blancoshrimp.com/SB/AR/
301 Moved Permanently 162 B IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert fortinet Malware
GET /SB/AR/ HTTP/1.1
Host: blancoshrimp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sun, 05 Feb 2023 07:06:30 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://blancoshrimp.com/SB/AR/
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=u6oPQ2rOgxs5IndjVa9JcAdNyhWGd0V75fScSU7SfGCr4vFo7YBzY%2F6lECh2G%2FuD9cqmmtYMQZnzyY0pZDFJylZ6q%2BwxdarFv25AztZPYh%2FRzfUpJa8bFdPpZ3%2Fx8zhIZWvw"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7949cdc1ccdfb4ff-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1cdc095521e9ee2606059be447d1fdd5
02b5d0a5b5823e2338daf7e144700babe2a213af
8bda3aabcf331c2bfcc4c7023cd797c760fd301dc353641bb95048e072f66c66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8BDA3AABCF331C2BFCC4C7023CD797C760FD301DC353641BB95048E072F66C66"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5826
Expires: Sun, 05 Feb 2023 08:43:36 GMT
Date: Sun, 05 Feb 2023 07:06:30 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c21ba65e44ac95470c314e068e49a9eb
17a13b13738993d889d4afa3d848dc63bf6eba64
9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66"
Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8967
Expires: Sun, 05 Feb 2023 09:35:57 GMT
Date: Sun, 05 Feb 2023 07:06:30 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 05 Feb 2023 06:36:17 GMT
content-type: application/json
age: 1813
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash fb7b6b46e708ad73eaaa3c21e74569ae
950663c025acad81556af5aa3022ecc9d55097fe
763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16648
Expires: Sun, 05 Feb 2023 11:43:58 GMT
Date: Sun, 05 Feb 2023 07:06:30 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: /p9qtrxjKE0CKIBx1OArAM4+RTl7250PAT0fp5bfxEX9jP6m7E2Q/7Ezwg4OsDnrAqLvGvZUe8iMINb0qKaqrA==
x-amz-request-id: B9560280CACG7ZJE
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 05 Feb 2023 06:24:22 GMT
age: 2528
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash 069589713a49522908d88291501e98f1
956c4f05a398c1b7a4bab3728c1e46f51deeda9e
2947ed5ae7e533b096f05caf73ae0f9d8f2e208ba1e79b2d5151fdab372ed541
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=167405
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:30 GMT
Etag: "63df4063-117"
Expires: Tue, 07 Feb 2023 05:36:35 GMT
Last-Modified: Sun, 05 Feb 2023 05:36:35 GMT
Server: nginx
Content-Length: 279
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 07:06:30 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash 069589713a49522908d88291501e98f1
956c4f05a398c1b7a4bab3728c1e46f51deeda9e
2947ed5ae7e533b096f05caf73ae0f9d8f2e208ba1e79b2d5151fdab372ed541
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=167405
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:30 GMT
Etag: "63df4063-117"
Expires: Tue, 07 Feb 2023 05:36:35 GMT
Last-Modified: Sun, 05 Feb 2023 05:36:35 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 98be7fe21d059e46146a43d20c4eea92
1ec58129fea75085588be7b8baec05b0874b5274
7bb2eb5ffcd88a3b6ba7b210bdbcd4469134c9708f06befb6c616beebf8dae46
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css2?family=Montserrat:wght@300;400;500;600&display=swap
200 OK 1.1 kB URL HTTP/2 fonts.googleapis.com/css2?family=Montserrat:wght@300;400;500;600&display=swap
IP
Hash 5bb65014a78777924f74eaeedea38935
8b047c27693fe258dae847705d3303b72048c801
7f9c0ae4adfb5d1a5f6e9979cee3c713f38923ebe284a13e3a083462149638ad
GET /css2?family=Montserrat:wght@300;400;500;600&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blancoshrimp.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 05 Feb 2023 07:06:30 GMT
date: Sun, 05 Feb 2023 07:06:30 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
blancoshrimp.com/SB/AR/
200 OK 2.3 kB IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (337)
Hash d0bcf0047d71b83e15ac3155d5b3d849
e78f8dd6733e094af8c42e1bc072acba39cf59b6
0f4f559dde4fc63ac83db805e06f477952b5c2d4d8654c2e60e56b4cfa4825dd
Analyzer Verdict Alert fortinet Malware
GET /SB/AR/ HTTP/1.1
Host: blancoshrimp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:30 GMT
content-type: text/html
last-modified: Tue, 29 Nov 2022 12:07:51 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3ezblOnG4EqJJmq%2BRz2wZ9ffoLFgpXiU1kZj0OQy8Phpe91s846THFvJShIAA2l9aiOXH6qwABwXqGX1uvrfEt4n6oP%2FEMwk9%2Fz4dovaijJ%2BOZRaZK0g2oTdIJk5ZMa3AbmI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7949cdc41941b4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
securely-send.com/storage/pu_ar_pa_cd_hilrn.js
200 OK 46 kB URL HTTP/2 securely-send.com/storage/pu_ar_pa_cd_hilrn.js
IP
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (46384), with no line terminators
Hash 492f46f5db0f0f50f97a0d762f90f73f
34a05c4076d24b5fb17ba91a193bf622ea50dc6e
a4390653c569e5ba617c37763c25645d9fde22692b81d1ca9a5ab7f35025fcea
Analyzer Verdict Alert fortinet Phishing
GET /storage/pu_ar_pa_cd_hilrn.js HTTP/1.1
Host: securely-send.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blancoshrimp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 05 Feb 2023 07:06:30 GMT
content-type: application/javascript; charset=utf-8
content-length: 46384
last-modified: Wed, 01 Feb 2023 12:21:25 GMT
etag: "63da5945-b530"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 05 Feb 2023 06:49:07 GMT
age: 1043
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 5452c58c07ce8d3cade93b323b271c35
581b1e438daeb32a12feaf50f2aab17dcf3e3171
b99ea2af71e697f45db51732f7d3e8d3e50258c9c96e50a772b8c4638577140a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://blancoshrimp.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 Feb 2023 07:08:09 GMT
expires: Sat, 03 Feb 2024 07:08:09 GMT
cache-control: public, max-age=31536000
age: 172701
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 5452c58c07ce8d3cade93b323b271c35
581b1e438daeb32a12feaf50f2aab17dcf3e3171
b99ea2af71e697f45db51732f7d3e8d3e50258c9c96e50a772b8c4638577140a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5956
Expires: Sun, 05 Feb 2023 08:45:47 GMT
Date: Sun, 05 Feb 2023 07:06:31 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 280 B IP
Hash 3d8f6fe36e4e10f557bea2d8b426b448
88bdc425ea808d7840e6bcde1b6dfad14a8fb894
6144d2e6f0505bf6eb67209c90954162465f391e17999627472c6162b9e22dd3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=122757
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:31 GMT
Etag: "63de91fc-118"
Expires: Mon, 06 Feb 2023 17:12:28 GMT
Last-Modified: Sat, 04 Feb 2023 17:12:28 GMT
Server: nginx
Content-Length: 280
www.bet365.bet.ar/olp/open-account?affiliate=365_01159600
200 OK 4.6 kB URL HTTP/1.1 www.bet365.bet.ar/olp/open-account?affiliate=365_01159600
IP
ASN #209242 Cloudflare London, LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash c528170dab02ad8089672b47f7bcacb2
7e7b0649d1e05bb1a996e87ebe66d720742cf3db
46b16f88ed8a8ecdd54bb1b7cfff8a5f3e865a1d3bafd8f3a656b1f14d6ab775
GET /olp/open-account?affiliate=365_01159600 HTTP/1.1
Host: www.bet365.bet.ar
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 07:06:31 GMT
Content-Length: 4587
Connection: keep-alive
ServerDetails: <!--2P1 - 79-->
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=3QzkDAu2QY4bouQdWo7b8lgiCj1.9H47CY2BNlTUtlQ-1675580791-0-AcZZGspMrcvd/yCAaEkt4LqRXUtWRKE2Zo7IYFQnCt/LjCJWaZvC7FENPfWgMs06FFQn1O19Qh0IP5iku6yZo7A=; path=/; expires=Sun, 05-Feb-23 07:36:31 GMT; domain=.bet365.bet.ar; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 7949cdc93d76b4f4-OSL
ocsp.digicert.com/
200 OK 278 B IP
Hash bd9f625d61cf684d1a255a92d8e1beb2
1a67a05be52b146f3f54d98ac6efdbebee5339b9
8ee7454a4f97712d9fd909b97904d2b091a738be380ad54a99cfc20c3da4791a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=161705
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:31 GMT
Etag: "63df2a20-116"
Expires: Tue, 07 Feb 2023 04:01:36 GMT
Last-Modified: Sun, 05 Feb 2023 04:01:36 GMT
Server: nginx
Content-Length: 278
status.thawte.com/
200 OK 471 B IP
Hash 8e92f84de8afc40b2129faa7b5fb04b6
6be984e78f0c32fa812296bdc5e93f4f5b2558f8
ae3939ecd5c3758d65cf4a780459b594328a21404030640e9a83d3c7ecb2a4a5
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4549
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:31 GMT
Last-Modified: Sun, 05 Feb 2023 05:50:42 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
ic.aff-handler.com/C/45577?sr=1853543
302 Found 309 B URL HTTP/1.1 ic.aff-handler.com/C/45577?sr=1853543
IP
ASN #201071 Virtual Internet Services Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4479a8073f1903a2c3c9c999564cb672
7449468add719fc09136a70ed6ad5f2f9efd9695
d2ac72d2b19faf6a99d642248aa94ed27b61c750106717bfa9728c38ade74d16
GET /C/45577?sr=1853543 HTTP/1.1
Host: ic.aff-handler.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Pragma: no-cache
Content-Type: text/html; charset=utf-8
Expires: 0
Location: https://es.888casino.com/exclusive-mob/spinson.htm?sr=1853543&mm_id=45577&utm_source=aff&utm_medium=casap&utm_content=100138643&utm_campaign=100138643_1853543_nodescription
Server:
X-AspNetMvc-Version: 4.0
Set-Cookie: uffiliate_click_45577_1853543_=uffiliate_click_45577_1853543_; expires=Tue, 07-Mar-2023 07:06:31 GMT; path=/; SameSite=None; Secure
srv: 1231321
Date: Sun, 05 Feb 2023 07:06:30 GMT
Content-Length: 309
www.bet365.bet.ar/olpc/es/271/0/1/open-account
200 OK 12 kB URL HTTP/1.1 www.bet365.bet.ar/olpc/es/271/0/1/open-account
IP
ASN #209242 Cloudflare London, LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2508), with CRLF line terminators
Hash b1895fe66617860064f03ea05f84e321
04ff6b8043c5a8ea495ddf60afd4bdd8e8211799
479916a5489196dd3fc00d9da268607b1edb4b2316c2dda293bb3e09e9c62aae
GET /olpc/es/271/0/1/open-account HTTP/1.1
Host: www.bet365.bet.ar
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.bet.ar/olp/open-account?affiliate=365_01159600
Cookie: __cf_bm=3QzkDAu2QY4bouQdWo7b8lgiCj1.9H47CY2BNlTUtlQ-1675580791-0-AcZZGspMrcvd/yCAaEkt4LqRXUtWRKE2Zo7IYFQnCt/LjCJWaZvC7FENPfWgMs06FFQn1O19Qh0IP5iku6yZo7A=
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 07:06:31 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 12304
Connection: keep-alive
Cache-Control: private
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Security-Policy: default-src 'self';script-src 'self' 'unsafe-inline' https://www.googletagmanager.com;frame-src 'self' http://members.bet365.bet.ar 'nonce-bfhpyRdvNORGGc8l+pi1sqNbpmyhx9zgfUhEwFaanYs=';style-src 'self' 'unsafe-inline';img-src 'self' data: https://content001.bet365.bet.ar/ https://content001.bet365.bet.ar/SportsContent/ 'nonce-bfhpyRdvNORGGc8l+pi1sqNbpmyhx9zgfUhEwFaanYs=';connect-src 'self' https://www.google-analytics.com http://members.bet365.bet.ar https://extra.bet365.bet.ar 'nonce-bfhpyRdvNORGGc8l+pi1sqNbpmyhx9zgfUhEwFaanYs=';font-src 'self' data: 'nonce-bfhpyRdvNORGGc8l+pi1sqNbpmyhx9zgfUhEwFaanYs=';
Last-Modified: Sun, 05 Feb 2023 04:53:49 GMT
CF-Cache-Status: HIT
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 7949cdc9dde5b4f4-OSL
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 153d0de36959c722c00df71ba86daca2
305f56a3134879ebf0828e169e903e560540c070
0cf533a798d42d1e97fb6619a411afadf9a68c92302ba852869b0c0555a47987
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-T2BKDHM
200 OK 40 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-T2BKDHM
IP
File type ASCII text, with very long lines (1759)
Hash 4ede19157a6704794c3277bb2b068dda
1bae859f0f46226e458ccfca9f6b7049e0f12e65
068a399a167b11b240feacbdbd5aaa599eef2b2df8d235e9d6175560e9e498fc
GET /gtm.js?id=GTM-T2BKDHM HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.bet.ar/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 05 Feb 2023 07:06:31 GMT
expires: Sun, 05 Feb 2023 07:06:31 GMT
cache-control: private, max-age=900
last-modified: Sun, 05 Feb 2023 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 40148
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: jSBUbz3e1VJlDnUuhtlICg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: JwyhgV6GC6U3CO/4OofN5Pi5W10=
ocsp.digicert.com/
200 OK 280 B IP
Hash bd57d63e2a1e98ce1bef7841328eb658
c754cc0bce5fb8aa8c86b4ccdc0f88874b9a0da9
3abe1652c436764a1cee6eaa3a31264f86edb7a34c68b6ff6bb68b936fadd7d8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=151957
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:31 GMT
Etag: "63df040c-118"
Expires: Tue, 07 Feb 2023 01:19:08 GMT
Last-Modified: Sun, 05 Feb 2023 01:19:08 GMT
Server: nginx
Content-Length: 280
ocsp.digicert.com/
200 OK 278 B IP
Hash bd9f625d61cf684d1a255a92d8e1beb2
1a67a05be52b146f3f54d98ac6efdbebee5339b9
8ee7454a4f97712d9fd909b97904d2b091a738be380ad54a99cfc20c3da4791a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=161705
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:31 GMT
Etag: "63df2a20-116"
Expires: Tue, 07 Feb 2023 04:01:36 GMT
Last-Modified: Sun, 05 Feb 2023 04:01:36 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 278
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 153d0de36959c722c00df71ba86daca2
305f56a3134879ebf0828e169e903e560540c070
0cf533a798d42d1e97fb6619a411afadf9a68c92302ba852869b0c0555a47987
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.bet365.bet.ar/olpc/Content/Fonts/FTN45__W.woff2
200 OK 46 kB URL HTTP/1.1 www.bet365.bet.ar/olpc/Content/Fonts/FTN45__W.woff2
IP
ASN #209242 Cloudflare London, LLC
File type Web Open Font Format (Version 2), TrueType, length 45892, version 1.590\012- data
Hash e3596a29429736364ebfef73786a55ab
7bd9b6b18b0985c080d520610c0ab74a128d71bd
6e28311fc68644a88a32df782c7371991894bc6a6a81f8ff70f971b4470c3751
GET /olpc/Content/Fonts/FTN45__W.woff2 HTTP/1.1
Host: www.bet365.bet.ar
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.bet.ar/olpc/es/271/0/1/open-account
Cookie: __cf_bm=3QzkDAu2QY4bouQdWo7b8lgiCj1.9H47CY2BNlTUtlQ-1675580791-0-AcZZGspMrcvd/yCAaEkt4LqRXUtWRKE2Zo7IYFQnCt/LjCJWaZvC7FENPfWgMs06FFQn1O19Qh0IP5iku6yZo7A=
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 07:06:31 GMT
Content-Length: 45892
Connection: keep-alive
Last-Modified: Sun, 05 Feb 2023 04:52:54 GMT
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7949cdca6e4fb4f4-OSL
www.bet365.bet.ar/olpc/olpc-styles.css?v=ADHdDai99bBc7EkexwsG2Dy6MZFuXii0weu-ag9vIh01
200 OK 125 kB URL HTTP/1.1 www.bet365.bet.ar/olpc/olpc-styles.css?v=ADHdDai99bBc7EkexwsG2Dy6MZFuXii0weu-ag9vIh01
IP
ASN #209242 Cloudflare London, LLC
File type Unicode text, UTF-8 text, with very long lines (335), with CRLF line terminators
Size 125 kB (124685 bytes)
Hash dd53b53b336bc4ed72b70391cdce8608
ef277ce9827cea6ac495e1628b6f123c91334745
2f4b5295a21a0883f6f1d490ead1f98e7516c077f48a758b5d12cce1a7ac44fe
GET /olpc/olpc-styles.css?v=ADHdDai99bBc7EkexwsG2Dy6MZFuXii0weu-ag9vIh01 HTTP/1.1
Host: www.bet365.bet.ar
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.bet.ar/olpc/es/271/0/1/open-account
Cookie: __cf_bm=3QzkDAu2QY4bouQdWo7b8lgiCj1.9H47CY2BNlTUtlQ-1675580791-0-AcZZGspMrcvd/yCAaEkt4LqRXUtWRKE2Zo7IYFQnCt/LjCJWaZvC7FENPfWgMs06FFQn1O19Qh0IP5iku6yZo7A=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 07:06:31 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: public
Content-Encoding: gzip
Expires: Mon, 05 Feb 2024 04:52:03 GMT
Last-Modified: Sun, 05 Feb 2023 04:52:03 GMT
Vary: User-Agent,Accept-Encoding
CF-Cache-Status: HIT
Server: cloudflare
CF-RAY: 7949cdca7e99b506-OSL
www.bet365.bet.ar/olpc/olpc-scripts.js?v=KDTjkmVXa0zSSWIyyHmLFOBOjdyHlaqJQbhw88pHAIA1
200 OK 7.8 kB URL HTTP/1.1 www.bet365.bet.ar/olpc/olpc-scripts.js?v=KDTjkmVXa0zSSWIyyHmLFOBOjdyHlaqJQbhw88pHAIA1
IP
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (22529), with no line terminators
Hash 0f970d13f157c52f1f0e1eaa43d225c0
6e2bd108ccb272927e5f1ceef33697867862306f
5881568c0f146564710d8c30b9056ae1b2404d45e7cb09f9b455fedeabdcb821
GET /olpc/olpc-scripts.js?v=KDTjkmVXa0zSSWIyyHmLFOBOjdyHlaqJQbhw88pHAIA1 HTTP/1.1
Host: www.bet365.bet.ar
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.bet.ar/olpc/es/271/0/1/open-account
Cookie: __cf_bm=3QzkDAu2QY4bouQdWo7b8lgiCj1.9H47CY2BNlTUtlQ-1675580791-0-AcZZGspMrcvd/yCAaEkt4LqRXUtWRKE2Zo7IYFQnCt/LjCJWaZvC7FENPfWgMs06FFQn1O19Qh0IP5iku6yZo7A=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 07:06:31 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 7792
Connection: keep-alive
Cache-Control: public
Content-Encoding: gzip
Expires: Mon, 05 Feb 2024 04:52:06 GMT
Last-Modified: Sun, 05 Feb 2023 04:52:06 GMT
Vary: User-Agent,Accept-Encoding
CF-Cache-Status: HIT
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 7949cdca88e2b527-OSL
ocsp.pki.goog/s/gts1p5/zABYnqxeNAM
200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/zABYnqxeNAM
IP
Hash f4db20ecdda1db5075e251d941ec790b
f057b3fa23e0c31ef2cb760ca298f6587c2bc0c8
c17a38c538f6ad3a27b9c20562ca70a36f6874bd133989f1c2a037b7c534eb95
POST /s/gts1p5/zABYnqxeNAM HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:31 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.bet365.bet.ar/members/services/host/Scripts/js/ProductCommon_v1.js
200 OK 3.6 kB URL HTTP/1.1 www.bet365.bet.ar/members/services/host/Scripts/js/ProductCommon_v1.js
IP
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (9857), with no line terminators
Hash 8526418443f6bcfead67615247d3e38a
6935cb6ce3e37192afcd3d08ec3b2d9c18035d20
49fa8353e8973f41c38723a669bd3200fd658ba87d6c121eb45da4af631825aa
GET /members/services/host/Scripts/js/ProductCommon_v1.js HTTP/1.1
Host: www.bet365.bet.ar
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.bet.ar/olpc/es/271/0/1/open-account
Cookie: __cf_bm=3QzkDAu2QY4bouQdWo7b8lgiCj1.9H47CY2BNlTUtlQ-1675580791-0-AcZZGspMrcvd/yCAaEkt4LqRXUtWRKE2Zo7IYFQnCt/LjCJWaZvC7FENPfWgMs06FFQn1O19Qh0IP5iku6yZo7A=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 07:06:31 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: 0
Cache-Control: no-cache, no-store, must-revalidate
x-bet-hop: 1
Pragma: no-cache
Content-Encoding: gzip
Last-Modified: Sun, 05 Feb 2023 07:06:31 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7949cdca8c1fb50f-OSL
ocsp.digicert.com/
200 OK 280 B IP
Hash f8bd02e6d7f800b706b834665164d1c7
051b723c2bcaec41e3196f591a1a985c7fd8b1fb
0de43e8f433aeb455ba8c8be78e1be77ef9c23b585164062959c897244abe567
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:31 GMT
Server: ECS (amb/6BC2)
Content-Length: 280
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 275e730e3d8695bc0628a6324a83d442
a2cb9e1967dd9be01ef4d659df1a0f2ede17d4c9
22f6caaf2cf43b9dcd54ae7a04e300ed65e954ea9e0af1f42066be7afbddf3c9
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=108719
Date: Sun, 05 Feb 2023 07:06:31 GMT
Etag: "63de4a43-1d7"
Expires: Mon, 06 Feb 2023 13:18:30 GMT
Last-Modified: Sat, 04 Feb 2023 12:06:27 GMT
Server: ECS (dcb/7F80)
X-Cache: Miss from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: sN_06p4-j6y9SDtQVcfARppkK9tASyIUQBl9Dgz3fmNDqGoYYLcctA==
Age: 4323
www.bet365.bet.ar/members/services/host/Scripts/js/ProductCommon_v1.js?async
200 OK 693 B URL HTTP/1.1 www.bet365.bet.ar/members/services/host/Scripts/js/ProductCommon_v1.js?async
IP
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (990), with no line terminators
Hash 0078d2375c4583bafda01c0dc2247c61
15a43ac608c5db2165f1770ce06388ab1b7a9a73
185058c8e48292132ef632d440e7f8a6ad70d1208b455bdc5774500630bf40a4
GET /members/services/host/Scripts/js/ProductCommon_v1.js?async HTTP/1.1
Host: www.bet365.bet.ar
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.bet.ar/olpc/es/271/0/1/open-account
Cookie: __cf_bm=3QzkDAu2QY4bouQdWo7b8lgiCj1.9H47CY2BNlTUtlQ-1675580791-0-AcZZGspMrcvd/yCAaEkt4LqRXUtWRKE2Zo7IYFQnCt/LjCJWaZvC7FENPfWgMs06FFQn1O19Qh0IP5iku6yZo7A=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 07:06:31 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: 0
Cache-Control: no-cache, no-store, must-revalidate
x-bet-hop: 1
Pragma: no-cache
Content-Encoding: gzip
Last-Modified: Sun, 05 Feb 2023 07:06:31 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7949cdca9e01b529-OSL
ocsp.digicert.com/
200 OK 280 B IP
Hash f2408768ebc5855842ffa80bf29bd02e
f75947a745f44ad75c943bdbabea829204f6cc70
01c213688b6dd8aa7ea921bca9392d94e79684ae606a953b003df643bba44332
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:31 GMT
Server: ECS (amb/6B73)
Content-Length: 280
ocsp.digicert.com/
200 OK 280 B IP
Hash f2408768ebc5855842ffa80bf29bd02e
f75947a745f44ad75c943bdbabea829204f6cc70
01c213688b6dd8aa7ea921bca9392d94e79684ae606a953b003df643bba44332
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=165261
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:31 GMT
Etag: "63df3804-118"
Expires: Tue, 07 Feb 2023 05:00:52 GMT
Last-Modified: Sun, 05 Feb 2023 05:00:52 GMT
Server: nginx
Content-Length: 280
content001.bet365.bet.ar/SportsContent/Global/Footer/GordonMoody/GordonMoody-GT-x2_Grey99.png
200 OK 5.3 kB URL HTTP/1.1 content001.bet365.bet.ar/SportsContent/Global/Footer/GordonMoody/GordonMoody-GT-x2_Grey99.png
IP
ASN #209242 Cloudflare London, LLC
File type PNG image data, 188 x 60, 8-bit gray+alpha, non-interlaced\012- data
Hash 40ed9c8ae714b944f87008ab90bb071d
32bbf71529809e6ea3521c5636838a76c7488fae
b163877ec48382be73ffdf62c6a5dc5ded37443856dde414e591dfe85b61f070
GET /SportsContent/Global/Footer/GordonMoody/GordonMoody-GT-x2_Grey99.png HTTP/1.1
Host: content001.bet365.bet.ar
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.bet.ar/
Cookie: __cf_bm=3QzkDAu2QY4bouQdWo7b8lgiCj1.9H47CY2BNlTUtlQ-1675580791-0-AcZZGspMrcvd/yCAaEkt4LqRXUtWRKE2Zo7IYFQnCt/LjCJWaZvC7FENPfWgMs06FFQn1O19Qh0IP5iku6yZo7A=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 07:06:31 GMT
Content-Type: image/png
Content-Length: 5324
Connection: keep-alive
Last-Modified: Mon, 11 Oct 2021 13:13:24 GMT
Timing-Allow-Origin: *
CF-Cache-Status: HIT
Age: 104413
Expires: Fri, 10 Feb 2023 07:06:31 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7949cdcb5aceb523-OSL
content001.bet365.bet.ar/SportsContent/FeaturesTemplate/SVG/Payment/Maestro%20VisaDebit%20Mastercard.svg
200 OK 6.2 kB URL HTTP/1.1 content001.bet365.bet.ar/SportsContent/FeaturesTemplate/SVG/Payment/Maestro%20VisaDebit%20Mastercard.svg
IP
ASN #209242 Cloudflare London, LLC
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (15567), with no line terminators
Hash 220bef61171f7370206cf88bad4e96cc
ab6bd06d642cdd0c85a4e068939709c39d496339
83844f440035ece488c8c17a0521c375f7d008cc9adb08d13ee8c555843da271
GET /SportsContent/FeaturesTemplate/SVG/Payment/Maestro%20VisaDebit%20Mastercard.svg HTTP/1.1
Host: content001.bet365.bet.ar
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.bet.ar/
Cookie: __cf_bm=3QzkDAu2QY4bouQdWo7b8lgiCj1.9H47CY2BNlTUtlQ-1675580791-0-AcZZGspMrcvd/yCAaEkt4LqRXUtWRKE2Zo7IYFQnCt/LjCJWaZvC7FENPfWgMs06FFQn1O19Qh0IP5iku6yZo7A=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 07:06:31 GMT
Content-Type: image/svg+xml
Content-Length: 6232
Connection: keep-alive
Content-Encoding: gzip
Last-Modified: Thu, 09 Sep 2021 09:13:23 GMT
Vary: Accept-Encoding
Timing-Allow-Origin: *
CF-Cache-Status: HIT
Age: 104413
Expires: Fri, 10 Feb 2023 07:06:31 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 7949cdcb5b93b511-OSL
ocsp.digicert.com/
200 OK 280 B IP
Hash f2408768ebc5855842ffa80bf29bd02e
f75947a745f44ad75c943bdbabea829204f6cc70
01c213688b6dd8aa7ea921bca9392d94e79684ae606a953b003df643bba44332
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=165261
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:31 GMT
Etag: "63df3804-118"
Expires: Tue, 07 Feb 2023 05:00:52 GMT
Last-Modified: Sun, 05 Feb 2023 05:00:52 GMT
Server: nginx
Content-Length: 280
content001.bet365.bet.ar/SportsContent/Global/Footer/SPORTSX2-18.png
200 OK 4.4 kB URL HTTP/1.1 content001.bet365.bet.ar/SportsContent/Global/Footer/SPORTSX2-18.png
IP
ASN #209242 Cloudflare London, LLC
File type PNG image data, 65 x 65, 8-bit/color RGBA, non-interlaced\012- data
Hash 097b1799e6f2ab026f137f91b4627384
fd6a5222f5743cccc954a311b6d30b4125179244
5af616c5e6ad0d97aa233ed4644776ca94de0cfb1a653844d8a5d9ee46e756af
GET /SportsContent/Global/Footer/SPORTSX2-18.png HTTP/1.1
Host: content001.bet365.bet.ar
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.bet.ar/
Cookie: __cf_bm=3QzkDAu2QY4bouQdWo7b8lgiCj1.9H47CY2BNlTUtlQ-1675580791-0-AcZZGspMrcvd/yCAaEkt4LqRXUtWRKE2Zo7IYFQnCt/LjCJWaZvC7FENPfWgMs06FFQn1O19Qh0IP5iku6yZo7A=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 07:06:31 GMT
Content-Type: image/png
Content-Length: 4400
Connection: keep-alive
Last-Modified: Fri, 20 Mar 2015 09:13:01 GMT
ETag: "a637b610ee62d01:0"
Timing-Allow-Origin: *
CF-Cache-Status: HIT
Age: 104413
Expires: Fri, 10 Feb 2023 07:06:31 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7949cdcb6cf01c16-OSL
content001.bet365.bet.ar/SportsContent/FeaturesTemplate/SVG/Payment/BBVA.svg
200 OK 4.8 kB URL HTTP/1.1 content001.bet365.bet.ar/SportsContent/FeaturesTemplate/SVG/Payment/BBVA.svg
IP
ASN #209242 Cloudflare London, LLC
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (10278)
Hash 9de725a6608c677ac2468c24bb11158f
f0b3ac47c9da140c62af3c30e70845e232c81311
5bc5f61bef4d01ab4fbf0dd730c57bf71e8689709859c9223df4e50aae960630
GET /SportsContent/FeaturesTemplate/SVG/Payment/BBVA.svg HTTP/1.1
Host: content001.bet365.bet.ar
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.bet.ar/
Cookie: __cf_bm=3QzkDAu2QY4bouQdWo7b8lgiCj1.9H47CY2BNlTUtlQ-1675580791-0-AcZZGspMrcvd/yCAaEkt4LqRXUtWRKE2Zo7IYFQnCt/LjCJWaZvC7FENPfWgMs06FFQn1O19Qh0IP5iku6yZo7A=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 07:06:31 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 02 Nov 2022 16:04:13 GMT
ETag: W/"8c6361c0d4eed81:0"
Timing-Allow-Origin: *
CF-Cache-Status: HIT
Age: 104413
Expires: Fri, 10 Feb 2023 07:06:31 GMT
Cache-Control: public, max-age=432000
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7949cdcb7bafb511-OSL
Content-Encoding: gzip
content001.bet365.bet.ar/SportsContent/Global/Footer/bet365%20grey%20footer%20logo.png
200 OK 7.9 kB URL HTTP/1.1 content001.bet365.bet.ar/SportsContent/Global/Footer/bet365%20grey%20footer%20logo.png
IP
ASN #209242 Cloudflare London, LLC
File type PNG image data, 255 x 53, 8-bit/color RGBA, non-interlaced\012- data
Hash 51325bd6f5ada6b0eba71b19dda89dd7
4c67ca4f77680cd5acdcf04cac6b9a673e5ccc70
6ad4d67eed235fafc8ddfab188fa2e968ba4345718c8338bd7f4fbfafa6f8a2b
GET /SportsContent/Global/Footer/bet365%20grey%20footer%20logo.png HTTP/1.1
Host: content001.bet365.bet.ar
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.bet.ar/
Cookie: __cf_bm=3QzkDAu2QY4bouQdWo7b8lgiCj1.9H47CY2BNlTUtlQ-1675580791-0-AcZZGspMrcvd/yCAaEkt4LqRXUtWRKE2Zo7IYFQnCt/LjCJWaZvC7FENPfWgMs06FFQn1O19Qh0IP5iku6yZo7A=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 07:06:31 GMT
Content-Type: image/png
Content-Length: 7868
Connection: keep-alive
Last-Modified: Thu, 11 Jun 2015 14:13:32 GMT
Timing-Allow-Origin: *
CF-Cache-Status: HIT
Age: 104413
Expires: Fri, 10 Feb 2023 07:06:31 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7949cdcb6adfb523-OSL
members.bet365.bet.ar/Members/Helpers/DefaultAff.aspx?affiliate=365_01159600
200 OK 177 B URL HTTP/1.1 members.bet365.bet.ar/Members/Helpers/DefaultAff.aspx?affiliate=365_01159600
IP
ASN #209242 Cloudflare London, LLC
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 475774a26d4f30240a3534bcbd2fd161
9fd7b986673786b4fc80943b330bd1c03256049e
f7541d6ca43b4da74a89ec05885dceabf1a4af132d36326cf7974a47c904c811
GET /Members/Helpers/DefaultAff.aspx?affiliate=365_01159600 HTTP/1.1
Host: members.bet365.bet.ar
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.bet.ar/
Cookie: __cf_bm=3QzkDAu2QY4bouQdWo7b8lgiCj1.9H47CY2BNlTUtlQ-1675580791-0-AcZZGspMrcvd/yCAaEkt4LqRXUtWRKE2Zo7IYFQnCt/LjCJWaZvC7FENPfWgMs06FFQn1O19Qh0IP5iku6yZo7A=
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 07:06:31 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 177
Connection: keep-alive
Cache-Control: private
Content-Encoding: gzip
Vary: Accept-Encoding
ME-Redirect: PQB
Set-Cookie: Affiliates=Code=365_01159600%2f166298820663&prd=Sports; domain=.bet365.bet.ar; expires=Wed, 22-Mar-2023 07:06:31 GMT; path=/; secure
session=processform=0; path=/; secure
pstk=0FD151AA6C37E71CB8EC2E150FDA5C90000003; domain=.bet365.bet.ar; path=/; secure
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7949cdcaac6d0b59-OSL
www.bet365.bet.ar/members/services/host/Scripts/js/ProductCommon_v1.js?seed=AIDhXyCGAQAA65tGvLMm57gYThqFSzQzFz3I_AosphrO0JywVYaCX4xKnT6t&PIRXTcSdwp--z=q
200 OK 174 kB URL HTTP/1.1 www.bet365.bet.ar/members/services/host/Scripts/js/ProductCommon_v1.js?seed=AIDhXyCGAQAA65tGvLMm57gYThqFSzQzFz3I_AosphrO0JywVYaCX4xKnT6t&PIRXTcSdwp--z=q
IP
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (65536), with no line terminators
Size 174 kB (174190 bytes)
Hash 2fe5fdc1cd2434c749a699cedd62568d
72f6a1c84dc7364944bbceeda8476953e96cff4d
b2fb7e5448f919259a6077c21983132b4fbb3ae23a18ea9afb0ddf08c96706ed
GET /members/services/host/Scripts/js/ProductCommon_v1.js?seed=AIDhXyCGAQAA65tGvLMm57gYThqFSzQzFz3I_AosphrO0JywVYaCX4xKnT6t&PIRXTcSdwp--z=q HTTP/1.1
Host: www.bet365.bet.ar
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.bet.ar/olpc/es/271/0/1/open-account
Cookie: __cf_bm=3QzkDAu2QY4bouQdWo7b8lgiCj1.9H47CY2BNlTUtlQ-1675580791-0-AcZZGspMrcvd/yCAaEkt4LqRXUtWRKE2Zo7IYFQnCt/LjCJWaZvC7FENPfWgMs06FFQn1O19Qh0IP5iku6yZo7A=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 07:06:31 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: public, max-age=3600, immutable
x-bet-hop: 1
Content-Encoding: gzip
Last-Modified: Sun, 05 Feb 2023 07:00:00 GMT
CF-Cache-Status: HIT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7949cdcb4ef4b4f4-OSL
www.bet365.bet.ar/LandingPageCountry/GetLanguageByCountryIdAndStateId?countryId=271&stateId=0
200 OK 2 B URL HTTP/1.1 www.bet365.bet.ar/LandingPageCountry/GetLanguageByCountryIdAndStateId?countryId=271&stateId=0
IP
ASN #209242 Cloudflare London, LLC
File type ASCII text, with no line terminators
Hash 19ca14e7ea6328a42e0eb13d585e4c22
fc074d501302eb2b93e2554793fcaf50b3bf7291
76a50887d8f1c2e9301755428990ad81479ee21c25b43215cf524541e0503269
GET /LandingPageCountry/GetLanguageByCountryIdAndStateId?countryId=271&stateId=0 HTTP/1.1
Host: www.bet365.bet.ar
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.bet.ar/olpc/es/271/0/1/open-account
Cookie: __cf_bm=3QzkDAu2QY4bouQdWo7b8lgiCj1.9H47CY2BNlTUtlQ-1675580791-0-AcZZGspMrcvd/yCAaEkt4LqRXUtWRKE2Zo7IYFQnCt/LjCJWaZvC7FENPfWgMs06FFQn1O19Qh0IP5iku6yZo7A=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 07:06:31 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 2
Connection: keep-alive
Cache-Control: public, no-cache="Set-Cookie", max-age=432000
X-Frame-Options: SAMEORIGIN
Last-Modified: Fri, 03 Feb 2023 16:51:51 GMT
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7949cdcb4f26b506-OSL
content001.bet365.bet.ar/SportsContent/FeaturesTemplate/SVG/Payment/Galicia.svg
200 OK 4.4 kB URL HTTP/1.1 content001.bet365.bet.ar/SportsContent/FeaturesTemplate/SVG/Payment/Galicia.svg
IP
ASN #209242 Cloudflare London, LLC
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (6713)
Hash e01711ed8ee126c5bb254d100242e537
e1a68c013ac9b32deb7b477639215e4a7cc52c86
3bcb6026486dc7f009ffa381138ae9dbc9182dcb08d6c81b4e025dabc1d9e763
GET /SportsContent/FeaturesTemplate/SVG/Payment/Galicia.svg HTTP/1.1
Host: content001.bet365.bet.ar
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.bet.ar/
Cookie: __cf_bm=3QzkDAu2QY4bouQdWo7b8lgiCj1.9H47CY2BNlTUtlQ-1675580791-0-AcZZGspMrcvd/yCAaEkt4LqRXUtWRKE2Zo7IYFQnCt/LjCJWaZvC7FENPfWgMs06FFQn1O19Qh0IP5iku6yZo7A=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 07:06:31 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 02 Nov 2022 16:04:05 GMT
ETag: W/"184aa8bbd4eed81:0"
Timing-Allow-Origin: *
CF-Cache-Status: HIT
Expires: Fri, 10 Feb 2023 07:06:31 GMT
Cache-Control: public, max-age=432000
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7949cdcb5f05b51d-OSL
Content-Encoding: gzip
ocsp.digicert.com/
200 OK 280 B IP
Hash f8bd02e6d7f800b706b834665164d1c7
051b723c2bcaec41e3196f591a1a985c7fd8b1fb
0de43e8f433aeb455ba8c8be78e1be77ef9c23b585164062959c897244abe567
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=102957
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:31 GMT
Etag: "63de44a4-118"
Expires: Mon, 06 Feb 2023 11:42:28 GMT
Last-Modified: Sat, 04 Feb 2023 11:42:28 GMT
Server: nginx
Content-Length: 280
es.888casino.com/exclusive-mob/spinson.htm?sr=1853543&mm_id=45577&utm_source=aff&utm_medium=casap&utm_content=100138643&utm_campaign=100138643_1853543_nodescription
301 Moved Permanently 0 B URL HTTP/2 es.888casino.com/exclusive-mob/spinson.htm?sr=1853543&mm_id=45577&utm_source=aff&utm_medium=casap&utm_content=100138643&utm_campaign=100138643_1853543_nodescription
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /exclusive-mob/spinson.htm?sr=1853543&mm_id=45577&utm_source=aff&utm_medium=casap&utm_content=100138643&utm_campaign=100138643_1853543_nodescription HTTP/1.1
Host: es.888casino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
content-length: 0
location: https://es.888casino.com/exclusive-mob/spinson.htm?utm_campaign=100138643_1853543_nodescription&utm_content=100138643&utm_medium=casap&utm_source=aff
date: Sun, 05 Feb 2023 07:06:31 GMT
x-wcs-correlation-id: _QlUrOUIGhPLLUwHPzzTgcrxnuVD0yIUPe18X_5N3cV0MtCONbAh1Q==
set-cookie: 888TempQueryCookie=sr%3D1853543; max-age=60; domain=888casino.com; path=/; secure; samesite=none; httponly
888Cookie=isftd%3Dfalse%26isreal%3Dfalse%26lang%3Des%26OSR%3D1853543%26RefType%3DNoReferrer%26TestData%3D%7B%22mm_id%22%3A%2245577%22%2C%22orig-lp%22%3A%22https%3A%2F%2Fes.888casino.com%2Fexclusive-mob%2Fspinson.htm%22%2C%22referrer%22%3A%22NULL%22%2C%22utm_campaign%22%3A%22100138643_1853543_nodescription%22%2C%22utm_content%22%3A%22100138643%22%2C%22utm_medium%22%3A%22casap%22%2C%22utm_source%22%3A%22aff%22%7D; max-age=604800; domain=888casino.com; path=/; secure; samesite=none; httponly
888TempContext=testdata%3D%7B%22mm_id%22%3A%2245577%22%2C%22orig-lp%22%3A%22https%3A%2F%2Fes.888casino.com%2Fexclusive-mob%2Fspinson.htm%22%2C%22referrer%22%3A%22NULL%22%2C%22utm_campaign%22%3A%22100138643_1853543_nodescription%22%2C%22utm_content%22%3A%22100138643%22%2C%22utm_medium%22%3A%22casap%22%2C%22utm_source%22%3A%22aff%22%7D; max-age=60; domain=888casino.com; path=/; secure; samesite=none; httponly
apigw-requestid: f2pKtg84joEEPhA=
vary: Cookie
x-cache: Miss from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: _QlUrOUIGhPLLUwHPzzTgcrxnuVD0yIUPe18X_5N3cV0MtCONbAh1Q==
X-Firefox-Spdy: h2
www.bet365.bet.ar/olpc/es/271/0/1/cookieconsentajax?
200 OK 1.4 kB URL HTTP/1.1 www.bet365.bet.ar/olpc/es/271/0/1/cookieconsentajax?
IP
ASN #209242 Cloudflare London, LLC
File type Unicode text, UTF-8 text, with very long lines (516), with CRLF, LF line terminators
Hash f11e33f2c06af0a428813213e1e02127
becc8fe642f47be0261ee183e9c4a71ff8d4e515
81980bb86553ce756b6d0c006be4dff9708d129b4f5ee82c2cb5454d654f254b
POST /olpc/es/271/0/1/cookieconsentajax? HTTP/1.1
Host: www.bet365.bet.ar
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.bet365.bet.ar
Connection: keep-alive
Referer: https://www.bet365.bet.ar/olpc/es/271/0/1/open-account
Cookie: __cf_bm=3QzkDAu2QY4bouQdWo7b8lgiCj1.9H47CY2BNlTUtlQ-1675580791-0-AcZZGspMrcvd/yCAaEkt4LqRXUtWRKE2Zo7IYFQnCt/LjCJWaZvC7FENPfWgMs06FFQn1O19Qh0IP5iku6yZo7A=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Content-Length: 0
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 07:06:31 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 1383
Connection: keep-alive
Cache-Control: private
Content-Encoding: gzip
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7949cdcd4862b4f4-OSL
ocsp.r2m01.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP
Hash 31fa015d1adcfc89371c6ab946926fec
93630ead12c9674746dceb4df3c46101a8785065
33a4f9425f8bbb7d1050574c0873a9ed517574ad9dfa5523353fbee0f9f8ce03
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=96122
Date: Sun, 05 Feb 2023 07:06:31 GMT
Etag: "63de29f1-1d7"
Expires: Mon, 06 Feb 2023 09:48:33 GMT
Last-Modified: Sat, 04 Feb 2023 09:48:33 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: TP6DAFbHOny0vKKJ7IoBIWi0y41kPEhUJwM_nWRqU9YuIiC7a_CdxA==
online.codere.bet.ar/promoRedirect?key=ej0xODkxNTQ1OCZsPTE4OTE1NDU2JnA9MzA2ODQ0
301 Moved Permanently 491 B URL HTTP/2 online.codere.bet.ar/promoRedirect?key=ej0xODkxNTQ1OCZsPTE4OTE1NDU2JnA9MzA2ODQ0
IP
Hash dc3a2ac57546a27e81005bf8016b9cb7
07adb9270f59208adbf1c3c7902471d78551d6b3
dac81b1432db75921756d6c4da42bdb30d7195ab1e1d4a8705da257f28cc1821
GET /promoRedirect?key=ej0xODkxNTQ1OCZsPTE4OTE1NDU2JnA9MzA2ODQ0 HTTP/1.1
Host: online.codere.bet.ar
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Sun, 05 Feb 2023 07:06:31 GMT
location: https://promo.codere.bet.ar/deportes/general/Tennis?&pid=306844&aid=87563
server: Apache
content-encoding: gzip
p3p: CP="NON DEVa TAIa OUR BUS"
expires: Sat, 01 Jan 2000 01:00:00 GMT
last-modified: Sun, 05 Feb 2023 07:06:31 GMT
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
set-cookie: CLICK=8A6D25ABFFCCCC60B19FEE008296D733:3607; Max-Age=86400; Expires=Mon, 06 Feb 2023 07:06:31 GMT; Secure; SameSite=None
banner_click=gig_cph_pop,86491,306844,18915457,BTAG:5DC9E30EDC768B35A19538A5D479E5BB%3bID2:%3bID3:; Max-Age=604800; Expires=Sun, 12 Feb 2023 07:06:31 GMT; Domain=.codere.bet.ar; Path=/; Secure; SameSite=None
External=bGFuZGluZ1BhZ2VJZD0xODkxNTQ1NiZwcm9maWxlSWQ9MzA2ODQ0JnpvbmVJZD0xODkxNTQ1OA==; Max-Age=86400; Expires=Mon, 06 Feb 2023 07:06:31 GMT; Secure; SameSite=None
X-Firefox-Spdy: h2
in.caba.betsson.bet.ar/bono-de-bienvenida-deportes-select/ag?from=1tdmcUJaeOzBimiZWhBbs2Nd7ZgqdRLk-AP0846390900&affcode=AP0846390900&utm_medium=MA_Affiliates&utm_source=10687405
301 Moved Permanently 494 B URL HTTP/2 in.caba.betsson.bet.ar/bono-de-bienvenida-deportes-select/ag?from=1tdmcUJaeOzBimiZWhBbs2Nd7ZgqdRLk-AP0846390900&affcode=AP0846390900&utm_medium=MA_Affiliates&utm_source=10687405
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash f01f127c95d793f9bee863c0749e8cb2
69856fd1a4ab0bf8098bc364eea8c9782f7fe238
989949c3880a339b43ce3f2af8be4566901a416b704215d79f3b7e3df98c33f4
GET /bono-de-bienvenida-deportes-select/ag?from=1tdmcUJaeOzBimiZWhBbs2Nd7ZgqdRLk-AP0846390900&affcode=AP0846390900&utm_medium=MA_Affiliates&utm_source=10687405 HTTP/1.1
Host: in.caba.betsson.bet.ar
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: ZBan=1tdmcUJaeOzBimiZWhBbs2Nd7ZgqdRLk
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
content-type: text/html; charset=iso-8859-1
content-length: 494
location: https://in.caba.betsson.bet.ar/bono-de-bienvenida-deportes-select/ag/?from=1tdmcUJaeOzBimiZWhBbs2Nd7ZgqdRLk-AP0846390900&affcode=AP0846390900&utm_medium=MA_Affiliates&utm_source=10687405
date: Sun, 05 Feb 2023 07:06:32 GMT
server: Apache/2.4.52 (Ubuntu)
strict-transport-security: max-age=3153600; includeSubDomains
x-cache: Miss from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: TTzWY-OsF41TyrTf3KrWbzBLHNT89xGDS6mtuztCl0cbNiwB7KP1rQ==
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-45M1DQFW2B>m=45je3210&_p=437421780&gcs=G1-0&cid=1920685596.1675580831&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675580830&sct=1&seg=0&dl=https%3A%2F%2Fwww.bet365.bet.ar%2Folp%2Fopen-account%3Faffiliate%3D365_01159600&dt=Bonus%20de%20ingreso&en=page_view&_fv=1&_nsi=1&_ss=1
204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-45M1DQFW2B>m=45je3210&_p=437421780&gcs=G1-0&cid=1920685596.1675580831&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675580830&sct=1&seg=0&dl=https%3A%2F%2Fwww.bet365.bet.ar%2Folp%2Fopen-account%3Faffiliate%3D365_01159600&dt=Bonus%20de%20ingreso&en=page_view&_fv=1&_nsi=1&_ss=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-45M1DQFW2B>m=45je3210&_p=437421780&gcs=G1-0&cid=1920685596.1675580831&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675580830&sct=1&seg=0&dl=https%3A%2F%2Fwww.bet365.bet.ar%2Folp%2Fopen-account%3Faffiliate%3D365_01159600&dt=Bonus%20de%20ingreso&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.bet365.bet.ar
Connection: keep-alive
Referer: https://www.bet365.bet.ar/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.bet365.bet.ar
date: Sun, 05 Feb 2023 07:06:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash 89074fd362e234f3316a6c54222e12d3
cd04c905bc17ebf2df2453e774c9d51afdc7f259
81db9e702bdcfa414cec9a44b9785c129bd804ca7b0f54ed5529948b7e68f4a4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 07:06:32 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 05 Feb 2023 03:02:08 GMT
Expires: Sun, 12 Feb 2023 03:02:07 GMT
Etag: "cd04c905bc17ebf2df2453e774c9d51afdc7f259"
Cache-Control: max-age=589534,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7949cdce0872b509-OSL
mptraff.com/?serial=4436&creative_id=1&anid=PU_AR_PA_CS_DT_VOLD_MEGASLOT
302 Found 617 B URL HTTP/2 mptraff.com/?serial=4436&creative_id=1&anid=PU_AR_PA_CS_DT_VOLD_MEGASLOT
IP
Hash 8fb4ba6e08b1f6832cab0ab2b3cc4531
c17493ea261bb580d85c700f8f593d10828eadc1
acd821c997b353d127b2c2d2b83e573a3f8ed584736c3b05f0c037714b02256b
GET /?serial=4436&creative_id=1&anid=PU_AR_PA_CS_DT_VOLD_MEGASLOT HTTP/1.1
Host: mptraff.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 05 Feb 2023 07:06:31 GMT
content-type: text/html; charset=utf-8
location: https://megacom.megaplay.life/?qtag=a2189_t4436_c1_sPU_AR_PA_CS_DT_VOLD_MEGASLOT
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cache-control: no-cache
x-request-id: 39e79604-34bc-4fa9-9bea-e657d6ed00ce
x-runtime: 0.051938
strict-transport-security: max-age=31536000
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LgdmDqcO9Ef6byCJUH9hOlQ2DFOypeR6kOthHn4Zzl%2B5TcP2ahlzUn5jS%2BVenE5fYR7A1yF46BjFD23QzENWM%2BJOpkMJ3JLOgHWUaNNaZRGfNlhsaCiWnT66NyAnGQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7949cdc9d805b52d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
in.caba.betsson.bet.ar/bono-de-bienvenida-deportes-select/ag/?from=1tdmcUJaeOzBimiZWhBbs2Nd7ZgqdRLk-AP0846390900&affcode=AP0846390900&utm_medium=MA_Affiliates&utm_source=10687405
200 OK 12 kB URL HTTP/2 in.caba.betsson.bet.ar/bono-de-bienvenida-deportes-select/ag/?from=1tdmcUJaeOzBimiZWhBbs2Nd7ZgqdRLk-AP0846390900&affcode=AP0846390900&utm_medium=MA_Affiliates&utm_source=10687405
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (44272), with CRLF, LF line terminators
Hash ea2562c54cfd9558ca676e5de5efa51f
61cafb37504d676e06957bb8a793111833bf0bb3
3999573e54517762e5b5ddfa9e10f388fbb06b0a9e3d1eb7f9491c1ea9ef5f31
GET /bono-de-bienvenida-deportes-select/ag/?from=1tdmcUJaeOzBimiZWhBbs2Nd7ZgqdRLk-AP0846390900&affcode=AP0846390900&utm_medium=MA_Affiliates&utm_source=10687405 HTTP/1.1
Host: in.caba.betsson.bet.ar
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: ZBan=1tdmcUJaeOzBimiZWhBbs2Nd7ZgqdRLk
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 12486
date: Sun, 05 Feb 2023 07:06:32 GMT
server: Apache/2.4.52 (Ubuntu)
strict-transport-security: max-age=3153600; includeSubDomains
link: <https://in.caba.betsson.bet.ar/wp-json/>; rel="https://api.w.org/", <https://in.caba.betsson.bet.ar/?p=210>; rel=shortlink
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: BypFJ4jrwkBK9F1P0GsdYfROn7cqyqBdAtv7woVo-VhRzmZUSV1THQ==
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash 774cd68fd1bce07edee4674877f5741f
d2a5f0402e42e38a91686b227446ed829f5a4179
95b5a9bf4f5a0db8887f06488c55523cc19e6be7294566b466bb4164f0aee9f6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5151
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:32 GMT
Last-Modified: Sun, 05 Feb 2023 05:40:41 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 279
cdn.cookielaw.org/scripttemplates/otSDKStub.js
200 OK 8.4 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/otSDKStub.js
IP
File type ASCII text, with very long lines (25592)
Hash e248bb3ed9070ee48f0b5bc674e6a49d
46a6ac373399405df390e910c580cf850dce9886
74fd866eaf62b63cec2b85eadf2245e9302107f4c8fabc25f9c3e5cd49f40a6b
GET /scripttemplates/otSDKStub.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://in.caba.betsson.bet.ar/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:32 GMT
content-type: application/javascript
content-length: 8384
content-encoding: gzip
content-md5: 4ki7PtkHDuSPC1vGdOaknQ==
last-modified: Thu, 02 Feb 2023 13:33:36 GMT
etag: 0x8DB05221689032C
x-ms-request-id: 3a8b6a68-201e-0101-2064-379f4e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 44880
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7949cdd09f3fb4ff-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/e71d15de-44e2-4f4b-a01e-26eec56807e0/e71d15de-44e2-4f4b-a01e-26eec56807e0.json
200 OK 3.2 kB URL HTTP/2 cdn.cookielaw.org/consent/e71d15de-44e2-4f4b-a01e-26eec56807e0/e71d15de-44e2-4f4b-a01e-26eec56807e0.json
IP
File type JSON data\012- , ASCII text, with very long lines (11825), with no line terminators
Hash e18c2246bb78f738571c414411c8b59e
4ae070bc8cb8cf59d9e12fb9970eb3c9ceef6764
a1de9d446a161f74873541497808a4a222ef364560328be58acfa9d26325f325
GET /consent/e71d15de-44e2-4f4b-a01e-26eec56807e0/e71d15de-44e2-4f4b-a01e-26eec56807e0.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://in.caba.betsson.bet.ar
Connection: keep-alive
Referer: https://in.caba.betsson.bet.ar/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:32 GMT
content-type: application/x-javascript
content-length: 3215
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: 4YwiRrt49zhXHEFEEci1ng==
last-modified: Thu, 17 Nov 2022 15:45:51 GMT
etag: 0x8DAC8B2CDE113AE
x-ms-request-id: 7e2ca232-401e-00f0-5193-200888000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
expires: Mon, 06 Feb 2023 07:06:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7949cdd0db22b51d-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 280 B IP
Hash d993abf2d7bd95f5247c139ca1ba2c23
0f6cc6bbfae27454b149fe2dafa48a3e54f23ead
acdbd0cbeb6576b5934d37cf0d5dca7664ee65de2c89efd334155018ad545064
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6346
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:32 GMT
Etag: "63dde24d-118"
Last-Modified: Sun, 05 Feb 2023 05:20:46 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 280
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3636
Expires: Sun, 05 Feb 2023 08:07:08 GMT
Date: Sun, 05 Feb 2023 07:06:32 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3636
Expires: Sun, 05 Feb 2023 08:07:08 GMT
Date: Sun, 05 Feb 2023 07:06:32 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3636
Expires: Sun, 05 Feb 2023 08:07:08 GMT
Date: Sun, 05 Feb 2023 07:06:32 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3636
Expires: Sun, 05 Feb 2023 08:07:08 GMT
Date: Sun, 05 Feb 2023 07:06:32 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F94063a59-0665-4d1d-89f4-785b4ab501d8.jpeg
200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F94063a59-0665-4d1d-89f4-785b4ab501d8.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bee08788da5b88dde69aeb1d4de005c9
537c7a19a9395a60452b6b0b3ae08d47f4705181
02365d88ae9ff3ace3f29509df0e436ab0838d44714ef0f25dea463d665f794a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F94063a59-0665-4d1d-89f4-785b4ab501d8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6486
x-amzn-requestid: 544d13b9-8d45-4029-88e0-280f27cc0fa3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi4-SHN1IAMFSkw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76ec1-3f1ee84f53fe45cc01439a28;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 07:16:17 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: TtyPO9j12ZpU3XdElRgCrqB4XNERrppavwJZJn5As8mqjjDLyZBmsw==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 21:43:26 GMT
age: 33786
etag: "537c7a19a9395a60452b6b0b3ae08d47f4705181"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg
200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5b6c30ad03669b66bf2f63b3edd69882
e630bd132b52b965a5ade646ea8a165d1abf6d7b
f8233d879ec17fd91909655ff8881f2ebfad84272fde3ed5e5be37580378a989
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5014
x-amzn-requestid: a434aae4-fe4b-4fc7-9b7e-eeb552484e8a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi3bIE0aoAMF6YQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76c47-5556d14757190c842bbc6b06;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 07:05:43 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: k6YqagXr3Wr-u1uDKojEnIGW0CxU5yvWPtlzNpzoIvmg9F-rJb9uFQ==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 11:30:27 GMT
age: 70565
etag: "e630bd132b52b965a5ade646ea8a165d1abf6d7b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c8da623-73ab-4c2d-afaa-03d28de3a280.png
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c8da623-73ab-4c2d-afaa-03d28de3a280.png
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3e0c38abfcd86f8074d4182d49fc354f
1367bebb73fa652695242100b26c394f1bfe4457
e42d110060133ac05e6cdfafa6473c55473220fdc7eaf03e3a89f58aa3603670
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c8da623-73ab-4c2d-afaa-03d28de3a280.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11056
x-amzn-requestid: 4acc3364-4a33-4934-bdcb-41284d952113
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPFrwEW4IAMF_Tg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf8317-33872f461a2faab552322837;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:04:55 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 4xmWa9XVzQ3xzjzIZyrdv3GpFSaTcoacse6b0lgGch2IMvV69AZ57w==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 21:45:28 GMT
age: 33664
etag: "1367bebb73fa652695242100b26c394f1bfe4457"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F030e2301-116b-4cdd-ae90-c5bbc86e9669.jpeg
200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F030e2301-116b-4cdd-ae90-c5bbc86e9669.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b1092c4dd4d9ca4d09462ae46e1dd7c1
17444ff60be1afbc40d3653fa936f9eaf9478068
ea8362c7249080b34288ee675f70333607fc3be37e716fdcf63e4901849def9f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F030e2301-116b-4cdd-ae90-c5bbc86e9669.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7288
x-amzn-requestid: 1aa297f5-2f9a-45be-b823-1eb4d5887769
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f1WrwH-iIAMFyhQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ded17e-2b630b4a302b8ae118883b71;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 21:43:26 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: z2oKgp1keqEkvN6jjsUepMbrxD4JCXKAOHrMNJHcuXN0CpulUh5GLA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 21:43:26 GMT
etag: "17444ff60be1afbc40d3653fa936f9eaf9478068"
content-type: image/jpeg
age: 33786
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad60ff0-69ec-4be2-9334-41be71ca4b7f.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad60ff0-69ec-4be2-9334-41be71ca4b7f.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1a4eed23b240d04a3cd6b085cfa93375
f29b9dc3f6bbd2ba76a5a4570ce044d5f240fd00
93e8371f80c12d3753842e36001dbb8d3dc2223b10a594639752cd816c492d4e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad60ff0-69ec-4be2-9334-41be71ca4b7f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10905
x-amzn-requestid: 093778fc-231c-452f-a6fc-15f4eb41ade0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmNJCEDzIAMFmxA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8c239-7f56d6e56392f373541db219;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:24:41 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: WVfpilnwhnRXBhJkHBWjxxoP09f7SqlRk8CdWRWOubIIwe0CX89bUA==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 22:09:58 GMT
age: 32194
etag: "f29b9dc3f6bbd2ba76a5a4570ce044d5f240fd00"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed9dd21c-6496-4f6e-b306-570e4802aba4.jpeg
200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed9dd21c-6496-4f6e-b306-570e4802aba4.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 251f1a5d671fb797fb98e9a71754c341
335425603d9eec146a3c03422dbca91134272e53
74932f07561287e33302aabcf9c639e9df7ae0fbc4bf71f5467310aabafea208
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed9dd21c-6496-4f6e-b306-570e4802aba4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6202
x-amzn-requestid: 01b85fcd-69a0-49da-8640-32a3ef19378a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi3bUFEJoAMFapg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76c48-14817e717361e09170714e9d;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 07:05:44 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 1_1mEN4j5cciWEiimz4PRjx3PNGnrSRib9oEJAdYLrrtyjqnz_zvcQ==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 11:30:27 GMT
age: 70565
etag: "335425603d9eec146a3c03422dbca91134272e53"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdnroute.bpsgameserver.com/echo-cdn-origin/common/scripts/affiliate_jqcookie.min.js
200 OK 939 B URL HTTP/2 cdnroute.bpsgameserver.com/echo-cdn-origin/common/scripts/affiliate_jqcookie.min.js
IP
File type ASCII text, with very long lines (2310), with no line terminators
Hash 28c62fb14473a0a5f90b507ff903ef27
829dec327126f58e3b27759221a937835a92d5c0
c24c645f1a6ba581d5797eafaa95dde002651ee8d5ffd9e2a16ee8a1e84d77c9
GET /echo-cdn-origin/common/scripts/affiliate_jqcookie.min.js HTTP/1.1
Host: cdnroute.bpsgameserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://in.caba.betsson.bet.ar/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript
content-length: 939
date: Thu, 12 Jan 2023 03:15:41 GMT
server: Apache/2.4.52 (Ubuntu)
last-modified: Tue, 25 Oct 2022 09:27:10 GMT
etag: "906-5ebd883305780-br"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sat, 11 Feb 2023 03:15:41 GMT
content-encoding: br
access-control-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: lgYnbPxZ0MSYQDXVsWw9hs3F5FlCQzIFemu6nRWf00Hcba1kU9i8Ow==
age: 2087451
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/202211.1.0/otBannerSdk.js
200 OK 94 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/202211.1.0/otBannerSdk.js
IP
File type ASCII text, with very long lines (65451)
Hash f6a491be9dc7f6ba1271f4faa9753179
e11e8e291ca6548f4933103088b8acd15af84191
6cf04708cbb25e9b7144e865deebd75bd4b2d42fa703299ba303a084d457b081
GET /scripttemplates/202211.1.0/otBannerSdk.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://in.caba.betsson.bet.ar/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:32 GMT
content-type: application/javascript
content-length: 93485
content-encoding: gzip
content-md5: 9qSRvp3H9roScfT6qXUxeQ==
last-modified: Thu, 15 Dec 2022 13:30:03 GMT
etag: 0x8DADEA07933BD54
x-ms-request-id: bbc7fc02-f01e-000c-42cf-313617000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 61382
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7949cdd2489fb4ff-OSL
X-Firefox-Spdy: h2
cdn.dynamicyield.com/api/8776655/images/a3004e59737f__logomas18b.png
200 OK 10 kB URL HTTP/2 cdn.dynamicyield.com/api/8776655/images/a3004e59737f__logomas18b.png
IP
File type PNG image data, 77 x 78, 8-bit/color RGBA, interlaced\012- data
Hash 7c24cb23bd59fbe7505b4c3f9dabecc1
428a8ecd1685923409b957fed780bf61c29dadf5
e55933823dc546c9f8a2cc83a35b5ffa43bb4df5f41b7d571c4d836248aad33c
GET /api/8776655/images/a3004e59737f__logomas18b.png HTTP/1.1
Host: cdn.dynamicyield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.codere.bet.ar/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 10375
date: Tue, 31 Jan 2023 06:14:39 GMT
last-modified: Mon, 20 Dec 2021 08:37:58 GMT
etag: "7c24cb23bd59fbe7505b4c3f9dabecc1"
cache-control: max-age=604800
accept-ranges: bytes
server: DYCDN
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
age: 435114
link: <//st.dynamicyield.com>; rel="dns-prefetch", <//st.dynamicyield.com>; rel="preconnect", <//rcom.dynamicyield.com>; rel="dns-prefetch", <//rcom.dynamicyield.com>; rel="preconnect", <//async-px.dynamicyield.com>; rel="dns-prefetch", <//async-px.dynamicyield.com>; rel="preconnect"
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 7dqJjO8ngN7Sew5_DwhT2ms-fc4S1qJ6foX0uIsPRdLr43FMsgCaTw==
X-Firefox-Spdy: h2
cdn.dynamicyield.com/api/8771336/images/2cf1c7961a25d__30b0e2579ae3f__flecha-derecha-blanca.png
200 OK 3.7 kB URL HTTP/2 cdn.dynamicyield.com/api/8771336/images/2cf1c7961a25d__30b0e2579ae3f__flecha-derecha-blanca.png
IP
File type PNG image data, 343 x 700, 8-bit colormap, non-interlaced\012- data
Hash 5840297bd3ed4288b6e15ea70d99764f
585e4ac80632d03ffe9a6560aa02f4774bbb9b87
45e50e3cba90ba3244fd05ccf5c27c038095f9d7a7bec6642b22bbbe0225708d
GET /api/8771336/images/2cf1c7961a25d__30b0e2579ae3f__flecha-derecha-blanca.png HTTP/1.1
Host: cdn.dynamicyield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.codere.bet.ar/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 3664
date: Mon, 30 Jan 2023 15:26:50 GMT
last-modified: Wed, 20 Mar 2019 09:43:44 GMT
etag: "5840297bd3ed4288b6e15ea70d99764f"
cache-control: max-age=604800
accept-ranges: bytes
server: DYCDN
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
age: 488383
link: <//st.dynamicyield.com>; rel="dns-prefetch", <//st.dynamicyield.com>; rel="preconnect", <//rcom.dynamicyield.com>; rel="dns-prefetch", <//rcom.dynamicyield.com>; rel="preconnect", <//async-px.dynamicyield.com>; rel="dns-prefetch", <//async-px.dynamicyield.com>; rel="preconnect"
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: suj-UnhSMJuFTWOEIBeB7W9kpayPQ1gYeIcYSHr4UpslZ3_KRbcEfg==
X-Firefox-Spdy: h2
cdn.dynamicyield.com/api/8771336/images/a6473c0cdc43__1caaebc754638__codere-Verde.png
200 OK 2.6 kB URL HTTP/2 cdn.dynamicyield.com/api/8771336/images/a6473c0cdc43__1caaebc754638__codere-Verde.png
IP
File type PNG image data, 484 x 115, 8-bit colormap, non-interlaced\012- data
Hash b98fb76fe0219448eeac46aa8b02c872
658146a66a86682179d2387b69629437998e8c7e
99a81f359fee9180664e6d454fb32cd7b098166ca3d85f18f220bb2830e9eac7
GET /api/8771336/images/a6473c0cdc43__1caaebc754638__codere-Verde.png HTTP/1.1
Host: cdn.dynamicyield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.codere.bet.ar/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 2622
date: Tue, 31 Jan 2023 01:49:00 GMT
last-modified: Wed, 20 Mar 2019 10:05:42 GMT
etag: "b98fb76fe0219448eeac46aa8b02c872"
cache-control: max-age=604800
accept-ranges: bytes
server: DYCDN
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
age: 451053
link: <//st.dynamicyield.com>; rel="dns-prefetch", <//st.dynamicyield.com>; rel="preconnect", <//rcom.dynamicyield.com>; rel="dns-prefetch", <//rcom.dynamicyield.com>; rel="preconnect", <//async-px.dynamicyield.com>; rel="dns-prefetch", <//async-px.dynamicyield.com>; rel="preconnect"
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: qOIBLQV_7FUUMsCG1HQQ3r4hNGhV5ugGesf6p6T-Jg1SxzF8D1BbgQ==
X-Firefox-Spdy: h2
cdn.dynamicyield.com/api/8771342/images/1e8e98a5772df__stepsArrow.jpg
200 OK 6.1 kB URL HTTP/2 cdn.dynamicyield.com/api/8771342/images/1e8e98a5772df__stepsArrow.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, xresolution=74, yresolution=82, resolutionunit=2, software=GIMP 2.10.8, datetime=2020:06:03 09:32:58], progressive, precision 8, 39x133, components 3\012- data
Hash ad6700695b00cd634d875975f7e6fef5
8c62b68ad60f24e0dbfa1e216a0c10c2ad83e446
10dabb842f641c50f5f5da23e84b73bdde7327c99c6efb302a1355bd058f9ede
GET /api/8771342/images/1e8e98a5772df__stepsArrow.jpg HTTP/1.1
Host: cdn.dynamicyield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.codere.bet.ar/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 6056
date: Thu, 02 Feb 2023 02:21:39 GMT
last-modified: Wed, 03 Jun 2020 06:52:10 GMT
etag: "ad6700695b00cd634d875975f7e6fef5"
cache-control: max-age=604800
accept-ranges: bytes
server: DYCDN
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
age: 276294
link: <//st.dynamicyield.com>; rel="dns-prefetch", <//st.dynamicyield.com>; rel="preconnect", <//rcom.dynamicyield.com>; rel="dns-prefetch", <//rcom.dynamicyield.com>; rel="preconnect", <//async-px.dynamicyield.com>; rel="dns-prefetch", <//async-px.dynamicyield.com>; rel="preconnect"
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 7mdJrSDvmSo80P1mWIrgeyIzhD5qYsN4Kro5FOV9ctRYorFaTkw-4A==
X-Firefox-Spdy: h2
cdn.dynamicyield.com/api/8771336/images/26f21f6f9a377__LandingPage-_Register-get-10_-ES.png
200 OK 12 kB URL HTTP/2 cdn.dynamicyield.com/api/8771336/images/26f21f6f9a377__LandingPage-_Register-get-10_-ES.png
IP
File type PNG image data, 210 x 69, 8-bit/color RGBA, non-interlaced\012- data
Hash 7ce3a8b88170d18901a86de58681e54b
3a06b291fb11b0291f5dc326f91c689d69aac280
a83a97d040a3e7084a430c4532e4c3a12d016dd8214d992b04975bd1265ef5bc
GET /api/8771336/images/26f21f6f9a377__LandingPage-_Register-get-10_-ES.png HTTP/1.1
Host: cdn.dynamicyield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.codere.bet.ar/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 12506
date: Wed, 01 Feb 2023 03:03:00 GMT
last-modified: Sun, 24 Mar 2019 08:02:11 GMT
etag: "7ce3a8b88170d18901a86de58681e54b"
cache-control: max-age=604800
accept-ranges: bytes
server: DYCDN
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
age: 360212
link: <//st.dynamicyield.com>; rel="dns-prefetch", <//st.dynamicyield.com>; rel="preconnect", <//rcom.dynamicyield.com>; rel="dns-prefetch", <//rcom.dynamicyield.com>; rel="preconnect", <//async-px.dynamicyield.com>; rel="dns-prefetch", <//async-px.dynamicyield.com>; rel="preconnect"
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 2vqg_ZoMWOLG6Cv1Fap_sIXbXlwOYkun7ko9p7tOXELXpaGnOqXCNg==
X-Firefox-Spdy: h2
www.codere.bet.ar/_catalogs/masterpage/codere/images/FooterMasterCard.png
200 OK 2.6 kB URL HTTP/2 www.codere.bet.ar/_catalogs/masterpage/codere/images/FooterMasterCard.png
IP
File type PNG image data, 200 x 84, 8-bit colormap, non-interlaced\012- data
Hash 54a963c269dd9d4a92ba974f6e135f55
b5d525d0026b4dfc2a6bb8f823b9be464a80e646
3db79bd15e42f3d2bd49419a8d7a1a37145951929367c908b3e2db9a512f8e4b
GET /_catalogs/masterpage/codere/images/FooterMasterCard.png HTTP/1.1
Host: www.codere.bet.ar
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.codere.bet.ar/
Cookie: banner_click=gig_cph_pop,86491,306844,18915457,BTAG:5DC9E30EDC768B35A19538A5D479E5BB%3bID2:%3bID3:
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
cache-control: private,max-age=0
content-type: image/png
content-language: es
expires: Sat, 21 Jan 2023 07:06:32 GMT
last-modified: Thu, 09 Dec 2021 18:50:36 GMT
accept-ranges: bytes
etag: "{297CA152-1001-405D-AFBB-46AD9EACAF63},3"
server: Microsoft-IIS/10.0
x-sharepointhealthscore: 0
resourcetag: rt:297CA152-1001-405D-AFBB-46AD9EACAF63@00000000003
public-extension: http://schemas.microsoft.com/repl-2
sprequestguid: 2b2993a0-e778-9024-5ef7-2841f4157b33
request-id: 2b2993a0-e778-9024-5ef7-2841f4157b33
x-frame-options: SAMEORIGIN
sprequestduration: 12
spiislatency: 0
x-powered-by: ASP.NET
microsoftsharepointteamservices: 16.0.0.4888
x-content-type-options: nosniff
x-ms-invokeapp: 1; RequireReadOnly
serv: 2
accept-language: es-ar
date: Sun, 05 Feb 2023 07:06:32 GMT
content-length: 2619
set-cookie: visid_incap_2772137=i4mhjTOeRx68Xu+4vIThWXhV32MAAAAAQUIPAAAAAAB7L2XAQcw2YVjJ7DW2tTjb; expires=Sun, 04 Feb 2024 22:50:40 GMT; HttpOnly; path=/; Domain=.codere.bet.ar
incap_ses_633_2772137=lFpPDubbrj1yBIeApd7ICHhV32MAAAAAwLMdOl0glibLq5gaY5jq/w==; path=/; Domain=.codere.bet.ar
x-cdn: Imperva
x-iinfo: 3-25001826-25001414 3NNN RT(1675580792282 48) q(0 0 0 1) r(0 0) U2
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://in.caba.betsson.bet.ar/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Sun, 05 Feb 2023 05:45:20 GMT
expires: Sun, 05 Feb 2023 07:45:20 GMT
cache-control: public, max-age=7200
age: 4872
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash f2641351b1a47349544902a45c5bb01c
c2397eb99cd3bd8013af02da668e1f2a70343f9e
76e5b5621d052a6124d99e406677858e06e11a5b76274d3e5b8654f84f09472f
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=94746
Date: Sun, 05 Feb 2023 07:06:32 GMT
Etag: "63de1221-1d7"
Expires: Mon, 06 Feb 2023 09:25:38 GMT
Last-Modified: Sat, 04 Feb 2023 08:06:57 GMT
Server: ECS (bsa/EB1F)
X-Cache: Miss from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: spnSU6W31pv7kCLpIBkr_Lx-fLEJuEF-ZxU-1GKT-nTK4yMyTn2I9Q==
Age: 4721
cdn.cookielaw.org/consent/e71d15de-44e2-4f4b-a01e-26eec56807e0/c15e6223-6008-45c0-bd61-d5fb7c5b4f73/en-us.json
200 OK 15 kB URL HTTP/2 cdn.cookielaw.org/consent/e71d15de-44e2-4f4b-a01e-26eec56807e0/c15e6223-6008-45c0-bd61-d5fb7c5b4f73/en-us.json
IP
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (65508), with no line terminators
Hash 55854d5d128b43095f037df1900a2225
e8d683cb81352e87085996e5e80f952d6bec0048
ecfdb0fe251b98e603b926ad4c73f33f9c3487428272f495733d3e323c2d30b8
GET /consent/e71d15de-44e2-4f4b-a01e-26eec56807e0/c15e6223-6008-45c0-bd61-d5fb7c5b4f73/en-us.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://in.caba.betsson.bet.ar/
Origin: https://in.caba.betsson.bet.ar
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:32 GMT
content-type: application/x-javascript
content-length: 15288
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: VYVNXRKLQwlfA33xkAoiJQ==
last-modified: Thu, 17 Nov 2022 15:46:12 GMT
etag: 0x8DAC8B2DA7C1A25
x-ms-request-id: 489c0ae8-f01e-000c-279c-fa3617000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
expires: Mon, 06 Feb 2023 07:06:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7949cdd2cd1ab51d-OSL
X-Firefox-Spdy: h2
www.codere.bet.ar/_catalogs/masterpage/codere/img/footerDebin.png
200 OK 30 kB URL HTTP/2 www.codere.bet.ar/_catalogs/masterpage/codere/img/footerDebin.png
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 366x128, components 3\012- data
Hash 4adac7aa9ea8963894bfe454a3ff0e31
a30e362163e4f49ea591e64dbe5e20ae30b81d46
6582ff57cd709fa822b0b2939561f036cccb64a8adc29d4fc8f1d793aa9e5bc7
GET /_catalogs/masterpage/codere/img/footerDebin.png HTTP/1.1
Host: www.codere.bet.ar
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.codere.bet.ar/
Cookie: banner_click=gig_cph_pop,86491,306844,18915457,BTAG:5DC9E30EDC768B35A19538A5D479E5BB%3bID2:%3bID3:
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
cache-control: private,max-age=0
content-type: image/png
content-language: es
expires: Sat, 21 Jan 2023 07:06:32 GMT
last-modified: Thu, 09 Dec 2021 18:50:05 GMT
accept-ranges: bytes
etag: "{206D94EE-3A86-4298-B325-26E17432D59A},3"
server: Microsoft-IIS/10.0
x-sharepointhealthscore: 0
resourcetag: rt:206D94EE-3A86-4298-B325-26E17432D59A@00000000003
public-extension: http://schemas.microsoft.com/repl-2
sprequestguid: 2b2993a0-177d-9024-79a7-1d0025ade63c
request-id: 2b2993a0-177d-9024-79a7-1d0025ade63c
x-frame-options: SAMEORIGIN
sprequestduration: 10
spiislatency: 0
x-powered-by: ASP.NET
microsoftsharepointteamservices: 16.0.0.4888
x-content-type-options: nosniff
x-ms-invokeapp: 1; RequireReadOnly
serv: 3
accept-language: es-ar
date: Sun, 05 Feb 2023 07:06:32 GMT
content-length: 29930
set-cookie: visid_incap_2772137=i4mhjTOeRx68Xu+4vIThWXhV32MAAAAAQUIPAAAAAAB7L2XAQcw2YVjJ7DW2tTjb; expires=Sun, 04 Feb 2024 22:50:40 GMT; HttpOnly; path=/; Domain=.codere.bet.ar
incap_ses_633_2772137=ar+YSC1EwSJyBIeApd7ICHhV32MAAAAA2HaruqQKGhiy+zzPRlSuCg==; path=/; Domain=.codere.bet.ar
x-cdn: Imperva
x-iinfo: 3-25001826-25001786 3NNN RT(1675580792282 49) q(0 0 0 1) r(1 1) U2
X-Firefox-Spdy: h2
www.codere.bet.ar/_catalogs/masterpage/codere/img/Logo_TransferenciaBancariacolor.png
200 OK 44 kB URL HTTP/2 www.codere.bet.ar/_catalogs/masterpage/codere/img/Logo_TransferenciaBancariacolor.png
IP
File type PNG image data, 1979 x 892, 8-bit/color RGBA, non-interlaced\012- data
Hash d7b1dfb61257e26feb56c01bf8e233be
f31fe13b86f1e7ff63859f8b4224c0102415599d
3ad28ba5c190d0222b10f6da7c686bbadc17109515aa66e00d6ffbbcc3e16521
GET /_catalogs/masterpage/codere/img/Logo_TransferenciaBancariacolor.png HTTP/1.1
Host: www.codere.bet.ar
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.codere.bet.ar/
Cookie: banner_click=gig_cph_pop,86491,306844,18915457,BTAG:5DC9E30EDC768B35A19538A5D479E5BB%3bID2:%3bID3:
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
cache-control: private,max-age=0
content-type: image/png
content-language: es
expires: Sat, 21 Jan 2023 07:06:32 GMT
last-modified: Wed, 17 Mar 2021 13:40:54 GMT
accept-ranges: bytes
etag: "{240D14ED-F653-463F-9031-D8E6F6465478},2"
server: Microsoft-IIS/10.0
x-sharepointhealthscore: 0
resourcetag: rt:240D14ED-F653-463F-9031-D8E6F6465478@00000000002
public-extension: http://schemas.microsoft.com/repl-2
sprequestguid: 2b2993a0-277b-9024-79a7-122e6261e816
request-id: 2b2993a0-277b-9024-79a7-122e6261e816
x-frame-options: SAMEORIGIN
sprequestduration: 16
spiislatency: 0
x-powered-by: ASP.NET
microsoftsharepointteamservices: 16.0.0.4888
x-content-type-options: nosniff
x-ms-invokeapp: 1; RequireReadOnly
serv: 3
accept-language: es-ar
date: Sun, 05 Feb 2023 07:06:32 GMT
content-length: 43476
set-cookie: visid_incap_2772137=i4mhjTOeRx68Xu+4vIThWXhV32MAAAAAQUIPAAAAAAB7L2XAQcw2YVjJ7DW2tTjb; expires=Sun, 04 Feb 2024 22:50:40 GMT; HttpOnly; path=/; Domain=.codere.bet.ar
incap_ses_633_2772137=CE0pWTvz7zpyBIeApd7ICHhV32MAAAAAEc05MFiIz8ien/2ItqgoHA==; path=/; Domain=.codere.bet.ar
x-cdn: Imperva
x-iinfo: 3-25001826-25000632 3NNN RT(1675580792282 48) q(0 0 0 1) r(1 1) U2
X-Firefox-Spdy: h2
www.codere.es/lobby_tiles/PTAgeofEgypt_Square.jpg
200 OK 31 kB URL HTTP/2 www.codere.es/lobby_tiles/PTAgeofEgypt_Square.jpg
IP
File type JPEG image data, baseline, precision 8, 300x300, components 3\012- data
Hash 7e240508ca8d772110139ee96a631f3b
1fdae87bbd04b7671ca8c7cd30d86495cf88688e
ff5aeb7658a426a937bb03b4665bd3a08d81960da60180220d4c9535d91a74d9
GET /lobby_tiles/PTAgeofEgypt_Square.jpg HTTP/1.1
Host: www.codere.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.codere.bet.ar/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "{953376C5-85C0-4BCE-AAF3-9B59CB09E676},1"
last-modified: Tue, 24 Aug 2021 07:35:15 GMT
content-type: image/jpeg
content-length: 30881
cache-control: max-age=0
date: Sun, 05 Feb 2023 07:06:32 GMT
set-cookie: nlbi_2431462=fpSrRJqRkA8IfEX83VBFnQAAAABBvyB1fggjO1y857El3hnk; path=/; Domain=.codere.es
visid_incap_2431462=5rrtsTB3TbmnTkBXsg7jsnhV32MAAAAAQUIPAAAAAADEyNbei954/xFc8dJKLtnJ; expires=Sun, 04 Feb 2024 22:50:40 GMT; HttpOnly; path=/; Domain=.codere.es
incap_ses_633_2431462=NVM4OVQz2Sl1BIeApd7ICHhV32MAAAAA6FCteZUyu1/EQTJEjPMFuQ==; path=/; Domain=.codere.es
x-cdn: Imperva
x-iinfo: 3-25001826-25001786 2VNN RT(1675580792282 198) q(0 0 0 0) r(2 2)
X-Firefox-Spdy: h2
www.codere.es/lobby_tiles/PT5AgesofGold_Square.jpg
200 OK 19 kB URL HTTP/2 www.codere.es/lobby_tiles/PT5AgesofGold_Square.jpg
IP
File type JPEG image data, baseline, precision 8, 300x300, components 3\012- data
Hash 54f7e1578201d426f21cc6d724571a8c
3de1416539ffca6e9eef2a6718c4e1e2e03615f8
f152680b16cc81e44719d699ccd239618599cf7927e242c06720ba57104623c0
GET /lobby_tiles/PT5AgesofGold_Square.jpg HTTP/1.1
Host: www.codere.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.codere.bet.ar/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "{E5B5A913-5F8D-4872-BC93-8328513B803B},4"
last-modified: Wed, 06 May 2020 11:43:12 GMT
content-type: image/jpeg
content-length: 18783
cache-control: max-age=0
date: Sun, 05 Feb 2023 07:06:32 GMT
set-cookie: nlbi_2431462=ddT2eCKzyz+MrQzv3VBFnQAAAADLV8i9xYY58md/UFvFTvvA; path=/; Domain=.codere.es
visid_incap_2431462=5rrtsTB3TbmnTkBXsg7jsnhV32MAAAAAQUIPAAAAAADEyNbei954/xFc8dJKLtnJ; expires=Sun, 04 Feb 2024 22:50:40 GMT; HttpOnly; path=/; Domain=.codere.es
incap_ses_633_2431462=ZATQNvoXfg91BIeApd7ICHhV32MAAAAAmplaDApWW3N/3+lb1OOCrQ==; path=/; Domain=.codere.es
x-cdn: Imperva
x-iinfo: 3-25001826-25000632 2VNN RT(1675580792282 199) q(0 0 0 3) r(3 3)
X-Firefox-Spdy: h2
www.codere.es/lobby_tiles/PTBlueWizard_Square.jpg
200 OK 22 kB URL HTTP/2 www.codere.es/lobby_tiles/PTBlueWizard_Square.jpg
IP
File type JPEG image data, baseline, precision 8, 300x300, components 3\012- data
Hash c765e5058540e8e83e8d7c55e81ded81
5fbeb03db30fe202f42a4fd5cb03a04255c3311c
2a3ca6e61acaaf10cabd29ff13e57525abf6c59bb3a14b14f5c4d7d69ad28991
GET /lobby_tiles/PTBlueWizard_Square.jpg HTTP/1.1
Host: www.codere.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.codere.bet.ar/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "{1EA4EA5C-FB17-49D9-9CD4-94768ACA685A},4"
last-modified: Wed, 06 May 2020 11:43:21 GMT
content-type: image/jpeg
content-length: 22496
cache-control: max-age=0
date: Sun, 05 Feb 2023 07:06:32 GMT
set-cookie: nlbi_2431462=sDmPB1KIIh66KR/53VBFnQAAAADIBO3f3MYCnOCPm+Cq6hby; path=/; Domain=.codere.es
visid_incap_2431462=5rrtsTB3TbmnTkBXsg7jsnhV32MAAAAAQUIPAAAAAADEyNbei954/xFc8dJKLtnJ; expires=Sun, 04 Feb 2024 22:50:40 GMT; HttpOnly; path=/; Domain=.codere.es
incap_ses_633_2431462=NEvRHYQu9Al1BIeApd7ICHhV32MAAAAAyze5JxL5uSZyQkvzAMT/Rg==; path=/; Domain=.codere.es
x-cdn: Imperva
x-iinfo: 3-25001826-25001414 2VNN RT(1675580792282 202) q(0 0 0 2) r(3 3)
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/202211.1.0/assets/otFlat.json
200 OK 3.0 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/202211.1.0/assets/otFlat.json
IP
File type JSON data\012- , ASCII text, with very long lines (11167)
Hash 7b8eaff44f6d9bc9de2c6c364888d74c
0a7c5374ded459893a24765fe3fc27f02a885aeb
9d029a0a4cf40eb22cec612d514a02687cc36e164bffae71139e7d4acfa05bae
GET /scripttemplates/202211.1.0/assets/otFlat.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://in.caba.betsson.bet.ar/
Origin: https://in.caba.betsson.bet.ar
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:33 GMT
content-type: application/json
content-length: 3020
content-encoding: gzip
content-md5: e46v9E9tm8neLGw2SIjXTA==
last-modified: Thu, 15 Dec 2022 13:29:55 GMT
etag: 0x8DADEA0743223DD
x-ms-request-id: 85069171-b01e-0104-4e9f-106b31000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7949cdd58f8db51d-OSL
X-Firefox-Spdy: h2
www.codere.bet.ar/_catalogs/masterpage/codere/images/mercado-pago.svg
200 OK 18 kB URL HTTP/2 www.codere.bet.ar/_catalogs/masterpage/codere/images/mercado-pago.svg
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (38450), with CRLF, LF line terminators
Hash 24416c73f9b12e077487f1b6729f64e5
d87b6574049a3e9c3d857e2380903bfe366d802f
c6ef0bb96a76b0664cd96f73d1f9f6aed9bb50fd33db2dc08468471178b87649
GET /_catalogs/masterpage/codere/images/mercado-pago.svg HTTP/1.1
Host: www.codere.bet.ar
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.codere.bet.ar/
Cookie: banner_click=gig_cph_pop,86491,306844,18915457,BTAG:5DC9E30EDC768B35A19538A5D479E5BB%3bID2:%3bID3:
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
cache-control: private,max-age=0
content-type: image/svg+xml
content-language: es
expires: Sat, 21 Jan 2023 07:06:32 GMT
last-modified: Tue, 15 Mar 2022 09:16:37 GMT
accept-ranges: bytes
etag: "{53984894-1C4D-415C-8CB5-94495C2EBBF3},4"
server: Microsoft-IIS/10.0
x-sharepointhealthscore: 0
resourcetag: rt:53984894-1C4D-415C-8CB5-94495C2EBBF3@00000000004
public-extension: http://schemas.microsoft.com/repl-2
sprequestguid: 2b2993a0-277b-9024-79a7-1cb90c501d37
request-id: 2b2993a0-277b-9024-79a7-1cb90c501d37
x-frame-options: SAMEORIGIN
sprequestduration: 15
spiislatency: 0
x-powered-by: ASP.NET
microsoftsharepointteamservices: 16.0.0.4888
x-content-type-options: nosniff
x-ms-invokeapp: 1; RequireReadOnly
serv: 3
accept-language: es-ar
date: Sun, 05 Feb 2023 07:06:32 GMT
set-cookie: visid_incap_2772137=i4mhjTOeRx68Xu+4vIThWXhV32MAAAAAQUIPAAAAAAB7L2XAQcw2YVjJ7DW2tTjb; expires=Sun, 04 Feb 2024 22:50:40 GMT; HttpOnly; path=/; Domain=.codere.bet.ar
incap_ses_633_2772137=OtmKWfLCE1dyBIeApd7ICHhV32MAAAAAP3r3YkUCJKKUT6kc+5gMNA==; path=/; Domain=.codere.bet.ar
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 3-25001826-25001830 NNYN CT(18 44 0) RT(1675580792282 42) q(0 0 0 0) r(1 1) U2
X-Firefox-Spdy: h2
in.betsson.com/wp-content/uploads/content/betsson/sites/3/2018/02/number-three-in-a-circle.png
200 OK 3.2 kB URL HTTP/2 in.betsson.com/wp-content/uploads/content/betsson/sites/3/2018/02/number-three-in-a-circle.png
IP
File type PNG image data, 128 x 128, 8-bit colormap, non-interlaced\012- data
Hash 182eb3971389e740f9e79bf7c34e47a4
a59053271d28066863d651c74be8009d187afad5
643c63996d2ed7cb7308550c6e20a0ce32180bd9b13c29bd6ab5b36ce764e816
GET /wp-content/uploads/content/betsson/sites/3/2018/02/number-three-in-a-circle.png HTTP/1.1
Host: in.betsson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://in.caba.betsson.bet.ar/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
content-length: 3244
date: Sun, 05 Feb 2023 02:57:49 GMT
server: Apache/2.4.52 (Ubuntu)
strict-transport-security: max-age=3153600; includeSubDomains
last-modified: Fri, 09 Feb 2018 10:14:43 GMT
etag: "cac-564c4cc1183c0"
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: bC7GoOQS5WZluIZS_UsNdLekX4O6mUTo0hF_yvVJ7J3fPXTWYwEWvw==
age: 14924
X-Firefox-Spdy: h2
in.betsson.com/wp-content/uploads/content/betsson/sites/3/2018/02/number-two-in-a-circle.png
200 OK 3.1 kB URL HTTP/2 in.betsson.com/wp-content/uploads/content/betsson/sites/3/2018/02/number-two-in-a-circle.png
IP
File type PNG image data, 128 x 128, 8-bit colormap, non-interlaced\012- data
Hash e0441d7fb9aa01648d8143f64a5d9ce0
fc7ffb027597d751b9cfc4532df7484442191cf4
3f940805c18f99908b0608a69a4e6cdd561b7aa5cc04b956fe53835e220c11bb
GET /wp-content/uploads/content/betsson/sites/3/2018/02/number-two-in-a-circle.png HTTP/1.1
Host: in.betsson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://in.caba.betsson.bet.ar/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
content-length: 3058
date: Sun, 05 Feb 2023 02:57:49 GMT
server: Apache/2.4.52 (Ubuntu)
strict-transport-security: max-age=3153600; includeSubDomains
last-modified: Fri, 09 Feb 2018 10:14:44 GMT
etag: "bf2-564c4cc17e098"
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: bjF2mZFgRUXxLo7knRKc3CjPjPh9lWO7JMJgIb41u8NiPabWzK9uDQ==
age: 14924
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 280 B IP
Hash 28c3f02ba8cac75c2f1945e7be499cae
82390270ea7ee981db3fae587295029f335726da
ce1f772f6bd3cdd88e6f161731958d8bce7e3c019c9e618d0ed37560b79b0a4c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2207
Cache-Control: max-age=159557
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:33 GMT
Etag: "63df191f-118"
Expires: Tue, 07 Feb 2023 03:25:50 GMT
Last-Modified: Sun, 05 Feb 2023 02:49:03 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 280
in.betsson.com/wp-content/uploads/content/betsson/sites/3/2018/02/number-one-in-a-circle.png
200 OK 2.1 kB URL HTTP/2 in.betsson.com/wp-content/uploads/content/betsson/sites/3/2018/02/number-one-in-a-circle.png
IP
File type PNG image data, 128 x 128, 8-bit colormap, non-interlaced\012- data
Hash 257d1fbe5d79387ea8d99478eb2b9260
e12bf71721655eef9bdb501a90b032a53df591be
26a406a010d0620684e958b5511863a97740a3e972012f9a4fe1ede468fd158a
GET /wp-content/uploads/content/betsson/sites/3/2018/02/number-one-in-a-circle.png HTTP/1.1
Host: in.betsson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://in.caba.betsson.bet.ar/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
content-length: 2102
date: Sun, 05 Feb 2023 02:57:49 GMT
server: Apache/2.4.52 (Ubuntu)
strict-transport-security: max-age=3153600; includeSubDomains
last-modified: Fri, 09 Feb 2018 10:14:49 GMT
etag: "836-564c4cc68239a"
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 3Il61bs2IaZNoVBHG4LOz31-aIQuOqRws8B4v305dMCvOwUZtkr7jg==
age: 14924
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 280 B IP
Hash 28c3f02ba8cac75c2f1945e7be499cae
82390270ea7ee981db3fae587295029f335726da
ce1f772f6bd3cdd88e6f161731958d8bce7e3c019c9e618d0ed37560b79b0a4c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5396
Cache-Control: max-age=162746
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:33 GMT
Etag: "63df191f-118"
Expires: Tue, 07 Feb 2023 04:18:59 GMT
Last-Modified: Sun, 05 Feb 2023 02:49:03 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 280
www.codere.bet.ar/JS/landing-page-bonus-cookie-logic.js
200 OK 2.7 kB URL HTTP/2 www.codere.bet.ar/JS/landing-page-bonus-cookie-logic.js
IP
File type exported SGML document, ASCII text, with CRLF line terminators
Hash 3bdc0389106d1c941d1aea35e8c4c109
bacb2bd2f07cfe3ba058049c44a7b8db3393c4a7
58fb800405f5a663338d82c36bbca18db7d4d668a454600cc287ffe40c11aeee
GET /JS/landing-page-bonus-cookie-logic.js HTTP/1.1
Host: www.codere.bet.ar
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.codere.bet.ar/
Cookie: banner_click=gig_cph_pop,86491,306844,18915457,BTAG:5DC9E30EDC768B35A19538A5D479E5BB%3bID2:%3bID3:
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
cache-control: private,max-age=0
content-type: application/javascript
content-encoding: gzip
content-language: es
expires: Sat, 21 Jan 2023 07:06:33 GMT
last-modified: Tue, 20 Sep 2022 14:29:05 GMT
accept-ranges: bytes
etag: "{BC248222-8B16-421F-9538-F59A299DA328},19"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-sharepointhealthscore: 0
resourcetag: rt:BC248222-8B16-421F-9538-F59A299DA328@00000000019
public-extension: http://schemas.microsoft.com/repl-2
sprequestguid: 2b2993a0-979e-9024-79a7-1c117e29a7ca
request-id: 2b2993a0-979e-9024-79a7-1c117e29a7ca
x-frame-options: SAMEORIGIN
sprequestduration: 17
spiislatency: 0
x-powered-by: ASP.NET
microsoftsharepointteamservices: 16.0.0.4888
x-content-type-options: nosniff
x-ms-invokeapp: 1; RequireReadOnly
serv: 3
accept-language: es-ar
date: Sun, 05 Feb 2023 07:06:32 GMT
content-length: 2705
set-cookie: visid_incap_2772137=i4mhjTOeRx68Xu+4vIThWXhV32MAAAAAQUIPAAAAAAB7L2XAQcw2YVjJ7DW2tTjb; expires=Sun, 04 Feb 2024 22:50:40 GMT; HttpOnly; path=/; Domain=.codere.bet.ar
incap_ses_633_2772137=uJ7MKKH89UByBIeApd7ICHhV32MAAAAAl1ER6bOTIe6aq1+UgGmrCA==; path=/; Domain=.codere.bet.ar
x-cdn: Imperva
x-iinfo: 3-25001826-25001831 PNNN RT(1675580792282 660) q(0 0 0 0) r(0 0) U2
X-Firefox-Spdy: h2
cdn.cookielaw.org/logos/ef1e7412-c61f-4d80-8864-afd77df9fe19/e71d15de-44e2-4f4b-a01e-26eec56807e0/727f047b-0346-4549-9eab-99f3c6ff128d/betsson.png
200 OK 8.5 kB URL HTTP/2 cdn.cookielaw.org/logos/ef1e7412-c61f-4d80-8864-afd77df9fe19/e71d15de-44e2-4f4b-a01e-26eec56807e0/727f047b-0346-4549-9eab-99f3c6ff128d/betsson.png
IP
File type PNG image data, 318 x 57, 8-bit/color RGBA, non-interlaced\012- data
Hash 859aca7869c488ed6b04eb203250c4e1
fea586929aede21efa8ccbc87024dc21e1aaaf2b
ebf3c2f1ce0729ecee607abcd13b46df41d46f9e7b33dc71b44e488fbac42f0c
GET /logos/ef1e7412-c61f-4d80-8864-afd77df9fe19/e71d15de-44e2-4f4b-a01e-26eec56807e0/727f047b-0346-4549-9eab-99f3c6ff128d/betsson.png HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://in.caba.betsson.bet.ar/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:33 GMT
content-type: image/png
content-length: 8535
content-md5: hZrKeGnEiO1rBOsgMlDE4Q==
last-modified: Tue, 12 Jul 2022 06:55:55 GMT
etag: 0x8DA63D3914F6B0C
x-ms-request-id: 03c9f7c4-201e-010a-4b27-38873a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7949cdd65b94b4ff-OSL
X-Firefox-Spdy: h2
async-px.dynamicyield.com/uia?cnst=1&_=1675580832408
200 OK 0 B URL HTTP/2 async-px.dynamicyield.com/uia?cnst=1&_=1675580832408
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /uia?cnst=1&_=1675580832408 HTTP/1.1
Host: async-px.dynamicyield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 622
Origin: https://promo.codere.bet.ar
Connection: keep-alive
Referer: https://promo.codere.bet.ar/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 0
date: Sun, 05 Feb 2023 07:06:33 GMT
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-headers: Content-Type, Authorization, Content-Length, X-Requested-With
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
x-cache: Miss from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: vz-q0hPy_DVuCUZbNmmm9hXCwNQAfM2sMfVNR_X6aAYms0V7IRLwmA==
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 03903c33c90c4e9137c9d50dfd02ac35
407c2389b80856a9f3321b57ad8d921a8a2c2df1
711ca0a82fc56839cf34b393cb83dbf0071bbe25a227dc5cc91deedcc4ddce85
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=123512
Date: Sun, 05 Feb 2023 07:06:33 GMT
Etag: "63de94f1-1d7"
Expires: Mon, 06 Feb 2023 17:25:05 GMT
Last-Modified: Sat, 04 Feb 2023 17:25:05 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 8vElWZEXbX5Jz9SCc56nfJehguNyqaNmAnoqLldKsC9iczkrAUTPeA==
cdn.cookielaw.org/logos/static/powered_by_logo.svg
200 OK 2.0 kB URL HTTP/2 cdn.cookielaw.org/logos/static/powered_by_logo.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (5194), with no line terminators
Hash d8e753004833f6a1893f523365c9061c
8608234fcedf4c573dafcde1b3b9f24caedcec99
d6a30d54022c1345fa2d0bfbffb3290bfc90b2109a5eb1ca515ab7e9dbb78e3e
GET /logos/static/powered_by_logo.svg HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://in.caba.betsson.bet.ar/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:33 GMT
content-type: image/svg+xml
content-md5: Y+c301RBZNK39PvKQWrIBw==
last-modified: Thu, 02 Feb 2023 13:33:39 GMT
x-ms-request-id: f447d889-501e-00c6-113d-37a5da000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 62743
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7949cdd66b96b4ff-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.cookielaw.org/logos/static/ot_guard_logo.svg
200 OK 19 kB URL HTTP/2 cdn.cookielaw.org/logos/static/ot_guard_logo.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (59653)
Hash 3c860d6c8b686b9c59f4ca90f05191ed
81a81a348d48c8dd9542465c2e8f4a76d8df4e6a
33b420d2e08245d5909db0d4c564ae0caa1f5fe6b7b5c21479321d420aef523a
GET /logos/static/ot_guard_logo.svg HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://in.caba.betsson.bet.ar/
Origin: https://in.caba.betsson.bet.ar
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:33 GMT
content-type: image/svg+xml
content-md5: tXyZydHjxQshFMbbBT1/8A==
last-modified: Thu, 02 Feb 2023 13:33:38 GMT
x-ms-request-id: 9c29e0d3-501e-0127-6b2f-3704fa000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7949cdd6689db51d-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
in.betsson.com.ar/bacity/wp-content/uploads/content/betssonarbacity/sites/8/2021/12/echo_mobile_950x500_26925.jpg
301 Moved Permanently 0 B URL HTTP/2 in.betsson.com.ar/bacity/wp-content/uploads/content/betssonarbacity/sites/8/2021/12/echo_mobile_950x500_26925.jpg
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bacity/wp-content/uploads/content/betssonarbacity/sites/8/2021/12/echo_mobile_950x500_26925.jpg HTTP/1.1
Host: in.betsson.com.ar
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://in.caba.betsson.bet.ar/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
content-length: 0
location: https://www.betsson.com.ar/bacity/wp-content/uploads/content/betssonarbacity/sites/8/2021/12/echo_mobile_950x500_26925.jpg
date: Sun, 05 Feb 2023 07:06:33 GMT
server: BigIP
x-cache: Miss from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: w5gnr2lez7MW0gJqxIjItT2xUu9c1EEVkPrG4nO2NGNfjYtrwopXHg==
X-Firefox-Spdy: h2
trc.taboola.com/1379009/trc/3/json?tim=1675580832864&data=%7B%22id%22%3A203%2C%22ii%22%3A%22%2Fdeportes%2Fgeneral%2Ftennis%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1675580832860%2C%22cv%22%3A%2220230129-6-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fpromo.codere.bet.ar%2Fdeportes%2Fgeneral%2FTennis%3F%26pid%3D306844%26aid%3D87563%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3F%26pid%3D306844%26aid%3D87563%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dcodereargentina-sc%3Aabp%3D1%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1675580832864%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fpromo.codere.bet.ar%2Fdeportes%2Fgeneral%2FTennis%3F%26pid%3D306844%26aid%3D87563%22%2C%22tos%22%3A2%2C%22ssd%22%3A1%2C%22scd%22%3A0%2C%22supv%22%3Atrue%7D%7D&pubit=i
200 OK 2.3 kB URL HTTP/2 trc.taboola.com/1379009/trc/3/json?tim=1675580832864&data=%7B%22id%22%3A203%2C%22ii%22%3A%22%2Fdeportes%2Fgeneral%2Ftennis%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1675580832860%2C%22cv%22%3A%2220230129-6-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fpromo.codere.bet.ar%2Fdeportes%2Fgeneral%2FTennis%3F%26pid%3D306844%26aid%3D87563%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3F%26pid%3D306844%26aid%3D87563%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dcodereargentina-sc%3Aabp%3D1%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1675580832864%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fpromo.codere.bet.ar%2Fdeportes%2Fgeneral%2FTennis%3F%26pid%3D306844%26aid%3D87563%22%2C%22tos%22%3A2%2C%22ssd%22%3A1%2C%22scd%22%3A0%2C%22supv%22%3Atrue%7D%7D&pubit=i
IP
Hash f5351e9fa89cfd9a3faa746b18dcabbe
94d301b1bb49850dbb48f62e9bbc1da290e9fca7
431ba680747e7face6fbf0fcb06bf77b41fd0b68717a8c338f93e61fb370aedf
GET /1379009/trc/3/json?tim=1675580832864&data=%7B%22id%22%3A203%2C%22ii%22%3A%22%2Fdeportes%2Fgeneral%2Ftennis%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1675580832860%2C%22cv%22%3A%2220230129-6-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fpromo.codere.bet.ar%2Fdeportes%2Fgeneral%2FTennis%3F%26pid%3D306844%26aid%3D87563%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3F%26pid%3D306844%26aid%3D87563%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dcodereargentina-sc%3Aabp%3D1%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1675580832864%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fpromo.codere.bet.ar%2Fdeportes%2Fgeneral%2FTennis%3F%26pid%3D306844%26aid%3D87563%22%2C%22tos%22%3A2%2C%22ssd%22%3A1%2C%22scd%22%3A0%2C%22supv%22%3Atrue%7D%7D&pubit=i HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.codere.bet.ar/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
accept-ranges: bytes
date: Sun, 05 Feb 2023 07:06:33 GMT
via: 1.1 varnish
x-served-by: cache-bma1641-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675580794.723333,VS0,VE111
vary: Accept-Encoding
x-vcl-time-ms: 111
X-Firefox-Spdy: h2
trc-events.taboola.com/1379009/log/3/unip?en=pre_d_eng_tb&tos=1554&scd=0&ssd=1&est=1675580832861&ver=36&isls=true&src=i&invt=1500&msa=0&rv=1&tim=1675580834415&vi=1675580832860&ri=c50ca792009764b3792f64505393afc4&ref=null&cv=20230129-6-RELEASE&item-url=https%3A%2F%2Fpromo.codere.bet.ar%2Fdeportes%2Fgeneral%2FTennis%3F%26pid%3D306844%26aid%3D87563
204 No Content 0 B URL HTTP/2 trc-events.taboola.com/1379009/log/3/unip?en=pre_d_eng_tb&tos=1554&scd=0&ssd=1&est=1675580832861&ver=36&isls=true&src=i&invt=1500&msa=0&rv=1&tim=1675580834415&vi=1675580832860&ri=c50ca792009764b3792f64505393afc4&ref=null&cv=20230129-6-RELEASE&item-url=https%3A%2F%2Fpromo.codere.bet.ar%2Fdeportes%2Fgeneral%2FTennis%3F%26pid%3D306844%26aid%3D87563
IP
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1379009/log/3/unip?en=pre_d_eng_tb&tos=1554&scd=0&ssd=1&est=1675580832861&ver=36&isls=true&src=i&invt=1500&msa=0&rv=1&tim=1675580834415&vi=1675580832860&ri=c50ca792009764b3792f64505393afc4&ref=null&cv=20230129-6-RELEASE&item-url=https%3A%2F%2Fpromo.codere.bet.ar%2Fdeportes%2Fgeneral%2FTennis%3F%26pid%3D306844%26aid%3D87563 HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://promo.codere.bet.ar
Connection: keep-alive
Referer: https://promo.codere.bet.ar/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Sun, 05 Feb 2023 07:06:35 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://promo.codere.bet.ar
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2
trc-events.taboola.com/1379009/log/3/unip?en=pre_d_eng_tb&tos=4556&scd=0&ssd=1&est=1675580832861&ver=36&isls=true&src=i&invt=3000&msa=0&rv=1&tim=1675580837417&vi=1675580832860&ri=c50ca792009764b3792f64505393afc4&ref=null&cv=20230129-6-RELEASE&item-url=https%3A%2F%2Fpromo.codere.bet.ar%2Fdeportes%2Fgeneral%2FTennis%3F%26pid%3D306844%26aid%3D87563
204 No Content 0 B URL HTTP/2 trc-events.taboola.com/1379009/log/3/unip?en=pre_d_eng_tb&tos=4556&scd=0&ssd=1&est=1675580832861&ver=36&isls=true&src=i&invt=3000&msa=0&rv=1&tim=1675580837417&vi=1675580832860&ri=c50ca792009764b3792f64505393afc4&ref=null&cv=20230129-6-RELEASE&item-url=https%3A%2F%2Fpromo.codere.bet.ar%2Fdeportes%2Fgeneral%2FTennis%3F%26pid%3D306844%26aid%3D87563
IP
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1379009/log/3/unip?en=pre_d_eng_tb&tos=4556&scd=0&ssd=1&est=1675580832861&ver=36&isls=true&src=i&invt=3000&msa=0&rv=1&tim=1675580837417&vi=1675580832860&ri=c50ca792009764b3792f64505393afc4&ref=null&cv=20230129-6-RELEASE&item-url=https%3A%2F%2Fpromo.codere.bet.ar%2Fdeportes%2Fgeneral%2FTennis%3F%26pid%3D306844%26aid%3D87563 HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://promo.codere.bet.ar
Connection: keep-alive
Referer: https://promo.codere.bet.ar/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Sun, 05 Feb 2023 07:06:38 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://promo.codere.bet.ar
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2
cdn.dynamicyield.com/api/8776655/api_static.js
200 OK 0 B URL HTTP/2 cdn.dynamicyield.com/api/8776655/api_static.js
IP
GET /api/8776655/api_static.js HTTP/1.1
Host: cdn.dynamicyield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.codere.bet.ar/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
last-modified: Thu, 02 Feb 2023 09:42:21 GMT
server: DYCDN
content-encoding: gzip
date: Sun, 05 Feb 2023 07:06:32 GMT
cache-control: max-age=86400
etag: W/"23da64517f7803234d86e11f6ac4c5a9"
vary: Accept-Encoding
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
age: 7371
link: <//st.dynamicyield.com>; rel="dns-prefetch", <//st.dynamicyield.com>; rel="preconnect", <//rcom.dynamicyield.com>; rel="dns-prefetch", <//rcom.dynamicyield.com>; rel="preconnect", <//async-px.dynamicyield.com>; rel="dns-prefetch", <//async-px.dynamicyield.com>; rel="preconnect"
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 2XZD_rNOW82HJ01HDiilzMoaYhEVMMr8hLjkx3dTRbefQ90o5JZF0Q==
X-Firefox-Spdy: h2
unpkg.com/swiper/swiper-bundle.js
302 Found 0 B URL HTTP/2 unpkg.com/swiper/swiper-bundle.js
IP
GET /swiper/swiper-bundle.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.codere.bet.ar/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sun, 05 Feb 2023 07:06:33 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /swiper@9.0.2/swiper-bundle.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GRG5XFAMMNAYYTV5ATNT2JP8-fra
cf-cache-status: HIT
age: 468
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7949cdd62ff3b515-OSL
X-Firefox-Spdy: h2
www.codere.bet.ar/_catalogs/masterpage/codere/images/splash/footerlogocodereriverLandingPages.svg
200 OK 0 B URL HTTP/2 www.codere.bet.ar/_catalogs/masterpage/codere/images/splash/footerlogocodereriverLandingPages.svg
IP
GET /_catalogs/masterpage/codere/images/splash/footerlogocodereriverLandingPages.svg HTTP/1.1
Host: www.codere.bet.ar
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.codere.bet.ar/
Cookie: banner_click=gig_cph_pop,86491,306844,18915457,BTAG:5DC9E30EDC768B35A19538A5D479E5BB%3bID2:%3bID3:
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
cache-control: private,max-age=0
content-type: image/svg+xml
content-language: es
expires: Sat, 21 Jan 2023 07:06:32 GMT
last-modified: Tue, 15 Mar 2022 09:45:19 GMT
accept-ranges: bytes
etag: "{0A8EE965-23E8-4E84-AFB7-30A5326D76EF},3"
server: Microsoft-IIS/10.0
x-sharepointhealthscore: 0
resourcetag: rt:0A8EE965-23E8-4E84-AFB7-30A5326D76EF@00000000003
public-extension: http://schemas.microsoft.com/repl-2
sprequestguid: 2b2993a0-277b-9024-79a7-15dbb449f042
request-id: 2b2993a0-277b-9024-79a7-15dbb449f042
x-frame-options: SAMEORIGIN
sprequestduration: 14
spiislatency: 0
x-powered-by: ASP.NET
microsoftsharepointteamservices: 16.0.0.4888
x-content-type-options: nosniff
x-ms-invokeapp: 1; RequireReadOnly
serv: 3
accept-language: es-ar
date: Sun, 05 Feb 2023 07:06:32 GMT
set-cookie: visid_incap_2772137=i4mhjTOeRx68Xu+4vIThWXhV32MAAAAAQUIPAAAAAAB7L2XAQcw2YVjJ7DW2tTjb; expires=Sun, 04 Feb 2024 22:50:40 GMT; HttpOnly; path=/; Domain=.codere.bet.ar
incap_ses_633_2772137=ld+SHmOgEQJyBIeApd7ICHhV32MAAAAAvM5RZeDgc8vY6fOtkHIHrQ==; path=/; Domain=.codere.bet.ar
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 3-25001826-25001831 NNYN CT(18 43 0) RT(1675580792282 43) q(0 0 0 3) r(1 1) U2
X-Firefox-Spdy: h2
es.888casino.com/exclusive-mob/spinson.htm?utm_campaign=100138643_1853543_nodescription&utm_content=100138643&utm_medium=casap&utm_source=aff
200 OK 0 B URL HTTP/2 es.888casino.com/exclusive-mob/spinson.htm?utm_campaign=100138643_1853543_nodescription&utm_content=100138643&utm_medium=casap&utm_source=aff
IP
GET /exclusive-mob/spinson.htm?utm_campaign=100138643_1853543_nodescription&utm_content=100138643&utm_medium=casap&utm_source=aff HTTP/1.1
Host: es.888casino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: 888TempQueryCookie=sr%3D1853543; 888Cookie=isftd%3Dfalse%26isreal%3Dfalse%26lang%3Des%26OSR%3D1853543%26RefType%3DNoReferrer%26TestData%3D%7B%22mm_id%22%3A%2245577%22%2C%22orig-lp%22%3A%22https%3A%2F%2Fes.888casino.com%2Fexclusive-mob%2Fspinson.htm%22%2C%22referrer%22%3A%22NULL%22%2C%22utm_campaign%22%3A%22100138643_1853543_nodescription%22%2C%22utm_content%22%3A%22100138643%22%2C%22utm_medium%22%3A%22casap%22%2C%22utm_source%22%3A%22aff%22%7D; 888TempContext=testdata%3D%7B%22mm_id%22%3A%2245577%22%2C%22orig-lp%22%3A%22https%3A%2F%2Fes.888casino.com%2Fexclusive-mob%2Fspinson.htm%22%2C%22referrer%22%3A%22NULL%22%2C%22utm_campaign%22%3A%22100138643_1853543_nodescription%22%2C%22utm_content%22%3A%22100138643%22%2C%22utm_medium%22%3A%22casap%22%2C%22utm_source%22%3A%22aff%22%7D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
date: Sun, 05 Feb 2023 07:06:32 GMT
x-wcs-correlation-id: 0XjgG_4yQvDIKHQZExxKf1zlDXuWfS5BPjnQLy9jd-EcsKHfPB4Xsw==
srv: 44303334
p3p: CP="Read our privacy policy at http://www.888.com/security-and-privacy/privacy-policy.htm"
content-security-policy: frame-ancestors 'self' *.genesazrak.com *.888casinoarabic.net *.arabiccasino888.com *.casinoarabic888.com *.casinoarabic-888.com *.888-casinoarabic.com *.888casino-arabic.com http://wrapper.safe-installation.com/ https://wrapper.safe-installation.com/ http://localhost:* https://localhost:* *.bingosys.net *.secured-igaming-usa.com *.888.pt *.sisportsbook.com *.888poker.de *.888slots.de *.safe-iplay.com *.safe-installation.com *.payoutscentral.com *.triple8holdem.com *.888.com *.secured-qa.com *.secured-registration.com *.secureutils.com *.images4us.com *.onlinepersonalmessages.com *.888sport.com *.888sport.es *.888sport.it *.888sport.dk *.888sport.ro *.888sport.se *.888sport.us *.888sport.de *.777.com *.personalinfoonline.com *.888.de *.888casino.com *.888poker.com *.888casino.dk *.888poker.dk *.888.de *.888casino.ro *.888poker.ro *.888casino.se *.888poker.se *.888casino.es *.888poker.es *.888casino.it *.888poker.it *.888casino.us *.888poker.us *.888ladies.com *.888.pt cmsp *.harrahscasino.com *.wsop.com *.delawarepark.com *.doverdowns.com *.harringtongamingonline.com *.secured-igaming-services.com *.secured-igaming-usa.com *.igaming-services.com *.888.ca *.888casino.ca *.888poker.ca *.888sport.ca *.888.nl *.888casino.nl *.888poker.nl *.888sport.nl *.ar-888-casino.com *.888casino-ar.com *.ar888-casino.com *.arab888-casino.com *.casinoelarab-888.com *.alarab-888casino.com *.casinoalarab-888.com *.888casino-alarab.com *.888casino-arabian.com *.arabian-888casino.com *.888-casino-arabian.com *.888-casino-alarab.com *.ballysdover.com *.888casino-uae.com *.playat888-games.com *.888casino-game.com *.online-arabic-casino.net *.tripleeight.live *.playat888online.com *.888games-uae.com *.triple-eight-games.com *.play-casino-now.com *.888slots-uae.com *.888-uae.com *.mrgreen.de *.mrgreen.se *.mrgreen.com *.mrgreen.dk
set-cookie: 888TempQueryCookie=; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=888casino.com; path=/; secure; samesite=none; httponly
888TempContext=; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=888casino.com; path=/; secure; samesite=none; httponly
888Cookie=isftd%3Dfalse%26isreal%3Dfalse%26lang%3Des%26OSR%3D1853543%26RefType%3DNoReferrer%26TestData%3D%7B%22mm_id%22%3A%2245577%22%2C%22orig-lp%22%3A%22https%3A%2F%2Fes.888casino.com%2Fexclusive-mob%2Fspinson.htm%22%2C%22referrer%22%3A%22NULL%22%2C%22utm_campaign%22%3A%22100138643_1853543_nodescription%22%2C%22utm_content%22%3A%22100138643%22%2C%22utm_medium%22%3A%22casap%22%2C%22utm_source%22%3A%22aff%22%7D; max-age=604800; domain=888casino.com; path=/; secure; samesite=none; httponly
apigw-requestid: f2pKvh1RDoEEJgQ=
content-encoding: br
vary: Accept-Encoding,User-Agent,Cookie
x-cache: Miss from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 0XjgG_4yQvDIKHQZExxKf1zlDXuWfS5BPjnQLy9jd-EcsKHfPB4Xsw==
X-Firefox-Spdy: h2
record.caba.betsson.bet.ar/_artCMRK1bjYXhZ7YDLVfaGNd7ZgqdRLk/24
301 Moved Permanently 0 B URL HTTP/2 record.caba.betsson.bet.ar/_artCMRK1bjYXhZ7YDLVfaGNd7ZgqdRLk/24
IP
GET /_artCMRK1bjYXhZ7YDLVfaGNd7ZgqdRLk/24 HTTP/1.1
Host: record.caba.betsson.bet.ar
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Sun, 05 Feb 2023 07:06:31 GMT
content-type: text/html; charset=utf-8
location: https://in.caba.betsson.bet.ar/bono-de-bienvenida-deportes-select/ag?from=1tdmcUJaeOzBimiZWhBbs2Nd7ZgqdRLk-AP0846390900&affcode=AP0846390900&utm_medium=MA_Affiliates&utm_source=10687405
cache-control: private, no-cache, must-revalidate, Cache-Control: no-cache
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *
pragma: no-cache
x-powered-by: ZBan
cf-cache-status: BYPASS
set-cookie: VID1=KiwzQFEsIzhRLUMwVSwwYGAKYAo%3D; expires=Mon, 05-Feb-2024 07:06:31 GMT; Max-Age=31536000; path=/; secure; HttpOnly; SameSite=None
ZBan=1tdmcUJaeOzBimiZWhBbs2Nd7ZgqdRLk; expires=Mon, 05-Feb-2024 07:06:31 GMT; Max-Age=31536000; path=/; domain=.caba.betsson.bet.ar; secure; HttpOnly; SameSite=None
PartnerId=1tdmcUJaeOzBimiZWhBbs2Nd7ZgqdRLk-Z2lnX2NwaF9wb3A%3D; expires=Tue, 07-Mar-2023 07:06:31 GMT; Max-Age=2592000; path=/; SameSite=Lax
marketingproduct=Sportsbook; expires=Tue, 07-Mar-2023 07:06:31 GMT; Max-Age=2592000; path=/; domain=.betsson.com.ar; SameSite=Lax
vary: Accept-Encoding
server: cloudflare
cf-ray: 7949cdcb2952b527-OSL
X-Firefox-Spdy: h2
megacom.megaplay.life/?qtag=a2189_t4436_c1_sPU_AR_PA_CS_DT_VOLD_MEGASLOT
200 OK 0 B URL HTTP/2 megacom.megaplay.life/?qtag=a2189_t4436_c1_sPU_AR_PA_CS_DT_VOLD_MEGASLOT
IP
GET /?qtag=a2189_t4436_c1_sPU_AR_PA_CS_DT_VOLD_MEGASLOT HTTP/1.1
Host: megacom.megaplay.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:31 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.3-4ubuntu2.17
cache-control: no-cache, private
set-cookie: XSRF-TOKEN=eyJpdiI6ImpuMlQ3SkZLblhcL3g4UzNQRTVWXC8yZz09IiwidmFsdWUiOiIzWHFnUkVTbk44NVZBcGRcL3NMd1JUSDlVK0JJdzIyZzh4dE1SUlVxdjJYcndKbkl5TmpObFJkMHpIaUZLVlBaSSIsIm1hYyI6IjFhNmExODJiODQ3YTU4MmE5Mzc3YjJiYTM3YjgzZTdmNzg4OWEzMjQxZDFkZDczYjcxNTg3YTAxNDQyZDdiYmYifQ%3D%3D; expires=Sun, 05-Feb-2023 09:06:31 GMT; Max-Age=7200; path=/
redirector_session=eyJpdiI6IjR6MTR0S0tiQzhyOWx0eG1uakJjYnc9PSIsInZhbHVlIjoiUHBPU2tPa3B5YnQrcjFWMUhnaEJubDRjMXdjTzZ0Y0FrV1l5a3J5WTEwc0dOWk9hdGFYVDBwY0cyXC9SS1NLRkwiLCJtYWMiOiIxZmQ0MGI1NTJhNWQyZDQxZTc5NjRjNDg4YTcxZjdkMDA5YWNjNWZmZGI3MDdiMWRkOTFjYzgxZTA5MDU1Y2NhIn0%3D; expires=Sun, 05-Feb-2023 09:06:31 GMT; Max-Age=7200; path=/; httponly
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XyMjBvV24NM%2FKYaYfXD3b0V%2FKRmZWUSHUGdpeNge40nNxot1t%2BH4KpFbe%2FVep%2FhnoBmgcN8wyDKn0DKJsun2Mpz4yBdAxegnucKIUBsID8T84DANyhV2VbHz94ivVHcK%2FLdhheE01%2F0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7949cdcb2bd1fac0-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnroute.bpsgameserver.com/echo-cdn-origin/themes/betssonarbacity/1674658430/js/compressed/echo.min.js
200 OK 0 B URL HTTP/2 cdnroute.bpsgameserver.com/echo-cdn-origin/themes/betssonarbacity/1674658430/js/compressed/echo.min.js
IP
GET /echo-cdn-origin/themes/betssonarbacity/1674658430/js/compressed/echo.min.js HTTP/1.1
Host: cdnroute.bpsgameserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://in.caba.betsson.bet.ar/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript
content-length: 196857
date: Mon, 30 Jan 2023 00:29:26 GMT
server: Apache/2.4.52 (Ubuntu)
last-modified: Wed, 25 Jan 2023 14:53:56 GMT
etag: "c29da-5f317cd4171c3-br"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Wed, 01 Mar 2023 00:29:26 GMT
content-encoding: br
access-control-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: zfWHKCj7n7MHESyrP247SYbWDONnFVfGPUq_WMXu71QPVpmCOge9gg==
age: 542226
X-Firefox-Spdy: h2
cdn.dynamicyield.com/api/8776655/images/25e9fc457df2f__sponsorship-rayados.svg
200 OK 0 B URL HTTP/2 cdn.dynamicyield.com/api/8776655/images/25e9fc457df2f__sponsorship-rayados.svg
IP
GET /api/8776655/images/25e9fc457df2f__sponsorship-rayados.svg HTTP/1.1
Host: cdn.dynamicyield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.codere.bet.ar/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
date: Thu, 02 Feb 2023 18:04:21 GMT
last-modified: Mon, 20 Dec 2021 09:28:47 GMT
etag: W/"1a0960e77d34b37a43f21437fe9ea56b"
cache-control: max-age=604800
server: DYCDN
content-encoding: gzip
vary: Accept-Encoding
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
age: 219732
link: <//st.dynamicyield.com>; rel="dns-prefetch", <//st.dynamicyield.com>; rel="preconnect", <//rcom.dynamicyield.com>; rel="dns-prefetch", <//rcom.dynamicyield.com>; rel="preconnect", <//async-px.dynamicyield.com>; rel="dns-prefetch", <//async-px.dynamicyield.com>; rel="preconnect"
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: IUVWL-VjMVM3zaB5Fsq7dMZSp7CQcxUTqjmRoCUQ8eJOLUC2Zb9Fhg==
X-Firefox-Spdy: h2
cdn.dynamicyield.com/scripts/1.156.0/dy-coll-nojq-min.js
200 OK 0 B URL HTTP/2 cdn.dynamicyield.com/scripts/1.156.0/dy-coll-nojq-min.js
IP
GET /scripts/1.156.0/dy-coll-nojq-min.js HTTP/1.1
Host: cdn.dynamicyield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.codere.bet.ar/
Cookie: DYID=-2706663125265984136; DYSES=1ee776a9eacc17d70ac69546c5e18bcc
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Thu, 02 Feb 2023 02:12:43 GMT
last-modified: Tue, 31 Jan 2023 08:22:01 GMT
etag: W/"748091e1c409ec5578e74f2107c4e360"
cache-control: max-age=31536000
server: DYCDN
content-encoding: gzip
vary: Accept-Encoding
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
age: 276831
link: <//st.dynamicyield.com>; rel="dns-prefetch", <//st.dynamicyield.com>; rel="preconnect", <//rcom.dynamicyield.com>; rel="dns-prefetch", <//rcom.dynamicyield.com>; rel="preconnect", <//async-px.dynamicyield.com>; rel="dns-prefetch", <//async-px.dynamicyield.com>; rel="preconnect"
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: m44apkPLXbGYbLX-hBwmT2CsBr-dcJ6Bf7v5mhGP9Fo1_7HjU-6ByQ==
X-Firefox-Spdy: h2
promo.codere.bet.ar/deportes/general/Tennis?&pid=306844&aid=87563
200 OK 0 B URL HTTP/2 promo.codere.bet.ar/deportes/general/Tennis?&pid=306844&aid=87563
IP
GET /deportes/general/Tennis?&pid=306844&aid=87563 HTTP/1.1
Host: promo.codere.bet.ar
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: banner_click=gig_cph_pop,86491,306844,18915457,BTAG:5DC9E30EDC768B35A19538A5D479E5BB%3bID2:%3bID3:
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:32 GMT
content-type: text/html; charset=utf-8
server: nginx
expires: Sun, 05 Feb 2023 07:06:31 GMT
access-control-allow-origin: *
cache-control: no-cache
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR ADM DEV OUR BUS"
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.dynamicyield.com/api/8776655/images/1c341500a1097__logobsj.svg
200 OK 0 B URL HTTP/2 cdn.dynamicyield.com/api/8776655/images/1c341500a1097__logobsj.svg
IP
GET /api/8776655/images/1c341500a1097__logobsj.svg HTTP/1.1
Host: cdn.dynamicyield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.codere.bet.ar/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
date: Wed, 01 Feb 2023 12:01:38 GMT
last-modified: Mon, 20 Dec 2021 08:38:38 GMT
etag: W/"1ba9797dc54f71d499f038b2afda9226"
cache-control: max-age=604800
server: DYCDN
content-encoding: gzip
vary: Accept-Encoding
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
age: 327895
link: <//st.dynamicyield.com>; rel="dns-prefetch", <//st.dynamicyield.com>; rel="preconnect", <//rcom.dynamicyield.com>; rel="dns-prefetch", <//rcom.dynamicyield.com>; rel="preconnect", <//async-px.dynamicyield.com>; rel="dns-prefetch", <//async-px.dynamicyield.com>; rel="preconnect"
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 18ZaLdajm8YaqKA6PX4ygclGnUvC_PNOxXHZYdJiol4dQaPjYBWeQg==
X-Firefox-Spdy: h2
st.dynamicyield.com/st?sec=8776655&slim=false&head=true
200 OK 0 B URL HTTP/2 st.dynamicyield.com/st?sec=8776655&slim=false&head=true
IP
GET /st?sec=8776655&slim=false&head=true HTTP/1.1
Host: st.dynamicyield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.codere.bet.ar/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
date: Sun, 05 Feb 2023 07:06:32 GMT
cache-control: no-cache
expires: Sun, 05 Feb 2023 07:06:31 GMT
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR ADM DEV OUR BUS"
access-control-allow-origin: *
set-cookie: DYID=-2706663125265984136; Domain=.dynamicyield.com; Path=/; Expires=Mon, 05 Feb 2024 07:06:32 GMT; Secure; SameSite=None
DYSES=1ee776a9eacc17d70ac69546c5e18bcc; Domain=.dynamicyield.com; Path=/; Secure; SameSite=None
vary: Accept-Encoding
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: vGStXctfdzWPErxM80FSkEqLu7RrN9celLCrI4AVR4gt39YsmV1OfA==
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/font-awesome/4.2.0/css/font-awesome.min.css
200 OK 0 B URL HTTP/2 maxcdn.bootstrapcdn.com/font-awesome/4.2.0/css/font-awesome.min.css
IP
GET /font-awesome/4.2.0/css/font-awesome.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.codere.bet.ar/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:33 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: US
cdn-edgestorageid: 718, 718
last-modified: Mon, 25 Jan 2021 22:04:53 GMT
cdn-cachedat: 2021-04-13 02:36:00
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: 357c5298f2849c0ce9712c57ec240f4e
cdn-cache: HIT
cf-cache-status: HIT
age: 1477237
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7949cdd61eddb503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
unpkg.com/swiper/swiper-bundle.css
302 Found 0 B URL HTTP/2 unpkg.com/swiper/swiper-bundle.css
IP
GET /swiper/swiper-bundle.css HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.codere.bet.ar/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 05 Feb 2023 07:06:33 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /swiper@9.0.2/swiper-bundle.css
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GRG5WYBAVC3TBH89385M9CET-fra
cf-cache-status: HIT
age: 486
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7949cdd61fe6b515-OSL
X-Firefox-Spdy: h2
unpkg.com/swiper@9.0.2/swiper-bundle.css
200 OK 0 B URL HTTP/2 unpkg.com/swiper@9.0.2/swiper-bundle.css
IP
GET /swiper@9.0.2/swiper-bundle.css HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://promo.codere.bet.ar/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:33 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"5462-V2CkXhHeFPgsP3NlvcJo9+uuUAQ"
via: 1.1 fly.io
fly-request-id: 01GRBEJYF8MS0SM9802JZ1QVRA-fra
cf-cache-status: HIT
age: 159145
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7949cdd66822b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
geolocation.onetrust.com/cookieconsentpub/v1/geo/location
200 OK 0 B URL HTTP/2 geolocation.onetrust.com/cookieconsentpub/v1/geo/location
IP
GET /cookieconsentpub/v1/geo/location HTTP/1.1
Host: geolocation.onetrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://in.caba.betsson.bet.ar
Connection: keep-alive
Referer: https://in.caba.betsson.bet.ar/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:32 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, OPTIONS
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7949cdd1c9b40b02-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.dynamicyield.com/api/8776655/images/11cd0bc3b7361__logoblotba.svg
200 OK 0 B URL HTTP/2 cdn.dynamicyield.com/api/8776655/images/11cd0bc3b7361__logoblotba.svg
IP
GET /api/8776655/images/11cd0bc3b7361__logoblotba.svg HTTP/1.1
Host: cdn.dynamicyield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.codere.bet.ar/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
date: Thu, 02 Feb 2023 18:04:21 GMT
last-modified: Mon, 20 Dec 2021 08:38:25 GMT
etag: W/"e0bfdc7a99d7c991e42a700ce5e6849e"
cache-control: max-age=604800
server: DYCDN
content-encoding: gzip
vary: Accept-Encoding
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
age: 219732
link: <//st.dynamicyield.com>; rel="dns-prefetch", <//st.dynamicyield.com>; rel="preconnect", <//rcom.dynamicyield.com>; rel="dns-prefetch", <//rcom.dynamicyield.com>; rel="preconnect", <//async-px.dynamicyield.com>; rel="dns-prefetch", <//async-px.dynamicyield.com>; rel="preconnect"
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: GdMoZ5-4Te0yEe5X7FtlsdKveCJnAHA_YCZPiOm_RKfFi8Ynl03C5A==
X-Firefox-Spdy: h2
www.codere.bet.ar/_catalogs/masterpage/codere/images/splash/logoLandingPages.svg
200 OK 0 B URL HTTP/2 www.codere.bet.ar/_catalogs/masterpage/codere/images/splash/logoLandingPages.svg
IP
GET /_catalogs/masterpage/codere/images/splash/logoLandingPages.svg HTTP/1.1
Host: www.codere.bet.ar
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.codere.bet.ar/
Cookie: banner_click=gig_cph_pop,86491,306844,18915457,BTAG:5DC9E30EDC768B35A19538A5D479E5BB%3bID2:%3bID3:
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
cache-control: private,max-age=0
content-type: image/svg+xml
content-language: es
expires: Sat, 21 Jan 2023 07:06:32 GMT
last-modified: Wed, 08 Jun 2022 14:36:28 GMT
accept-ranges: bytes
etag: "{D8BD5199-276E-4032-BFEE-C536609DBBD8},2"
server: Microsoft-IIS/10.0
x-sharepointhealthscore: 0
resourcetag: rt:D8BD5199-276E-4032-BFEE-C536609DBBD8@00000000002
public-extension: http://schemas.microsoft.com/repl-2
sprequestguid: 2b2993a0-177c-9024-79a7-1c9f2f7d5a2c
request-id: 2b2993a0-177c-9024-79a7-1c9f2f7d5a2c
x-frame-options: SAMEORIGIN
sprequestduration: 11
spiislatency: 0
x-powered-by: ASP.NET
microsoftsharepointteamservices: 16.0.0.4888
x-content-type-options: nosniff
x-ms-invokeapp: 1; RequireReadOnly
serv: 3
accept-language: es-ar
date: Sun, 05 Feb 2023 07:06:32 GMT
set-cookie: visid_incap_2772137=i4mhjTOeRx68Xu+4vIThWXhV32MAAAAAQUIPAAAAAAB7L2XAQcw2YVjJ7DW2tTjb; expires=Sun, 04 Feb 2024 22:50:40 GMT; HttpOnly; path=/; Domain=.codere.bet.ar
incap_ses_633_2772137=qJVMJMCjkXVyBIeApd7ICHhV32MAAAAABLwzFrzhLodav91kcaBlPg==; path=/; Domain=.codere.bet.ar
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 3-25001826-25001832 NNYN CT(18 42 0) RT(1675580792282 43) q(0 0 0 4) r(1 1) U2
X-Firefox-Spdy: h2
cdnroute.bpsgameserver.com/echo-cdn-origin/themes/betssonarbacity/1674658430/css/compressed/betssonarbacity.min.css
200 OK 0 B URL HTTP/2 cdnroute.bpsgameserver.com/echo-cdn-origin/themes/betssonarbacity/1674658430/css/compressed/betssonarbacity.min.css
IP
GET /echo-cdn-origin/themes/betssonarbacity/1674658430/css/compressed/betssonarbacity.min.css HTTP/1.1
Host: cdnroute.bpsgameserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://in.caba.betsson.bet.ar/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
date: Mon, 30 Jan 2023 00:29:26 GMT
server: Apache/2.4.52 (Ubuntu)
last-modified: Wed, 25 Jan 2023 14:53:55 GMT
etag: "e44fe-5f317cd24d8be-br"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Wed, 01 Mar 2023 00:29:26 GMT
content-encoding: br
access-control-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: r7NiKTCR-ZULwoRTaAAq4puYgJ-fiaXB0sE9BVxgovU6Td6INPrQcw==
age: 542226
X-Firefox-Spdy: h2
172.67.146.68
104.16.124.175
5.226.179.26
217.147.127.42
141.226.228.48
34.253.51.45
161.35.78.172
188.114.97.1
23.36.77.32