png | 185.244.209.62 | 200 OK | 10 kB |
URL GET HTTP/2v2l.traincdn.com/sfiles/logo_teams/12741.png IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typePNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced Hashaa8bcd293252c0c88bc469bca8c80f05 e52b4a292faa41296a4044b4b9317266c6242cbe 59015ba0b749138ce50775656e9ae05688f3f5db808d98c09f8afa0e1deda94b
GET /sfiles/logo_teams/12741.png HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:52 GMT
content-type: image/png
content-length: 10218
x-amz-id-2: k2gMblLereQ4Xwn8IGWS4Rji8MwQefWQHJ/3FdEPB7GHD4mHaI3qH785dgzcHoadTrYfASMbn5XNmc3otUrb1MzW0kS3Vifpbe8qk+6lzE8=
x-amz-request-id: CM8X5JME3XNJ4AKG
last-modified: Wed, 01 Feb 2023 14:15:30 GMT
etag: "aa8bcd293252c0c88bc469bca8c80f05"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=86400
x-amz-version-id: iMu.R6DqadZxJHGr0xrqlb7nqBD82h5O
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.044
traceparent: 00-aae54a3cef4a191bf025ba129bc2a632-f7bf4217c4f3e3b8-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-07T02:35:50+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| 1xbet.com/genfiles/cms/1/desktop/banner/88c9160181daec0ff86017e32a7b730f.png | 104.18.41.64 | 200 OK | 316 kB |
URL GET HTTP/31xbet.com/genfiles/cms/1/desktop/banner/88c9160181daec0ff86017e32a7b730f.png IP104.18.41.64:443
CertificateIssuerGoogle Trust Services LLC Subject1xbet.com FingerprintA0:4A:36:06:EE:9B:04:BA:25:2E:97:EA:45:A0:70:63:51:97:25:CD ValiditySat, 16 Mar 2024 20:46:45 GMT - Fri, 14 Jun 2024 20:46:44 GMT
File typePNG image data, 925 x 460, 8-bit/color RGB, non-interlaced Size316 kB (316528 bytes) Hash588e279b08f9b0f77ae8cf6b88a828a1 a6c2cabc12e74bc2b6fc31430933810cb3d6296a ec2fd91270a072aa80c2a8b1a3786b9b719a86311998afcb2bf1682e45ade4a6
GET /genfiles/cms/1/desktop/banner/88c9160181daec0ff86017e32a7b730f.png HTTP/1.1
Host: 1xbet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/en
Cookie: SESSION=48c304108dc7c16478f28f0e1826a0f3; _glhf=1715080731; dnb=1; platform_type=desktop; auid=mjmZBWY5yKs9D2/OCKszAg==; is_rtl=1; visit=1-c0f3effbd860b15d31261e1342c7d750; fast_coupon=true; v3fr=1; lng=en; flaglng=en; typeBetNames=full; coefview=0; tzo=0; ggru=139; right_side=right; completed_user_settings=true; _ga_7V60YW2S5H=GS1.1.1715062970.1.0.1715062970.60.0.0; _ga=GA1.1.42826394.1715062971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 06:22:52 GMT
content-type: image/png
content-length: 316528
last-modified: Fri, 05 May 2023 08:01:37 GMT
etag: "588e279b08f9b0f77ae8cf6b88a828a1"
access-control-allow-origin: *
cache-control: public,max-age=120,s-maxage=600
strict-transport-security: max-age=63072000; includeSubDomains; preload
server-timing: wf-uht;dur=
cf-cache-status: HIT
age: 261
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ff1e3818c6b529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| 1xbet.com/genfiles/cms/1/desktop/banner/65fc8c7c390ad696a49fc3f11b27153d.jpg | 104.18.41.64 | 200 OK | 42 kB |
URL GET HTTP/31xbet.com/genfiles/cms/1/desktop/banner/65fc8c7c390ad696a49fc3f11b27153d.jpg IP104.18.41.64:443
CertificateIssuerGoogle Trust Services LLC Subject1xbet.com FingerprintA0:4A:36:06:EE:9B:04:BA:25:2E:97:EA:45:A0:70:63:51:97:25:CD ValiditySat, 16 Mar 2024 20:46:45 GMT - Fri, 14 Jun 2024 20:46:44 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 925x460, components 3 Hash10b2a379af7b5f42d6701ddbbd1a1250 a4d7e077e1375b5bde01590a5f982ef8ca3ad81a 7f8365c1e7930befa271a3242ea8a965bc30206ea335f34be175000d4811c5f7
GET /genfiles/cms/1/desktop/banner/65fc8c7c390ad696a49fc3f11b27153d.jpg HTTP/1.1
Host: 1xbet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/en
Cookie: SESSION=48c304108dc7c16478f28f0e1826a0f3; _glhf=1715080731; dnb=1; platform_type=desktop; auid=mjmZBWY5yKs9D2/OCKszAg==; is_rtl=1; visit=1-c0f3effbd860b15d31261e1342c7d750; fast_coupon=true; v3fr=1; lng=en; flaglng=en; typeBetNames=full; coefview=0; tzo=0; ggru=139; right_side=right; completed_user_settings=true; _ga_7V60YW2S5H=GS1.1.1715062970.1.0.1715062970.60.0.0; _ga=GA1.1.42826394.1715062971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 06:22:52 GMT
content-type: image/jpeg
content-length: 42237
cache-control: public,max-age=120,s-maxage=600
cf-bgj: h2pri
access-control-allow-origin: *
etag: "10b2a379af7b5f42d6701ddbbd1a1250"
last-modified: Sat, 27 Apr 2024 04:33:50 GMT
server-timing: wf-uht;dur=
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
age: 261
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ff1e3828dab529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| 1xbet.com/LineFeed/GetGameZip?id=528450883&cfview=0&lng=en&GroupEvents=true&isSubGames=false&allEventsGroupSubGames=false&partner=1&country=137&fcountry=137 | 104.18.41.64 | 200 OK | 18 kB |
URL GET HTTP/31xbet.com/LineFeed/GetGameZip?id=528450883&cfview=0&lng=en&GroupEvents=true&isSubGames=false&allEventsGroupSubGames=false&partner=1&country=137&fcountry=137 IP104.18.41.64:443
CertificateIssuerGoogle Trust Services LLC Subject1xbet.com FingerprintA0:4A:36:06:EE:9B:04:BA:25:2E:97:EA:45:A0:70:63:51:97:25:CD ValiditySat, 16 Mar 2024 20:46:45 GMT - Fri, 14 Jun 2024 20:46:44 GMT
Hash78ef3db502b5659da2faddc657f7311e 962f5d3b0218e2b093986ae05b446f8a65902ecb dbc0dbe225b86b438770a4b3593ded5049401d2b5f2d2a0ec80cab71340a0b1b
GET /LineFeed/GetGameZip?id=528450883&cfview=0&lng=en&GroupEvents=true&isSubGames=false&allEventsGroupSubGames=false&partner=1&country=137&fcountry=137 HTTP/1.1
Host: 1xbet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/en
Cookie: SESSION=48c304108dc7c16478f28f0e1826a0f3; _glhf=1715080731; dnb=1; platform_type=desktop; auid=mjmZBWY5yKs9D2/OCKszAg==; is_rtl=1; visit=1-c0f3effbd860b15d31261e1342c7d750; fast_coupon=true; v3fr=1; lng=en; flaglng=en; typeBetNames=full; coefview=0; tzo=0; ggru=139; right_side=right; completed_user_settings=true; _ga_7V60YW2S5H=GS1.1.1715062970.1.0.1715062970.60.0.0; _ga=GA1.1.42826394.1715062971
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 06:22:52 GMT
content-type: application/json; charset=utf-8
content-length: 17542
cache-control: public, max-age=5
content-encoding: br
last-modified: Tue, 07 May 2024 06:22:52 GMT
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
server-timing: wf-uht;dur=0.022
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 87ff1e37d88db529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| 1xbet.com/default/img/scoreboard/scoreboard-nav-icns.svg | 104.18.41.64 | | 54 kB |
URL 1xbet.com/default/img/scoreboard/scoreboard-nav-icns.svg IP104.18.41.64:0
File typeSVG Scalable Vector Graphics image Hash535f2eaeada554bedfe87ab12132babc 0061ced6fa94b635b7c57e3a1b23cee4ad317b25 f8f337801d32ebc8e51cfbda0cc31dbf047ea048c683faff0a020995ecc2b787
GET /default/img/scoreboard/scoreboard-nav-icns.svg HTTP/1.1
Host: 1xbet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/en
Cookie: SESSION=48c304108dc7c16478f28f0e1826a0f3; _glhf=1715080731; dnb=1; platform_type=desktop; auid=mjmZBWY5yKs9D2/OCKszAg==; is_rtl=1; visit=1-c0f3effbd860b15d31261e1342c7d750; fast_coupon=true; v3fr=1; lng=en; flaglng=en; typeBetNames=full; coefview=0; tzo=0; ggru=139; right_side=right; completed_user_settings=true; _ga_7V60YW2S5H=GS1.1.1715062970.1.0.1715062970.60.0.0; _ga=GA1.1.42826394.1715062971
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 06:22:51 GMT
content-type: image/svg+xml
last-modified: Wed, 28 Feb 2024 06:18:31 GMT
vary: Accept-Encoding
etag: W/"65ded037-5b2f"
content-encoding: br
strict-transport-security: max-age=63072000; includeSubDomains; preload
server-timing: wf-uht;dur=0.018
cf-cache-status: HIT
age: 6181
server: cloudflare
cf-ray: 87ff1e33ebf7b529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| 1xbet.com/genfiles/cms/1/desktop/banner/be9c50783e5c79a3aabf9baef979bd54.jpg | 104.18.41.64 | | 43 kB |
URL 1xbet.com/genfiles/cms/1/desktop/banner/be9c50783e5c79a3aabf9baef979bd54.jpg IP104.18.41.64:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 925x460, components 3 Hash27d750f69b956e7b4f1394e801715d77 a193ec31010e9f833d63c7c5d332b8c35349194e d13d3f382c21d7ef4c72f84db3114a0bbf87249043ff38eafe3995c3717802c3
GET /genfiles/cms/1/desktop/banner/be9c50783e5c79a3aabf9baef979bd54.jpg HTTP/1.1
Host: 1xbet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/en
Cookie: SESSION=48c304108dc7c16478f28f0e1826a0f3; _glhf=1715080731; dnb=1; platform_type=desktop; auid=mjmZBWY5yKs9D2/OCKszAg==; is_rtl=1; visit=1-c0f3effbd860b15d31261e1342c7d750; fast_coupon=true; v3fr=1; lng=en; flaglng=en; typeBetNames=full; coefview=0; tzo=0; ggru=139; right_side=right; completed_user_settings=true; _ga_7V60YW2S5H=GS1.1.1715062970.1.0.1715062970.60.0.0; _ga=GA1.1.42826394.1715062971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 06:22:52 GMT
content-type: image/jpeg
content-length: 42668
cache-control: public,max-age=120,s-maxage=600
cf-bgj: h2pri
access-control-allow-origin: *
etag: "27d750f69b956e7b4f1394e801715d77"
last-modified: Mon, 06 May 2024 09:07:58 GMT
server-timing: wf-uht;dur=
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
age: 262
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ff1e38c98cb529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| 1xbet.com/LineFeed/GetGameZip?id=529224955&cfview=0&lng=en&GroupEvents=true&isSubGames=false&allEventsGroupSubGames=false&partner=1&country=137&fcountry=137 | 104.18.41.64 | 200 OK | 85 kB |
URL GET HTTP/31xbet.com/LineFeed/GetGameZip?id=529224955&cfview=0&lng=en&GroupEvents=true&isSubGames=false&allEventsGroupSubGames=false&partner=1&country=137&fcountry=137 IP104.18.41.64:443
CertificateIssuerGoogle Trust Services LLC Subject1xbet.com FingerprintA0:4A:36:06:EE:9B:04:BA:25:2E:97:EA:45:A0:70:63:51:97:25:CD ValiditySat, 16 Mar 2024 20:46:45 GMT - Fri, 14 Jun 2024 20:46:44 GMT
Hash57b94cc0d18ce0a162eaba94addce5d0 c5f7a1ac078d527fbe399e38730709c73095e6d8 b0c7ec78f1aabfac8d0b9fb2d08585821586a79e01782c067f28d4e6e8c23cf3
GET /LineFeed/GetGameZip?id=529224955&cfview=0&lng=en&GroupEvents=true&isSubGames=false&allEventsGroupSubGames=false&partner=1&country=137&fcountry=137 HTTP/1.1
Host: 1xbet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/en
Cookie: SESSION=48c304108dc7c16478f28f0e1826a0f3; _glhf=1715080731; dnb=1; platform_type=desktop; auid=mjmZBWY5yKs9D2/OCKszAg==; is_rtl=1; visit=1-c0f3effbd860b15d31261e1342c7d750; fast_coupon=true; v3fr=1; lng=en; flaglng=en; typeBetNames=full; coefview=0; tzo=0; ggru=139; right_side=right; completed_user_settings=true; _ga_7V60YW2S5H=GS1.1.1715062970.1.0.1715062970.60.0.0; _ga=GA1.1.42826394.1715062971
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 06:22:52 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
cache-control: public, max-age=5
last-modified: Tue, 07 May 2024 06:22:52 GMT
content-encoding: br
strict-transport-security: max-age=63072000; includeSubDomains; preload
server-timing: wf-uht;dur=0.009
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 87ff1e37d885b529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| 1xbet.com/genfiles/cms/1/desktop/banner/db82499b85d2c4c54c32ece85961bf88.jpg | 104.18.41.64 | | 117 kB |
URL 1xbet.com/genfiles/cms/1/desktop/banner/db82499b85d2c4c54c32ece85961bf88.jpg IP104.18.41.64:0
File typeJPEG image data, progressive, precision 8, 925x460, components 3 Size117 kB (117014 bytes) Hash507ba364c8b6dd4e4e7670b68b315a85 c600916c8b2b66759da1c8ebdde0e608bf08253f 8b563b94a305c3fe3c69563c584ac2f08e33a547ac1f4cca4ad34310504497fb
GET /genfiles/cms/1/desktop/banner/db82499b85d2c4c54c32ece85961bf88.jpg HTTP/1.1
Host: 1xbet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/en
Cookie: SESSION=48c304108dc7c16478f28f0e1826a0f3; _glhf=1715080731; dnb=1; platform_type=desktop; auid=mjmZBWY5yKs9D2/OCKszAg==; is_rtl=1; visit=1-c0f3effbd860b15d31261e1342c7d750; fast_coupon=true; v3fr=1; lng=en; flaglng=en; typeBetNames=full; coefview=0; tzo=0; ggru=139; right_side=right; completed_user_settings=true; _ga_7V60YW2S5H=GS1.1.1715062970.1.0.1715062970.60.0.0; _ga=GA1.1.42826394.1715062971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 06:22:52 GMT
content-type: image/jpeg
content-length: 117014
cache-control: public,max-age=120,s-maxage=600
cf-bgj: h2pri
access-control-allow-origin: *
etag: "507ba364c8b6dd4e4e7670b68b315a85"
last-modified: Tue, 11 Apr 2023 18:15:31 GMT
server-timing: wf-uht;dur=
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
age: 262
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ff1e38c993b529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| 1xbet.com/genfiles/cms/1/desktop/banner/ae7d9fd9353fc5c1d635d4e44bb55062.jpg | 104.18.41.64 | | 113 kB |
URL 1xbet.com/genfiles/cms/1/desktop/banner/ae7d9fd9353fc5c1d635d4e44bb55062.jpg IP104.18.41.64:0
File typeJPEG image data, progressive, precision 8, 925x460, components 3 Size113 kB (112684 bytes) Hash5f77d483cf57645f2b6b948b85e32ed1 4f2fdf7239990b8c699a832d3ba4a4239902c94c 1bc73b3ca5ba155f891a0dd41583370fb92183f80947bc1e54d3e6fa5d4d3ad1
GET /genfiles/cms/1/desktop/banner/ae7d9fd9353fc5c1d635d4e44bb55062.jpg HTTP/1.1
Host: 1xbet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/en
Cookie: SESSION=48c304108dc7c16478f28f0e1826a0f3; _glhf=1715080731; dnb=1; platform_type=desktop; auid=mjmZBWY5yKs9D2/OCKszAg==; is_rtl=1; visit=1-c0f3effbd860b15d31261e1342c7d750; fast_coupon=true; v3fr=1; lng=en; flaglng=en; typeBetNames=full; coefview=0; tzo=0; ggru=139; right_side=right; completed_user_settings=true; _ga_7V60YW2S5H=GS1.1.1715062970.1.0.1715062970.60.0.0; _ga=GA1.1.42826394.1715062971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 06:22:52 GMT
content-type: image/jpeg
content-length: 112684
cache-control: public,max-age=120,s-maxage=600
cf-bgj: h2pri
access-control-allow-origin: *
etag: "5f77d483cf57645f2b6b948b85e32ed1"
last-modified: Thu, 05 Oct 2023 10:30:26 GMT
server-timing: wf-uht;dur=
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
age: 262
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ff1e38c996b529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| 1xbet.com/genfiles/cms/1/desktop/banner/2dd51a5df192de626af47472e83c2fa7.jpg | 104.18.41.64 | | 57 kB |
URL 1xbet.com/genfiles/cms/1/desktop/banner/2dd51a5df192de626af47472e83c2fa7.jpg IP104.18.41.64:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 925x460, components 3 Hashe2271baa9d2ea9fbef6499a36e57d693 5edf52c790050a2f510b616d2afa9fd5719de15f bd79ff386dabcae37efa18dec5530fc97dd9e63ec2ef81d1aacafbc518327565
GET /genfiles/cms/1/desktop/banner/2dd51a5df192de626af47472e83c2fa7.jpg HTTP/1.1
Host: 1xbet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/en
Cookie: SESSION=48c304108dc7c16478f28f0e1826a0f3; _glhf=1715080731; dnb=1; platform_type=desktop; auid=mjmZBWY5yKs9D2/OCKszAg==; is_rtl=1; visit=1-c0f3effbd860b15d31261e1342c7d750; fast_coupon=true; v3fr=1; lng=en; flaglng=en; typeBetNames=full; coefview=0; tzo=0; ggru=139; right_side=right; completed_user_settings=true; _ga_7V60YW2S5H=GS1.1.1715062970.1.0.1715062970.60.0.0; _ga=GA1.1.42826394.1715062971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 06:22:52 GMT
content-type: image/jpeg
content-length: 56601
cache-control: public,max-age=120,s-maxage=600
cf-bgj: h2pri
access-control-allow-origin: *
etag: "e2271baa9d2ea9fbef6499a36e57d693"
last-modified: Fri, 26 Apr 2024 05:30:02 GMT
server-timing: wf-uht;dur=
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
age: 262
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ff1e38c997b529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| 1xbet.com/genfiles/cms/1/desktop/banner/fc0e9f303c2ace9bd3c5510cedc96f6e.jpg | 104.18.41.64 | | 86 kB |
URL 1xbet.com/genfiles/cms/1/desktop/banner/fc0e9f303c2ace9bd3c5510cedc96f6e.jpg IP104.18.41.64:0
File typeJPEG image data, baseline, precision 8, 925x460, components 3 Hash441ba664ea674101de9ceb8f015cbebd 05b78d1fdb7068b64dc7aed1f374d239a6db0b90 1a229de7ea15b87d11eb265dfbefb0b5b67ddd254b680a74b234bd0f1dbac872
GET /genfiles/cms/1/desktop/banner/fc0e9f303c2ace9bd3c5510cedc96f6e.jpg HTTP/1.1
Host: 1xbet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/en
Cookie: SESSION=48c304108dc7c16478f28f0e1826a0f3; _glhf=1715080731; dnb=1; platform_type=desktop; auid=mjmZBWY5yKs9D2/OCKszAg==; is_rtl=1; visit=1-c0f3effbd860b15d31261e1342c7d750; fast_coupon=true; v3fr=1; lng=en; flaglng=en; typeBetNames=full; coefview=0; tzo=0; ggru=139; right_side=right; completed_user_settings=true; _ga_7V60YW2S5H=GS1.1.1715062970.1.0.1715062970.60.0.0; _ga=GA1.1.42826394.1715062971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 06:22:52 GMT
content-type: image/jpeg
content-length: 85495
cache-control: public,max-age=120,s-maxage=600
cf-bgj: h2pri
access-control-allow-origin: *
etag: "441ba664ea674101de9ceb8f015cbebd"
last-modified: Wed, 31 Jan 2024 11:27:52 GMT
server-timing: wf-uht;dur=
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
age: 262
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ff1e38c998b529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| 1xbet.com/genfiles/cms/1/desktop/banner/fcd828c5e30709c903c08edbca0b4749.jpg | 104.18.41.64 | | 230 kB |
URL 1xbet.com/genfiles/cms/1/desktop/banner/fcd828c5e30709c903c08edbca0b4749.jpg IP104.18.41.64:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 925x460, components 3 Size230 kB (229848 bytes) Hashe9912d83f653a9229dd6fceebadc51ce d21f6cbb7a75f175c8f9d418a306d2b2790e6918 624ab9377040a5d0d9eea5ab43613e5dfb7871df5737e95e31538c32f4eba5ad
GET /genfiles/cms/1/desktop/banner/fcd828c5e30709c903c08edbca0b4749.jpg HTTP/1.1
Host: 1xbet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/en
Cookie: SESSION=48c304108dc7c16478f28f0e1826a0f3; _glhf=1715080731; dnb=1; platform_type=desktop; auid=mjmZBWY5yKs9D2/OCKszAg==; is_rtl=1; visit=1-c0f3effbd860b15d31261e1342c7d750; fast_coupon=true; v3fr=1; lng=en; flaglng=en; typeBetNames=full; coefview=0; tzo=0; ggru=139; right_side=right; completed_user_settings=true; _ga_7V60YW2S5H=GS1.1.1715062970.1.0.1715062970.60.0.0; _ga=GA1.1.42826394.1715062971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 06:22:52 GMT
content-type: image/jpeg
content-length: 229848
cache-control: public,max-age=120,s-maxage=600
cf-bgj: h2pri
access-control-allow-origin: *
etag: "e9912d83f653a9229dd6fceebadc51ce"
last-modified: Mon, 29 Jan 2024 08:06:33 GMT
server-timing: wf-uht;dur=
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
age: 261
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ff1e38d9a1b529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| 1xbet.com/genfiles/cms/1/desktop/banner/fd8980b49952e0fbe29a63b4174c6bfc.jpg | 104.18.41.64 | 200 OK | 150 kB |
URL GET HTTP/31xbet.com/genfiles/cms/1/desktop/banner/fd8980b49952e0fbe29a63b4174c6bfc.jpg IP104.18.41.64:443
CertificateIssuerGoogle Trust Services LLC Subject1xbet.com FingerprintA0:4A:36:06:EE:9B:04:BA:25:2E:97:EA:45:A0:70:63:51:97:25:CD ValiditySat, 16 Mar 2024 20:46:45 GMT - Fri, 14 Jun 2024 20:46:44 GMT
File typeJPEG image data, baseline, precision 8, 925x460, components 3 Size150 kB (150522 bytes) Hash94e5cedadb92be7da2dc778ac1084f67 dd1b39ea8ae8e91f3e3706db4f326103e6c15ea7 48ed6027599672dd9f30c6c159786b5561fc27138b14ea0276a09b7200eb023b
GET /genfiles/cms/1/desktop/banner/fd8980b49952e0fbe29a63b4174c6bfc.jpg HTTP/1.1
Host: 1xbet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/en
Cookie: SESSION=48c304108dc7c16478f28f0e1826a0f3; _glhf=1715080731; dnb=1; platform_type=desktop; auid=mjmZBWY5yKs9D2/OCKszAg==; is_rtl=1; visit=1-c0f3effbd860b15d31261e1342c7d750; fast_coupon=true; v3fr=1; lng=en; flaglng=en; typeBetNames=full; coefview=0; tzo=0; ggru=139; right_side=right; completed_user_settings=true; _ga_7V60YW2S5H=GS1.1.1715062970.1.0.1715062970.60.0.0; _ga=GA1.1.42826394.1715062971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 06:22:52 GMT
content-type: image/jpeg
content-length: 150522
cache-control: public,max-age=120,s-maxage=600
cf-bgj: h2pri
access-control-allow-origin: *
etag: "94e5cedadb92be7da2dc778ac1084f67"
last-modified: Tue, 11 Apr 2023 18:15:46 GMT
server-timing: wf-uht;dur=
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
age: 262
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ff1e393a2eb529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| 1xbet.com/genfiles/cms/1/desktop/banner/f70320da261774098082b38025d52305.jpg | 104.18.41.64 | | 270 kB |
URL 1xbet.com/genfiles/cms/1/desktop/banner/f70320da261774098082b38025d52305.jpg IP104.18.41.64:0
File typeJPEG image data, progressive, precision 8, 925x460, components 3 Size270 kB (269681 bytes) Hashcb1eae22e8d376d00a8be78afcd75fea 6b05e57651883f6fb8cd85479b663bd9c8fb3529 d6e188aef0413bd8a5415118b4196fa9ea50273efd7e655ca2b3cf0ff72fe96c
GET /genfiles/cms/1/desktop/banner/f70320da261774098082b38025d52305.jpg HTTP/1.1
Host: 1xbet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/en
Cookie: SESSION=48c304108dc7c16478f28f0e1826a0f3; _glhf=1715080731; dnb=1; platform_type=desktop; auid=mjmZBWY5yKs9D2/OCKszAg==; is_rtl=1; visit=1-c0f3effbd860b15d31261e1342c7d750; fast_coupon=true; v3fr=1; lng=en; flaglng=en; typeBetNames=full; coefview=0; tzo=0; ggru=139; right_side=right; completed_user_settings=true; _ga_7V60YW2S5H=GS1.1.1715062970.1.0.1715062970.60.0.0; _ga=GA1.1.42826394.1715062971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 06:22:52 GMT
content-type: image/jpeg
content-length: 269681
cache-control: public,max-age=120,s-maxage=600
cf-bgj: h2pri
access-control-allow-origin: *
etag: "cb1eae22e8d376d00a8be78afcd75fea"
last-modified: Fri, 26 Apr 2024 03:31:08 GMT
server-timing: wf-uht;dur=
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ff1e393a34b529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| 1xbet.com/genfiles/cms/1/desktop/banner/42f056c7d0ee1b40d1f3fba73e4c9b1d.jpg | 104.18.41.64 | 200 OK | 329 kB |
URL GET HTTP/31xbet.com/genfiles/cms/1/desktop/banner/42f056c7d0ee1b40d1f3fba73e4c9b1d.jpg IP104.18.41.64:443
CertificateIssuerGoogle Trust Services LLC Subject1xbet.com FingerprintA0:4A:36:06:EE:9B:04:BA:25:2E:97:EA:45:A0:70:63:51:97:25:CD ValiditySat, 16 Mar 2024 20:46:45 GMT - Fri, 14 Jun 2024 20:46:44 GMT
File typeJPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 925x460, components 3 Size329 kB (329279 bytes) Hashc281b4022c725cc9197591b247692d47 9ba7931d9071fe28538a237f717f663bb01c17ee d74b6134253d173f77d4a34bf9b70acda12e4bf3cfd8d1b4e0221d44e640021a
GET /genfiles/cms/1/desktop/banner/42f056c7d0ee1b40d1f3fba73e4c9b1d.jpg HTTP/1.1
Host: 1xbet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/en
Cookie: SESSION=48c304108dc7c16478f28f0e1826a0f3; _glhf=1715080731; dnb=1; platform_type=desktop; auid=mjmZBWY5yKs9D2/OCKszAg==; is_rtl=1; visit=1-c0f3effbd860b15d31261e1342c7d750; fast_coupon=true; v3fr=1; lng=en; flaglng=en; typeBetNames=full; coefview=0; tzo=0; ggru=139; right_side=right; completed_user_settings=true; _ga_7V60YW2S5H=GS1.1.1715062970.1.0.1715062970.60.0.0; _ga=GA1.1.42826394.1715062971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 06:22:52 GMT
content-type: image/jpeg
content-length: 329279
cache-control: public,max-age=120,s-maxage=600
cf-bgj: h2pri
access-control-allow-origin: *
etag: "c281b4022c725cc9197591b247692d47"
last-modified: Thu, 07 Mar 2024 08:49:41 GMT
server-timing: wf-uht;dur=0.006
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
age: 261
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ff1e393a35b529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| 1xbet.com/genfiles/cms/1/desktop/banner/3f308a29e7f8576cdb2ae5ef28d40214.jpg | 104.18.41.64 | | 136 kB |
URL 1xbet.com/genfiles/cms/1/desktop/banner/3f308a29e7f8576cdb2ae5ef28d40214.jpg IP104.18.41.64:0
File typeJPEG image data, baseline, precision 8, 925x460, components 3 Size136 kB (136485 bytes) Hash21cababebf3619d38d0162a63df9c526 f295a165fd22b08b4898bb7cf5dfd971afab1a94 2ddd73dd5d184c3c63fcdb16c29dff00230d58168d98a2e1d6c3c5e12ba6e21e
GET /genfiles/cms/1/desktop/banner/3f308a29e7f8576cdb2ae5ef28d40214.jpg HTTP/1.1
Host: 1xbet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/en
Cookie: SESSION=48c304108dc7c16478f28f0e1826a0f3; _glhf=1715080731; dnb=1; platform_type=desktop; auid=mjmZBWY5yKs9D2/OCKszAg==; is_rtl=1; visit=1-c0f3effbd860b15d31261e1342c7d750; fast_coupon=true; v3fr=1; lng=en; flaglng=en; typeBetNames=full; coefview=0; tzo=0; ggru=139; right_side=right; completed_user_settings=true; _ga_7V60YW2S5H=GS1.1.1715062970.1.0.1715062970.60.0.0; _ga=GA1.1.42826394.1715062971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 06:22:52 GMT
content-type: image/jpeg
content-length: 136485
cache-control: public,max-age=120,s-maxage=600
cf-bgj: h2pri
access-control-allow-origin: *
etag: "21cababebf3619d38d0162a63df9c526"
last-modified: Wed, 06 Sep 2023 13:03:26 GMT
server-timing: wf-uht;dur=
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
age: 262
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ff1e393a38b529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| 1xbet.com/genfiles/cms/1/desktop/banner/9ae39d71c1d827b4bb5d585171027775.jpg | 104.18.41.64 | 200 OK | 55 kB |
URL GET HTTP/31xbet.com/genfiles/cms/1/desktop/banner/9ae39d71c1d827b4bb5d585171027775.jpg IP104.18.41.64:443
CertificateIssuerGoogle Trust Services LLC Subject1xbet.com FingerprintA0:4A:36:06:EE:9B:04:BA:25:2E:97:EA:45:A0:70:63:51:97:25:CD ValiditySat, 16 Mar 2024 20:46:45 GMT - Fri, 14 Jun 2024 20:46:44 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 925x460, components 3 Hash0631c49fbba5e9ac2481e490e1b92cbd e8a32f45e6913b3c672dd2bd05e338a9c7529f04 6c9e507e1dc71c1f218e0e5aea4ab5aca54064b17bd5f3150b404535ed2d73b8
GET /genfiles/cms/1/desktop/banner/9ae39d71c1d827b4bb5d585171027775.jpg HTTP/1.1
Host: 1xbet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/en
Cookie: SESSION=48c304108dc7c16478f28f0e1826a0f3; _glhf=1715080731; dnb=1; platform_type=desktop; auid=mjmZBWY5yKs9D2/OCKszAg==; is_rtl=1; visit=1-c0f3effbd860b15d31261e1342c7d750; fast_coupon=true; v3fr=1; lng=en; flaglng=en; typeBetNames=full; coefview=0; tzo=0; ggru=139; right_side=right; completed_user_settings=true; _ga_7V60YW2S5H=GS1.1.1715062970.1.0.1715062970.60.0.0; _ga=GA1.1.42826394.1715062971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 06:22:52 GMT
content-type: image/jpg
content-length: 55057
cache-control: public,max-age=120,s-maxage=600
cf-bgj: h2pri
access-control-allow-origin: *
etag: "0631c49fbba5e9ac2481e490e1b92cbd"
last-modified: Tue, 11 Apr 2023 18:14:59 GMT
server-timing: wf-uht;dur=
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
age: 261
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ff1e393a3ab529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.google.com/recaptcha/api2/bframe?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&k=6LcNBXgpAAAAAABPc9IqtedASd5Fl5BlTyer8EVh | 142.250.74.164 | 200 OK | 26 kB |
URL GET HTTP/3www.google.com/recaptcha/api2/bframe?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&k=6LcNBXgpAAAAAABPc9IqtedASd5Fl5BlTyer8EVh IP142.250.74.164:443
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0 ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
File typeHTML document, ASCII text, with very long lines (56439) Hashac3e578f345688288bee0994b4363330 d9783bbee4f442ec6329d96bc38ab696d9f66c60 1dee4667c27f7227f2b322f54d45affccb15aa0f267ca0c6cd9030d88358048a
GET /recaptcha/api2/bframe?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&k=6LcNBXgpAAAAAABPc9IqtedASd5Fl5BlTyer8EVh HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 07 May 2024 06:22:52 GMT
content-security-policy: script-src 'nonce-cVadbMYCwvGpTdv5OyldSg' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| 1xbet.com/genfiles/cms/1/desktop/banner/23a8dbd9eef58356fad253ead01f013a.jpg | 104.18.41.64 | | 230 kB |
URL 1xbet.com/genfiles/cms/1/desktop/banner/23a8dbd9eef58356fad253ead01f013a.jpg IP104.18.41.64:0
File typeJPEG image data, progressive, precision 8, 925x460, components 3 Size230 kB (229464 bytes) Hash2b6851fbf6fcf4c15d374a0acb71f08e ae02e031647aeac136053cd031d2b2cb391622b0 ca9e069ed1e5091513464184197ab33e1957b654671d583f4687c8136314e3cd
GET /genfiles/cms/1/desktop/banner/23a8dbd9eef58356fad253ead01f013a.jpg HTTP/1.1
Host: 1xbet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/en
Cookie: SESSION=48c304108dc7c16478f28f0e1826a0f3; _glhf=1715080731; dnb=1; platform_type=desktop; auid=mjmZBWY5yKs9D2/OCKszAg==; is_rtl=1; visit=1-c0f3effbd860b15d31261e1342c7d750; fast_coupon=true; v3fr=1; lng=en; flaglng=en; typeBetNames=full; coefview=0; tzo=0; ggru=139; right_side=right; completed_user_settings=true; _ga_7V60YW2S5H=GS1.1.1715062970.1.0.1715062970.60.0.0; _ga=GA1.1.42826394.1715062971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 06:22:52 GMT
content-type: image/jpeg
content-length: 229464
cache-control: public,max-age=120,s-maxage=600
cf-bgj: h2pri
access-control-allow-origin: *
etag: "2b6851fbf6fcf4c15d374a0acb71f08e"
last-modified: Sat, 27 Apr 2024 06:32:35 GMT
server-timing: wf-uht;dur=
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ff1e393a3cb529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| 1xbet.com/genfiles/cms/1/desktop/banner/203c6c6d707d66dec078822fa51a51fa.jpg | 104.18.41.64 | 200 OK | 83 kB |
URL GET HTTP/31xbet.com/genfiles/cms/1/desktop/banner/203c6c6d707d66dec078822fa51a51fa.jpg IP104.18.41.64:443
CertificateIssuerGoogle Trust Services LLC Subject1xbet.com FingerprintA0:4A:36:06:EE:9B:04:BA:25:2E:97:EA:45:A0:70:63:51:97:25:CD ValiditySat, 16 Mar 2024 20:46:45 GMT - Fri, 14 Jun 2024 20:46:44 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 24.5 (Windows), datetime=2023:12:15 18:39:41], baseline, precision 8, 925x460, components 3 Hash7aaa269fac906490bc67eb06bf1f5789 e62e94af7e947a3642a0f0d32b6c88604c461fbf 6b464aec88471bcdbb14303a50fb32ebb9fc97b8080b8d8172c4aaea6b28eb4a
GET /genfiles/cms/1/desktop/banner/203c6c6d707d66dec078822fa51a51fa.jpg HTTP/1.1
Host: 1xbet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/en
Cookie: SESSION=48c304108dc7c16478f28f0e1826a0f3; _glhf=1715080731; dnb=1; platform_type=desktop; auid=mjmZBWY5yKs9D2/OCKszAg==; is_rtl=1; visit=1-c0f3effbd860b15d31261e1342c7d750; fast_coupon=true; v3fr=1; lng=en; flaglng=en; typeBetNames=full; coefview=0; tzo=0; ggru=139; right_side=right; completed_user_settings=true; _ga_7V60YW2S5H=GS1.1.1715062970.1.0.1715062970.60.0.0; _ga=GA1.1.42826394.1715062971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 06:22:52 GMT
content-type: image/jpeg
content-length: 82932
cache-control: public,max-age=120,s-maxage=600
cf-bgj: h2pri
access-control-allow-origin: *
etag: "7aaa269fac906490bc67eb06bf1f5789"
last-modified: Tue, 23 Jan 2024 10:47:34 GMT
server-timing: wf-uht;dur=
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
age: 261
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ff1e393a3db529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js | 142.250.74.35 | 200 OK | 206 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js IP142.250.74.35:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&k=6LcNBXgpAAAAAABPc9IqtedASd5Fl5BlTyer8EVh CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeJavaScript source, ASCII text, with very long lines (631) Size206 kB (205803 bytes) Hashe2e79d6b927169d9e0e57e3baecc0993 1299473950b2999ba0b7f39bd5e4a60eafd1819d 231336ed913a5ebd4445b85486e053caf2b81cab91318241375f3f7a245b6c6b
GET /recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 205803
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 01:56:11 GMT
expires: Fri, 02 May 2025 01:56:11 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2024 21:03:35 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 448001
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| 1xbet.com/genfiles/cms/1/desktop/banner/c0b75af93d063aee23b24d90e5157998.jpg | 104.18.41.64 | 200 OK | 324 kB |
URL GET HTTP/31xbet.com/genfiles/cms/1/desktop/banner/c0b75af93d063aee23b24d90e5157998.jpg IP104.18.41.64:443
CertificateIssuerGoogle Trust Services LLC Subject1xbet.com FingerprintA0:4A:36:06:EE:9B:04:BA:25:2E:97:EA:45:A0:70:63:51:97:25:CD ValiditySat, 16 Mar 2024 20:46:45 GMT - Fri, 14 Jun 2024 20:46:44 GMT
File typeJPEG image data, progressive, precision 8, 925x460, components 3 Size324 kB (323488 bytes) Hash07902bf3a231e61471eb2681ffcc44a5 3d0d01c4e1422a54f512f39bf03c0ec9bbdcaa20 d5a8648838778387b9231a284c303de681cb1ce9ebe26ded3eeb7e4bc0f4eb12
GET /genfiles/cms/1/desktop/banner/c0b75af93d063aee23b24d90e5157998.jpg HTTP/1.1
Host: 1xbet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/en
Cookie: SESSION=48c304108dc7c16478f28f0e1826a0f3; _glhf=1715080731; dnb=1; platform_type=desktop; auid=mjmZBWY5yKs9D2/OCKszAg==; is_rtl=1; visit=1-c0f3effbd860b15d31261e1342c7d750; fast_coupon=true; v3fr=1; lng=en; flaglng=en; typeBetNames=full; coefview=0; tzo=0; ggru=139; right_side=right; completed_user_settings=true; _ga_7V60YW2S5H=GS1.1.1715062970.1.0.1715062970.60.0.0; _ga=GA1.1.42826394.1715062971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 06:22:52 GMT
content-type: image/jpeg
content-length: 323488
cache-control: public,max-age=120,s-maxage=600
cf-bgj: h2pri
access-control-allow-origin: *
etag: "07902bf3a231e61471eb2681ffcc44a5"
last-modified: Thu, 25 Apr 2024 18:31:54 GMT
server-timing: wf-uht;dur=
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ff1e393a3eb529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| 1xbet.com/genfiles/cms/1/desktop/banner/a88616b41d4ab0d5aec422adef8ac48d.jpg | 104.18.41.64 | 200 OK | 50 kB |
URL GET HTTP/31xbet.com/genfiles/cms/1/desktop/banner/a88616b41d4ab0d5aec422adef8ac48d.jpg IP104.18.41.64:443
CertificateIssuerGoogle Trust Services LLC Subject1xbet.com FingerprintA0:4A:36:06:EE:9B:04:BA:25:2E:97:EA:45:A0:70:63:51:97:25:CD ValiditySat, 16 Mar 2024 20:46:45 GMT - Fri, 14 Jun 2024 20:46:44 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 925x460, components 3 Hashc0415bcf4b6daa5ecef0785873239cfe 3dc4527d58f1c8b5c3765700c9d77cbb609cef62 a268cae0cb73821b1bb17f6ce200a4b07a63f1df3ed2c1ee09e12553a63ff73f
GET /genfiles/cms/1/desktop/banner/a88616b41d4ab0d5aec422adef8ac48d.jpg HTTP/1.1
Host: 1xbet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/en
Cookie: SESSION=48c304108dc7c16478f28f0e1826a0f3; _glhf=1715080731; dnb=1; platform_type=desktop; auid=mjmZBWY5yKs9D2/OCKszAg==; is_rtl=1; visit=1-c0f3effbd860b15d31261e1342c7d750; fast_coupon=true; v3fr=1; lng=en; flaglng=en; typeBetNames=full; coefview=0; tzo=0; ggru=139; right_side=right; completed_user_settings=true; _ga_7V60YW2S5H=GS1.1.1715062970.1.0.1715062970.60.0.0; _ga=GA1.1.42826394.1715062971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 06:22:52 GMT
content-type: image/jpg
content-length: 49694
cache-control: public,max-age=120,s-maxage=600
cf-bgj: h2pri
access-control-allow-origin: *
etag: "c0415bcf4b6daa5ecef0785873239cfe"
last-modified: Tue, 11 Apr 2023 18:15:04 GMT
server-timing: wf-uht;dur=
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
age: 261
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ff1e393a3fb529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| 1xbet.com/LineFeed/GetGameZip?id=528915807&cfview=0&lng=en&GroupEvents=true&isSubGames=false&allEventsGroupSubGames=false&partner=1&country=137&fcountry=137 | 104.18.41.64 | | 190 kB |
URL 1xbet.com/LineFeed/GetGameZip?id=528915807&cfview=0&lng=en&GroupEvents=true&isSubGames=false&allEventsGroupSubGames=false&partner=1&country=137&fcountry=137 IP104.18.41.64:0
Size190 kB (189816 bytes) Hashb2cd4988bf78fcf4293cf474e6421be9 54c19b01bab891e456204a6e320a2b1b48874efb 5146490f8cb463f46acd5673c54cb8ca107c53028b407824c9fb82e3a66f6ae4
GET /LineFeed/GetGameZip?id=528915807&cfview=0&lng=en&GroupEvents=true&isSubGames=false&allEventsGroupSubGames=false&partner=1&country=137&fcountry=137 HTTP/1.1
Host: 1xbet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/en
Cookie: SESSION=48c304108dc7c16478f28f0e1826a0f3; _glhf=1715080731; dnb=1; platform_type=desktop; auid=mjmZBWY5yKs9D2/OCKszAg==; is_rtl=1; visit=1-c0f3effbd860b15d31261e1342c7d750; fast_coupon=true; v3fr=1; lng=en; flaglng=en; typeBetNames=full; coefview=0; tzo=0; ggru=139; right_side=right; completed_user_settings=true; _ga_7V60YW2S5H=GS1.1.1715062970.1.0.1715062970.60.0.0; _ga=GA1.1.42826394.1715062971
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 06:22:52 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
cache-control: public, max-age=5
last-modified: Tue, 07 May 2024 06:22:52 GMT
content-encoding: br
strict-transport-security: max-age=63072000; includeSubDomains; preload
server-timing: wf-uht;dur=0.020
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 87ff1e37c882b529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| 1xbet.com/genfiles/cms/1/desktop/banner/8a9e08603bb5ccb531f71d9ad007f3df.jpg | 104.18.41.64 | | 305 kB |
URL 1xbet.com/genfiles/cms/1/desktop/banner/8a9e08603bb5ccb531f71d9ad007f3df.jpg IP104.18.41.64:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 925x460, components 3 Size305 kB (304585 bytes) Hash1df56697e63892cec665dbdb225eb4ad ab2bfa138678891341a246dbfa4d104ab2de2bf1 f28b9f848dd87ecb99942ef3f7d62f5aa57ccc4f429bd6d14b84d113269ef501
GET /genfiles/cms/1/desktop/banner/8a9e08603bb5ccb531f71d9ad007f3df.jpg HTTP/1.1
Host: 1xbet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/en
Cookie: SESSION=48c304108dc7c16478f28f0e1826a0f3; _glhf=1715080731; dnb=1; platform_type=desktop; auid=mjmZBWY5yKs9D2/OCKszAg==; is_rtl=1; visit=1-c0f3effbd860b15d31261e1342c7d750; fast_coupon=true; v3fr=1; lng=en; flaglng=en; typeBetNames=full; coefview=0; tzo=0; ggru=139; right_side=right; completed_user_settings=true; _ga_7V60YW2S5H=GS1.1.1715062970.1.0.1715062970.60.0.0; _ga=GA1.1.42826394.1715062971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 06:22:52 GMT
content-type: image/jpeg
content-length: 304585
cache-control: public,max-age=120,s-maxage=600
cf-bgj: h2pri
access-control-allow-origin: *
etag: "1df56697e63892cec665dbdb225eb4ad"
last-modified: Tue, 25 Jul 2023 14:27:33 GMT
server-timing: wf-uht;dur=
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
age: 261
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ff1e393a41b529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| 1xbet.com/genfiles/cms/1/desktop/banner/047268fbd2d4ff359d40787529522731.jpg | 104.18.41.64 | | 87 kB |
URL 1xbet.com/genfiles/cms/1/desktop/banner/047268fbd2d4ff359d40787529522731.jpg IP104.18.41.64:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 925x460, components 3 Hash9f842099a74975fb01210d4ace41eb6d a3bcdebdd758f19cf6dcb19b020856010e054a8d d28da2194de9525162a01fe2c25fbf40b8794d78b8c904f5c7e7f768d4997470
GET /genfiles/cms/1/desktop/banner/047268fbd2d4ff359d40787529522731.jpg HTTP/1.1
Host: 1xbet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/en
Cookie: SESSION=48c304108dc7c16478f28f0e1826a0f3; _glhf=1715080731; dnb=1; platform_type=desktop; auid=mjmZBWY5yKs9D2/OCKszAg==; is_rtl=1; visit=1-c0f3effbd860b15d31261e1342c7d750; fast_coupon=true; v3fr=1; lng=en; flaglng=en; typeBetNames=full; coefview=0; tzo=0; ggru=139; right_side=right; completed_user_settings=true; _ga_7V60YW2S5H=GS1.1.1715062970.1.0.1715062970.60.0.0; _ga=GA1.1.42826394.1715062971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 06:22:52 GMT
content-type: image/jpeg
content-length: 86994
cache-control: public,max-age=120,s-maxage=600
cf-bgj: h2pri
access-control-allow-origin: *
etag: "9f842099a74975fb01210d4ace41eb6d"
last-modified: Tue, 23 Apr 2024 09:46:34 GMT
server-timing: wf-uht;dur=
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
age: 261
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ff1e393a43b529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.google.com/recaptcha/api2/bframe?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&k=6LcNBXgpAAAAAABPc9IqtedASd5Fl5BlTyer8EVh | 142.250.74.164 | 200 OK | 26 kB |
URL GET HTTP/3www.google.com/recaptcha/api2/bframe?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&k=6LcNBXgpAAAAAABPc9IqtedASd5Fl5BlTyer8EVh IP142.250.74.164:443
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0 ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
File typeHTML document, ASCII text, with very long lines (56439) Hash67dc23c30bf71a2c3198b5634b65ea15 489fa08cf3d16215b4a6ca581edbd611cebc1bd2 77c68da919227683c1761560516a74b74799073253fda9960a1fe2e4113719ad
GET /recaptcha/api2/bframe?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&k=6LcNBXgpAAAAAABPc9IqtedASd5Fl5BlTyer8EVh HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 07 May 2024 06:22:52 GMT
content-security-policy: script-src 'nonce-XAArraftMc3NTMrTH9QIAA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js | 142.250.74.35 | 200 OK | 206 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js IP142.250.74.35:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&k=6LcNBXgpAAAAAABPc9IqtedASd5Fl5BlTyer8EVh CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeJavaScript source, ASCII text, with very long lines (631) Size206 kB (205803 bytes) Hashe2e79d6b927169d9e0e57e3baecc0993 1299473950b2999ba0b7f39bd5e4a60eafd1819d 231336ed913a5ebd4445b85486e053caf2b81cab91318241375f3f7a245b6c6b
GET /recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 205803
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 01:56:11 GMT
expires: Fri, 02 May 2025 01:56:11 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2024 21:03:35 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 448002
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| 1xbet.com/genfiles/cms/1/desktop/banner/91e79d3c5c016e03d21cb0ed34f8e6c0.jpg | 104.18.41.64 | 200 OK | 81 kB |
URL GET HTTP/31xbet.com/genfiles/cms/1/desktop/banner/91e79d3c5c016e03d21cb0ed34f8e6c0.jpg IP104.18.41.64:443
CertificateIssuerGoogle Trust Services LLC Subject1xbet.com FingerprintA0:4A:36:06:EE:9B:04:BA:25:2E:97:EA:45:A0:70:63:51:97:25:CD ValiditySat, 16 Mar 2024 20:46:45 GMT - Fri, 14 Jun 2024 20:46:44 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 925x460, components 3 Hash0097772da7ea76447c899c5a81b7eb6a 93a6dbe38ee00a21764e55ddf548b6d86e6427e8 ef69b14fa79929af285b78785f81e8a63b8040694bd44e088632c33b70766c42
GET /genfiles/cms/1/desktop/banner/91e79d3c5c016e03d21cb0ed34f8e6c0.jpg HTTP/1.1
Host: 1xbet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/en
Cookie: SESSION=48c304108dc7c16478f28f0e1826a0f3; _glhf=1715080731; dnb=1; platform_type=desktop; auid=mjmZBWY5yKs9D2/OCKszAg==; is_rtl=1; visit=1-c0f3effbd860b15d31261e1342c7d750; fast_coupon=true; v3fr=1; lng=en; flaglng=en; typeBetNames=full; coefview=0; tzo=0; ggru=139; right_side=right; completed_user_settings=true; _ga_7V60YW2S5H=GS1.1.1715062970.1.0.1715062970.60.0.0; _ga=GA1.1.42826394.1715062971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 06:22:52 GMT
content-type: image/jpeg
content-length: 81056
cache-control: public,max-age=120,s-maxage=600
cf-bgj: h2pri
access-control-allow-origin: *
etag: "0097772da7ea76447c899c5a81b7eb6a"
last-modified: Thu, 02 May 2024 09:01:07 GMT
server-timing: wf-uht;dur=
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
age: 261
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ff1e393a45b529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| 1xbet.com/genfiles/cms/1/desktop/banner/8a333a29ec626afe6159b74b402eb4a5.jpg | 104.18.41.64 | | 64 kB |
URL 1xbet.com/genfiles/cms/1/desktop/banner/8a333a29ec626afe6159b74b402eb4a5.jpg IP104.18.41.64:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 925x460, components 3 Hashd0d09dd2a0be538d1d68b790e4d3ba00 2d4ac00aa97d03b5065d5408eb443614e853240d 4323714085e7a946381015f8b5820f271b7c6b31d47d9302eb2e9eb6eb6af758
GET /genfiles/cms/1/desktop/banner/8a333a29ec626afe6159b74b402eb4a5.jpg HTTP/1.1
Host: 1xbet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/en
Cookie: SESSION=48c304108dc7c16478f28f0e1826a0f3; _glhf=1715080731; dnb=1; platform_type=desktop; auid=mjmZBWY5yKs9D2/OCKszAg==; is_rtl=1; visit=1-c0f3effbd860b15d31261e1342c7d750; fast_coupon=true; v3fr=1; lng=en; flaglng=en; typeBetNames=full; coefview=0; tzo=0; ggru=139; right_side=right; completed_user_settings=true; _ga_7V60YW2S5H=GS1.1.1715062970.1.0.1715062970.60.0.0; _ga=GA1.1.42826394.1715062971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 06:22:52 GMT
content-type: image/jpeg
content-length: 64472
cache-control: public,max-age=120,s-maxage=600
cf-bgj: h2pri
access-control-allow-origin: *
etag: "d0d09dd2a0be538d1d68b790e4d3ba00"
last-modified: Mon, 06 May 2024 11:10:06 GMT
server-timing: wf-uht;dur=
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
age: 261
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ff1e39aabab529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| 1xbet.com/genfiles/cms/1/desktop/banner/77bcb2f342523f503335bfb6bc52b64c.jpg | 104.18.41.64 | 200 OK | 343 kB |
URL GET HTTP/31xbet.com/genfiles/cms/1/desktop/banner/77bcb2f342523f503335bfb6bc52b64c.jpg IP104.18.41.64:443
CertificateIssuerGoogle Trust Services LLC Subject1xbet.com FingerprintA0:4A:36:06:EE:9B:04:BA:25:2E:97:EA:45:A0:70:63:51:97:25:CD ValiditySat, 16 Mar 2024 20:46:45 GMT - Fri, 14 Jun 2024 20:46:44 GMT
File typeJPEG image data, progressive, precision 8, 925x460, components 3 Size343 kB (343395 bytes) Hash4b601764297512d703a8f25350ddbd59 85e14a9dd9d37a980cf2987133746c160341016f acaf0d24b96546103d089b590e3e81d494d6d9749ebf8e574986296b4a307ca6
GET /genfiles/cms/1/desktop/banner/77bcb2f342523f503335bfb6bc52b64c.jpg HTTP/1.1
Host: 1xbet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/en
Cookie: SESSION=48c304108dc7c16478f28f0e1826a0f3; _glhf=1715080731; dnb=1; platform_type=desktop; auid=mjmZBWY5yKs9D2/OCKszAg==; is_rtl=1; visit=1-c0f3effbd860b15d31261e1342c7d750; fast_coupon=true; v3fr=1; lng=en; flaglng=en; typeBetNames=full; coefview=0; tzo=0; ggru=139; right_side=right; completed_user_settings=true; _ga_7V60YW2S5H=GS1.1.1715062970.1.0.1715062970.60.0.0; _ga=GA1.1.42826394.1715062971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 06:22:52 GMT
content-type: image/jpeg
content-length: 343395
cache-control: public,max-age=120,s-maxage=600
cf-bgj: h2pri
access-control-allow-origin: *
etag: "4b601764297512d703a8f25350ddbd59"
last-modified: Fri, 08 Sep 2023 10:45:51 GMT
server-timing: wf-uht;dur=
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
age: 261
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ff1e39aabeb529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| 1xbet.com/genfiles/cms/1/desktop/banner/3ea9b14dc305828ee751719ce01bf3be.jpg | 104.18.41.64 | | 261 kB |
URL 1xbet.com/genfiles/cms/1/desktop/banner/3ea9b14dc305828ee751719ce01bf3be.jpg IP104.18.41.64:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 925x460, components 3 Size261 kB (261300 bytes) Hash09a8806f6cf64db4baffa154c52f1aa7 fef0e1e11f00c18a3cb3f2ca982af7f14396266c c32dd67220f4065fb5e0cf0009958e5aac5fa774a1abb61ae532513c041ed3ff
GET /genfiles/cms/1/desktop/banner/3ea9b14dc305828ee751719ce01bf3be.jpg HTTP/1.1
Host: 1xbet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/en
Cookie: SESSION=48c304108dc7c16478f28f0e1826a0f3; _glhf=1715080731; dnb=1; platform_type=desktop; auid=mjmZBWY5yKs9D2/OCKszAg==; is_rtl=1; visit=1-c0f3effbd860b15d31261e1342c7d750; fast_coupon=true; v3fr=1; lng=en; flaglng=en; typeBetNames=full; coefview=0; tzo=0; ggru=139; right_side=right; completed_user_settings=true; _ga_7V60YW2S5H=GS1.1.1715062970.1.0.1715062970.60.0.0; _ga=GA1.1.42826394.1715062971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 06:22:52 GMT
content-type: image/jpeg
content-length: 261300
cache-control: public,max-age=120,s-maxage=600
cf-bgj: h2pri
access-control-allow-origin: *
etag: "09a8806f6cf64db4baffa154c52f1aa7"
last-modified: Thu, 01 Feb 2024 15:47:26 GMT
server-timing: wf-uht;dur=
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
age: 261
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ff1e39aac0b529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 15 kB |
URL GET HTTP/3fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcNBXgpAAAAAABPc9IqtedASd5Fl5BlTyer8EVh&co=aHR0cHM6Ly8xeGJldC5jb206NDQz&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=wgxn7qgbeyl6 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15344, version 1.0 Hash5d4aeb4e5f5ef754e307d7ffaef688bd 06db651cdf354c64a7383ea9c77024ef4fb4cef8 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 16:31:04 GMT
expires: Sat, 03 May 2025 16:31:04 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 309109
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 | 216.58.207.227 | 200 OK | 15 kB |
URL GET HTTP/3fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 IP216.58.207.227:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&k=6LcNBXgpAAAAAABPc9IqtedASd5Fl5BlTyer8EVh CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15340, version 1.0 Hash19b7a0adfdd4f808b53af7e2ce2ad4e5 81d5d4c7b5035ad10cce63cf7100295e0c51fdda c912a9ce0c3122d4b2b29ad26bfe06b0390d1a5bdaa5d6128692c0befd1dfbbd
GET /s/roboto/v18/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15340
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 01:48:27 GMT
expires: Fri, 02 May 2025 01:48:27 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:33:16 GMT
content-type: font/woff2
age: 448466
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 | 216.58.207.227 | | 16 kB |
URL fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 15552, version 1.0 Hash285467176f7fe6bb6a9c6873b3dad2cc ea04e4ff5142ddd69307c183def721a160e0a64e 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 01:50:52 GMT
expires: Fri, 02 May 2025 01:50:52 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
age: 448321
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| v2l.traincdn.com/sfiles/logo_teams/6884.png | 185.244.209.62 | 200 OK | 11 kB |
URL GET HTTP/2v2l.traincdn.com/sfiles/logo_teams/6884.png IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typePNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced Hash79cc940770627c4646eea75225e00d94 344dbd33ec8ebb69e8979d196924b91c4942f55a 5acb9d5c290d6b2d816840ea47f8f8a61b0ec45d01fac2dc992fc2f76ecf86e5
GET /sfiles/logo_teams/6884.png HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:53 GMT
content-type: image/png
content-length: 10927
x-amz-id-2: 5oc+SkhiL2AfmTZ0QGUEkZYLQ3V9ai9MLunTazmcZA5JkFLyLINMINxHJWya2s2Jr0CBcArW2GfP/zrJA0/+Pi6M9SqSux+s2jl5PSG25iA=
x-amz-request-id: PS0X6X1SGVKBTPCA
last-modified: Wed, 18 Jan 2023 13:18:31 GMT
etag: "79cc940770627c4646eea75225e00d94"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=86400
x-amz-version-id: 1cdbsvXYrB0GNrw3_KRlrrVT.BUkmYC.
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.050
traceparent: 00-f7847e79d8d0a2b18855d542b4e842ab-6248d3b323f9dc08-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-06T17:04:09+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/sfiles/logo_teams/3878bf2552540f58b96e9bd1ad4c5048.png | 185.244.209.62 | | 17 kB |
URL v2l.traincdn.com/sfiles/logo_teams/3878bf2552540f58b96e9bd1ad4c5048.png IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typePNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced Hashe293ccc4e1e807728d259cf844b817f3 2039652ea444117e858d67c977b53aa69d31f188 229846f321507fa44a4b47aa2fe7008bef07a97960127042cfc1996e7438cc4b
GET /sfiles/logo_teams/3878bf2552540f58b96e9bd1ad4c5048.png HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:53 GMT
content-type: image/png
content-length: 16734
x-amz-id-2: 5Cw6EYj3HNbmJeK83vLSEJzaqP7ROv9SOS0WOtIe4BuXeCdp+M3eEkV4nuZ8jIQ35wGhGx0HAYoXqvX/s965TkZIwBP0PFaeR7DtkE731Ko=
x-amz-request-id: 036QJET0WC1HE3C2
last-modified: Wed, 12 Apr 2023 14:45:31 GMT
etag: "e293ccc4e1e807728d259cf844b817f3"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=86400
x-amz-version-id: HWAED5U0SfZ2ad7BakJ3hfKXBE38C5sx
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.036
traceparent: 00-3e6b522aa715ec4e5541c51a0233b185-ae6aa6d0537c54f3-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-06T17:04:09+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| www.google.com/recaptcha/api2/payload?p=06AFcWeA4leGca4aeAXNW71TJj_TS7r662HQQo18b0exmPXkidur0WuHEfWITKwiUmMBECraZcQRv5MUXsXw-0TFd_JynvL887dr84kl4qgcFWHisov4woEbcciw03pfHjceisUUYlHfhY9D9Y7zWCQ9bAZJGVeXhKQ3flyZ_TXC5z6fo5qpOSOtiu58HLhpz9YQxWu8i8D80O&k=6LcNBXgpAAAAAABPc9IqtedASd5Fl5BlTyer8EVh | 142.250.74.164 | 200 OK | 32 kB |
URL GET HTTP/3www.google.com/recaptcha/api2/payload?p=06AFcWeA4leGca4aeAXNW71TJj_TS7r662HQQo18b0exmPXkidur0WuHEfWITKwiUmMBECraZcQRv5MUXsXw-0TFd_JynvL887dr84kl4qgcFWHisov4woEbcciw03pfHjceisUUYlHfhY9D9Y7zWCQ9bAZJGVeXhKQ3flyZ_TXC5z6fo5qpOSOtiu58HLhpz9YQxWu8i8D80O&k=6LcNBXgpAAAAAABPc9IqtedASd5Fl5BlTyer8EVh IP142.250.74.164:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&k=6LcNBXgpAAAAAABPc9IqtedASd5Fl5BlTyer8EVh CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0 ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x300, components 3 Hashdbc38980f2070126550d5715f6fbbc14 c4da6ad9a2f8e76cd84691f828c03913c53577ce c91d2a7fb14ab7b004782160e688889b314f927f6e55a03a4bb4e74d4c43f8eb
GET /recaptcha/api2/payload?p=06AFcWeA4leGca4aeAXNW71TJj_TS7r662HQQo18b0exmPXkidur0WuHEfWITKwiUmMBECraZcQRv5MUXsXw-0TFd_JynvL887dr84kl4qgcFWHisov4woEbcciw03pfHjceisUUYlHfhY9D9Y7zWCQ9bAZJGVeXhKQ3flyZ_TXC5z6fo5qpOSOtiu58HLhpz9YQxWu8i8D80O&k=6LcNBXgpAAAAAABPc9IqtedASd5Fl5BlTyer8EVh HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/bframe?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&k=6LcNBXgpAAAAAABPc9IqtedASd5Fl5BlTyer8EVh
Cookie: _GRECAPTCHA=09ANctrhj1W2ebZiopAHfGStkxd-s78R4sOIJp-T6Hpampu9wgteCgLqDaXMY9U2yHkRKa0G2u11fL_Ez63DUmbGA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/jpeg
expires: Tue, 07 May 2024 06:22:53 GMT
date: Tue, 07 May 2024 06:22:53 GMT
cache-control: private, max-age=30
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/recaptcha/api2/refresh_2x.png | 142.250.74.35 | 200 OK | 600 B |
URL GET HTTP/3www.gstatic.com/recaptcha/api2/refresh_2x.png IP142.250.74.35:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&k=6LcNBXgpAAAAAABPc9IqtedASd5Fl5BlTyer8EVh CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typePNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced Hash0f2a4639b8a4cb30c76e8333c00d30a6 57e273a270bb864970d747c74b3f0a7c8e515b13 44b988703019cd6bfa86c91840fecf2a42b611b364e3eea2f4eb63bf62714e98
GET /recaptcha/api2/refresh_2x.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:06:14 GMT
expires: Thu, 09 May 2024 02:06:14 GMT
cache-control: public, max-age=604800
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
age: 447399
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/recaptcha/api2/audio_2x.png | 142.250.74.35 | 200 OK | 530 B |
URL GET HTTP/3www.gstatic.com/recaptcha/api2/audio_2x.png IP142.250.74.35:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&k=6LcNBXgpAAAAAABPc9IqtedASd5Fl5BlTyer8EVh CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typePNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced Hash88e0f42c9fa4f94aa8bcd54d1685c180 5ad9d47a49b82718baa3be88550a0b3350270c42 89c62095126fca89ea1511cf35b49b8306162946b0c26d6f60c5506c51d85992
GET /recaptcha/api2/audio_2x.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 530
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 05 May 2024 17:59:26 GMT
expires: Sun, 12 May 2024 17:59:26 GMT
cache-control: public, max-age=604800
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
age: 131007
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/recaptcha/api2/info_2x.png | 142.250.74.35 | 200 OK | 665 B |
URL GET HTTP/3www.gstatic.com/recaptcha/api2/info_2x.png IP142.250.74.35:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&k=6LcNBXgpAAAAAABPc9IqtedASd5Fl5BlTyer8EVh CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typePNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced Hash07bf314aab04047b9e9a959ee6f63da3 17bef6602672e2fd9956381e01356245144003e5 55eaf62cb05da20088dc12b39d7d254d046cb1fd61ddf3ae641f1439efd0a5ee
GET /recaptcha/api2/info_2x.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 665
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 01:53:03 GMT
expires: Thu, 09 May 2024 01:53:03 GMT
cache-control: public, max-age=604800
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
age: 448190
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 15 kB |
URL GET HTTP/3fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcNBXgpAAAAAABPc9IqtedASd5Fl5BlTyer8EVh&co=aHR0cHM6Ly8xeGJldC5jb206NDQz&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=wgxn7qgbeyl6 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15344, version 1.0 Hash5d4aeb4e5f5ef754e307d7ffaef688bd 06db651cdf354c64a7383ea9c77024ef4fb4cef8 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 16:31:04 GMT
expires: Sat, 03 May 2025 16:31:04 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 309109
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 | 216.58.207.227 | 200 OK | 15 kB |
URL GET HTTP/3fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 IP216.58.207.227:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&k=6LcNBXgpAAAAAABPc9IqtedASd5Fl5BlTyer8EVh CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15340, version 1.0 Hash19b7a0adfdd4f808b53af7e2ce2ad4e5 81d5d4c7b5035ad10cce63cf7100295e0c51fdda c912a9ce0c3122d4b2b29ad26bfe06b0390d1a5bdaa5d6128692c0befd1dfbbd
GET /s/roboto/v18/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15340
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 01:48:27 GMT
expires: Fri, 02 May 2025 01:48:27 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:33:16 GMT
content-type: font/woff2
age: 448466
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 | 216.58.207.227 | | 16 kB |
URL fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 15552, version 1.0 Hash285467176f7fe6bb6a9c6873b3dad2cc ea04e4ff5142ddd69307c183def721a160e0a64e 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 01:50:52 GMT
expires: Fri, 02 May 2025 01:50:52 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
age: 448321
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.com/js/bg/bUdxsAjTAIzRSD77hvzEWafZZa_dWpPwAsOs2AXeH2g.js | 142.250.74.164 | 200 OK | 7.5 kB |
URL GET HTTP/3www.google.com/js/bg/bUdxsAjTAIzRSD77hvzEWafZZa_dWpPwAsOs2AXeH2g.js IP142.250.74.164:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcNBXgpAAAAAABPc9IqtedASd5Fl5BlTyer8EVh&co=aHR0cHM6Ly8xeGJldC5jb206NDQz&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=wgxn7qgbeyl6 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0 ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
File typeJavaScript source, ASCII text, with very long lines (17649) Hash85eff967b6703760e0e562179e7ef0ef a4567db32ae2ea7049209561d2edde3d26fbef88 6d4771b008d3008cd1483efb86fcc459a7d965afdd5a93f002c3acd805de1f68
GET /js/bg/bUdxsAjTAIzRSD77hvzEWafZZa_dWpPwAsOs2AXeH2g.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/bframe?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&k=6LcNBXgpAAAAAABPc9IqtedASd5Fl5BlTyer8EVh
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 7493
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 01:57:44 GMT
expires: Fri, 02 May 2025 01:57:44 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 23 Apr 2024 17:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 447909
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| 1xbet.com/genfiles/cms/1/desktop/banner/d4f8e39ff6b8077f3676e3d2f02acf94.jpg | 104.18.41.64 | | 85 kB |
URL 1xbet.com/genfiles/cms/1/desktop/banner/d4f8e39ff6b8077f3676e3d2f02acf94.jpg IP104.18.41.64:0
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 23.4 (Windows), datetime=2023:05:31 15:22:40], baseline, precision 8, 925x460, components 3 Hash0c456709772948ac30ab2e6743af4b13 ddd114f50f6285bd2e348f0281d774afb2638690 13aac62946a5c5c303a083a7872f37b2e89bd66371c46f67379258b3e2f164a9
GET /genfiles/cms/1/desktop/banner/d4f8e39ff6b8077f3676e3d2f02acf94.jpg HTTP/1.1
Host: 1xbet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/en
Cookie: SESSION=48c304108dc7c16478f28f0e1826a0f3; _glhf=1715080731; dnb=1; platform_type=desktop; auid=mjmZBWY5yKs9D2/OCKszAg==; is_rtl=1; visit=1-c0f3effbd860b15d31261e1342c7d750; fast_coupon=true; v3fr=1; lng=en; flaglng=en; typeBetNames=full; coefview=0; tzo=0; ggru=139; right_side=right; completed_user_settings=true; _ga_7V60YW2S5H=GS1.1.1715062970.1.0.1715062970.60.0.0; _ga=GA1.1.42826394.1715062971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 06:22:52 GMT
content-type: image/jpeg
content-length: 84694
cache-control: public,max-age=120,s-maxage=600
cf-bgj: h2pri
access-control-allow-origin: *
etag: "0c456709772948ac30ab2e6743af4b13"
last-modified: Wed, 21 Jun 2023 09:27:48 GMT
server-timing: wf-uht;dur=
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
age: 261
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ff1e39aac3b529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.google.com/recaptcha/api2/payload?p=06AFcWeA5WRxndxZZe_AMDkoCIZz_au_eL4VOEwD62tzEMAI4NKYQ8k9keglD1KYyJxsRutIwT9SBGDvVPE8b0cWcrNkjV5V-MZv2UgXGD_wtor12NToQvQmu00Ki5GvYnaBPg2OX_Nz0EBgCJ7oZLKL2nmaNLes_roCXp4MSIDl_1QyjyEXV7cZ-NUjkwp9Ur7jP7I8HGHpFF&k=6LcNBXgpAAAAAABPc9IqtedASd5Fl5BlTyer8EVh | 142.250.74.164 | | 41 kB |
URL www.google.com/recaptcha/api2/payload?p=06AFcWeA5WRxndxZZe_AMDkoCIZz_au_eL4VOEwD62tzEMAI4NKYQ8k9keglD1KYyJxsRutIwT9SBGDvVPE8b0cWcrNkjV5V-MZv2UgXGD_wtor12NToQvQmu00Ki5GvYnaBPg2OX_Nz0EBgCJ7oZLKL2nmaNLes_roCXp4MSIDl_1QyjyEXV7cZ-NUjkwp9Ur7jP7I8HGHpFF&k=6LcNBXgpAAAAAABPc9IqtedASd5Fl5BlTyer8EVh IP142.250.74.164:0
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0 ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x300, components 3 Hashac7b60819150b632053ba40dddab4052 c8215401aa72ef20bd02c04887e82e1a9618bf68 93a1098fb0eedbea5f6238fd46ffe531ac18993f1dc78d8c36128e00717afd38
GET /recaptcha/api2/payload?p=06AFcWeA5WRxndxZZe_AMDkoCIZz_au_eL4VOEwD62tzEMAI4NKYQ8k9keglD1KYyJxsRutIwT9SBGDvVPE8b0cWcrNkjV5V-MZv2UgXGD_wtor12NToQvQmu00Ki5GvYnaBPg2OX_Nz0EBgCJ7oZLKL2nmaNLes_roCXp4MSIDl_1QyjyEXV7cZ-NUjkwp9Ur7jP7I8HGHpFF&k=6LcNBXgpAAAAAABPc9IqtedASd5Fl5BlTyer8EVh HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/bframe?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&k=6LcNBXgpAAAAAABPc9IqtedASd5Fl5BlTyer8EVh
Cookie: _GRECAPTCHA=09ANctrhj1W2ebZiopAHfGStkxd-s78R4sOIJp-T6Hpampu9wgteCgLqDaXMY9U2yHkRKa0G2u11fL_Ez63DUmbGA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/jpeg
expires: Tue, 07 May 2024 06:22:53 GMT
date: Tue, 07 May 2024 06:22:53 GMT
cache-control: private, max-age=30
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/recaptcha/api2/audio_2x.png | 142.250.74.35 | 200 OK | 530 B |
URL GET HTTP/3www.gstatic.com/recaptcha/api2/audio_2x.png IP142.250.74.35:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&k=6LcNBXgpAAAAAABPc9IqtedASd5Fl5BlTyer8EVh CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typePNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced Hash88e0f42c9fa4f94aa8bcd54d1685c180 5ad9d47a49b82718baa3be88550a0b3350270c42 89c62095126fca89ea1511cf35b49b8306162946b0c26d6f60c5506c51d85992
GET /recaptcha/api2/audio_2x.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 530
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 05 May 2024 17:59:26 GMT
expires: Sun, 12 May 2024 17:59:26 GMT
cache-control: public, max-age=604800
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
age: 131007
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/recaptcha/api2/info_2x.png | 142.250.74.35 | 200 OK | 665 B |
URL GET HTTP/3www.gstatic.com/recaptcha/api2/info_2x.png IP142.250.74.35:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&k=6LcNBXgpAAAAAABPc9IqtedASd5Fl5BlTyer8EVh CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typePNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced Hash07bf314aab04047b9e9a959ee6f63da3 17bef6602672e2fd9956381e01356245144003e5 55eaf62cb05da20088dc12b39d7d254d046cb1fd61ddf3ae641f1439efd0a5ee
GET /recaptcha/api2/info_2x.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 665
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 01:53:03 GMT
expires: Thu, 09 May 2024 01:53:03 GMT
cache-control: public, max-age=604800
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
age: 448190
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| v2l.traincdn.com/sfiles/logo_teams/1705962ffbc1e568500d02753d414082.png | 185.244.209.62 | 200 OK | 19 kB |
URL GET HTTP/2v2l.traincdn.com/sfiles/logo_teams/1705962ffbc1e568500d02753d414082.png IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typePNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced Hash8f7e84c6def18163ad04a9f6834a41d5 877baecf60e7d3f68d5d99bf51e1a3e653ff906d d561175817f78e6e8474aa2ad952524a0fc9f407dcad249dfeb7c0321fcab439
GET /sfiles/logo_teams/1705962ffbc1e568500d02753d414082.png HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:54 GMT
content-type: image/png
content-length: 18677
x-amz-id-2: dmRgr47rivLrdT9RyQ11RhliAT9Nfd0erjuO8iMPKuLHOvzeemi/to26rycQsUF0CXrmskqpwTk=
x-amz-request-id: 7ERP3N06X1SK3603
last-modified: Tue, 31 Jan 2023 13:28:56 GMT
etag: "8f7e84c6def18163ad04a9f6834a41d5"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=86400
x-amz-version-id: crzLFPkuwnn2CGeUhTzf7SxYfZdn5d_q
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.048
traceparent: 00-d9471e1e1c43cd5f4840101fd3808675-3ac1afe342066f80-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-06T19:47:44+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/sfiles/logo_teams/167095.png | 185.244.209.62 | | 9.2 kB |
URL v2l.traincdn.com/sfiles/logo_teams/167095.png IP185.244.209.62:0 ASN#199524 G-Core Labs S.A.
File typePNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced Hasha26ce8bd0e17ec8f7b83796006c81c2d fdb8ff93c3518875a2dec2c5318e9148e6b8d1e4 75598dd0b52b981e4b347f8036e93c5ff868e2a5475d8b2cda968bbe4f1dca2e
GET /sfiles/logo_teams/167095.png HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:54 GMT
content-type: image/png
content-length: 9236
x-amz-id-2: EJeAWmGP4JbnZhrECr7zjvf553vdThajy9FtsUC953HyTrhRASD9TSmSp3kiGKef6nv4NFSOn+lczghmGBv7XQ==
x-amz-request-id: D0R427NNDTY5F8RY
last-modified: Wed, 01 Feb 2023 10:50:02 GMT
etag: "a26ce8bd0e17ec8f7b83796006c81c2d"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=86400
x-amz-version-id: NB6SVBMFoF1TGdb1IU1KFy2ZUH.47Z96
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.032
traceparent: 00-24098fb3b0c5b7867892377996919655-02dc5b365fc130d6-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-06T20:45:56+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| 1xbet.com/LiveFeed/GetTopGamesStatZip?lng=en&cyberFlag=2&country=137 | 104.18.41.64 | | 2.6 kB |
URL 1xbet.com/LiveFeed/GetTopGamesStatZip?lng=en&cyberFlag=2&country=137 IP104.18.41.64:0
Hasheeeaeebf328603904e86183775404613 a7fdfc0b53eb6857abfce031464e9bb32d14523b 80b3f39076c445cf7ea9e4a9432e7fac2b0133b1f5c9636db718a17b2ef141d6
GET /LiveFeed/GetTopGamesStatZip?lng=en&cyberFlag=2&country=137 HTTP/1.1
Host: 1xbet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/en
Cookie: SESSION=48c304108dc7c16478f28f0e1826a0f3; _glhf=1715080731; dnb=1; platform_type=desktop; auid=mjmZBWY5yKs9D2/OCKszAg==; is_rtl=1; visit=1-c0f3effbd860b15d31261e1342c7d750; fast_coupon=true; v3fr=1; lng=en; flaglng=en; typeBetNames=full; coefview=0; tzo=0; ggru=139; right_side=right; completed_user_settings=true; _ga_7V60YW2S5H=GS1.1.1715062970.1.0.1715062970.60.0.0; _ga=GA1.1.42826394.1715062971; hdt=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCJ9.eyJndWlkIjoiMkFNalJNQWl5YzV3OUpaMXpPL1hwancxRkcveWZFaW9XK2xrQnczajJ4OWd4RWpRV2k2MHREU3VJOVROL25TcXh5UTNpNEZFdkJkRHlUUWk5R0hUVDdTU1dGdXJESUk2YVRHb3pMSkNPOUdKQjZNYXB1Zno5REZWdFhJNm04T2Y4bUVpVTVNcUtxQVMwbjRPcEZJb2lyMkVkTEk5SXBLb3JXMHdLK0hNbnN3YWpqNm1rcGs4MWhIdjZsK3hzdWRUQmQwVW1QMkZGV0FYZmU2OHdRbmMrbmhURStGbVR4MjNCNnJLNW9VS1IzOXdvR1BsaDNtVHMxTXREZDVkL2tVbS9kUXFQTGJHOTJCeFI1ZEpza2llQkc2NzFoS1dCM2EzTVZXRGwybTZuczIxIiwiZXhwIjoxNzE1MDc3Mzc1LCJpYXQiOjE3MTUwNjI5NzV9.GrEnZA1i4vK7uniUYAJdGM3mAFzHwD74RvufOgYyIUlsct17DazqejfT2Z63tXeT2enHJHIiGdIZHOmA6UDUOA
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 06:22:56 GMT
content-type: application/json; charset=utf-8
content-length: 2553
cache-control: public, max-age=5
content-encoding: br
last-modified: Tue, 07 May 2024 06:22:56 GMT
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
server-timing: wf-uht;dur=0.006
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 87ff1e54abf1b529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| 1xbet.com/hd-api/external/api/web/v1/j/da6m7i5g7k6m5359dc0722701805cca3328f9b59fda148ad764e | 104.18.41.64 | | 6.4 kB |
URL 1xbet.com/hd-api/external/api/web/v1/j/da6m7i5g7k6m5359dc0722701805cca3328f9b59fda148ad764e IP104.18.41.64:0
Hash41340dfee8c3d25ded6284497ed2a548 ffb7395b614c324a9d259df4554da8a00785e543 dda76c24227faf57e1217452cdf193d1936667c73e4dc546991dad21a5bdd441
POST /hd-api/external/api/web/v1/j/da6m7i5g7k6m5359dc0722701805cca3328f9b59fda148ad764e HTTP/1.1
Host: 1xbet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1xbet.com/en
X-Requested-With: XMLHttpRequest
Content-Type: application/json
Content-Length: 105915
Origin: https://1xbet.com
DNT: 1
Connection: keep-alive
Cookie: SESSION=48c304108dc7c16478f28f0e1826a0f3; _glhf=1715080731; dnb=1; platform_type=desktop; auid=mjmZBWY5yKs9D2/OCKszAg==; is_rtl=1; visit=1-c0f3effbd860b15d31261e1342c7d750; fast_coupon=true; v3fr=1; lng=en; flaglng=en; typeBetNames=full; coefview=0; tzo=0; ggru=139; right_side=right; completed_user_settings=true; _ga_7V60YW2S5H=GS1.1.1715062970.1.0.1715062970.60.0.0; _ga=GA1.1.42826394.1715062971
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 06:22:55 GMT
content-type: application/json
set-cookie: hdt=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCJ9.eyJndWlkIjoiMkFNalJNQWl5YzV3OUpaMXpPL1hwancxRkcveWZFaW9XK2xrQnczajJ4OWd4RWpRV2k2MHREU3VJOVROL25TcXh5UTNpNEZFdkJkRHlUUWk5R0hUVDdTU1dGdXJESUk2YVRHb3pMSkNPOUdKQjZNYXB1Zno5REZWdFhJNm04T2Y4bUVpVTVNcUtxQVMwbjRPcEZJb2lyMkVkTEk5SXBLb3JXMHdLK0hNbnN3YWpqNm1rcGs4MWhIdjZsK3hzdWRUQmQwVW1QMkZGV0FYZmU2OHdRbmMrbmhURStGbVR4MjNCNnJLNW9VS1IzOXdvR1BsaDNtVHMxTXREZDVkL2tVbS9kUXFQTGJHOTJCeFI1ZEpza2llQkc2NzFoS1dCM2EzTVZXRGwybTZuczIxIiwiZXhwIjoxNzE1MDc3Mzc1LCJpYXQiOjE3MTUwNjI5NzV9.GrEnZA1i4vK7uniUYAJdGM3mAFzHwD74RvufOgYyIUlsct17DazqejfT2Z63tXeT2enHJHIiGdIZHOmA6UDUOA; Path=/; Max-Age=14399; Secure
vary: Accept-Encoding
x-request-guid: 0ef82367125bb4e748bb66783c367820
strict-transport-security: max-age=63072000; includeSubDomains; preload
server-timing: wf-uht;dur=0.010
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 87ff1e4f3d2ab529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| 1xbet.com/default/img/new1x2/updated-icons.svg | 104.18.41.64 | 200 OK | 24 kB |
URL GET HTTP/31xbet.com/default/img/new1x2/updated-icons.svg IP104.18.41.64:443
CertificateIssuerGoogle Trust Services LLC Subject1xbet.com FingerprintA0:4A:36:06:EE:9B:04:BA:25:2E:97:EA:45:A0:70:63:51:97:25:CD ValiditySat, 16 Mar 2024 20:46:45 GMT - Fri, 14 Jun 2024 20:46:44 GMT
File typeSVG Scalable Vector Graphics image Hash4d9892fc33f03d38cae0defcab25e147 fc5e9ab5b7a99a46495363760ed1d91bacc0ee07 e4f2e6fc91e15fde2563840338c4cf012051a24a1f26214f8ba8d72f2cbc965c
GET /default/img/new1x2/updated-icons.svg HTTP/1.1
Host: 1xbet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/en
Cookie: SESSION=48c304108dc7c16478f28f0e1826a0f3; _glhf=1715080731; dnb=1; platform_type=desktop; auid=mjmZBWY5yKs9D2/OCKszAg==; is_rtl=1; visit=1-c0f3effbd860b15d31261e1342c7d750; fast_coupon=true; v3fr=1; lng=en; flaglng=en; typeBetNames=full; coefview=0; tzo=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 06:22:46 GMT
content-type: image/svg+xml
last-modified: Wed, 28 Feb 2024 06:18:30 GMT
vary: Accept-Encoding
etag: W/"65ded036-5c17"
content-encoding: br
strict-transport-security: max-age=63072000; includeSubDomains; preload
server-timing: wf-uht;dur=
cf-cache-status: HIT
age: 1488
server: cloudflare
cf-ray: 87ff1e125891b529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| 1xbet.com/LineFeed/GetGameZip?id=528450883&cfview=0&lng=en&GroupEvents=true&isSubGames=false&allEventsGroupSubGames=false&partner=1&country=137&fcountry=137 | 104.18.41.64 | 200 OK | 18 kB |
URL GET HTTP/31xbet.com/LineFeed/GetGameZip?id=528450883&cfview=0&lng=en&GroupEvents=true&isSubGames=false&allEventsGroupSubGames=false&partner=1&country=137&fcountry=137 IP104.18.41.64:443
CertificateIssuerGoogle Trust Services LLC Subject1xbet.com FingerprintA0:4A:36:06:EE:9B:04:BA:25:2E:97:EA:45:A0:70:63:51:97:25:CD ValiditySat, 16 Mar 2024 20:46:45 GMT - Fri, 14 Jun 2024 20:46:44 GMT
Hashcd46563d7fc5ac765420d75505662aea 77eb91735dd39a62806fef5f54dc79296334a3a4 f056d4ec298b28c89a125bd676f3eaf30489dbea8755f48fc38f724e52730d10
GET /LineFeed/GetGameZip?id=528450883&cfview=0&lng=en&GroupEvents=true&isSubGames=false&allEventsGroupSubGames=false&partner=1&country=137&fcountry=137 HTTP/1.1
Host: 1xbet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/en
Cookie: SESSION=48c304108dc7c16478f28f0e1826a0f3; _glhf=1715080731; dnb=1; platform_type=desktop; auid=mjmZBWY5yKs9D2/OCKszAg==; is_rtl=1; visit=1-c0f3effbd860b15d31261e1342c7d750; fast_coupon=true; v3fr=1; lng=en; flaglng=en; typeBetNames=full; coefview=0; tzo=0; ggru=139; right_side=right; completed_user_settings=true; _ga_7V60YW2S5H=GS1.1.1715062970.1.0.1715062970.60.0.0; _ga=GA1.1.42826394.1715062971; hdt=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCJ9.eyJndWlkIjoiMkFNalJNQWl5YzV3OUpaMXpPL1hwancxRkcveWZFaW9XK2xrQnczajJ4OWd4RWpRV2k2MHREU3VJOVROL25TcXh5UTNpNEZFdkJkRHlUUWk5R0hUVDdTU1dGdXJESUk2YVRHb3pMSkNPOUdKQjZNYXB1Zno5REZWdFhJNm04T2Y4bUVpVTVNcUtxQVMwbjRPcEZJb2lyMkVkTEk5SXBLb3JXMHdLK0hNbnN3YWpqNm1rcGs4MWhIdjZsK3hzdWRUQmQwVW1QMkZGV0FYZmU2OHdRbmMrbmhURStGbVR4MjNCNnJLNW9VS1IzOXdvR1BsaDNtVHMxTXREZDVkL2tVbS9kUXFQTGJHOTJCeFI1ZEpza2llQkc2NzFoS1dCM2EzTVZXRGwybTZuczIxIiwiZXhwIjoxNzE1MDc3Mzc1LCJpYXQiOjE3MTUwNjI5NzV9.GrEnZA1i4vK7uniUYAJdGM3mAFzHwD74RvufOgYyIUlsct17DazqejfT2Z63tXeT2enHJHIiGdIZHOmA6UDUOA
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 06:23:02 GMT
content-type: application/json; charset=utf-8
content-length: 17542
cache-control: public, max-age=5
content-encoding: br
last-modified: Tue, 07 May 2024 06:23:02 GMT
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
server-timing: wf-uht;dur=0.022
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 87ff1e7ae80fb529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| services.addons.mozilla.org/api/v4/addons/search/?guid=default-theme%40mozilla.org%2Caddons-search-detection%40mozilla.com%2Cgoogle%40search.mozilla.org%2Cwikipedia%40search.mozilla.org%2Cbing%40search.mozilla.org%2Cddg%40search.mozilla.org%2Cfirefox-compact-light%40mozilla.org%2Cfirefox-compact-dark%40mozilla.org%2Cfirefox-alpenglow%40mozilla.org%2Camazon%40search.mozilla.org&lang=en-US | 54.230.111.124 | | 82 B |
URL services.addons.mozilla.org/api/v4/addons/search/?guid=default-theme%40mozilla.org%2Caddons-search-detection%40mozilla.com%2Cgoogle%40search.mozilla.org%2Cwikipedia%40search.mozilla.org%2Cbing%40search.mozilla.org%2Cddg%40search.mozilla.org%2Cfirefox-compact-light%40mozilla.org%2Cfirefox-compact-dark%40mozilla.org%2Cfirefox-alpenglow%40mozilla.org%2Camazon%40search.mozilla.org&lang=en-US IP54.230.111.124:0
Hash4f822d39c269d2c47e3174b6c6bad3b7 d56bd07959c766e9c18faa9cf1070548f9236b65 cda00e555c758b1c13b6cbd17049ca8471057d16c60f08f551dbc331308eecf3
GET /api/v4/addons/search/?guid=default-theme%40mozilla.org%2Caddons-search-detection%40mozilla.com%2Cgoogle%40search.mozilla.org%2Cwikipedia%40search.mozilla.org%2Cbing%40search.mozilla.org%2Cddg%40search.mozilla.org%2Cfirefox-compact-light%40mozilla.org%2Cfirefox-compact-dark%40mozilla.org%2Cfirefox-alpenglow%40mozilla.org%2Camazon%40search.mozilla.org&lang=en-US HTTP/1.1
Host: services.addons.mozilla.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
content-length: 82
server: openresty
date: Tue, 07 May 2024 06:00:56 GMT
allow: GET, HEAD, OPTIONS
x-amo-request-id: 49aef7544dc04847b404255d93dda72c
content-security-policy: style-src 'unsafe-inline' https://addons.mozilla.org/static-server/; form-action 'self'; font-src 'self' https://addons.mozilla.org/static-server/; media-src https://videos.cdn.mozilla.net; child-src https://www.recaptcha.net/recaptcha/; default-src 'none'; img-src 'self' blob: data: https://addons.mozilla.org/static-server/ https://addons.mozilla.org/user-media/; frame-src https://www.recaptcha.net/recaptcha/; connect-src 'self' https://*.google-analytics.com; script-src https://www.google-analytics.com/analytics.js https://www.googletagmanager.com/gtag/js https://www.recaptcha.net/recaptcha/ https://www.gstatic.com/recaptcha/ https://www.gstatic.cn/recaptcha/ https://addons.mozilla.org/static-server/; object-src 'none'; report-uri /__cspreport__
x-frame-options: DENY
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
referrer-policy: same-origin
cross-origin-opener-policy: same-origin
cache-control: max-age=3600
public-key-pins: max-age=5184000; includeSubDomains; pin-sha256="WoiWRyIOVNa9ihaBciRSC7XHjliYS9VwUGOIud4PB18="; pin-sha256="r/mIkG3eEpVdm+u/ko/cwxzOMo1bk4TyHIlByibiA5E="
via: 1.1 google, 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
etag: "4f822d39c269d2c47e3174b6c6bad3b7"
vary: origin,X-Country-Code,Accept-Language
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 7HNBOScfTcgjhIGmHJ32aYtGFp3l25G-AFHPr1YEqAKoaUWtSnxxow==
age: 1327
X-Firefox-Spdy: h2
|
|
| aus5.mozilla.org/update/3/SystemAddons/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml | 35.244.181.201 | | 42 B |
URL aus5.mozilla.org/update/3/SystemAddons/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml IP35.244.181.201:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typeXML 1.0 document, ASCII text Hashf8f24fa0c857d8f2ee493e131b85ab62 cb6049f830a54d14a19d4104fc0bb5ab5fdedbe6 e0dadbc9cd1f1bd8ce3118cc3383e0d0f6d147f055265d498d99deea956ba00f
GET /update/3/SystemAddons/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1
Host: aus5.mozilla.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:23:04 GMT
content-type: text/xml; charset=utf-8
content-length: 42
rule-id: unknown
rule-data-version: unknown
strict-transport-security: max-age=31536000;
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'
x-proxy-cache-status: EXPIRED
via: 1.1 google
cache-control: public,max-age=90
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| 1xbet.com/LiveFeed/GetTopGamesStatZip?lng=en&cyberFlag=2&country=137 | 104.18.41.64 | | 2.6 kB |
URL 1xbet.com/LiveFeed/GetTopGamesStatZip?lng=en&cyberFlag=2&country=137 IP104.18.41.64:0
Hash9fa21dd2cc252e073587d3abde86c901 5393c04dc8de65478b016a5e46f1a83a48cb8e26 3c651ca4412b67b7d333f6aa61366545476191a370d9cd64e97879d5276bb97d
GET /LiveFeed/GetTopGamesStatZip?lng=en&cyberFlag=2&country=137 HTTP/1.1
Host: 1xbet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/en
Cookie: SESSION=48c304108dc7c16478f28f0e1826a0f3; _glhf=1715080731; dnb=1; platform_type=desktop; auid=mjmZBWY5yKs9D2/OCKszAg==; is_rtl=1; visit=1-c0f3effbd860b15d31261e1342c7d750; fast_coupon=true; v3fr=1; lng=en; flaglng=en; typeBetNames=full; coefview=0; tzo=0; ggru=139; right_side=right; completed_user_settings=true; _ga_7V60YW2S5H=GS1.1.1715062970.1.0.1715062970.60.0.0; _ga=GA1.1.42826394.1715062971; hdt=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCJ9.eyJndWlkIjoiMkFNalJNQWl5YzV3OUpaMXpPL1hwancxRkcveWZFaW9XK2xrQnczajJ4OWd4RWpRV2k2MHREU3VJOVROL25TcXh5UTNpNEZFdkJkRHlUUWk5R0hUVDdTU1dGdXJESUk2YVRHb3pMSkNPOUdKQjZNYXB1Zno5REZWdFhJNm04T2Y4bUVpVTVNcUtxQVMwbjRPcEZJb2lyMkVkTEk5SXBLb3JXMHdLK0hNbnN3YWpqNm1rcGs4MWhIdjZsK3hzdWRUQmQwVW1QMkZGV0FYZmU2OHdRbmMrbmhURStGbVR4MjNCNnJLNW9VS1IzOXdvR1BsaDNtVHMxTXREZDVkL2tVbS9kUXFQTGJHOTJCeFI1ZEpza2llQkc2NzFoS1dCM2EzTVZXRGwybTZuczIxIiwiZXhwIjoxNzE1MDc3Mzc1LCJpYXQiOjE3MTUwNjI5NzV9.GrEnZA1i4vK7uniUYAJdGM3mAFzHwD74RvufOgYyIUlsct17DazqejfT2Z63tXeT2enHJHIiGdIZHOmA6UDUOA
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 06:23:06 GMT
content-type: application/json; charset=utf-8
content-length: 2567
cache-control: public, max-age=5
content-encoding: br
last-modified: Tue, 07 May 2024 06:23:06 GMT
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
server-timing: wf-uht;dur=0.005
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 87ff1e932d36b529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| 1xbet.com/LineFeed/GetGameZip?id=529224955&cfview=0&lng=en&GroupEvents=true&isSubGames=false&allEventsGroupSubGames=false&partner=1&country=137&fcountry=137 | 104.18.41.64 | 200 OK | 5.8 kB |
URL GET HTTP/31xbet.com/LineFeed/GetGameZip?id=529224955&cfview=0&lng=en&GroupEvents=true&isSubGames=false&allEventsGroupSubGames=false&partner=1&country=137&fcountry=137 IP104.18.41.64:443
CertificateIssuerGoogle Trust Services LLC Subject1xbet.com FingerprintA0:4A:36:06:EE:9B:04:BA:25:2E:97:EA:45:A0:70:63:51:97:25:CD ValiditySat, 16 Mar 2024 20:46:45 GMT - Fri, 14 Jun 2024 20:46:44 GMT
Hash97561279c2981d8116138fb389f26a50 eb88f5185e0eb9e85b4a82ea95a50c931e3a63be 3f5c0386594ce54d741a1c90da1935a73f24817c01be09bd70a424e935dc179d
GET /LineFeed/GetGameZip?id=529224955&cfview=0&lng=en&GroupEvents=true&isSubGames=false&allEventsGroupSubGames=false&partner=1&country=137&fcountry=137 HTTP/1.1
Host: 1xbet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/en
Cookie: SESSION=48c304108dc7c16478f28f0e1826a0f3; _glhf=1715080731; dnb=1; platform_type=desktop; auid=mjmZBWY5yKs9D2/OCKszAg==; is_rtl=1; visit=1-c0f3effbd860b15d31261e1342c7d750; fast_coupon=true; v3fr=1; lng=en; flaglng=en; typeBetNames=full; coefview=0; tzo=0; ggru=139; right_side=right; completed_user_settings=true; _ga_7V60YW2S5H=GS1.1.1715062970.1.0.1715062970.60.0.0; _ga=GA1.1.42826394.1715062971; hdt=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCJ9.eyJndWlkIjoiMkFNalJNQWl5YzV3OUpaMXpPL1hwancxRkcveWZFaW9XK2xrQnczajJ4OWd4RWpRV2k2MHREU3VJOVROL25TcXh5UTNpNEZFdkJkRHlUUWk5R0hUVDdTU1dGdXJESUk2YVRHb3pMSkNPOUdKQjZNYXB1Zno5REZWdFhJNm04T2Y4bUVpVTVNcUtxQVMwbjRPcEZJb2lyMkVkTEk5SXBLb3JXMHdLK0hNbnN3YWpqNm1rcGs4MWhIdjZsK3hzdWRUQmQwVW1QMkZGV0FYZmU2OHdRbmMrbmhURStGbVR4MjNCNnJLNW9VS1IzOXdvR1BsaDNtVHMxTXREZDVkL2tVbS9kUXFQTGJHOTJCeFI1ZEpza2llQkc2NzFoS1dCM2EzTVZXRGwybTZuczIxIiwiZXhwIjoxNzE1MDc3Mzc1LCJpYXQiOjE3MTUwNjI5NzV9.GrEnZA1i4vK7uniUYAJdGM3mAFzHwD74RvufOgYyIUlsct17DazqejfT2Z63tXeT2enHJHIiGdIZHOmA6UDUOA
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 06:23:09 GMT
content-type: application/json; charset=utf-8
content-length: 5755
cache-control: public, max-age=5
content-encoding: br
last-modified: Tue, 07 May 2024 06:23:09 GMT
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
server-timing: wf-uht;dur=0.009
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 87ff1ea5bc42b529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| 1xbet.com/LineFeed/GetGameZip?id=528915807&cfview=0&lng=en&GroupEvents=true&isSubGames=false&allEventsGroupSubGames=false&partner=1&country=137&fcountry=137 | 104.18.41.64 | | 16 kB |
URL 1xbet.com/LineFeed/GetGameZip?id=528915807&cfview=0&lng=en&GroupEvents=true&isSubGames=false&allEventsGroupSubGames=false&partner=1&country=137&fcountry=137 IP104.18.41.64:0
Hashe7827ad64a2b609fec09b9c8e9050366 d7f43550a3d9cd1944f32a033a33f64423f76506 64048a1c4fd9dfadbdf5f19b89c9ae27793baae105f477aca16bea9eedbbe73c
GET /LineFeed/GetGameZip?id=528915807&cfview=0&lng=en&GroupEvents=true&isSubGames=false&allEventsGroupSubGames=false&partner=1&country=137&fcountry=137 HTTP/1.1
Host: 1xbet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/en
Cookie: SESSION=48c304108dc7c16478f28f0e1826a0f3; _glhf=1715080731; dnb=1; platform_type=desktop; auid=mjmZBWY5yKs9D2/OCKszAg==; is_rtl=1; visit=1-c0f3effbd860b15d31261e1342c7d750; fast_coupon=true; v3fr=1; lng=en; flaglng=en; typeBetNames=full; coefview=0; tzo=0; ggru=139; right_side=right; completed_user_settings=true; _ga_7V60YW2S5H=GS1.1.1715062970.1.0.1715062970.60.0.0; _ga=GA1.1.42826394.1715062971; hdt=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCJ9.eyJndWlkIjoiMkFNalJNQWl5YzV3OUpaMXpPL1hwancxRkcveWZFaW9XK2xrQnczajJ4OWd4RWpRV2k2MHREU3VJOVROL25TcXh5UTNpNEZFdkJkRHlUUWk5R0hUVDdTU1dGdXJESUk2YVRHb3pMSkNPOUdKQjZNYXB1Zno5REZWdFhJNm04T2Y4bUVpVTVNcUtxQVMwbjRPcEZJb2lyMkVkTEk5SXBLb3JXMHdLK0hNbnN3YWpqNm1rcGs4MWhIdjZsK3hzdWRUQmQwVW1QMkZGV0FYZmU2OHdRbmMrbmhURStGbVR4MjNCNnJLNW9VS1IzOXdvR1BsaDNtVHMxTXREZDVkL2tVbS9kUXFQTGJHOTJCeFI1ZEpza2llQkc2NzFoS1dCM2EzTVZXRGwybTZuczIxIiwiZXhwIjoxNzE1MDc3Mzc1LCJpYXQiOjE3MTUwNjI5NzV9.GrEnZA1i4vK7uniUYAJdGM3mAFzHwD74RvufOgYyIUlsct17DazqejfT2Z63tXeT2enHJHIiGdIZHOmA6UDUOA
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 06:23:10 GMT
content-type: application/json; charset=utf-8
content-length: 15538
cache-control: public, max-age=5
content-encoding: br
last-modified: Tue, 07 May 2024 06:23:10 GMT
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
server-timing: wf-uht;dur=0.020
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 87ff1eac9d54b529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| 1xbet.com/LineFeed/GetGameZip?id=528450883&cfview=0&lng=en&GroupEvents=true&isSubGames=false&allEventsGroupSubGames=false&partner=1&country=137&fcountry=137 | 104.18.41.64 | 200 OK | 18 kB |
URL GET HTTP/31xbet.com/LineFeed/GetGameZip?id=528450883&cfview=0&lng=en&GroupEvents=true&isSubGames=false&allEventsGroupSubGames=false&partner=1&country=137&fcountry=137 IP104.18.41.64:443
CertificateIssuerGoogle Trust Services LLC Subject1xbet.com FingerprintA0:4A:36:06:EE:9B:04:BA:25:2E:97:EA:45:A0:70:63:51:97:25:CD ValiditySat, 16 Mar 2024 20:46:45 GMT - Fri, 14 Jun 2024 20:46:44 GMT
Hash12406113af2b4cb5e1ff8fa414591f38 2d6e5b06a087fcfaff9af19d239b921b8c70641a 17eea0c612449d52f0207884e7d4d489cfd5cf05dfabbc67953e7f0633aae461
GET /LineFeed/GetGameZip?id=528450883&cfview=0&lng=en&GroupEvents=true&isSubGames=false&allEventsGroupSubGames=false&partner=1&country=137&fcountry=137 HTTP/1.1
Host: 1xbet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/en
Cookie: SESSION=48c304108dc7c16478f28f0e1826a0f3; _glhf=1715080731; dnb=1; platform_type=desktop; auid=mjmZBWY5yKs9D2/OCKszAg==; is_rtl=1; visit=1-c0f3effbd860b15d31261e1342c7d750; fast_coupon=true; v3fr=1; lng=en; flaglng=en; typeBetNames=full; coefview=0; tzo=0; ggru=139; right_side=right; completed_user_settings=true; _ga_7V60YW2S5H=GS1.1.1715062970.1.0.1715062970.60.0.0; _ga=GA1.1.42826394.1715062971; hdt=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCJ9.eyJndWlkIjoiMkFNalJNQWl5YzV3OUpaMXpPL1hwancxRkcveWZFaW9XK2xrQnczajJ4OWd4RWpRV2k2MHREU3VJOVROL25TcXh5UTNpNEZFdkJkRHlUUWk5R0hUVDdTU1dGdXJESUk2YVRHb3pMSkNPOUdKQjZNYXB1Zno5REZWdFhJNm04T2Y4bUVpVTVNcUtxQVMwbjRPcEZJb2lyMkVkTEk5SXBLb3JXMHdLK0hNbnN3YWpqNm1rcGs4MWhIdjZsK3hzdWRUQmQwVW1QMkZGV0FYZmU2OHdRbmMrbmhURStGbVR4MjNCNnJLNW9VS1IzOXdvR1BsaDNtVHMxTXREZDVkL2tVbS9kUXFQTGJHOTJCeFI1ZEpza2llQkc2NzFoS1dCM2EzTVZXRGwybTZuczIxIiwiZXhwIjoxNzE1MDc3Mzc1LCJpYXQiOjE3MTUwNjI5NzV9.GrEnZA1i4vK7uniUYAJdGM3mAFzHwD74RvufOgYyIUlsct17DazqejfT2Z63tXeT2enHJHIiGdIZHOmA6UDUOA
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 06:23:10 GMT
content-type: application/json; charset=utf-8
content-length: 17542
cache-control: public, max-age=5
content-encoding: br
last-modified: Tue, 07 May 2024 06:23:10 GMT
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
server-timing: wf-uht;dur=0.022
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 87ff1eacedaeb529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-316.png | 213.183.34.23 | 200 OK | 13 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-316.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 50, 8-bit/color RGBA, non-interlaced Hash9ba8ed3b628575f6f4db7a43f1ff4073 b2e78e2a39b4cce8022cb1d1703019bb5e8140c2 bda7631d92a2dc7e1d7fa4432173b592a9e4c46bd7aa8635c22b42f77cbbda35
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-316.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 13047
last-modified: Mon, 04 Mar 2024 13:15:26 GMT
etag: "9ba8ed3b628575f6f4db7a43f1ff4073"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:47:02.105Z
expires: Tue, 07 May 2024 13:17:48 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.059
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/genfiles/cms/1-285/desktop/footer/logos/esl.png | 185.244.209.62 | 200 OK | 33 kB |
URL GET HTTP/2v2l.traincdn.com/genfiles/cms/1-285/desktop/footer/logos/esl.png IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typePNG image data, 1184 x 362, 8-bit/color RGBA, non-interlaced Hash802ac7a85f716d1a10ad5084ce6b2c14 4e3b9ea62cf588f4f8b5be3553aa53068fbe8fa6 3329ddcdb9bce051bb89a2ec7ea84fae914e31752e66656a2321642d8457f7cc
GET /genfiles/cms/1-285/desktop/footer/logos/esl.png HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v2l.traincdn.com/styles/css/footer/main.7361d396d2ea9cb39d2114c5ae709005.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:41 GMT
content-type: image/png
content-length: 33328
last-modified: Tue, 11 Apr 2023 17:53:05 GMT
etag: "802ac7a85f716d1a10ad5084ce6b2c14"
cache-control: max-age=3600
expires: Mon, 18 Dec 2023 08:57:21 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-1c09fc69f391c736c456d3edbfa4ec23-58ba0c96b507cf95-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-07T06:08:13+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/bundle/app/Default/Desktop/favorites.Favorite.c1723f9d591ece36abea.chunk.js | 185.244.209.62 | 200 OK | 17 kB |
URL GET HTTP/2v2l.traincdn.com/bundle/app/Default/Desktop/favorites.Favorite.c1723f9d591ece36abea.chunk.js IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (17436), with no line terminators Hash769daae36972d1ef8ed4014732cb6f62 c4149a6736ff3d3d83339613b0a08a98c07ca191 c807bbfb9892142113b01d61949ac95a64c956c9a658dab9d8cb3c753ba63f38
GET /bundle/app/Default/Desktop/favorites.Favorite.c1723f9d591ece36abea.chunk.js HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:47 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 06 May 2024 09:35:45 GMT
etag: W/"6638a471-441c"
expires: Wed, 05 Jun 2024 09:55:56 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-3958eb4a5e81c0691570e43666c0c466-327b79e8386bdd8f-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-06T09:53:21+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| 1xbet.com/preloader/default | 104.18.41.64 | 200 OK | 5.4 kB |
URL GET HTTP/31xbet.com/preloader/default IP104.18.41.64:443
CertificateIssuerGoogle Trust Services LLC Subject1xbet.com FingerprintA0:4A:36:06:EE:9B:04:BA:25:2E:97:EA:45:A0:70:63:51:97:25:CD ValiditySat, 16 Mar 2024 20:46:45 GMT - Fri, 14 Jun 2024 20:46:44 GMT
File typeSVG Scalable Vector Graphics image Hash4737cae0fbddff152100daf26effe78c 5fd2c424128053f5b32d05549afdc14142378759 1502901e8d0a45bcd0a24ad87ead13388515bd254fc7d93af124d690286af0bd
GET /preloader/default HTTP/1.1
Host: 1xbet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/en
Cookie: SESSION=48c304108dc7c16478f28f0e1826a0f3; _glhf=1715080731; dnb=1; platform_type=desktop; auid=mjmZBWY5yKs9D2/OCKszAg==; is_rtl=1; visit=1-c0f3effbd860b15d31261e1342c7d750; fast_coupon=true; v3fr=1; lng=en; flaglng=en; typeBetNames=full; coefview=0; tzo=0; ggru=139; right_side=right; completed_user_settings=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 06:22:49 GMT
content-type: image/svg+xml
vary: Accept-Encoding
cache-control: max-age=3600, public, s-maxage=3600
server-timing: p;dur=33, dt_total;dur=35.178, wf-uht;dur=
traceparent: 00-8cbb1f02f9783b1579226d243bc2a6ea-460a69ad8984ec50-01
x-dt: 54
x-time-ng: 0.035
content-encoding: br
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 87ff1e285d99b529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-69.png | 213.183.34.23 | 200 OK | 11 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-69.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 86, 8-bit/color RGBA, non-interlaced Hash5e1952c9f9cc37c91074e03c4f4bde26 1371573cde828c4525baa01e09575203c79ae364 17a750e5475d1060975f9390012de91a3b10dc97d5010e0337d71a29218cbae2
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-69.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 11313
last-modified: Mon, 04 Mar 2024 13:15:32 GMT
etag: "5e1952c9f9cc37c91074e03c4f4bde26"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:48:36.259Z
expires: Tue, 07 May 2024 13:17:41 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.052
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/bundle/app/Default/Desktop/3.c756127d168b2f9522b0.chunk.js | 185.244.209.62 | 200 OK | 18 kB |
URL GET HTTP/2v2l.traincdn.com/bundle/app/Default/Desktop/3.c756127d168b2f9522b0.chunk.js IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (17480), with no line terminators Hash7df01739005e358531e23b07f2bc66ef 40c7476cd01553218a086f1ab2f75817b6284367 5011c398cba98cfe4316ee32aa6e1f4acfd1476ed91376a09d80fc67c9435b96
GET /bundle/app/Default/Desktop/3.c756127d168b2f9522b0.chunk.js HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:48 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 06 May 2024 08:43:15 GMT
etag: W/"66389823-4448"
expires: Wed, 05 Jun 2024 08:55:20 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.001
traceparent: 00-ed0f54f4f1bf2bd3e71f3e62c0ff7e45-a924d0062a871132-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-06T08:52:45+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-263.png | 213.183.34.23 | 200 OK | 8.0 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-263.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 33, 8-bit/color RGBA, non-interlaced Hash50ed6b2b65baf5c8b5b145a9961ee0c9 502b94e1c659a5bd9fd52d29d610d0abb18e323a b9e7cfc1e63f0e8857422058991d44481eddc5c20b08e9e2ba57d28591d32e36
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-263.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 8036
last-modified: Mon, 04 Mar 2024 13:15:25 GMT
etag: "50ed6b2b65baf5c8b5b145a9961ee0c9"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:50:30.538Z
expires: Tue, 07 May 2024 13:24:50 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.055
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/bundle/app/Default/Desktop/1286.709af2381f03c305304c.chunk.js | 185.244.209.62 | 200 OK | 2.8 kB |
URL GET HTTP/2v2l.traincdn.com/bundle/app/Default/Desktop/1286.709af2381f03c305304c.chunk.js IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (2834), with no line terminators Hash38b9e82b7e8ebc5b58b61c4831e6a15f 2070bcc088a87ec25a345dd4e625423571b665b9 446e97707bd777fbf781e75bad5cce4b92e16caf83cfe9b83a644ecebeecec2b
GET /bundle/app/Default/Desktop/1286.709af2381f03c305304c.chunk.js HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:42 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 06 May 2024 09:35:46 GMT
etag: W/"6638a472-acc"
expires: Wed, 05 Jun 2024 09:53:29 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-6ebfda98d776bfd6a790f4b137d5b9e4-c34e0126c3a64bde-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-06T09:50:54+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/bundle/app/Default/Desktop/0.a7712df464406b8fa075.chunk.js | 185.244.209.62 | 200 OK | 618 kB |
URL GET HTTP/2v2l.traincdn.com/bundle/app/Default/Desktop/0.a7712df464406b8fa075.chunk.js IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
Size618 kB (618194 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bundle/app/Default/Desktop/0.a7712df464406b8fa075.chunk.js HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:48 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 06 May 2024 08:43:15 GMT
etag: W/"66389823-96ed2"
expires: Wed, 05 Jun 2024 08:57:52 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-4a0924b571c8a6164eafe119722a1c01-51203c2e7afedf26-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-06T08:55:17+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/genfiles/cms/1-285/desktop/footer/logos/mibr_white-logo.png | 185.244.209.62 | 200 OK | 9.9 kB |
URL GET HTTP/2v2l.traincdn.com/genfiles/cms/1-285/desktop/footer/logos/mibr_white-logo.png IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typePNG image data, 834 x 434, 8-bit/color RGBA, non-interlaced Hashc14d0b72d2885c8ae4975e64ddb29a6f 3c31e0bb67f15daada51baf892c89ef0cd061146 657992cd544e48630d90afc0b957014f0ac4fad15789c7c18a937d5b71231967
GET /genfiles/cms/1-285/desktop/footer/logos/mibr_white-logo.png HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v2l.traincdn.com/styles/css/footer/main.7361d396d2ea9cb39d2114c5ae709005.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:41 GMT
content-type: image/png
content-length: 9904
last-modified: Tue, 11 Apr 2023 17:53:05 GMT
etag: "c14d0b72d2885c8ae4975e64ddb29a6f"
cache-control: max-age=3600
expires: Mon, 18 Dec 2023 08:57:21 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.008
traceparent: 00-4653f9d03b94c0221cb893e7f6f31220-8146cd44019a9f09-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-07T06:08:13+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/bundle/app/Default/Desktop/select2.1104e85f48d9cb9a6688.bundle.js | 185.244.209.62 | 200 OK | 68 kB |
URL GET HTTP/2v2l.traincdn.com/bundle/app/Default/Desktop/select2.1104e85f48d9cb9a6688.bundle.js IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bundle/app/Default/Desktop/select2.1104e85f48d9cb9a6688.bundle.js HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 06 May 2024 09:35:45 GMT
etag: W/"6638a471-10a4f"
expires: Wed, 05 Jun 2024 09:53:22 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-5ff9855ea3190c5539a66e879a5762d4-cadb9591eed53825-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-06T09:50:47+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/bundle/app/Default/Desktop/74.4312b5f7bda32944995e.chunk.js | 185.244.209.62 | 200 OK | 18 kB |
URL GET HTTP/2v2l.traincdn.com/bundle/app/Default/Desktop/74.4312b5f7bda32944995e.chunk.js IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (18021), with no line terminators Hash6112b96769ace38d6cd58c81cbbabf52 cd43fa388de2c57c88ffca96e829246448a19f3e 1eef82d88f423035a7f7ebda02aa830279a6473dd3e81781eef961e15e58ed3f
GET /bundle/app/Default/Desktop/74.4312b5f7bda32944995e.chunk.js HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:45 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 06 May 2024 10:06:24 GMT
etag: W/"6638aba0-4665"
expires: Wed, 05 Jun 2024 10:35:22 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-4297e6d9ae3ff178f8b6960881bbed75-27a1925ffc5ec8a4-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-06T10:32:47+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-357.png | 213.183.34.23 | 200 OK | 3.1 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-357.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 50, 8-bit colormap, non-interlaced Hash290db69cb48414b9864c1f594b05db71 25018066547d52bd01e5e0f40a9be27a00ca236c e64bda384a039efe5e8b81470fe0dfde0aa49d621ef79dcb1af075a2463a27e2
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-357.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: image/png
content-length: 3097
last-modified: Mon, 04 Mar 2024 13:15:27 GMT
etag: "290db69cb48414b9864c1f594b05db71"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:47:02.216Z
expires: Tue, 07 May 2024 13:13:57 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.097
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/genfiles/cms/1-285/desktop/footer/logos/psg-partner-without-xbet.png | 185.244.209.62 | 200 OK | 461 kB |
URL GET HTTP/2v2l.traincdn.com/genfiles/cms/1-285/desktop/footer/logos/psg-partner-without-xbet.png IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typePNG image data, 1520 x 1568, 8-bit/color RGBA, non-interlaced Size461 kB (461188 bytes) Hash0b0140e8bffdb56d839c12d3392e2fbd 517877ac88868bf0ba8bdf63b08425493af890cd 1e9712a9e5b8cf0eafa1af8e09fb997395f9051d349da6b49fced2235a5f570b
GET /genfiles/cms/1-285/desktop/footer/logos/psg-partner-without-xbet.png HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v2l.traincdn.com/styles/css/footer/main.7361d396d2ea9cb39d2114c5ae709005.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:41 GMT
content-type: image/png
content-length: 461188
last-modified: Tue, 11 Apr 2023 17:53:05 GMT
etag: "0b0140e8bffdb56d839c12d3392e2fbd"
cache-control: max-age=3600
expires: Mon, 18 Dec 2023 08:57:27 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.023
traceparent: 00-7915cc2617daff26cd3fc5b68770a4b2-1f86708d546af237-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-07T05:41:26+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/sfiles/logo_teams/cdcf29c1dc5ae56a6c90d3b658803a05.png | 185.244.209.62 | 200 OK | 11 kB |
URL GET HTTP/2v2l.traincdn.com/sfiles/logo_teams/cdcf29c1dc5ae56a6c90d3b658803a05.png IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typePNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced Hasha4459d02449b6292bc4c951c6acbb7a4 5f44506610f9934e8bf8a2b4eefef2e85926929c 4c476a07ef3c9b2977d632f2bacbbb1a808c277b3f39a5f92918f02153787aa8
GET /sfiles/logo_teams/cdcf29c1dc5ae56a6c90d3b658803a05.png HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:51 GMT
content-type: image/png
content-length: 10709
x-amz-id-2: tMKjh0sm0QZ/yizYG9HsuVn/Zweth0lYzp+3zD3DE1yXA1yEyLHNsEGf82GGeSpD4SxWpT1lHUe8ONiPYk4hnA==
x-amz-request-id: 640CAH4FKS55WZ4Y
last-modified: Mon, 30 Oct 2023 11:42:49 GMT
etag: "a4459d02449b6292bc4c951c6acbb7a4"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=86400
x-amz-version-id: vnEL5Atr4zb.DzzT19ixVgROcdQPYcOG
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.039
traceparent: 00-96c93a563d8c488521645b5aa2fda510-676ad98ea3961bc5-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-07T04:45:18+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/genfiles/cms/1/desktop/ourpartners/beastcost-partner.svg | 185.244.209.62 | 200 OK | 2.7 kB |
URL GET HTTP/2v2l.traincdn.com/genfiles/cms/1/desktop/ourpartners/beastcost-partner.svg IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hashe6b134501e8e68ac733605833b5d0441 7b7bdc4aa58880252dadff630b99486199d68384 923930aa98aa7949c241fe23ae99d713da12fe55bf9eaf9ad95cba459080d18f
GET /genfiles/cms/1/desktop/ourpartners/beastcost-partner.svg HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v2l.traincdn.com/styles/css/footer/main.7361d396d2ea9cb39d2114c5ae709005.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:41 GMT
content-type: image/svg+xml
last-modified: Sat, 13 Apr 2024 12:08:48 GMT
etag: W/"b0a70ea3c2e5a0633e84a5e70330ab0a"
content-encoding: gzip
cache-control: max-age=3600
expires: Wed, 17 Apr 2024 11:55:17 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-b65b150b354b2b256bd7371005eddef3-886a3e99ce695dc3-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-07T05:41:26+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/bundle/app/Default/Desktop/Office.Desktop.bet_history.BetHistoryRepeatCouponModal~coupon_v2.CouponTab~coupon_v2.Editor.5941bfc9da07e2a05708.chunk.js | 185.244.209.62 | 200 OK | 89 kB |
URL GET HTTP/2v2l.traincdn.com/bundle/app/Default/Desktop/Office.Desktop.bet_history.BetHistoryRepeatCouponModal~coupon_v2.CouponTab~coupon_v2.Editor.5941bfc9da07e2a05708.chunk.js IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bundle/app/Default/Desktop/Office.Desktop.bet_history.BetHistoryRepeatCouponModal~coupon_v2.CouponTab~coupon_v2.Editor.5941bfc9da07e2a05708.chunk.js HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:48 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 06 May 2024 10:06:24 GMT
etag: W/"6638aba0-15d0b"
expires: Wed, 05 Jun 2024 10:35:23 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-dbe05268f830a28f4f7fe53a1270bd88-a7f1233b8ede7889-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-06T10:32:48+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/styles/css/next-match-banner/main.ef90462b5b475073bb771a8c6ef35ea2.css | 185.244.209.62 | 200 OK | 8.2 kB |
URL GET HTTP/2v2l.traincdn.com/styles/css/next-match-banner/main.ef90462b5b475073bb771a8c6ef35ea2.css IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typeASCII text, with very long lines (8204), with no line terminators Hash5b033b70f2eef1117dec919d6c7d17ca 1f0e3ef80ac2c49177cb01986b8e24e0886b2202 aca4d00c13ed1d5e702f609a4bdca3e689ef27adadf0cf093592537b476fcc67
GET /styles/css/next-match-banner/main.ef90462b5b475073bb771a8c6ef35ea2.css HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:36 GMT
content-type: text/css
last-modified: Thu, 11 Apr 2024 14:19:26 GMT
etag: W/"6617f16e-2009"
expires: Thu, 16 May 2024 08:18:20 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.003
traceparent: 00-86cbb35254f18d489ed29fbb12f3186c-f25d088a8d8b319f-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-04-16T08:16:33+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/bundle/app/Default/Desktop/betting_class.4babd5003bc4ced764c7.bundle.js | 185.244.209.62 | 200 OK | 1.6 kB |
URL GET HTTP/2v2l.traincdn.com/bundle/app/Default/Desktop/betting_class.4babd5003bc4ced764c7.bundle.js IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (1674), with no line terminators Hash209fdc802f811ecfe9c2f2e71bdcb161 f59d461faaff941684a2698ef3925712fb4f6d67 01f08ed6e8234ffe82209845203403a050870949d57e8dfee7772448b4a3a308
GET /bundle/app/Default/Desktop/betting_class.4babd5003bc4ced764c7.bundle.js HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 06 May 2024 09:35:45 GMT
etag: W/"6638a471-668"
expires: Wed, 05 Jun 2024 09:53:27 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-7b4b2f6344276c6394c40edbb363ffef-41b33fd058d4db64-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-06T09:50:52+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/bundle/app/Default/Desktop/auth.67cc4d4b11845cd09be7.css | 185.244.209.62 | 200 OK | 4.7 kB |
URL GET HTTP/2v2l.traincdn.com/bundle/app/Default/Desktop/auth.67cc4d4b11845cd09be7.css IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typeASCII text, with very long lines (4699), with no line terminators Hash4cea80da63bcc243d26154f4ef0e4c62 eccba5499f6bb9e09904213c3641163a89d6b212 8fa5c113fce5a2d548055a063ed8a11c2d1f92e9648983d6c81736402f1dc8c8
GET /bundle/app/Default/Desktop/auth.67cc4d4b11845cd09be7.css HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: text/css
last-modified: Mon, 08 Apr 2024 13:49:17 GMT
etag: W/"6613f5dd-125b"
expires: Wed, 08 May 2024 14:10:01 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.004
traceparent: 00-d726fa079a7b2f282206bd8dd1329175-69d7e08e64dbbfe4-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-04-08T14:08:32+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/bundle/app/Default/Desktop/75.fda44dc449e246957d4b.chunk.js | 185.244.209.62 | 200 OK | 13 kB |
URL GET HTTP/2v2l.traincdn.com/bundle/app/Default/Desktop/75.fda44dc449e246957d4b.chunk.js IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (13268), with no line terminators Hashdd42cf0520aca19ce3c04323aa92b5ae c32fd718304c02656876eea5a192303449c8c1ff 610ccf79d57ad8c81b0f1f9f49cd89eef85b3f4b92cafa180bbed5852427b468
GET /bundle/app/Default/Desktop/75.fda44dc449e246957d4b.chunk.js HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:45 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 06 May 2024 10:06:24 GMT
etag: W/"6638aba0-33d4"
expires: Wed, 05 Jun 2024 10:35:22 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-a1f54008b1c5dac3e67433b74613fc49-afd33a7c7d8f8cec-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-06T10:32:47+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-496.png | 213.183.34.23 | 200 OK | 11 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-496.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 50, 8-bit/color RGBA, non-interlaced Hashee84c5e4c1e804b0e9cce4ed385323a7 f44c6372547e2b1d9446d7fe65098e1260f24a71 73a19ba79606ff2aae7c57f82d94720e1265a75f1cf42ed21699dcd8b39fa546
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-496.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 11265
last-modified: Mon, 04 Mar 2024 13:15:31 GMT
etag: "ee84c5e4c1e804b0e9cce4ed385323a7"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:48:36.153Z
expires: Tue, 07 May 2024 13:20:40 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.067
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-184.png | 0.0.0.0 | | 0 B |
URL GET www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-184.png IP0.0.0.0:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-184.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-341.png | 213.183.34.23 | 200 OK | 8.4 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-341.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 43, 8-bit/color RGBA, non-interlaced Hash8845f77600a5dfb9912bb098846339f5 82146cc5784b2b940e4350012c2789cabd046de4 93de3b86cd9a6a58f3a8d110c279357558c85995fc6d4c7c638af63139da86bc
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-341.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 8430
last-modified: Mon, 04 Mar 2024 13:15:27 GMT
etag: "8845f77600a5dfb9912bb098846339f5"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:48:36.164Z
expires: Tue, 07 May 2024 13:24:50 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.065
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/bundle/app/Default/Desktop/4.2589b26427cdd37f560d.chunk.js | 185.244.209.62 | 200 OK | 18 kB |
URL GET HTTP/2v2l.traincdn.com/bundle/app/Default/Desktop/4.2589b26427cdd37f560d.chunk.js IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (17813), with no line terminators Hashd56a6641a0e0ab9e972e2e1224c533d4 286418cbf40262714874f81c09830a9c1138eea5 e427778db8ea108e5e0a83d6491fc1fd425f605b003f15ae14b4c7d8192cfe68
GET /bundle/app/Default/Desktop/4.2589b26427cdd37f560d.chunk.js HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:49 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 06 May 2024 08:43:15 GMT
etag: W/"66389823-4595"
expires: Wed, 05 Jun 2024 08:56:05 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-e37639d3a6c8f8258372804fe0e52c47-8c3c85b1dd519475-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-06T08:53:30+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-71.png | 213.183.34.23 | 200 OK | 9.8 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-71.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 43, 8-bit/color RGBA, non-interlaced Hash314f49918d754893cb33c6d6d60fd838 c1a8907624ba0e83b39b81cd49be21ea2d6a42b6 2120fa486f8cd929f62c2926ad049ae687232f45e489a2eba2424256cc64834c
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-71.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 9778
last-modified: Mon, 04 Mar 2024 13:15:32 GMT
etag: "314f49918d754893cb33c6d6d60fd838"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:49:34.502Z
expires: Tue, 07 May 2024 13:24:49 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.078
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/bundle/app/Default/Desktop/vendorF.d69e00f13bc76c3bddf4.bundle.js | 185.244.209.62 | 200 OK | 505 kB |
URL GET HTTP/2v2l.traincdn.com/bundle/app/Default/Desktop/vendorF.d69e00f13bc76c3bddf4.bundle.js IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
Size505 kB (504643 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bundle/app/Default/Desktop/vendorF.d69e00f13bc76c3bddf4.bundle.js HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 06 May 2024 09:35:45 GMT
etag: W/"6638a471-7b343"
expires: Wed, 05 Jun 2024 09:53:27 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-88c9aac935e8b5f6562a6cda3e9e6c39-d78f2120a0bdc653-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-06T09:50:52+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-169.png | 213.183.34.23 | 200 OK | 16 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-169.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced Hash34e05f02a3f93ce51cc6196b4fc72e81 0d3edac25f2b64862a2b8abb91d92eab8c0dc8d9 ff4345da1e6d75df59c9165ac33c89977ab7ef86664b7b59713648666475d75b
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-169.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 16083
last-modified: Mon, 04 Mar 2024 13:15:20 GMT
etag: "34e05f02a3f93ce51cc6196b4fc72e81"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:52:24.552Z
expires: Tue, 07 May 2024 13:19:44 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.060
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/bundle/app/Default/Desktop/new_store_bootstrap.03cb3c22365b569e67f2.bundle.js | 185.244.209.62 | 200 OK | 604 kB |
URL GET HTTP/2v2l.traincdn.com/bundle/app/Default/Desktop/new_store_bootstrap.03cb3c22365b569e67f2.bundle.js IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
Size604 kB (603941 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bundle/app/Default/Desktop/new_store_bootstrap.03cb3c22365b569e67f2.bundle.js HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 06 May 2024 10:06:24 GMT
etag: W/"6638aba0-93725"
expires: Wed, 05 Jun 2024 10:34:56 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-2d8e7a45dec9d3bde708bfa1669fb397-178cdfcfa66da6bd-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-06T10:32:21+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/bundle/app/Default/Desktop/registration.form.Desktop.Default.864408e0836554d73406.chunk.js | 185.244.209.62 | 200 OK | 875 kB |
URL GET HTTP/2v2l.traincdn.com/bundle/app/Default/Desktop/registration.form.Desktop.Default.864408e0836554d73406.chunk.js IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
Size875 kB (875120 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bundle/app/Default/Desktop/registration.form.Desktop.Default.864408e0836554d73406.chunk.js HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:48 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 06 May 2024 12:00:33 GMT
etag: W/"6638c661-d5a70"
expires: Wed, 05 Jun 2024 12:35:03 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.003
traceparent: 00-ee7cc08c2c30342b87f8b8412b62f51b-55a8eb6546344b3f-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-06T12:32:27+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/styles/css/calculator/main.79586a7d63d53f806a8e620f4b975b52.css | 185.244.209.62 | 200 OK | 13 kB |
URL GET HTTP/2v2l.traincdn.com/styles/css/calculator/main.79586a7d63d53f806a8e620f4b975b52.css IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typeASCII text, with very long lines (13219) Hash79586a7d63d53f806a8e620f4b975b52 63e939687901e2eb8eba9c314e393903f669a120 5773cb3b200a226f08aac0c599de5e36ac2bce89437368b54af8331accb03f21
GET /styles/css/calculator/main.79586a7d63d53f806a8e620f4b975b52.css HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: text/css
last-modified: Thu, 11 Apr 2024 14:18:33 GMT
etag: W/"6617f139-33a4"
expires: Thu, 16 May 2024 08:18:21 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.001
traceparent: 00-6b7821e39b734be94a7ec01526af82b3-fd9ada58b2412c08-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-04-16T08:16:34+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| 1xbet.com/LineFeed/GetTopGamesStatZip?lng=en&cyberFlag=2&country=137 | 104.18.41.64 | 200 OK | 6.1 kB |
URL GET HTTP/31xbet.com/LineFeed/GetTopGamesStatZip?lng=en&cyberFlag=2&country=137 IP104.18.41.64:443
CertificateIssuerGoogle Trust Services LLC Subject1xbet.com FingerprintA0:4A:36:06:EE:9B:04:BA:25:2E:97:EA:45:A0:70:63:51:97:25:CD ValiditySat, 16 Mar 2024 20:46:45 GMT - Fri, 14 Jun 2024 20:46:44 GMT
File typetroff or preprocessor input, Unicode text, UTF-8 text, with very long lines (7165), with no line terminators Hash4e197b0113d8ed9431cd4489f8b2c559 f701e3c1a2d8518900970778bea790bb68b4bf79 8d15168b0674402d6dfde1260165d1d1087443d662a8d0f03d86ae928061c87b
GET /LineFeed/GetTopGamesStatZip?lng=en&cyberFlag=2&country=137 HTTP/1.1
Host: 1xbet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/en
Cookie: SESSION=48c304108dc7c16478f28f0e1826a0f3; _glhf=1715080731; dnb=1; platform_type=desktop; auid=mjmZBWY5yKs9D2/OCKszAg==; is_rtl=1; visit=1-c0f3effbd860b15d31261e1342c7d750; fast_coupon=true; v3fr=1; lng=en; flaglng=en; typeBetNames=full; coefview=0; tzo=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 06:22:46 GMT
content-type: application/json; charset=utf-8
content-length: 1934
cache-control: public, max-age=5
content-encoding: br
last-modified: Tue, 07 May 2024 06:22:46 GMT
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
server-timing: wf-uht;dur=0.014
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 87ff1e15cd2cb529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| v2l.traincdn.com/bundle/app/Default/Desktop/7.32586c4c6df9f6948620.chunk.js | 185.244.209.62 | 200 OK | 16 kB |
URL GET HTTP/2v2l.traincdn.com/bundle/app/Default/Desktop/7.32586c4c6df9f6948620.chunk.js IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (16348), with no line terminators Hashdc92905aad19a540bf9eb76cb951a35c 41926fae103167779ef84f2c4050c5ea637785fd 97f0977c767c3c63cad77f384114a1554654d61f1f808c4eba130278d340108f
GET /bundle/app/Default/Desktop/7.32586c4c6df9f6948620.chunk.js HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:49 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 06 May 2024 08:43:15 GMT
etag: W/"66389823-3fdc"
expires: Wed, 05 Jun 2024 09:03:30 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.001
traceparent: 00-c23a0563248cf0709dfbba84279eed1c-d3c9e66e9819c7e9-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-06T09:00:55+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/bundle/app/Default/Desktop/39.6515fea926dcc4eb431a.chunk.js | 185.244.209.62 | 200 OK | 26 kB |
URL GET HTTP/2v2l.traincdn.com/bundle/app/Default/Desktop/39.6515fea926dcc4eb431a.chunk.js IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bundle/app/Default/Desktop/39.6515fea926dcc4eb431a.chunk.js HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:45 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 06 May 2024 09:35:45 GMT
etag: W/"6638a471-6650"
expires: Wed, 05 Jun 2024 09:53:30 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-7264b75003192ebce292b5ce029d22f9-a653e3b203b5be8c-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-06T09:50:55+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtm.js?id=GTM-KFGPRJ2V | 142.250.74.168 | 200 OK | 178 kB |
URL GET HTTP/2www.googletagmanager.com/gtm.js?id=GTM-KFGPRJ2V IP142.250.74.168:443
CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (1822) Size178 kB (177867 bytes) Hash5638554a97b88ba2d256b1dcb87a2a5c bdbe36ff338489dd772fcb2f80d0cf1e5e14ca25 8a57a0aa0e0bacd5e6429675cb63778e2a67587c2f6033fe69c66f6611c04a9c
GET /gtm.js?id=GTM-KFGPRJ2V HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 07 May 2024 06:22:45 GMT
expires: Tue, 07 May 2024 06:22:45 GMT
cache-control: private, max-age=900
last-modified: Tue, 07 May 2024 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 64454
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/bundle/app/Default/Desktop/142.16b2c5088af2ad3b3019.chunk.js | 185.244.209.62 | 200 OK | 18 kB |
URL GET HTTP/2v2l.traincdn.com/bundle/app/Default/Desktop/142.16b2c5088af2ad3b3019.chunk.js IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (17529), with no line terminators Hash843c0b4f25254ff04659b43d1a65737c 57a9e74a599bb47c240cf323c37014e6d51a3a0f 31f60db1ed3d74ee72bcf9437ce79d091ea7bcd04fe93066802b52f828f5ed78
GET /bundle/app/Default/Desktop/142.16b2c5088af2ad3b3019.chunk.js HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:45 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 06 May 2024 09:35:45 GMT
etag: W/"6638a471-4479"
expires: Wed, 05 Jun 2024 09:53:30 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-fe753bf8e0ab147b4936f43d692cf85f-15a313ec3d8aa736-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-06T09:50:55+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-485.png | 213.183.34.23 | 200 OK | 7.9 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-485.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 50, 8-bit/color RGBA, non-interlaced Hashd6ecf8db9b7f1b0b84d082a5ea577a56 d6599c093b641bcdb8e32601b35ede1f5b9cda82 ad2abf294310cb8f0dc0c8b4616cd856a75549707112516f1cad9a1c93bd9cff
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-485.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 7873
last-modified: Mon, 04 Mar 2024 13:15:31 GMT
etag: "d6ecf8db9b7f1b0b84d082a5ea577a56"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:47:02.310Z
expires: Tue, 07 May 2024 13:20:40 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.052
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-66.png | 213.183.34.23 | 200 OK | 10 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-66.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 50, 8-bit/color RGBA, non-interlaced Hash4f5efd661b33d5ec7e0cbbc93674d3a8 43226628e96faa01b947f66dbc4dcaa9b410414a 097f408f43aa0c2ce48599aa4ef3124d6417509a8c9cad395bd884f50f561d12
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-66.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 10426
last-modified: Mon, 04 Mar 2024 13:15:32 GMT
etag: "4f5efd661b33d5ec7e0cbbc93674d3a8"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:48:35.962Z
expires: Tue, 07 May 2024 13:44:39 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.073
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/styles/css/penalty_new/main.0b47b0af831787efe29183d23a125b7e.css | 185.244.209.62 | 200 OK | 1.5 kB |
URL GET HTTP/2v2l.traincdn.com/styles/css/penalty_new/main.0b47b0af831787efe29183d23a125b7e.css IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typeASCII text, with very long lines (1504), with no line terminators Hash75b41dcb82d5d3cd3a94e66586776000 7fd9dd53771e69e6957cf7a7a97519f40436112a f153777d0d316785672abe1ba3b9a9e2ca0fbdc66f924c6cfe18028ee5ab8a1d
GET /styles/css/penalty_new/main.0b47b0af831787efe29183d23a125b7e.css HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:36 GMT
content-type: text/css
last-modified: Thu, 11 Apr 2024 14:19:28 GMT
etag: W/"6617f170-5dd"
expires: Thu, 16 May 2024 08:18:20 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.000
traceparent: 00-031a1a0c8a5bd36b081d6a22d6ff3660-c2e400fab91b7eb4-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-04-16T08:16:33+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-74.png | 213.183.34.23 | 200 OK | 6.0 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-74.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 19, 8-bit/color RGBA, non-interlaced Hashb6edd52da0ce4b2277ae19a3110dd88e 3ff83b3f8c990854a8a6227f8379af73015250af 5640304a28c90694e8859af492607a1607926f81285c7d8ffd2c7dffa415d5e8
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-74.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 6001
last-modified: Mon, 04 Mar 2024 13:15:33 GMT
etag: "b6edd52da0ce4b2277ae19a3110dd88e"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:49:34.300Z
expires: Tue, 07 May 2024 13:24:39 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.063
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/bundle/app/Default/Desktop/2.fa946c3b6309b67469c2.chunk.js | 185.244.209.62 | 200 OK | 19 kB |
URL GET HTTP/2v2l.traincdn.com/bundle/app/Default/Desktop/2.fa946c3b6309b67469c2.chunk.js IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bundle/app/Default/Desktop/2.fa946c3b6309b67469c2.chunk.js HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:49 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 06 May 2024 08:43:15 GMT
etag: W/"66389823-49c7"
expires: Wed, 05 Jun 2024 08:55:21 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.001
traceparent: 00-8355fdaf14bbb8e134e6fdb337577628-1e720fd25ab989a4-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-06T08:52:45+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/api2/canonical_car.png | 142.250.74.35 | 200 OK | 11 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/api2/canonical_car.png IP142.250.74.35:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&k=6LcNBXgpAAAAAABPc9IqtedASd5Fl5BlTyer8EVh CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typePNG image data, 98 x 90, 8-bit/color RGB, non-interlaced Hasha4741c6089e163f0e5c0cdb2c698a03e 03b190c8d9350802cbabbccd2757cff1fb7115f0 c9685b413894b0647b42edf9cac1fc0b2ed044c1fe238d843b9ca3d29db1b805
GET /recaptcha/api2/canonical_car.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 11174
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 01:58:04 GMT
expires: Thu, 09 May 2024 01:58:04 GMT
cache-control: public, max-age=604800
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
age: 447889
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-205.png | 213.183.34.23 | 200 OK | 11 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-205.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 50, 8-bit/color RGBA, non-interlaced Hash55c107f6f682957fdae9cd4ec38385d7 4ff38dd23c7c96592d6b9b88d826704dabe0a21f 7f63d7eb53b9ce56c52528f72a28894112e14b162296f13e24ae75699fd04899
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-205.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: image/png
content-length: 11272
last-modified: Mon, 04 Mar 2024 13:15:22 GMT
etag: "55c107f6f682957fdae9cd4ec38385d7"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:47:02.435Z
expires: Tue, 07 May 2024 13:13:57 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.065
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/styles/sprites/css/top-dropdowns-icons-63db642504.min.css | 185.244.209.62 | 200 OK | 164 kB |
URL GET HTTP/2v2l.traincdn.com/styles/sprites/css/top-dropdowns-icons-63db642504.min.css IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typeASCII text, with very long lines (65536), with no line terminators Size164 kB (163926 bytes) Hash63db642504818c874838fe18f9786b27 0bf9b3b47b7a191eec0872b12c6b694d82a8e71f acd3573ab1ffbf46d0ce80691fc7258dd4b3763f03700a03bdd4384d023bcb18
GET /styles/sprites/css/top-dropdowns-icons-63db642504.min.css HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:36 GMT
content-type: text/css
last-modified: Sat, 27 Apr 2024 10:16:42 GMT
etag: W/"662cd08a-28056"
expires: Sat, 27 Apr 2024 11:23:43 GMT
cache-control: max-age=3600
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-7988b32e29454cb56d00b1c027c01920-2df7a42dc9b43ed6-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-07T05:41:24+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/bundle/app/Default/Desktop/video_token.018afe5721fe682de178.bundle.js | 185.244.209.62 | 200 OK | 1.8 kB |
URL GET HTTP/2v2l.traincdn.com/bundle/app/Default/Desktop/video_token.018afe5721fe682de178.bundle.js IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (1863), with no line terminators Hashbdb3959214de77031a396a780bb2d40f fd1f12d1634be4b6a6f4fb9fe5c70c2c7232167f 07d8acb80f7f36cda3f32e8cfcb959834be3138595d440492f8da1cc3a024de0
GET /bundle/app/Default/Desktop/video_token.018afe5721fe682de178.bundle.js HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 06 May 2024 09:35:45 GMT
etag: W/"6638a471-725"
expires: Wed, 05 Jun 2024 09:53:27 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-cfcccb58ac2fb75efaa3c5af8277e636-116628b3137a6933-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-06T09:50:52+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| 1xbet.com/genfiles/cms/1/desktop/banner/a384fa05a049b4c45c9c0b702906ebd1.jpg | 104.18.41.64 | 200 OK | 46 kB |
URL GET HTTP/31xbet.com/genfiles/cms/1/desktop/banner/a384fa05a049b4c45c9c0b702906ebd1.jpg IP104.18.41.64:443
CertificateIssuerGoogle Trust Services LLC Subject1xbet.com FingerprintA0:4A:36:06:EE:9B:04:BA:25:2E:97:EA:45:A0:70:63:51:97:25:CD ValiditySat, 16 Mar 2024 20:46:45 GMT - Fri, 14 Jun 2024 20:46:44 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 925x460, components 3 Hash7b749efc8406ee310b58142c784cb020 414c00340a9c93a2dc9afe59845fe266c5b3b899 bfe9b70f563e876a4202b08949efdff71aabbb7a01d697f258546a87f0cf6333
GET /genfiles/cms/1/desktop/banner/a384fa05a049b4c45c9c0b702906ebd1.jpg HTTP/1.1
Host: 1xbet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/en
Cookie: SESSION=48c304108dc7c16478f28f0e1826a0f3; _glhf=1715080731; dnb=1; platform_type=desktop; auid=mjmZBWY5yKs9D2/OCKszAg==; is_rtl=1; visit=1-c0f3effbd860b15d31261e1342c7d750; fast_coupon=true; v3fr=1; lng=en; flaglng=en; typeBetNames=full; coefview=0; tzo=0; ggru=139; right_side=right; completed_user_settings=true; _ga_7V60YW2S5H=GS1.1.1715062970.1.0.1715062970.60.0.0; _ga=GA1.1.42826394.1715062971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 06:22:52 GMT
content-type: image/jpeg
content-length: 45657
cache-control: public,max-age=120,s-maxage=600
cf-bgj: h2pri
access-control-allow-origin: *
etag: "7b749efc8406ee310b58142c784cb020"
last-modified: Thu, 02 May 2024 11:55:42 GMT
server-timing: wf-uht;dur=
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
age: 262
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ff1e38c98fb529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| v2l.traincdn.com/default/min_js/polyfill.7687c517a241de6e490bd1dc769a038c.js | 185.244.209.62 | 200 OK | 2.6 kB |
URL GET HTTP/2v2l.traincdn.com/default/min_js/polyfill.7687c517a241de6e490bd1dc769a038c.js IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (2591), with no line terminators Hash3dcdddf04b41bda2a38ce2dd3739d5d9 a877ec0e150011653a550dd9ea42d21c39034a6a fb6c34c1593ec43519ee0e1b6b24edd37fa1c80049ad6a1d517c89b473c6f118
GET /default/min_js/polyfill.7687c517a241de6e490bd1dc769a038c.js HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 28 Feb 2024 06:49:11 GMT
etag: W/"65ded767-9fd"
expires: Wed, 28 Feb 2024 07:09:24 GMT
cache-control: max-age=600
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-62cecf17042055c64869a108eebb2c9b-39b5cbdbce346b2c-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-07T06:18:28+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-241.png | 213.183.34.23 | 200 OK | 9.1 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-241.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 32, 8-bit/color RGBA, non-interlaced Hashdd19769a82805274e8cd362f031ce264 8520a2a7086205555d15da54e61e9331e86f9657 8203481292c242e3df28b62727d223b738ceeeeed36f85cbbf1ee81c850d9011
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-241.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 9070
last-modified: Mon, 04 Mar 2024 13:15:24 GMT
etag: "dd19769a82805274e8cd362f031ce264"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:48:36.033Z
expires: Tue, 07 May 2024 13:17:48 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.061
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/default/min_js/connect.dcbf5f5778dca5d94f2cc54ae22d0702.js | 185.244.209.62 | 200 OK | 36 kB |
URL GET HTTP/2v2l.traincdn.com/default/min_js/connect.dcbf5f5778dca5d94f2cc54ae22d0702.js IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (35920), with no line terminators Hashdcbf5f5778dca5d94f2cc54ae22d0702 6e6122feb9d8c87d8af52a67ce1701a8bc91dcf8 9326f29ed5668f148bac019bb75d82bdf97e83c1bb73ff150e1213536479ba78
GET /default/min_js/connect.dcbf5f5778dca5d94f2cc54ae22d0702.js HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 15 Apr 2024 13:36:44 GMT
etag: W/"661d2d6c-8c50"
expires: Mon, 15 Apr 2024 13:53:44 GMT
cache-control: max-age=600
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.004
traceparent: 00-f7ab33ec7cfc5a93427adb34e0918e56-35064cef88e57f04-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-07T06:18:28+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/genfiles/cms/pg/70/images/09ef1ad2e0b8613684c2d1cd91f4d3a6.svg | 185.244.209.62 | 200 OK | 1.2 kB |
URL GET HTTP/2v2l.traincdn.com/genfiles/cms/pg/70/images/09ef1ad2e0b8613684c2d1cd91f4d3a6.svg IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hasha436db0af736498349f0127d8e7fab1e b07e2c449cf16ddb052ce40d881db13a0c890b9b 93261a519c1cea62e2c934496d5e0cbd1cbc8f65b4961811316e55d9e7c96ede
GET /genfiles/cms/pg/70/images/09ef1ad2e0b8613684c2d1cd91f4d3a6.svg HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/svg+xml
last-modified: Tue, 11 Apr 2023 22:55:56 GMT
etag: W/"7cca3986f7a5c4c164144ff11df71073"
content-encoding: gzip
cache-control: max-age=3600
expires: Mon, 18 Dec 2023 09:00:07 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.007
traceparent: 00-d4438c7a4c16a900c708e805cffd727d-07bec77a66aed2af-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-07T05:44:54+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/bundle/app/Default/Desktop/connection_alert.719d9318d4619337ffc9.bundle.js | 185.244.209.62 | 200 OK | 508 kB |
URL GET HTTP/2v2l.traincdn.com/bundle/app/Default/Desktop/connection_alert.719d9318d4619337ffc9.bundle.js IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
Size508 kB (507772 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bundle/app/Default/Desktop/connection_alert.719d9318d4619337ffc9.bundle.js HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 06 May 2024 09:35:45 GMT
etag: W/"6638a471-7bf7c"
expires: Wed, 05 Jun 2024 09:53:27 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-f9e256d390ae6ecfbed959bee59858bb-332b5a859742ecf7-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-06T09:50:52+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/bundle/app/Default/Desktop/datepicker.d33d16128c56c2c6e411.bundle.js | 185.244.209.62 | 200 OK | 58 kB |
URL GET HTTP/2v2l.traincdn.com/bundle/app/Default/Desktop/datepicker.d33d16128c56c2c6e411.bundle.js IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bundle/app/Default/Desktop/datepicker.d33d16128c56c2c6e411.bundle.js HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 06 May 2024 09:35:45 GMT
etag: W/"6638a471-e39d"
expires: Wed, 05 Jun 2024 09:53:27 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-baf95fcea6471c5ac49dfb4396b81792-251f542e8ad771ba-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-06T09:50:52+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/default/img/new_main/reg_bg.png | 185.244.209.62 | 200 OK | 17 kB |
URL GET HTTP/2v2l.traincdn.com/default/img/new_main/reg_bg.png IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typePNG image data, 288 x 460, 8-bit colormap, non-interlaced Hash0756fc7fe5d8dcefe7863660b6404770 fb3516d5a624f0fdde79081e5bb7f14cee130fc2 e2aa06fbece507b498ed386f09c125c9bb098c7bd569a8f78332caacb5827243
GET /default/img/new_main/reg_bg.png HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v2l.traincdn.com/styles/css/main-page/main.1cf6fcf00e9d41168b1f599acbaf0aed.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:41 GMT
content-type: image/png
content-length: 17232
last-modified: Wed, 28 Feb 2024 06:18:30 GMT
etag: "65ded036-4350"
expires: Wed, 28 Feb 2024 08:18:28 GMT
cache-control: max-age=3600
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-20d6d6b04a22a5f9b4fe755fcb7d21d1-51b530162507f6b5-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-07T06:05:13+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/genfiles/cms/1-285/desktop/footer/logos/logo-laliga.png | 185.244.209.62 | 200 OK | 4.6 kB |
URL GET HTTP/2v2l.traincdn.com/genfiles/cms/1-285/desktop/footer/logos/logo-laliga.png IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typePNG image data, 130 x 180, 8-bit colormap, non-interlaced Hashdf5d4ac03e092e37de4c657686c24fa5 5aa56384577a25b32f4e35bf6e26f2d6f5aa94bb eb5f499953d8886c0769d5573b73fde6da203c480b48245ba535efc5ee995f78
GET /genfiles/cms/1-285/desktop/footer/logos/logo-laliga.png HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v2l.traincdn.com/styles/css/footer/main.7361d396d2ea9cb39d2114c5ae709005.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:41 GMT
content-type: image/png
content-length: 4622
last-modified: Tue, 11 Apr 2023 17:53:05 GMT
etag: "df5d4ac03e092e37de4c657686c24fa5"
cache-control: max-age=3600
expires: Mon, 04 Mar 2024 21:36:31 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.008
traceparent: 00-eaa81c342ae1913a6b0d7076df2b7ab7-c6ca264530e5374f-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-07T05:41:26+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/bundle/app/Default/Desktop/coupon_v2.Loader.984f5043b0be6543548f.chunk.js | 185.244.209.62 | 200 OK | 12 kB |
URL GET HTTP/2v2l.traincdn.com/bundle/app/Default/Desktop/coupon_v2.Loader.984f5043b0be6543548f.chunk.js IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bundle/app/Default/Desktop/coupon_v2.Loader.984f5043b0be6543548f.chunk.js HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:47 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 06 May 2024 09:35:45 GMT
etag: W/"6638a471-2f74"
expires: Wed, 05 Jun 2024 09:53:31 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-1634be5382748ed1579bfc8a3d55fc54-132777f645701e92-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-06T09:50:56+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/bundle/app/Default/Desktop/registration.form.Desktop.Default.864408e0836554d73406.chunk.js | 185.244.209.62 | 200 OK | 875 kB |
URL GET HTTP/2v2l.traincdn.com/bundle/app/Default/Desktop/registration.form.Desktop.Default.864408e0836554d73406.chunk.js IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
Size875 kB (875120 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bundle/app/Default/Desktop/registration.form.Desktop.Default.864408e0836554d73406.chunk.js HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:49 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 06 May 2024 12:00:33 GMT
etag: W/"6638c661-d5a70"
expires: Wed, 05 Jun 2024 12:35:03 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.003
traceparent: 00-835c09d58a61e5c2c58bd383defd4283-3d83563090fa7484-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-06T12:32:27+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/genfiles/cms/1/desktop/zone-icons/Icon_live.svg | 185.244.209.62 | 200 OK | 750 B |
URL GET HTTP/2v2l.traincdn.com/genfiles/cms/1/desktop/zone-icons/Icon_live.svg IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hash7b561f7a49f201013beae77a205d36de 64004dd120c9006f6936a4429c83ff9f3211fd17 68fe321da77e44aff6bf7051a6dc85a9139badbc266f258003bd193a2a5d883f
GET /genfiles/cms/1/desktop/zone-icons/Icon_live.svg HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v2l.traincdn.com/styles/css/new1x2/main.8cf685047cef5dfa866fcd09ce097ab0.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:46 GMT
content-type: image/svg+xml
content-length: 750
last-modified: Tue, 05 Mar 2024 11:20:36 GMT
etag: "07a2e335661cb9e06a10cc7e5211bb24"
cache-control: max-age=3600
expires: Tue, 26 Mar 2024 14:51:11 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-939d3aab6689654273cd6c7449ac5b44-d7b6ff9f49e91906-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-07T06:02:14+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/default/css/keyboard.css | 185.244.209.62 | 200 OK | 8.2 kB |
URL GET HTTP/2v2l.traincdn.com/default/css/keyboard.css IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typeASCII text, with very long lines (8203), with no line terminators Hashb756e66863b44dfd1a6ecfdf0448d19b 68ffde451487c8f1a7715f5f5a19735551b075ea 53abc9a28027bf7eec43e8dc89dca43230f31b3cd60ff093c0d099c8c6afec5c
GET /default/css/keyboard.css HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:36 GMT
content-type: text/css
last-modified: Wed, 28 Feb 2024 06:18:25 GMT
etag: W/"65ded031-200b"
expires: Wed, 28 Feb 2024 07:09:24 GMT
cache-control: max-age=600
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-faf4a256662d6d7a764152c8fb12ce5f-56c4a34ccac2e030-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-07T06:18:28+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/bundle/app/Default/Desktop/userTransfer.5e326625f9f0549aaef5.bundle.js | 185.244.209.62 | 200 OK | 811 kB |
URL GET HTTP/2v2l.traincdn.com/bundle/app/Default/Desktop/userTransfer.5e326625f9f0549aaef5.bundle.js IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
Size811 kB (811231 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bundle/app/Default/Desktop/userTransfer.5e326625f9f0549aaef5.bundle.js HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 06 May 2024 10:06:25 GMT
etag: W/"6638aba1-c60df"
expires: Wed, 05 Jun 2024 10:34:57 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-34a708f6d6415e67226a1dcf918a4ad6-3f9b220f165d53dc-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-06T10:32:22+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/styles/css/multiaccount/main.e88fd659c36ece6eba7b5c513dd5efda.css | 185.244.209.62 | 200 OK | 5.4 kB |
URL GET HTTP/2v2l.traincdn.com/styles/css/multiaccount/main.e88fd659c36ece6eba7b5c513dd5efda.css IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typeASCII text, with very long lines (5361), with no line terminators Hash0b078c649725f814332179c9f91a80ec e00433d7424f08ce98f0e84cdcb7b6a377750e1f cddee52a3b7bc45c01d0b0a621d469062fcd97fb94f039f39bfdcc0b7f815595
GET /styles/css/multiaccount/main.e88fd659c36ece6eba7b5c513dd5efda.css HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:36 GMT
content-type: text/css
last-modified: Thu, 11 Apr 2024 14:19:25 GMT
etag: W/"6617f16d-14ef"
expires: Thu, 16 May 2024 08:18:21 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.004
traceparent: 00-0abd5f0b2ec3e8e053593f6f61d7798c-b783b3a9d14e9d64-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-04-16T08:16:33+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-456.png | 213.183.34.23 | 200 OK | 11 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-456.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 50, 8-bit/color RGBA, non-interlaced Hash418dff6889d07989f86208f3dbc69e3d 77cbc7647fd0f9bc46f534c6af8bedb87efd0b0d 0580e1a5ef82e6690f73e0329341681aaed2a407cb08dc3a6c33684ac7953a36
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-456.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:37 GMT
content-type: image/png
content-length: 11305
last-modified: Mon, 04 Mar 2024 13:15:30 GMT
etag: "418dff6889d07989f86208f3dbc69e3d"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:50:30.513Z
expires: Tue, 07 May 2024 13:20:20 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.057
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/bundle/app/Default/Desktop/favorites.Dropdown0.9d53fa066506bbb981a1.chunk.js | 185.244.209.62 | 200 OK | 9.1 kB |
URL GET HTTP/2v2l.traincdn.com/bundle/app/Default/Desktop/favorites.Dropdown0.9d53fa066506bbb981a1.chunk.js IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (9204), with no line terminators Hash3121b9c6aa080920a9445d1a5aed1e55 cae65d175cae358c80853b56f6eb3e334cc0374c ba6111ec1e38d0ba00836e2558033605ab88f64fc3fdd0fbeca5895edf079a75
GET /bundle/app/Default/Desktop/favorites.Dropdown0.9d53fa066506bbb981a1.chunk.js HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:49 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 06 May 2024 09:35:45 GMT
etag: W/"6638a471-239c"
expires: Wed, 05 Jun 2024 09:55:57 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-fae3f31ad32755941dfce4b280d55e36-13c6d73c1a66b5f0-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-06T09:53:22+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/bundle/app/Default/Desktop/registration.form.Desktop.Xstavka.965fc2227b126ca748e4.chunk.js | 185.244.209.62 | 200 OK | 114 kB |
URL GET HTTP/2v2l.traincdn.com/bundle/app/Default/Desktop/registration.form.Desktop.Xstavka.965fc2227b126ca748e4.chunk.js IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size114 kB (113478 bytes) Hash85f1507d7518f200fc1546e2f0629f9d ea54a001950b487f46155b66b9073fd1c5d8a12f a9d1a57ce3b44d3b5af298f846e4301ef7673870f9751d571f8ecd00fadfdcb9
GET /bundle/app/Default/Desktop/registration.form.Desktop.Xstavka.965fc2227b126ca748e4.chunk.js HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:49 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 06 May 2024 10:06:25 GMT
etag: W/"6638aba1-1bb46"
expires: Wed, 05 Jun 2024 10:16:03 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.003
traceparent: 00-29d3a3b3c0dba6a83217c0150b0c32f3-677d3dbf23aa8714-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-06T10:13:27+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/styles/css/event-actions/main.efc704117be0a721ac69583a06df97bb.css | 185.244.209.62 | 200 OK | 5.5 kB |
URL GET HTTP/2v2l.traincdn.com/styles/css/event-actions/main.efc704117be0a721ac69583a06df97bb.css IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typeassembler source, ASCII text, with very long lines (5487), with no line terminators Hash376d64889e1cc81ede5483944da2fbe1 e8f079f600a1c1078f91d552e6a27d033c17e0df a5728773ac80078874f0361135016d9a963f4d5ba68e13cbc556aa5eeaacbf52
GET /styles/css/event-actions/main.efc704117be0a721ac69583a06df97bb.css HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:36 GMT
content-type: text/css
last-modified: Thu, 11 Apr 2024 14:18:46 GMT
etag: W/"6617f146-156a"
expires: Thu, 16 May 2024 08:18:20 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.000
traceparent: 00-005f67c9707d71656f83e57c3de35afd-e765d5b3ebedb31a-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-04-16T08:16:33+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/bundle/app/Default/Desktop/auth.6496421c0d564c09b892.bundle.js | 185.244.209.62 | 200 OK | 1.8 MB |
URL GET HTTP/2v2l.traincdn.com/bundle/app/Default/Desktop/auth.6496421c0d564c09b892.bundle.js IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
Size1.8 MB (1769760 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bundle/app/Default/Desktop/auth.6496421c0d564c09b892.bundle.js HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 06 May 2024 12:00:33 GMT
etag: W/"6638c661-1b0120"
expires: Wed, 05 Jun 2024 12:12:32 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-e4b551a81045c6899bffd7318dee2268-35363a85854fb398-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-06T12:09:56+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/bundle/app/Default/Desktop/coupon_v2.App.Default.2236b2169ec4acbd1fe5.chunk.js | 185.244.209.62 | 200 OK | 79 kB |
URL GET HTTP/2v2l.traincdn.com/bundle/app/Default/Desktop/coupon_v2.App.Default.2236b2169ec4acbd1fe5.chunk.js IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bundle/app/Default/Desktop/coupon_v2.App.Default.2236b2169ec4acbd1fe5.chunk.js HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:45 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 06 May 2024 12:00:33 GMT
etag: W/"6638c661-135d9"
expires: Wed, 05 Jun 2024 12:12:07 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-7029160445e37f74e82a3f014f563c78-6b3617cc6ac832de-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-06T12:09:31+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-383.png | 213.183.34.23 | 200 OK | 6.8 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-383.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 50, 8-bit/color RGBA, non-interlaced Hash12436c4f7dd41347756875af60876171 272e97c36a0536172a27c321399944e357effcf1 64ce1c58e392b3b6d7f6c23023233a2035ec6b06519d7b95acea70e29663e1b6
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-383.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: image/png
content-length: 6837
last-modified: Mon, 04 Mar 2024 13:15:28 GMT
etag: "12436c4f7dd41347756875af60876171"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:47:02.424Z
expires: Tue, 07 May 2024 13:44:35 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.071
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-401.png | 213.183.34.23 | 200 OK | 4.8 kB |
URL GET HTTP/2www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-401.png IP213.183.34.23:443
CertificateIssuerSectigo Limited Subjectgamccdn.com FingerprintBD:98:0A:5C:96:08:3D:B7:6F:B6:12:2B:A7:6B:5A:5B:2D:55:C3:45 ValidityWed, 24 Jan 2024 00:00:00 GMT - Sat, 22 Feb 2025 23:59:59 GMT
File typePNG image data, 100 x 27, 8-bit/color RGBA, non-interlaced Hashcbf34f294012512888dd13b8d04a67e2 a994257eeaa8e300c5d9e65d2f884c245507ab5c bd60dc6a61880c1c6fc081de9cae5f7c7233add6cdb188102177b0f84a68b04e
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-401.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: image/png
content-length: 4789
last-modified: Mon, 04 Mar 2024 13:15:29 GMT
etag: "cbf34f294012512888dd13b8d04a67e2"
x-amz-server-side-encryption: AES256
x-amz-meta-origin-date-iso8601: 2024-03-04T08:47:02.469Z
expires: Tue, 07 May 2024 13:14:14 GMT
cache-control: max-age=86400
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.055
x-swifty-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/sfiles/logo-champ/86b3049b3592a71249e7cc77927822d4.webp | 185.244.209.62 | 200 OK | 7.3 kB |
URL GET HTTP/2v2l.traincdn.com/sfiles/logo-champ/86b3049b3592a71249e7cc77927822d4.webp IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image Hash1c59be4ac66b547cc682fbb1c014758b d8dca246fdc4a72e34d1e934bc2721ca4c1f17b9 28ca3421890ea711e51a20f2825aabeb59e79d604182cd4f76d2b2c3b92034bf
GET /sfiles/logo-champ/86b3049b3592a71249e7cc77927822d4.webp HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:51 GMT
content-type: image/webp
content-length: 7314
last-modified: Wed, 04 Jan 2023 08:00:16 GMT
etag: "1c59be4ac66b547cc682fbb1c014758b"
x-amz-server-side-encryption: AES256
cache-control: max-age=3600
expires: Mon, 18 Dec 2023 14:20:17 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.024
traceparent: 00-d4c532580bc98ebf5e085188adc7291d-c83c1222f4a034e4-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-07T06:02:15+00:00
accept-ranges: bytes
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-58.png | 0.0.0.0 | | 0 B |
URL GET www.gamccdn.com/sfiles/games-images/game-previews/v2-icons/game-58.png IP0.0.0.0:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sfiles/games-images/game-previews/v2-icons/game-58.png HTTP/1.1
Host: www.gamccdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|
|
| v2l.traincdn.com/bundle/app/Default/Desktop/main_top_games.db21e82ce4d42d759c07.bundle.js | 185.244.209.62 | 200 OK | 1.7 MB |
URL GET HTTP/2v2l.traincdn.com/bundle/app/Default/Desktop/main_top_games.db21e82ce4d42d759c07.bundle.js IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
Size1.7 MB (1693399 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bundle/app/Default/Desktop/main_top_games.db21e82ce4d42d759c07.bundle.js HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:38 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 06 May 2024 12:00:33 GMT
etag: W/"6638c661-19d6d7"
expires: Wed, 05 Jun 2024 12:16:52 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=0.003
traceparent: 00-3e9c95c44bc81293f37eca6e6250dfe8-5de18f54adb46bd9-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-05-06T12:14:16+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
| v2l.traincdn.com/styles/css/game/main.a97e4a639a183b620685177ec34a3059.css | 185.244.209.62 | 200 OK | 18 kB |
URL GET HTTP/2v2l.traincdn.com/styles/css/game/main.a97e4a639a183b620685177ec34a3059.css IP185.244.209.62:443 ASN#199524 G-Core Labs S.A.
CertificateIssuerSectigo Limited Subject*.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /styles/css/game/main.a97e4a639a183b620685177ec34a3059.css HTTP/1.1
Host: v2l.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xbet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 06:22:36 GMT
content-type: text/css
last-modified: Tue, 16 Apr 2024 12:01:46 GMT
etag: W/"661e68aa-445c"
expires: Thu, 16 May 2024 12:13:33 GMT
cache-control: max-age=2592000
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
server-timing: wf-uht;dur=
traceparent: 00-4ff32c2c5060123a322a066d7c1d950b-fb65143e457775c5-01
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2024-04-16T12:11:45+00:00
x-id-fe: osix-hw-edge-gc4
X-Firefox-Spdy: h2
|
|
0.0.0.0