blancoshrimp.com/SB/BR/
172.67.146.68301 Moved Permanently 162 B IP 172.67.146.68:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /SB/BR/ HTTP/1.1
Host: blancoshrimp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Mon, 30 Jan 2023 13:14:56 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://blancoshrimp.com/SB/BR/
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4LXGOGkhQos6P%2FN0TjPbLWuDNwSWRgX0g6soJiBckKJEQNgCAymdU5XxApcChGAi%2FsuE903BmDGIjenXbEB7pF1TRCZWHcWjAuv9SlNBl0ez605aZ6kMqcQ0JDRtvBjKC8Zv"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 791a7936cc081c0a-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5eb7c9bc996a0ff420e58af45526f053
8c2614832b8efe1c9da0bbd465d6f3f172d95a9e
c085cf277dd0429fe15e4a4bce5595636e9f2204d5a8e77220f8bf88adf4068f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C085CF277DD0429FE15E4A4BCE5595636E9F2204D5A8E77220F8BF88ADF4068F"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13734
Expires: Mon, 30 Jan 2023 17:03:50 GMT
Date: Mon, 30 Jan 2023 13:14:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0c35c3ec659d3a26ea97e68d787bb043
d97e3672244efec5b7814f2d8a734cd1a9387854
4c946a026114ff05316d92277750facf3d5f5d162839149da0b7fb1a4cff6b5e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4C946A026114FF05316D92277750FACF3D5F5D162839149DA0B7FB1A4CFF6B5E"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2861
Expires: Mon, 30 Jan 2023 14:02:37 GMT
Date: Mon, 30 Jan 2023 13:14:56 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 30 Jan 2023 12:35:42 GMT
content-type: application/json
age: 2354
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 09ee4b0fe6cf4ca5ed31b24452338d00
7e62b6e20f0d4737f4a8d94f9818a0883027839e
56da08e18a408d7313de4e598984a251a0ecf85bbba98b421be9aebeb98835af
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "56DA08E18A408D7313DE4E598984A251A0ECF85BBBA98B421BE9AEBEB98835AF"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12857
Expires: Mon, 30 Jan 2023 16:49:13 GMT
Date: Mon, 30 Jan 2023 13:14:56 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: St5g7+mkjactOrb3es0m9alhDDNyIhLpdQvp6zMruQuPZopfVs/HSJV46wwgMaenp30/ygDXCVE=
x-amz-request-id: ZX7J4S9QA6S07VVY
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 30 Jan 2023 12:21:47 GMT
age: 3189
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 13:14:56 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash d547bcedf7d73394984290f68ba6b192
65e26a4ab95d253407a7f259aed9aef206808a59
5321cb1309f01c43986213554f16a8a003cc5927f96a605aa839973923d00675
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 13:14:56 GMT
Etag: "63d75760-118"
Server: ECS (amb/6BB2)
Content-Length: 280
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Last-Modified, ETag, Expires, Backoff, Content-Length, Cache-Control, Alert, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 30 Jan 2023 12:49:04 GMT
age: 1553
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash d547bcedf7d73394984290f68ba6b192
65e26a4ab95d253407a7f259aed9aef206808a59
5321cb1309f01c43986213554f16a8a003cc5927f96a605aa839973923d00675
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 13:14:57 GMT
Etag: "63d75760-118"
Last-Modified: Mon, 30 Jan 2023 13:14:56 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 280
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 22b9916fc1fafc9bdc9bb37f9eac8a9a
86f640e134a741a0f906a8e3a0f5c6659dd0e394
a29ee843c8a39551a1507cc6ad949ad509e33aaae8b72c58ac4884bad8b0b38e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E"
Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12501
Expires: Mon, 30 Jan 2023 16:43:18 GMT
Date: Mon, 30 Jan 2023 13:14:57 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 75bf326700e29b1b06e57fb96ee2b064
4f979f28905b65637a058cd44be6c25bb51a42e4
385f7a9c4112c4d674264d02229719e7f82e7039e681db8aaa6685ebab2be0c1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 13:14:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 75bf326700e29b1b06e57fb96ee2b064
4f979f28905b65637a058cd44be6c25bb51a42e4
385f7a9c4112c4d674264d02229719e7f82e7039e681db8aaa6685ebab2be0c1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 13:14:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash db3290a85d0ba4da27406ae9636aa618
4c69da45eddd66a1e26fce5562fc45eda7005309
19db4d0cc84bff9586883a5fa69c426af0b5fc1c2760ee7c259b0307c8afa6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 13:14:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.227200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://blancoshrimp.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 07:08:09 GMT
expires: Sat, 27 Jan 2024 07:08:09 GMT
cache-control: public, max-age=31536000
age: 281208
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash db3290a85d0ba4da27406ae9636aa618
4c69da45eddd66a1e26fce5562fc45eda7005309
19db4d0cc84bff9586883a5fa69c426af0b5fc1c2760ee7c259b0307c8afa6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 13:14:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
securely-send.com/storage/howisliferightnow_br.js
161.35.78.172200 OK 77 kB URL HTTP/2 securely-send.com/storage/howisliferightnow_br.js
IP 161.35.78.172:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (65536), with no line terminators
Hash d118712f596e03e55e7fd05b127a3f67
f08684aaa8bfb46758a86ea38f3b1cbc43b3c369
a6a77f13b640388e535c0a5246cb07dc32e61db835c89759978a85034c63c441
Analyzer Verdict Alert fortinet Phishing
GET /storage/howisliferightnow_br.js HTTP/1.1
Host: securely-send.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blancoshrimp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Mon, 30 Jan 2023 13:14:57 GMT
content-type: application/javascript; charset=utf-8
content-length: 76620
last-modified: Mon, 23 Jan 2023 17:12:56 GMT
etag: "63cec018-12b4c"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
push.services.mozilla.com/
54.149.111.148101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.149.111.148:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 1O6BL5YRBjckXh1hFRAQPQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: GVz+++xHT+2Y87Wd6OxImgEWVIc=
www.bet365.com/olp/open-account?affiliate=365_01175261
5.226.179.10200 OK 4.6 kB URL HTTP/1.1 www.bet365.com/olp/open-account?affiliate=365_01175261
IP 5.226.179.10:0
ASN #209242 Cloudflare London, LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash a02efc03bf1ff6317cbb86509d91d64a
e2f7f16d03288f6e9cd96456dae25a92b5f2b2d3
6195e77e3f220109bcd9952feb4945337ae703473c57663bdc6c6b08bb0343bc
GET /olp/open-account?affiliate=365_01175261 HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 13:14:57 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ServerDetails: <!--1P1 - 78-->
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=UNpJd617YMo_QmFviBwFwS3vATbomGdzlM1iGy1cn08-1675084497-0-AXR+NwIkfYz6qx4NC7c03whvHMl2y6UN3thb8jbWm6Ax5KLG3rr3QQvmfIAbF04ZO+awsiuk+Tw1fMCf8ziPQ7g=; path=/; expires=Mon, 30-Jan-23 13:44:57 GMT; domain=.bet365.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 791a793fcc0db523-OSL
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 8980a258f3e50e3630a8df32e1ca6874
42872f86f44e88584fac9163a90f04d54d3541a2
dc743d53c4f93958139bda911ff96fa003eefaae6856692f5d637b5e889df9ea
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2919
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 13:14:57 GMT
Etag: "63d616d6-116"
Last-Modified: Mon, 30 Jan 2023 12:26:18 GMT
Server: ECS (amb/6BA8)
X-Cache: HIT
Content-Length: 279
www.bet365.com/olpc/nn/143/0/1/open-account
5.226.179.10200 OK 13 kB URL HTTP/1.1 www.bet365.com/olpc/nn/143/0/1/open-account
IP 5.226.179.10:0
ASN #209242 Cloudflare London, LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2285), with CRLF line terminators
Hash 6e6b3b6baf2c95a7b2bcb3add66bd342
2d2daa322bd9bbd3f3f2f865a8fc00f207e5648d
bd23488e2b67badbb8576e706bf119df6c4e808a0541a5120286efc8661969c0
GET /olpc/nn/143/0/1/open-account HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/olp/open-account?affiliate=365_01175261
Cookie: __cf_bm=UNpJd617YMo_QmFviBwFwS3vATbomGdzlM1iGy1cn08-1675084497-0-AXR+NwIkfYz6qx4NC7c03whvHMl2y6UN3thb8jbWm6Ax5KLG3rr3QQvmfIAbF04ZO+awsiuk+Tw1fMCf8ziPQ7g=
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 13:14:57 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 12834
Connection: keep-alive
Cache-Control: private
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Security-Policy: default-src 'self';script-src 'self' 'unsafe-inline' https://www.googletagmanager.com;frame-src 'self' http://members.bet365.com 'nonce-KfodNPPMgTn1B+XnSWPn5F16fKuzrjDz4e0J+ClHEgs=';style-src 'self' 'unsafe-inline';img-src 'self' data: https://content001.bet365.com/ https://content001.bet365.com/SportsContent/ 'nonce-KfodNPPMgTn1B+XnSWPn5F16fKuzrjDz4e0J+ClHEgs=';connect-src 'self' https://www.google-analytics.com http://members.bet365.com https://extra.bet365.com 'nonce-KfodNPPMgTn1B+XnSWPn5F16fKuzrjDz4e0J+ClHEgs=';font-src 'self' data: 'nonce-KfodNPPMgTn1B+XnSWPn5F16fKuzrjDz4e0J+ClHEgs=';
Last-Modified: Mon, 30 Jan 2023 11:19:55 GMT
CF-Cache-Status: HIT
Age: 6886
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 791a79404cb4b523-OSL
www.bet365.com/olpc/Content/Fonts/FTN45__W.woff2
5.226.179.10200 OK 46 kB URL HTTP/1.1 www.bet365.com/olpc/Content/Fonts/FTN45__W.woff2
IP 5.226.179.10:0
ASN #209242 Cloudflare London, LLC
File type Web Open Font Format (Version 2), TrueType, length 45892, version 1.590\012- data
Hash e3596a29429736364ebfef73786a55ab
7bd9b6b18b0985c080d520610c0ab74a128d71bd
6e28311fc68644a88a32df782c7371991894bc6a6a81f8ff70f971b4470c3751
GET /olpc/Content/Fonts/FTN45__W.woff2 HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/olpc/nn/143/0/1/open-account
Cookie: __cf_bm=UNpJd617YMo_QmFviBwFwS3vATbomGdzlM1iGy1cn08-1675084497-0-AXR+NwIkfYz6qx4NC7c03whvHMl2y6UN3thb8jbWm6Ax5KLG3rr3QQvmfIAbF04ZO+awsiuk+Tw1fMCf8ziPQ7g=
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 13:14:58 GMT
Content-Length: 45892
Connection: keep-alive
Last-Modified: Mon, 30 Jan 2023 11:18:33 GMT
CF-Cache-Status: HIT
Age: 6752
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 791a79408d36b523-OSL
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash f128d51acab1c36241a986da807e49bc
854e1e623999428e55c5b20dd2e99657408b475b
6a8651ae2412ccf32dba8e61caa588726dfed4f3b980815d68ecceb39b798e0c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 888
Cache-Control: max-age=114165
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 13:14:58 GMT
Etag: "63d6da4f-116"
Expires: Tue, 31 Jan 2023 20:57:43 GMT
Last-Modified: Sun, 29 Jan 2023 20:42:55 GMT
Server: ECS (amb/6BA8)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a2bb22f32b8a9971829ef79527ab4089
d6b4b7ba452b43f0c1a0f7791768a78d35172257
6590ddd7b1bca2837990fc3db945e774913c5a65e42d69281ad5aa3b95ab323c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5955
Cache-Control: max-age=170013
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 13:14:58 GMT
Etag: "63d7a0ac-1d7"
Expires: Wed, 01 Feb 2023 12:28:31 GMT
Last-Modified: Mon, 30 Jan 2023 10:49:16 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/s/gts1p5/jIkIsUPfARQ
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/jIkIsUPfARQ
IP 142.250.74.131:0
Hash 4bc610881f7db2164a8021c84d263c41
e58ab01796465e5c8b13ff2086a15c45dd0d87c2
091eccbe05305c258ad5e7375c151284db81c5f96e2c25933250bd0fe583baeb
POST /s/gts1p5/jIkIsUPfARQ HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 13:14:58 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ba2ca6af7b23ce2e11aa4f9d86e66269
212aef55d64b6add292dcf6241b16e7c93d1bae2
f163a94d190f5aeeb05b2e344bc8e1544d9701772b08585e9c92b529c8652b3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 13:14:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.bet365.com/members/services/host/Scripts/js/ProductCommon_v1.js
5.226.179.10200 OK 3.6 kB URL HTTP/1.1 www.bet365.com/members/services/host/Scripts/js/ProductCommon_v1.js
IP 5.226.179.10:0
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (9857), with no line terminators
Hash 8526418443f6bcfead67615247d3e38a
6935cb6ce3e37192afcd3d08ec3b2d9c18035d20
49fa8353e8973f41c38723a669bd3200fd658ba87d6c121eb45da4af631825aa
GET /members/services/host/Scripts/js/ProductCommon_v1.js HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/olpc/nn/143/0/1/open-account
Cookie: __cf_bm=UNpJd617YMo_QmFviBwFwS3vATbomGdzlM1iGy1cn08-1675084497-0-AXR+NwIkfYz6qx4NC7c03whvHMl2y6UN3thb8jbWm6Ax5KLG3rr3QQvmfIAbF04ZO+awsiuk+Tw1fMCf8ziPQ7g=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 13:14:58 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: 0
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
x-bet-hop: 1
Content-Encoding: gzip
Last-Modified: Mon, 30 Jan 2023 13:14:58 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 791a7940ad72b523-OSL
www.bet365.com/olpc/olpc-styles.css?v=ADHdDai99bBc7EkexwsG2Dy6MZFuXii0weu-ag9vIh01
5.226.179.10200 OK 125 kB URL HTTP/1.1 www.bet365.com/olpc/olpc-styles.css?v=ADHdDai99bBc7EkexwsG2Dy6MZFuXii0weu-ag9vIh01
IP 5.226.179.10:0
ASN #209242 Cloudflare London, LLC
File type Unicode text, UTF-8 text, with very long lines (335), with CRLF line terminators
Size 125 kB (124685 bytes)
Hash dd53b53b336bc4ed72b70391cdce8608
ef277ce9827cea6ac495e1628b6f123c91334745
2f4b5295a21a0883f6f1d490ead1f98e7516c077f48a758b5d12cce1a7ac44fe
GET /olpc/olpc-styles.css?v=ADHdDai99bBc7EkexwsG2Dy6MZFuXii0weu-ag9vIh01 HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/olpc/nn/143/0/1/open-account
Cookie: __cf_bm=UNpJd617YMo_QmFviBwFwS3vATbomGdzlM1iGy1cn08-1675084497-0-AXR+NwIkfYz6qx4NC7c03whvHMl2y6UN3thb8jbWm6Ax5KLG3rr3QQvmfIAbF04ZO+awsiuk+Tw1fMCf8ziPQ7g=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 13:14:58 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: public
Content-Encoding: gzip
Expires: Tue, 30 Jan 2024 11:18:33 GMT
Last-Modified: Mon, 30 Jan 2023 11:18:33 GMT
Vary: User-Agent,Accept-Encoding
CF-Cache-Status: HIT
Age: 6961
Server: cloudflare
CF-RAY: 791a7940fd34b50b-OSL
www.bet365.com/olpc/olpc-scripts.js?v=KDTjkmVXa0zSSWIyyHmLFOBOjdyHlaqJQbhw88pHAIA1
5.226.179.10200 OK 7.8 kB URL HTTP/1.1 www.bet365.com/olpc/olpc-scripts.js?v=KDTjkmVXa0zSSWIyyHmLFOBOjdyHlaqJQbhw88pHAIA1
IP 5.226.179.10:0
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (22529), with no line terminators
Hash 0f970d13f157c52f1f0e1eaa43d225c0
6e2bd108ccb272927e5f1ceef33697867862306f
5881568c0f146564710d8c30b9056ae1b2404d45e7cb09f9b455fedeabdcb821
GET /olpc/olpc-scripts.js?v=KDTjkmVXa0zSSWIyyHmLFOBOjdyHlaqJQbhw88pHAIA1 HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/olpc/nn/143/0/1/open-account
Cookie: __cf_bm=UNpJd617YMo_QmFviBwFwS3vATbomGdzlM1iGy1cn08-1675084497-0-AXR+NwIkfYz6qx4NC7c03whvHMl2y6UN3thb8jbWm6Ax5KLG3rr3QQvmfIAbF04ZO+awsiuk+Tw1fMCf8ziPQ7g=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 13:14:58 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 7792
Connection: keep-alive
Cache-Control: public
Content-Encoding: gzip
Expires: Tue, 30 Jan 2024 11:18:33 GMT
Last-Modified: Mon, 30 Jan 2023 11:18:33 GMT
Vary: User-Agent,Accept-Encoding
CF-Cache-Status: HIT
Age: 6961
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 791a79410f02b4ff-OSL
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash dc5b9d5a4d131942eaa7a69d85578ed9
6c07d16f767239e265362d7e0ee2a6326061480b
c16656966a8b3538baa339019b1aa7d7a211901cdc2720b4598d6f20234c8a14
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3325
Cache-Control: max-age=165948
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 13:14:58 GMT
Etag: "63d79b11-1d7"
Expires: Wed, 01 Feb 2023 11:20:46 GMT
Last-Modified: Mon, 30 Jan 2023 10:25:21 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
www.bet365.com/members/services/host/Scripts/js/ProductCommon_v1.js?async
5.226.179.10200 OK 700 B URL HTTP/1.1 www.bet365.com/members/services/host/Scripts/js/ProductCommon_v1.js?async
IP 5.226.179.10:0
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (991), with no line terminators
Hash dd3313f76cd56d6d49307fe617af3295
5ca769e5f5469338536e22cfa08e1f40b9c67f13
5de88e75c2ac53154a856a1c7552bdd26893323339174c2f9ffb7575acaabe59
GET /members/services/host/Scripts/js/ProductCommon_v1.js?async HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/olpc/nn/143/0/1/open-account
Cookie: __cf_bm=UNpJd617YMo_QmFviBwFwS3vATbomGdzlM1iGy1cn08-1675084497-0-AXR+NwIkfYz6qx4NC7c03whvHMl2y6UN3thb8jbWm6Ax5KLG3rr3QQvmfIAbF04ZO+awsiuk+Tw1fMCf8ziPQ7g=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 13:14:58 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: 0
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
x-bet-hop: 1
Content-Encoding: gzip
Last-Modified: Mon, 30 Jan 2023 13:14:58 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 791a7940fc3e1c06-OSL
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 968d39571e6f6e04f0e86ae1f6302282
7b0db65e7f40d0c802e37963fed9316408f3f050
89965b0c0ab88dc4e713e0a594fcafe7eb126f7ce1aef95c113292ac7827f661
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1974
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 13:14:58 GMT
Etag: "63d7030d-117"
Last-Modified: Mon, 30 Jan 2023 12:42:04 GMT
Server: ECS (amb/6BA8)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d7ebff779c3e0538541130b24f5c0d52
a5a8ead50b54c2e74049def0d89733641f3ed12f
ba8aa94e354a690150d3853e225a2b4a63bc6efe5860d775f82c7e47b4ee07f4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5421
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 13:14:58 GMT
Last-Modified: Mon, 30 Jan 2023 11:44:37 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
www.googletagmanager.com/gtm.js?id=GTM-T2BKDHM
172.217.21.168200 OK 40 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-T2BKDHM
IP 172.217.21.168:0
File type ASCII text, with very long lines (1759)
Hash 10cb2a81ec5ecc468c9aada4bde67062
a70cb11f7915eaf430228a6bbe9301198d7dbf8f
484edf0ee6922e8455f0a0c42462dc0b6c3459496687deffd22c432f52b9700b
GET /gtm.js?id=GTM-T2BKDHM HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 30 Jan 2023 13:14:58 GMT
expires: Mon, 30 Jan 2023 13:14:58 GMT
cache-control: private, max-age=900
last-modified: Mon, 30 Jan 2023 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 40206
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 8980a258f3e50e3630a8df32e1ca6874
42872f86f44e88584fac9163a90f04d54d3541a2
dc743d53c4f93958139bda911ff96fa003eefaae6856692f5d637b5e889df9ea
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2179
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 13:14:58 GMT
Last-Modified: Mon, 30 Jan 2023 12:38:39 GMT
Server: ECS (amb/6BC2)
X-Cache: HIT
Content-Length: 279
ic.aff-handler.com/c/43177?sr=1845934
217.147.127.42302 Found 305 B URL HTTP/1.1 ic.aff-handler.com/c/43177?sr=1845934
IP 217.147.127.42:0
ASN #201071 Virtual Internet Services Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 7ab7eeb5d66fad70d6b995756fb8be37
222699da0521415ec77a9e7bd8abdac58b70713b
1fcfdbbdd297fa3d7b5ace2e495d3e032e07a14395cd069ef3ab2a926fde9cce
GET /c/43177?sr=1845934 HTTP/1.1
Host: ic.aff-handler.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Pragma: no-cache
Content-Type: text/html; charset=utf-8
Expires: 0
Location: https://www.888sport.com/pt/spt/brazil-wel.htm?sr=1845934&mm_id=43177&utm_source=aff&utm_medium=casap&utm_content=100140589&utm_campaign=100140589_1845934_nodescription
Server:
X-AspNetMvc-Version: 4.0
Set-Cookie: uffiliate_click_43177_1845934_=uffiliate_click_43177_1845934_; expires=Wed, 01-Mar-2023 13:14:58 GMT; path=/; SameSite=None; Secure
srv: 1231321
Date: Mon, 30 Jan 2023 13:14:58 GMT
Content-Length: 305
www.bet365.com/members/services/host/Scripts/js/ProductCommon_v1.js?seed=AIBQwwKGAQAATP3Yj43ErWuAF_HLCRO6rUD6AkVBe4zRnDUmRHqqDAq7RdD-&PIRXTcSdwp--z=q
5.226.179.10200 OK 179 kB URL HTTP/1.1 www.bet365.com/members/services/host/Scripts/js/ProductCommon_v1.js?seed=AIBQwwKGAQAATP3Yj43ErWuAF_HLCRO6rUD6AkVBe4zRnDUmRHqqDAq7RdD-&PIRXTcSdwp--z=q
IP 5.226.179.10:0
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (65536), with no line terminators
Size 179 kB (178628 bytes)
Hash e9ee08f50f5230a349495f25e2b8b0de
ab28e309debe1771aa23f93c5738e87497720bd7
2453d7b6cf5e3f1e678138c65465bec63bdbab69971638216eb2fc5602eccf6f
GET /members/services/host/Scripts/js/ProductCommon_v1.js?seed=AIBQwwKGAQAATP3Yj43ErWuAF_HLCRO6rUD6AkVBe4zRnDUmRHqqDAq7RdD-&PIRXTcSdwp--z=q HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/olpc/nn/143/0/1/open-account
Cookie: __cf_bm=UNpJd617YMo_QmFviBwFwS3vATbomGdzlM1iGy1cn08-1675084497-0-AXR+NwIkfYz6qx4NC7c03whvHMl2y6UN3thb8jbWm6Ax5KLG3rr3QQvmfIAbF04ZO+awsiuk+Tw1fMCf8ziPQ7g=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 13:14:58 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: public, max-age=3600, immutable
x-bet-hop: 1
Content-Encoding: gzip
Last-Modified: Mon, 30 Jan 2023 13:00:00 GMT
CF-Cache-Status: HIT
Age: 897
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 791a79416de6b50b-OSL
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 97f5d5cd5bdb7f93c4bbb1080b7f358a
33501f6974926071a2c5d8faae991657b4a2e02e
30c40037ff9237d24f4330f7dd529185eb97f7f05765a4208018aa7ffaa3f81b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1323
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 13:14:58 GMT
Last-Modified: Mon, 30 Jan 2023 12:52:55 GMT
Server: ECS (amb/6BA8)
X-Cache: HIT
Content-Length: 280
promo.20bet.partners/redirect.aspx?pid=191753&bid=1971&lpid=1154
23.36.79.25307 Temporary Redirect 0 B URL HTTP/2 promo.20bet.partners/redirect.aspx?pid=191753&bid=1971&lpid=1154
IP 23.36.79.25:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect.aspx?pid=191753&bid=1971&lpid=1154 HTTP/1.1
Host: promo.20bet.partners
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
content-type: text/html
content-length: 0
location: https://20media.world/br/?btag=668128_D23E16FB1C024968B8A0592610A0718D
p3p: CP="This is not a P3P policy! It is used to bypass IEs problematic handling of cookies"
x-aspnet-version: 4.0.30319
request-context: appId=cid-v1:83ffbda4-9458-475e-90ec-4427cfb5c3b0
access-control-expose-headers: Request-Context
expires: Mon, 30 Jan 2023 13:14:58 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Mon, 30 Jan 2023 13:14:58 GMT
set-cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a191753%2c%22BID%22%3a1971%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675084498156)%5c%2f%22%2c%22CookieTag%22%3a%221971191753451240919C20231301314%22%7d%5d; SameSite=None;; domain=.20bet.partners; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; secure
NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%221081924546%7c1%22%7d%5d; domain=.20bet.partners; expires=Wed, 30-Jan-3022 13:14:58 GMT; path=/; secure; SameSite=Strict
server-timing: cdn-cache; desc=MISS, edge; dur=23, origin; dur=66
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 2f6227d3cd0474cc695566947808994f
8c366b33f37fb5326d96388cf53effdb2a2eba89
b4e0c6065706de5d5404070aa874b269eeb938371c94fd1adef463929d9dcaa5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5917
Cache-Control: max-age=128562
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 13:14:58 GMT
Etag: "63d6fee7-118"
Expires: Wed, 01 Feb 2023 00:57:40 GMT
Last-Modified: Sun, 29 Jan 2023 23:19:03 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 280
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6a1e871089dadf7fe1cee03419e6c23f
7230be0846251be08d65b8e99dfd5bc6e4901b63
2c54f1c9cb16e46efe922bd02a93b325e4c73ed2d3f77b0f551cfb8544098492
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2C54F1C9CB16E46EFE922BD02A93B325E4C73ED2D3F77B0F551CFB8544098492"
Last-Modified: Sat, 28 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21536
Expires: Mon, 30 Jan 2023 19:13:54 GMT
Date: Mon, 30 Jan 2023 13:14:58 GMT
Connection: keep-alive
wlpixbet.adsrv.eacdn.com/C.ashx?btag=a_1856b_104c_&affid=871&siteid=1856&adid=104&c=PU_BR_PA_DT_VOLD
40.127.232.184302 Found 247 B URL HTTP/1.1 wlpixbet.adsrv.eacdn.com/C.ashx?btag=a_1856b_104c_&affid=871&siteid=1856&adid=104&c=PU_BR_PA_DT_VOLD
IP 40.127.232.184:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash e9baee16123513a3f584aa4a8a5d782b
e5b78938384587d9181dd8f7b178db5560afe972
7c190b87eadb89380713a4d1bb5f4f181e80dc0b5c9d2f53d86c2ec8794614e3
GET /C.ashx?btag=a_1856b_104c_&affid=871&siteid=1856&adid=104&c=PU_BR_PA_DT_VOLD HTTP/1.1
Host: wlpixbet.adsrv.eacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: //wlpixbet.adsrv.eacdn.com/C.ashx?btag=a_1856b_104c_&affid=871&siteid=1856&adid=104&c=PU_BR_PA_DT_VOLD&AutoR=1
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
Set-Cookie: CEK=a; expires=Sun, 30-Apr-2023 13:14:58 GMT; path=/; SameSite=None; Secure
X-Powered-By: ASP.NET
X-XSS-Protection: 1; mode=block
Date: Mon, 30 Jan 2023 13:14:57 GMT
Content-Length: 247
Vary: Accept-Encoding
wlf12bet.adsrv.eacdn.com/C.ashx?btag=a_3672b_86c_&affid=2450&siteid=3672&adid=86&c=PU_BR_PA_DT_VOLD
40.127.232.184302 Found 246 B URL HTTP/1.1 wlf12bet.adsrv.eacdn.com/C.ashx?btag=a_3672b_86c_&affid=2450&siteid=3672&adid=86&c=PU_BR_PA_DT_VOLD
IP 40.127.232.184:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 23f780f6cc1789d8161533e613337164
17ae2434def516c2f3b20eca32d475c46462ee3e
dffb0f2b01f458e34367b204da7e28f8d3a2b6d7412c7c9e8a377c8a7b192b45
GET /C.ashx?btag=a_3672b_86c_&affid=2450&siteid=3672&adid=86&c=PU_BR_PA_DT_VOLD HTTP/1.1
Host: wlf12bet.adsrv.eacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: //wlf12bet.adsrv.eacdn.com/C.ashx?btag=a_3672b_86c_&affid=2450&siteid=3672&adid=86&c=PU_BR_PA_DT_VOLD&AutoR=1
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
Set-Cookie: CEK=a; expires=Sun, 30-Apr-2023 13:14:58 GMT; path=/; SameSite=None; Secure
X-Powered-By: ASP.NET
X-XSS-Protection: 1; mode=block
Date: Mon, 30 Jan 2023 13:14:57 GMT
Content-Length: 246
Vary: Accept-Encoding
ad.22betpartners.com/redirect.aspx?pid=44781&bid=1519&lpid=205
23.36.79.43307 Temporary Redirect 0 B URL HTTP/2 ad.22betpartners.com/redirect.aspx?pid=44781&bid=1519&lpid=205
IP 23.36.79.43:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect.aspx?pid=44781&bid=1519&lpid=205 HTTP/1.1
Host: ad.22betpartners.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
content-type: text/html
content-length: 0
location: https://lp.22betpartners.com/p/football-general/br/?btag=922646_A459717C39E047A0B74483180912021C
p3p: CP="This is not a P3P policy! It is used to bypass IEs problematic handling of cookies"
x-aspnet-version: 4.0.30319
request-context: appId=cid-v1:83ffbda4-9458-475e-90ec-4427cfb5c3b0
access-control-expose-headers: Request-Context
expires: Mon, 30 Jan 2023 13:14:58 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Mon, 30 Jan 2023 13:14:58 GMT
set-cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a44781%2c%22BID%22%3a1519%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675084498227)%5c%2f%22%2c%22CookieTag%22%3a%22151944781451240919C20231301314%22%7d%5d; SameSite=None;; domain=.22betpartners.com; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; secure
NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%221120651303%7c1%22%7d%5d; domain=.22betpartners.com; expires=Wed, 30-Jan-3022 13:14:58 GMT; path=/; secure; SameSite=Strict
server-timing: cdn-cache; desc=MISS, edge; dur=46, origin; dur=39
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5baab6af95646e0008ceaf8065f2edfa
90f14fee4bb5d9013b6dd86aa87948c71344f507
6794a036fc2d5f1e2d64869c1bb1a104a2060ac52f7d0ab28109b15ad80d69f5
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "6794A036FC2D5F1E2D64869C1BB1A104A2060AC52F7D0AB28109B15AD80D69F5"
Last-Modified: Mon, 30 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5326
Expires: Mon, 30 Jan 2023 14:43:44 GMT
Date: Mon, 30 Jan 2023 13:14:58 GMT
Connection: keep-alive
www.googletagmanager.com/gtag/js?id=G-45M1DQFW2B&l=dataLayer&cx=c
172.217.21.168200 OK 82 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-45M1DQFW2B&l=dataLayer&cx=c
IP 172.217.21.168:0
File type ASCII text, with very long lines (32561)
Hash 61b4c8f7d55e571aa0d0265483936687
021d7b63e351323235baa9baa8912cd2c27f54b4
dcd0d423bf57af90110c612a2b8a88d58251289b85d6c558c53ea69e85b8c375
GET /gtag/js?id=G-45M1DQFW2B&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 30 Jan 2023 13:14:58 GMT
expires: Mon, 30 Jan 2023 13:14:58 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 81800
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
members.bet365.com/Members/Helpers/DefaultAff.aspx?affiliate=365_01175261
5.226.179.10200 OK 177 B URL HTTP/1.1 members.bet365.com/Members/Helpers/DefaultAff.aspx?affiliate=365_01175261
IP 5.226.179.10:0
ASN #209242 Cloudflare London, LLC
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 475774a26d4f30240a3534bcbd2fd161
9fd7b986673786b4fc80943b330bd1c03256049e
f7541d6ca43b4da74a89ec05885dceabf1a4af132d36326cf7974a47c904c811
GET /Members/Helpers/DefaultAff.aspx?affiliate=365_01175261 HTTP/1.1
Host: members.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/
Cookie: __cf_bm=UNpJd617YMo_QmFviBwFwS3vATbomGdzlM1iGy1cn08-1675084497-0-AXR+NwIkfYz6qx4NC7c03whvHMl2y6UN3thb8jbWm6Ax5KLG3rr3QQvmfIAbF04ZO+awsiuk+Tw1fMCf8ziPQ7g=
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 13:14:58 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 177
Connection: keep-alive
Cache-Control: private
Content-Encoding: gzip
Vary: Accept-Encoding
ME-Redirect: PQB
Set-Cookie: Affiliates=Code=365_01175261%2f165477857328&prd=Sports; domain=.bet365.com; expires=Thu, 16-Mar-2023 13:14:58 GMT; path=/; secure
session=processform=0; path=/; secure
pstk=0E6468A8E1200BB3B40D5F3D1711D3B0000003; domain=.bet365.com; path=/; secure
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 791a794119390b45-OSL
br.betano.com/?btag=a_9862b_619c_PU_CD_BR_PA_DT_VOLD&utm_medium=2566&utm_source=1&siteid=9862
104.17.85.89302 Found 0 B URL HTTP/2 br.betano.com/?btag=a_9862b_619c_PU_CD_BR_PA_DT_VOLD&utm_medium=2566&utm_source=1&siteid=9862
IP 104.17.85.89:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?btag=a_9862b_619c_PU_CD_BR_PA_DT_VOLD&utm_medium=2566&utm_source=1&siteid=9862 HTTP/1.1
Host: br.betano.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Mon, 30 Jan 2023 13:14:58 GMT
content-length: 0
location: /myaccount/ban/country-341629?alt=true
x-farm: 07
x-cacheable-status: 302
age: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: no-store
cf-cache-status: DYNAMIC
set-cookie: sticky=stx31.005
__cf_bm=Hdpb6dN6xHj4Qwc45Svc2IrvlRcHizcr5xFPhxCpnPc-1675084498-0-AUozjg8AI4UN99FgM10lXp11TWC1uHzBGlG8vI5e5++ODMKP+OIIP3u/fkUiZy0IFdy3EywuGlWJC+44qm83d4o=; path=/; expires=Mon, 30-Jan-23 13:44:58 GMT; domain=.betano.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 791a7941bf10b509-OSL
X-Firefox-Spdy: h2
content001.bet365.com/SportsContent/Global/Footer/SPORTSX2-18.png
5.226.179.10200 OK 4.4 kB URL HTTP/1.1 content001.bet365.com/SportsContent/Global/Footer/SPORTSX2-18.png
IP 5.226.179.10:0
ASN #209242 Cloudflare London, LLC
File type PNG image data, 65 x 65, 8-bit/color RGBA, non-interlaced\012- data
Hash 097b1799e6f2ab026f137f91b4627384
fd6a5222f5743cccc954a311b6d30b4125179244
5af616c5e6ad0d97aa233ed4644776ca94de0cfb1a653844d8a5d9ee46e756af
GET /SportsContent/Global/Footer/SPORTSX2-18.png HTTP/1.1
Host: content001.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/
Cookie: __cf_bm=UNpJd617YMo_QmFviBwFwS3vATbomGdzlM1iGy1cn08-1675084497-0-AXR+NwIkfYz6qx4NC7c03whvHMl2y6UN3thb8jbWm6Ax5KLG3rr3QQvmfIAbF04ZO+awsiuk+Tw1fMCf8ziPQ7g=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 13:14:58 GMT
Content-Type: image/png
Content-Length: 4400
Connection: keep-alive
Last-Modified: Fri, 20 Mar 2015 09:13:01 GMT
Timing-Allow-Origin: *
CF-Cache-Status: HIT
Expires: Sat, 04 Feb 2023 13:14:58 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 791a7941e942b512-OSL
content001.bet365.com/SportsContent/Global/Footer/eCogra-Horizontal2x.png
5.226.179.10200 OK 1.7 kB URL HTTP/1.1 content001.bet365.com/SportsContent/Global/Footer/eCogra-Horizontal2x.png
IP 5.226.179.10:0
ASN #209242 Cloudflare London, LLC
File type PNG image data, 206 x 48, 8-bit colormap, non-interlaced\012- data
Hash 9c970e4a7854f871873d7b1401701536
2236689845834104a586507057840c7229c7353c
d0438c85b7b5f9c21ac9a1975ccd12464f5f8cbf15d3353ee700e2617f913349
GET /SportsContent/Global/Footer/eCogra-Horizontal2x.png HTTP/1.1
Host: content001.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/
Cookie: __cf_bm=UNpJd617YMo_QmFviBwFwS3vATbomGdzlM1iGy1cn08-1675084497-0-AXR+NwIkfYz6qx4NC7c03whvHMl2y6UN3thb8jbWm6Ax5KLG3rr3QQvmfIAbF04ZO+awsiuk+Tw1fMCf8ziPQ7g=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 13:14:58 GMT
Content-Type: image/png
Content-Length: 1671
Connection: keep-alive
Last-Modified: Wed, 11 Aug 2021 10:23:12 GMT
Timing-Allow-Origin: *
CF-Cache-Status: HIT
Expires: Sat, 04 Feb 2023 13:14:58 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 791a7941ef20b4fa-OSL
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ba2ca6af7b23ce2e11aa4f9d86e66269
212aef55d64b6add292dcf6241b16e7c93d1bae2
f163a94d190f5aeeb05b2e344bc8e1544d9701772b08585e9c92b529c8652b3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 13:14:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 2f6227d3cd0474cc695566947808994f
8c366b33f37fb5326d96388cf53effdb2a2eba89
b4e0c6065706de5d5404070aa874b269eeb938371c94fd1adef463929d9dcaa5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5989
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 13:14:58 GMT
Last-Modified: Mon, 30 Jan 2023 11:35:09 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 280
content001.bet365.com/SportsContent/Global/Footer/GordonMoody/GordonMoody-GT-x2_Grey99.png
5.226.179.10200 OK 5.3 kB URL HTTP/1.1 content001.bet365.com/SportsContent/Global/Footer/GordonMoody/GordonMoody-GT-x2_Grey99.png
IP 5.226.179.10:0
ASN #209242 Cloudflare London, LLC
File type PNG image data, 188 x 60, 8-bit gray+alpha, non-interlaced\012- data
Hash 40ed9c8ae714b944f87008ab90bb071d
32bbf71529809e6ea3521c5636838a76c7488fae
b163877ec48382be73ffdf62c6a5dc5ded37443856dde414e591dfe85b61f070
GET /SportsContent/Global/Footer/GordonMoody/GordonMoody-GT-x2_Grey99.png HTTP/1.1
Host: content001.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/
Cookie: __cf_bm=UNpJd617YMo_QmFviBwFwS3vATbomGdzlM1iGy1cn08-1675084497-0-AXR+NwIkfYz6qx4NC7c03whvHMl2y6UN3thb8jbWm6Ax5KLG3rr3QQvmfIAbF04ZO+awsiuk+Tw1fMCf8ziPQ7g=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 13:14:58 GMT
Content-Type: image/png
Content-Length: 5324
Connection: keep-alive
Last-Modified: Mon, 11 Oct 2021 13:13:24 GMT
Timing-Allow-Origin: *
CF-Cache-Status: HIT
Expires: Sat, 04 Feb 2023 13:14:58 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 791a794239c7b512-OSL
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 42f0c45d0fe4c27038649951aa5309ed
0ee2c7508034b1419afae5ca94172c77dc7817c1
33058fad9b18158cc1fea4bd4f4aec0d4edf1d04293ad0c350bb7714809637ad
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "33058FAD9B18158CC1FEA4BD4F4AEC0D4EDF1D04293AD0C350BB7714809637AD"
Last-Modified: Sat, 28 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2212
Expires: Mon, 30 Jan 2023 13:51:50 GMT
Date: Mon, 30 Jan 2023 13:14:58 GMT
Connection: keep-alive
content001.bet365.com/SportsContent/Global/Footer/MGALICENSED.png
5.226.179.10200 OK 2.0 kB URL HTTP/1.1 content001.bet365.com/SportsContent/Global/Footer/MGALICENSED.png
IP 5.226.179.10:0
ASN #209242 Cloudflare London, LLC
File type PNG image data, 88 x 44, 8-bit/color RGBA, non-interlaced\012- data
Hash d8cb8a91c78942815c69aaeea7c79162
0a36fd477b2c7d88bb67d95e806bf5838d1b39cd
057c251de5bc8825df293db443b8c9a99e01f856abe658c741a89c86b6bfa2e1
GET /SportsContent/Global/Footer/MGALICENSED.png HTTP/1.1
Host: content001.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/
Cookie: __cf_bm=UNpJd617YMo_QmFviBwFwS3vATbomGdzlM1iGy1cn08-1675084497-0-AXR+NwIkfYz6qx4NC7c03whvHMl2y6UN3thb8jbWm6Ax5KLG3rr3QQvmfIAbF04ZO+awsiuk+Tw1fMCf8ziPQ7g=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 13:14:58 GMT
Content-Type: image/png
Content-Length: 1979
Connection: keep-alive
Last-Modified: Wed, 10 Jul 2019 13:20:52 GMT
Timing-Allow-Origin: *
CF-Cache-Status: HIT
Expires: Sat, 04 Feb 2023 13:14:58 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 791a794248531bfa-OSL
content001.bet365.com/SportsContent/Global/Footer/SPORTSX1-ESSA_2.png
5.226.179.10200 OK 6.4 kB URL HTTP/1.1 content001.bet365.com/SportsContent/Global/Footer/SPORTSX1-ESSA_2.png
IP 5.226.179.10:0
ASN #209242 Cloudflare London, LLC
File type PNG image data, 162 x 35, 8-bit/color RGBA, non-interlaced\012- data
Hash 1b8c19b189cccdda7105465a474c9b4d
6ef1cecd283f484606c987259e06a22ff3aff7ae
101ca051649af6826119108f51311f70b4d58e94242c8877a2b8a9247b90f54f
GET /SportsContent/Global/Footer/SPORTSX1-ESSA_2.png HTTP/1.1
Host: content001.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/
Cookie: __cf_bm=UNpJd617YMo_QmFviBwFwS3vATbomGdzlM1iGy1cn08-1675084497-0-AXR+NwIkfYz6qx4NC7c03whvHMl2y6UN3thb8jbWm6Ax5KLG3rr3QQvmfIAbF04ZO+awsiuk+Tw1fMCf8ziPQ7g=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 13:14:58 GMT
Content-Type: image/png
Content-Length: 6386
Connection: keep-alive
Last-Modified: Tue, 04 Jun 2019 13:21:41 GMT
Timing-Allow-Origin: *
CF-Cache-Status: HIT
Expires: Sat, 04 Feb 2023 13:14:58 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 791a79424982b4ff-OSL
brazpromo.com/promo/click/625ebe7a6fad3
45.148.37.221302 Found 6.9 kB URL HTTP/1.1 brazpromo.com/promo/click/625ebe7a6fad3
IP 45.148.37.221:0
ASN #208685 Serverius Holding B.V.
Hash da3171255557c7a6dbffe1ff493d52d0
177732c0d152e53b8d0b49e12725c29fcb8c52a5
316117fe3cdb64cd1c4bf404aa2f450f6dcbb3066ad0fe133c5d73ae9d5e8a0e
GET /promo/click/625ebe7a6fad3 HTTP/1.1
Host: brazpromo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
Date: Mon, 30 Jan 2023 13:14:58 GMT
Location: https://brazino777.online/pt/game/prematch-mts?b7pm=625ebe7a6fad3&ambp=
Referrer-Policy: same-origin
Set-Cookie: __Secure-XWAFLB=461e247662dc5084a2d06b00969314f8; Path=/; Expires=Mon, 30 Jan 2023 13:29:58 GMT; HttpOnly; Secure; SameSite=Lax
__Host-SWAFS=eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.eyJfIjoiYnJhenByb21vLmNvbTkxLjkwLjQyLjE1NCJ9.ZDjYFvYZxKUILrfNkwyaoGB08xcqbaPDMkFduOzW5IB2ZVDJBddC_Pnc27evdhIMWpb7HJkTdwhNcxLCocsL6w; Path=/; Expires=Tue, 31 Jan 2023 13:14:58 GMT; HttpOnly; Secure; SameSite=Strict
language=926f8a8c972cd75f94899efbe6d499a8d22a552b%7Een; expires=Mon, 06-Feb-2023 13:14:58 GMT; Max-Age=604800; path=/
06cf2d133e0b33cb8a2a1eb1ec5b5c8b=3f04846004d70da4c919457e87db2803803bd50d%7E99; expires=Tue, 30-Jan-2024 13:14:58 GMT; Max-Age=31536000; path=/
session=b056722d7f97ce6a44a36043553ac894028c1ac4%7E63d7c2d2450528-16104404; expires=Mon, 06-Feb-2023 13:14:58 GMT; Max-Age=604800; path=/
X-Content-Type-Options: nosniff
X-Waf-Req-Id: 3d2d1fc6-0c21-461a-b37f-2464f004affc-302023
Content-Length: 0
www.br.betboo.com/pt-br/mobileportal/promotions/sports/0000-welcome-bonus-2021?sb=1&wm=5314017
104.17.133.181302 Found 449 B URL HTTP/2 www.br.betboo.com/pt-br/mobileportal/promotions/sports/0000-welcome-bonus-2021?sb=1&wm=5314017
IP 104.17.133.181:0
Hash 64ec12b36e29591b69d4a6e35717bf1d
a48ab2c07a3ac0d9b1323d8791b9530294496e35
f7f5ef00123da07426ba0ec4969106915105ea7bc6b81989a7e0538d29aeb32a
GET /pt-br/mobileportal/promotions/sports/0000-welcome-bonus-2021?sb=1&wm=5314017 HTTP/1.1
Host: www.br.betboo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Mon, 30 Jan 2023 13:14:58 GMT
content-type: text/html; charset=utf-8
location: https://help.br.betboo.com/closed?sb=1&wm=5314017
cache-control: private
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
accept-language: en-US,en;q=0.5
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
x-forwarded-for: 91.90.42.154, 172.70.246.251
x-forwarded-proto: https
cf-visitor: {"scheme":"https"}
upgrade-insecure-requests: 1
sec-fetch-dest: iframe
sec-fetch-mode: navigate
sec-fetch-site: cross-site
cf-connecting-ip: 91.90.42.154
true-client-ip: 91.90.42.154
cdn-loop: cloudflare
x-redirect-source: Redirex
cf-cache-status: DYNAMIC
set-cookie: redirex-original=http://www.br.betboo.com:80/pt-br/mobileportal/promotions/sports/0000-welcome-bonus-2021?sb=1&wm=5314017;Ip=91.90.42.154;Path=/;Domain=.betboo.com;Expires=Mon, 30-Jan-2023 13:19:58 GMT;secure;HttpOnly
__cf_bm=zWj8NI976VH8tueVcwauZtAe1X6qXgqO.i7LE0llkLc-1675084498-0-AbCkQ1bpTkj+93OahILVfwBie0bWnkY+SIM3BbSff31tb82CaBBxP3w91Wj29tK4FAk3g7jiWoZ6tQ73XQmjvDI=; path=/; expires=Mon, 30-Jan-23 13:44:58 GMT; domain=.betboo.com; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=2592000
server: cloudflare
cf-ray: 791a7940be161bfa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
content001.bet365.com/SportsContent/Global/Footer/bet365%20grey%20footer%20logo.png
5.226.179.10200 OK 7.9 kB URL HTTP/1.1 content001.bet365.com/SportsContent/Global/Footer/bet365%20grey%20footer%20logo.png
IP 5.226.179.10:0
ASN #209242 Cloudflare London, LLC
File type PNG image data, 255 x 53, 8-bit/color RGBA, non-interlaced\012- data
Hash 51325bd6f5ada6b0eba71b19dda89dd7
4c67ca4f77680cd5acdcf04cac6b9a673e5ccc70
6ad4d67eed235fafc8ddfab188fa2e968ba4345718c8338bd7f4fbfafa6f8a2b
GET /SportsContent/Global/Footer/bet365%20grey%20footer%20logo.png HTTP/1.1
Host: content001.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/
Cookie: __cf_bm=UNpJd617YMo_QmFviBwFwS3vATbomGdzlM1iGy1cn08-1675084497-0-AXR+NwIkfYz6qx4NC7c03whvHMl2y6UN3thb8jbWm6Ax5KLG3rr3QQvmfIAbF04ZO+awsiuk+Tw1fMCf8ziPQ7g=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 13:14:58 GMT
Content-Type: image/png
Content-Length: 7868
Connection: keep-alive
Last-Modified: Thu, 11 Jun 2015 14:13:32 GMT
Timing-Allow-Origin: *
CF-Cache-Status: HIT
Expires: Sat, 04 Feb 2023 13:14:58 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 791a79426be8b4f3-OSL
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a2bb22f32b8a9971829ef79527ab4089
d6b4b7ba452b43f0c1a0f7791768a78d35172257
6590ddd7b1bca2837990fc3db945e774913c5a65e42d69281ad5aa3b95ab323c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1604
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 13:14:58 GMT
Etag: "63d64f2b-1d7"
Last-Modified: Mon, 30 Jan 2023 12:48:14 GMT
Server: ECS (amb/6BA9)
X-Cache: HIT
Content-Length: 471
media.betwarrior.bet/redirect.aspx?pid=8129&bid=2636
23.36.79.17307 Temporary Redirect 0 B URL HTTP/2 media.betwarrior.bet/redirect.aspx?pid=8129&bid=2636
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect.aspx?pid=8129&bid=2636 HTTP/1.1
Host: media.betwarrior.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
content-type: text/html
content-length: 0
location: https://promo.betwarrior.bet/pt/welcome-offer-sports/?utm_source=netrefer&utm_medium=affiliates&utm_campaign=sports&btag=655952_617509A8022749D38051BF067D28C0F3
p3p: CP="This is not a P3P policy! It is used to bypass IEs problematic handling of cookies"
x-aspnet-version: 4.0.30319
request-context: appId=cid-v1:83ffbda4-9458-475e-90ec-4427cfb5c3b0
access-control-expose-headers: Request-Context
expires: Mon, 30 Jan 2023 13:14:58 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Mon, 30 Jan 2023 13:14:58 GMT
set-cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a8129%2c%22BID%22%3a2636%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675084498345)%5c%2f%22%2c%22CookieTag%22%3a%2226368129451240919C20231301314%22%7d%5d; SameSite=None;; domain=.betwarrior.bet; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; secure
NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%2233278370%7c1%22%7d%5d; domain=.betwarrior.bet; expires=Wed, 30-Jan-3022 13:14:58 GMT; path=/; secure; SameSite=Strict
server-timing: cdn-cache; desc=MISS, edge; dur=30, origin; dur=41
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/jIkIsUPfARQ
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/jIkIsUPfARQ
IP 142.250.74.131:0
Hash 4bc610881f7db2164a8021c84d263c41
e58ab01796465e5c8b13ff2086a15c45dd0d87c2
091eccbe05305c258ad5e7375c151284db81c5f96e2c25933250bd0fe583baeb
POST /s/gts1p5/jIkIsUPfARQ HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 13:14:58 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
wlpixbet.adsrv.eacdn.com/C.ashx?btag=a_1856b_104c_&affid=871&siteid=1856&adid=104&c=PU_BR_PA_DT_VOLD&AutoR=1
40.127.232.184302 Found 178 B URL HTTP/1.1 wlpixbet.adsrv.eacdn.com/C.ashx?btag=a_1856b_104c_&affid=871&siteid=1856&adid=104&c=PU_BR_PA_DT_VOLD&AutoR=1
IP 40.127.232.184:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 35f90ef845f40d17c06519210052a9a4
819379243c72c3651680d6baf2d2cc47305c7e63
773e9e3a3824d5bc11cf8e9f66873f23d1567a768215078e366cf6d6b1f25c69
GET /C.ashx?btag=a_1856b_104c_&affid=871&siteid=1856&adid=104&c=PU_BR_PA_DT_VOLD&AutoR=1 HTTP/1.1
Host: wlpixbet.adsrv.eacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: CEK=a
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: https://pixbet.com/casino/?btag=a_1856b_104c_PU_BR_PA_DT_VOLD
Server: Microsoft-IIS/10.0
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
X-AspNet-Version: 4.0.30319
Set-Cookie: XYZ=3&1&148&&&&0&1&&87828487-1546-4ce3-ab33-5ea5ba7efb00&&a_1856b_104&; expires=Sun, 30-Apr-2023 13:14:58 GMT; path=/; SameSite=None; Secure
A_104=a=104&r=0&fv=0&lv=0&vc=0&fc=20230130&lc=20230130011458&cc=1; expires=Sun, 30-Apr-2023 13:14:58 GMT; path=/; SameSite=None; Secure
PM_2=c=PU_BR_PA_DT_VOLD&s=1856&ad=104&md=0&pm=2&d=20230130131458&ip=1532635802&r=0&ref=&RedirectParams=btag%3da_1856b_104c_PU_BR_PA_DT_VOLD; expires=Sun, 30-Apr-2023 13:14:58 GMT; path=/; SameSite=None; Secure
CEK=a; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; SameSite=None; Secure
X-Powered-By: ASP.NET
X-XSS-Protection: 1; mode=block
Date: Mon, 30 Jan 2023 13:14:58 GMT
Content-Length: 178
Vary: Accept-Encoding
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 75e3c3f7509421fc0a360e6a4e8117ea
22ab6b0391747429cfc8ed801b800af6d32d1608
21d50df9138f0fd6a19a6ee6ae33aee285b4cb1d69e2f9343ad2e6b3616cac0b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "21D50DF9138F0FD6A19A6EE6AE33AEE285B4CB1D69E2F9343AD2E6B3616CAC0B"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7645
Expires: Mon, 30 Jan 2023 15:22:23 GMT
Date: Mon, 30 Jan 2023 13:14:58 GMT
Connection: keep-alive
www.888sport.com/pt/spt/brazil-wel.htm?sr=1845934&mm_id=43177&utm_source=aff&utm_medium=casap&utm_content=100140589&utm_campaign=100140589_1845934_nodescription
54.230.111.91301 Moved Permanently 0 B URL HTTP/2 www.888sport.com/pt/spt/brazil-wel.htm?sr=1845934&mm_id=43177&utm_source=aff&utm_medium=casap&utm_content=100140589&utm_campaign=100140589_1845934_nodescription
IP 54.230.111.91:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pt/spt/brazil-wel.htm?sr=1845934&mm_id=43177&utm_source=aff&utm_medium=casap&utm_content=100140589&utm_campaign=100140589_1845934_nodescription HTTP/1.1
Host: www.888sport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
content-length: 0
location: https://www.888sport.com/pt/spt/brazil-wel.htm?utm_campaign=100140589_1845934_nodescription&utm_content=100140589&utm_medium=casap&utm_source=aff
date: Mon, 30 Jan 2023 13:14:58 GMT
cache-control: max-age=1800
x-wcs-correlation-id: GelP2JrDB_XkEu5e3G2GrPDDucXWHtexjYZL2qa71LiSuyhfenFkUA==
set-cookie: 888TempQueryCookie=sr%3D1845934; max-age=60; domain=888sport.com; path=/; secure; samesite=none; httponly
888Cookie=lang%3Dpt%26OSR%3D1845934%26RefType%3DNoReferrer%26TestData%3D%7B%22mm_id%22%3A%2243177%22%2C%22orig-lp%22%3A%22https%3A%2F%2Fwww.888sport.com%2Fpt%2Fspt%2Fbrazil-wel.htm%22%2C%22referrer%22%3A%22NULL%22%2C%22utm_campaign%22%3A%22100140589_1845934_nodescription%22%2C%22utm_content%22%3A%22100140589%22%2C%22utm_medium%22%3A%22casap%22%2C%22utm_source%22%3A%22aff%22%7D; max-age=604800; domain=888sport.com; path=/; secure; samesite=none; httponly
888TempContext=testdata%3D%7B%22mm_id%22%3A%2243177%22%2C%22orig-lp%22%3A%22https%3A%2F%2Fwww.888sport.com%2Fpt%2Fspt%2Fbrazil-wel.htm%22%2C%22referrer%22%3A%22NULL%22%2C%22utm_campaign%22%3A%22100140589_1845934_nodescription%22%2C%22utm_content%22%3A%22100140589%22%2C%22utm_medium%22%3A%22casap%22%2C%22utm_source%22%3A%22aff%22%7D; max-age=60; domain=888sport.com; path=/; secure; samesite=none; httponly
apigw-requestid: fjtg5jg-DoEEJSQ=
vary: Cookie
x-cache: Miss from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: GelP2JrDB_XkEu5e3G2GrPDDucXWHtexjYZL2qa71LiSuyhfenFkUA==
X-Firefox-Spdy: h2
wlf12bet.adsrv.eacdn.com/C.ashx?btag=a_3672b_86c_&affid=2450&siteid=3672&adid=86&c=PU_BR_PA_DT_VOLD&AutoR=1
40.127.232.184302 Found 167 B URL HTTP/1.1 wlf12bet.adsrv.eacdn.com/C.ashx?btag=a_3672b_86c_&affid=2450&siteid=3672&adid=86&c=PU_BR_PA_DT_VOLD&AutoR=1
IP 40.127.232.184:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 9e33f92eb4a3843b1f2b2a1148f8057a
da3b95ed1e8ee7820e1e298e582279f4a0e1f444
8976d50eb56f774b72252a326472b56ecb598594d42c4fba7108487294012f01
GET /C.ashx?btag=a_3672b_86c_&affid=2450&siteid=3672&adid=86&c=PU_BR_PA_DT_VOLD&AutoR=1 HTTP/1.1
Host: wlf12bet.adsrv.eacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: CEK=a
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: https://f12.bet/?btag=a_3672b_86c_PU_BR_PA_DT_VOLD
Server: Microsoft-IIS/10.0
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
X-AspNet-Version: 4.0.30319
Set-Cookie: XYZ=3&1&148&&&&0&1&&b48e6195-a01f-4def-8d69-60107cd4e4a4&&a_3672b_86&; expires=Sun, 30-Apr-2023 13:14:58 GMT; path=/; SameSite=None; Secure
A_86=a=86&r=0&fv=0&lv=0&vc=0&fc=20230130&lc=20230130011458&cc=1; expires=Sun, 30-Apr-2023 13:14:58 GMT; path=/; SameSite=None; Secure
PM_2=c=PU_BR_PA_DT_VOLD&s=3672&ad=86&md=0&pm=2&d=20230130131458&ip=1532635802&r=0&ref=&RedirectParams=btag%3da_3672b_86c_PU_BR_PA_DT_VOLD; expires=Sun, 30-Apr-2023 13:14:58 GMT; path=/; SameSite=None; Secure
CEK=a; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; SameSite=None; Secure
X-Powered-By: ASP.NET
X-XSS-Protection: 1; mode=block
Date: Mon, 30 Jan 2023 13:14:58 GMT
Content-Length: 167
Vary: Accept-Encoding
lp.22betpartners.com/p/football-general/br/?btag=922646_A459717C39E047A0B74483180912021C
195.201.147.169200 OK 1.4 kB URL HTTP/1.1 lp.22betpartners.com/p/football-general/br/?btag=922646_A459717C39E047A0B74483180912021C
IP 195.201.147.169:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash c6c6b273e8be4ccec8eea9eab915ab9a
8e68c75e8847a379a21f2739645153799e7b4cdf
aade2d58d8ef87e4529a2da23525095459053de07042139464a689b22248bacc
GET /p/football-general/br/?btag=922646_A459717C39E047A0B74483180912021C HTTP/1.1
Host: lp.22betpartners.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a44781%2c%22BID%22%3a1519%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675084498227)%5c%2f%22%2c%22CookieTag%22%3a%22151944781451240919C20231301314%22%7d%5d
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 13:14:58 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
e1.o.lencr.org/
23.36.77.32200 OK 346 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 76e72541527ef1ab87f88148edfff033
75ebb9c7779399bb1bf3a4dd0ba848364619b329
0519b0334c644cc8c5c1a2a8bb20983a14fb48fb2a99b7110314806b09ca2ab4
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "0519B0334C644CC8C5C1A2A8BB20983A14FB48FB2A99B7110314806B09CA2AB4"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4908
Expires: Mon, 30 Jan 2023 14:36:46 GMT
Date: Mon, 30 Jan 2023 13:14:58 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ad100b4affa25c495c67e7174c09e500
2aa8fa2adb10e4bb9339102926e25d730fe45be6
bbdafeabeef476651e6e98d188edd8cd31da9813dde6269618d79b9d0069055a
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "BBDAFEABEEF476651E6E98D188EDD8CD31DA9813DDE6269618D79B9D0069055A"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2204
Expires: Mon, 30 Jan 2023 13:51:42 GMT
Date: Mon, 30 Jan 2023 13:14:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash af94a08b4123b6f8d152740924188b51
4acd61f1720f6b2aee38d0107c5d1c4cf2a559c6
68426380cd2661cfbc8130f5da848c7b9192fef0625d187f2101287ea9037358
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "68426380CD2661CFBC8130F5DA848C7B9192FEF0625D187F2101287EA9037358"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20985
Expires: Mon, 30 Jan 2023 19:04:43 GMT
Date: Mon, 30 Jan 2023 13:14:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a9d0596f9b833cc3a59ae57be722ff46
3ce072b106e8bd91c8a10ecb22f8ac23d276aead
6ade03c736e7960d729b8a35f4ea136049ab91a796fe37525530351095e0604d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6ADE03C736E7960D729B8A35F4EA136049AB91A796FE37525530351095E0604D"
Last-Modified: Sat, 28 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5173
Expires: Mon, 30 Jan 2023 14:41:11 GMT
Date: Mon, 30 Jan 2023 13:14:58 GMT
Connection: keep-alive
www.bet365.com/olpc/nn/143/0/1/cookieconsentajax?
5.226.179.10200 OK 1.4 kB URL HTTP/1.1 www.bet365.com/olpc/nn/143/0/1/cookieconsentajax?
IP 5.226.179.10:0
ASN #209242 Cloudflare London, LLC
File type Unicode text, UTF-8 text, with very long lines (489), with CRLF, LF line terminators
Hash 41bc7a3cb016ed2e39c03d0cc8be6b42
b18485bc2f7d8bb65434447040e3b6a7125a0509
6b68a474dc9ab3d547c5584d6a1de4360570147384669553d528ee80495e9f57
POST /olpc/nn/143/0/1/cookieconsentajax? HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.bet365.com
Connection: keep-alive
Referer: https://www.bet365.com/olpc/nn/143/0/1/open-account
Cookie: __cf_bm=UNpJd617YMo_QmFviBwFwS3vATbomGdzlM1iGy1cn08-1675084497-0-AXR+NwIkfYz6qx4NC7c03whvHMl2y6UN3thb8jbWm6Ax5KLG3rr3QQvmfIAbF04ZO+awsiuk+Tw1fMCf8ziPQ7g=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Content-Length: 0
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 13:14:58 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 1362
Connection: keep-alive
Cache-Control: private
Content-Encoding: gzip
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 791a7943c9e6b50b-OSL
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5baab6af95646e0008ceaf8065f2edfa
90f14fee4bb5d9013b6dd86aa87948c71344f507
6794a036fc2d5f1e2d64869c1bb1a104a2060ac52f7d0ab28109b15ad80d69f5
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "6794A036FC2D5F1E2D64869C1BB1A104A2060AC52F7D0AB28109B15AD80D69F5"
Last-Modified: Mon, 30 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5326
Expires: Mon, 30 Jan 2023 14:43:44 GMT
Date: Mon, 30 Jan 2023 13:14:58 GMT
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 94993d12f8e298de544dd126f23bd315
a5082ae68b31f1f42a41b562fe451c21a531ac3d
644df483ed1a9bb2955791fcafab859296120e1b6418d741b0f025972b18db45
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=166017
Date: Mon, 30 Jan 2023 13:14:58 GMT
Etag: "63d79da7-1d7"
Expires: Wed, 01 Feb 2023 11:21:55 GMT
Last-Modified: Mon, 30 Jan 2023 10:36:23 GMT
Server: ECS (dcb/7F16)
X-Cache: Miss from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: XFw-zdW97VY0TmBuvOCVMXegni8wLf5QnCDOp_PqcD_3BshwswKRHg==
Age: 2732
brazino777.online/pt/game/prematch-mts?b7pm=625ebe7a6fad3&ambp=
45.148.37.160301 Moved Permanently 162 B URL HTTP/1.1 brazino777.online/pt/game/prematch-mts?b7pm=625ebe7a6fad3&ambp=
IP 45.148.37.160:0
ASN #208685 Serverius Holding B.V.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /pt/game/prematch-mts?b7pm=625ebe7a6fad3&ambp= HTTP/1.1
Host: brazino777.online
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
Date: Mon, 30 Jan 2023 13:14:58 GMT
Location: https://brazino777.com/pt/game/prematch-mts?b7pm=625ebe7a6fad3&ambp=
Referrer-Policy: same-origin
Set-Cookie: __Host-SWAFS=eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.eyJfIjoiYnJhemlubzc3Ny5vbmxpbmU5MS45MC40Mi4xNTQifQ.Rfol8wm9J8FMnvHSSgALD2BQ04tajLtC6dKIy7Obaed-ineWBTE7JCFlz2rWhnbB60jbgPABGpn7sPUzZEGKMw; Path=/; Expires=Tue, 31 Jan 2023 13:14:58 GMT; HttpOnly; Secure; SameSite=Strict
__Secure-XWAFLB=dcb83ed6497d11cb969f2421d22c8d3c; Path=/; Expires=Mon, 30 Jan 2023 13:29:58 GMT; HttpOnly; Secure; SameSite=Lax
X-Content-Type-Options: nosniff
X-Waf-Req-Id: 314ff9fb-f8da-4a9b-9c63-076153875b2e-302023
Content-Length: 162
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 9ce7a4541dbb0510db1d574147914e18
abc81630f1bbfc63b73ffc33f30db0cea967f1f6
b68a6ccca3314e5ed6e3c6fdd283150f70619e28cd5937f16b5d2ef757feca1d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6460
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 13:14:58 GMT
Last-Modified: Mon, 30 Jan 2023 11:27:18 GMT
Server: ECS (amb/6B94)
X-Cache: HIT
Content-Length: 279
megapari.com//registration/?tag=d_2032927m_25437c_
83.147.204.197301 Moved Permanently 0 B URL HTTP/2 megapari.com//registration/?tag=d_2032927m_25437c_
IP 83.147.204.197:0
ASN #202492 Silverhill Group Holding Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET //registration/?tag=d_2032927m_25437c_ HTTP/1.1
Host: megapari.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Mon, 30 Jan 2023 13:14:58 GMT
content-type: text/html; charset=utf-8
content-length: 0
x-frame-options: SAMEORIGIN
set-cookie: SESSION=5b818cd7efdbd4c1dc005750957a70e5; path=/; secure; HttpOnly; SameSite=Lax
ua=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
auid=U5PMxWPXwtKcYH7cAyohAg==; path=/; secure; httponly; samesite=lax
location: /registration/?tag=d_2032927m_25437c_
x-reason: 100
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7b63dd18f4eb227438146b4ea3184e7c
a983bd2135c3f46388c89c57d0e744b89c60c877
eb44479a7fe6c4d488613b6ff3b9f72d361ae9d7f856561f689b9fce90af5619
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB44479A7FE6C4D488613B6FF3B9F72D361AE9D7F856561F689B9FCE90AF5619"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16975
Expires: Mon, 30 Jan 2023 17:57:53 GMT
Date: Mon, 30 Jan 2023 13:14:58 GMT
Connection: keep-alive
lp.22betpartners.com/p/football-general/br/css/style.min.css?v=1
195.201.147.169200 OK 2.8 kB URL HTTP/1.1 lp.22betpartners.com/p/football-general/br/css/style.min.css?v=1
IP 195.201.147.169:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (13631), with no line terminators
Hash 2bb6559baa4ba3ec4a8d1c358b5b5399
397259a88cb566fd9d5310da72fb7c17b055d396
a123cadff022ab305d14d89f144aa4a444e30da87b09dd26e560b1c3e4af1e67
GET /p/football-general/br/css/style.min.css?v=1 HTTP/1.1
Host: lp.22betpartners.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lp.22betpartners.com/p/football-general/br/?btag=922646_A459717C39E047A0B74483180912021C
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a44781%2c%22BID%22%3a1519%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675084498227)%5c%2f%22%2c%22CookieTag%22%3a%22151944781451240919C20231301314%22%7d%5d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 13:14:58 GMT
Content-Type: text/css
Last-Modified: Mon, 04 Apr 2022 12:33:37 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"624ae5a1-353f"
Expires: Wed, 01 Mar 2023 13:14:58 GMT
Cache-Control: max-age=2592000, private
Content-Encoding: gzip
mediaserver.entainpartners.com/renderBanner.do?zoneId=208113
104.18.10.216200 OK 578 B URL HTTP/2 mediaserver.entainpartners.com/renderBanner.do?zoneId=208113
IP 104.18.10.216:0
Hash 5ddd78dcaf7a2473956fc00a04966dfe
c8d7ccfc46798613e4920ff6bcdebb5eb7c0e742
6de8c39417de41f26b84083608e8d44d79e1b80bc015023d0c60f3221e3d1cc8
GET /renderBanner.do?zoneId=208113 HTTP/1.1
Host: mediaserver.entainpartners.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:14:58 GMT
content-type: text/html;charset=UTF-8
content-language: en-US
vary: Accept-Encoding
x-ua-compatible: IE=EmulateIE7
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
access-control-allow-origin: *
cf-cache-status: DYNAMIC
set-cookie: JSESSIONID=7FD11C865CE07D5C6074F26A59DF9A43; Path=/; HttpOnly
__cf_bm=Uf4_F6o9AybGPpppnBmlz64GhEC3KLolljYqFhYelEo-1675084498-0-AYUMPIbJ+KDOhuoWSERsEbbH7lwFh1LY+mSJdbbvGxOtFGetPqVch+kO85ZsRf4Eo2sGnYm3Nti2VQp0h5X8NK0=; path=/; expires=Mon, 30-Jan-23 13:44:58 GMT; domain=.entainpartners.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 791a79410c35b511-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
promo.betwarrior.bet/pt/welcome-offer-sports/?utm_source=netrefer&utm_medium=affiliates&utm_campaign=sports&btag=655952_617509A8022749D38051BF067D28C0F3
3.69.136.55200 OK 13 kB URL HTTP/1.1 promo.betwarrior.bet/pt/welcome-offer-sports/?utm_source=netrefer&utm_medium=affiliates&utm_campaign=sports&btag=655952_617509A8022749D38051BF067D28C0F3
IP 3.69.136.55:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3530), with CRLF, LF line terminators
Hash 9c3a7bbb58bdf96060e2c35fee8f7745
1e9d9618c23c4cd2bea758679b6a52667cabed85
401289270ba455fdb44c430c69de802f7c89cfa4e28e47daf634a13e73848c0d
GET /pt/welcome-offer-sports/?utm_source=netrefer&utm_medium=affiliates&utm_campaign=sports&btag=655952_617509A8022749D38051BF067D28C0F3 HTTP/1.1
Host: promo.betwarrior.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a8129%2c%22BID%22%3a2636%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675084498345)%5c%2f%22%2c%22CookieTag%22%3a%2226368129451240919C20231301314%22%7d%5d
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Mon, 30 Jan 2023 13:14:58 GMT
content-type: text/html; charset=utf-8
content-length: 13376
set-cookie: ubvs=bb61a20c-c856-43f1-9c6e-4143f6b4c852; Max-Age=15552000; Path=/; SameSite=Lax
ubvt=v2%7Cbb61a20c-c856-43f1-9c6e-4143f6b4c852%7Cd900212c-aaf6-4628-83f9-0172663a0851%3Aa%3Asingle; Max-Age=259200; Domain=betwarrior.bet; Path=/; SameSite=Lax
ubpv=a%2Cd900212c-aaf6-4628-83f9-0172663a0851; Max-Age=15897600; Path=/pt/welcome-offer-sports/; SameSite=Lax
content-location: https://promo.betwarrior.bet/pt/welcome-offer-sports/
etag: "a:bb61a20cc85643f19c6e4143f6b4c852"
link: <https://promo.betwarrior.bet/pt/welcome-offer-sports/>; rel="canonical"
x-unbounce-pageid: d900212c-aaf6-4628-83f9-0172663a0851
x-unbounce-variant: a
x-unbounce-visitorid: bb61a20c-c856-43f1-9c6e-4143f6b4c852
content-encoding: gzip
x-proxy-backend: page-server
lp.22betpartners.com/p/football-general/br/js/main.min.js
195.201.147.169200 OK 590 B URL HTTP/1.1 lp.22betpartners.com/p/football-general/br/js/main.min.js
IP 195.201.147.169:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (1149), with no line terminators
Hash c933761fd8b4150235af6d2bff955822
e6900aee4accba86331a4e273b7c947aa266afaf
4b6ed2592dc05747db5fca915f6d33a36151bfcf75e470d1f4f414b77fa21bcc
GET /p/football-general/br/js/main.min.js HTTP/1.1
Host: lp.22betpartners.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lp.22betpartners.com/p/football-general/br/?btag=922646_A459717C39E047A0B74483180912021C
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a44781%2c%22BID%22%3a1519%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675084498227)%5c%2f%22%2c%22CookieTag%22%3a%22151944781451240919C20231301314%22%7d%5d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 13:14:58 GMT
Content-Type: application/javascript; charset=utf-8
Last-Modified: Mon, 04 Apr 2022 12:33:43 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"624ae5a7-47d"
Expires: Wed, 01 Mar 2023 13:14:58 GMT
Cache-Control: max-age=2592000, private
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 93874f2220f997cbed0b3964601ffb0f
42e0791aa81b0f8994271f9770fb877b6d5064ff
1cd6b053715ed0ca6e666dedb239a49d36de60bc68eeb5e5d9580ba9be1276c1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=125513
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 13:14:58 GMT
Etag: "63d70a1b-117"
Expires: Wed, 01 Feb 2023 00:06:51 GMT
Last-Modified: Mon, 30 Jan 2023 00:06:51 GMT
Server: nginx
Content-Length: 279
www.platincasino.com/br/lp/sports?ma_token=AhW2lTZouYepIlHLpwHUZ2Nd7ZgqdRLk&ma_affiliate_id=2541
23.36.79.33301 Moved Permanently 162 B URL HTTP/2 www.platincasino.com/br/lp/sports?ma_token=AhW2lTZouYepIlHLpwHUZ2Nd7ZgqdRLk&ma_affiliate_id=2541
IP 23.36.79.33:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /br/lp/sports?ma_token=AhW2lTZouYepIlHLpwHUZ2Nd7ZgqdRLk&ma_affiliate_id=2541 HTTP/1.1
Host: www.platincasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
content-type: text/html
content-length: 162
location: https://www.platincasino.com/br/lp/sports
expires: Mon, 30 Jan 2023 13:14:58 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Mon, 30 Jan 2023 13:14:58 GMT
set-cookie: ma_affiliate_id=2541;domain=www.platincasino.com;path=/;max-age=31536000;expires=Fri, 01-Jan-2100 00:00:00 GMT
ma_token=AhW2lTZouYepIlHLpwHUZ2Nd7ZgqdRLk;domain=www.platincasino.com;path=/;max-age=31536000;expires=Fri, 01-Jan-2100 00:00:00 GMT
b1pi=!+8EdvH6HDNvE7cZ81GQs2bd/OrbFP3TT7TemCoQSCk34wFGsrsK9TxMIawpd/4QJU821UC5eRlsQB1U=; path=/; Httponly; Secure
ak_bmsc=C75601993E30FE2C2E50761E6360112B~000000000000000000000000000000~YAAQHU8kF27bsuKFAQAAYgfRAhJhlENJ+W0vgitV9pHAaRpyACq6eKrXeNcG42fG4WpoIiYx0XEtuY5ZhlUpxpww0xyiuhiI5r1aK5HHtH6Vu29Qvn4TB79tNNShT1Dt7/4/RuZP+UcSd67t5/SA0S63H7P5yuiDA/UJ2tLmghC+ij6rMnrYEca6UfKqpXwMmEHk38D+y/H8buRzXSHu0K+iP6Fte0UnSJ+AqOCMroypsKS7nXlofdgHffDT/2sYd8tCfUlnBNiqc24BSHqJB3+kpN+msDXwdrf4YFUPZ6AxmxyFoo7LQ+Z/apfglY54PJxjyHwxe9jvPFbIP44FruMwpo1U2z6XpKCdD/BUKTOR0cHd8yS7mNSG2YTobKK3DshDhTg9WJMGmho8IVED; Domain=.platincasino.com; Path=/; Expires=Mon, 30 Jan 2023 15:14:58 GMT; Max-Age=7200; HttpOnly
X-Firefox-Spdy: h2
lp.22betpartners.com/p/football-general/br/images/logo.png
195.201.147.169200 OK 9.9 kB URL HTTP/1.1 lp.22betpartners.com/p/football-general/br/images/logo.png
IP 195.201.147.169:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 199 x 61, 8-bit/color RGBA, non-interlaced\012- data
Hash 33ce0ee85959e0553e00665af006509d
bf3bd3f707b419ea87f85452a0b65da4474f3483
81e90429edb6b6f26a8555ffa9e9304985187565df1e13a09b31f43a8dc492eb
GET /p/football-general/br/images/logo.png HTTP/1.1
Host: lp.22betpartners.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lp.22betpartners.com/p/football-general/br/?btag=922646_A459717C39E047A0B74483180912021C
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a44781%2c%22BID%22%3a1519%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675084498227)%5c%2f%22%2c%22CookieTag%22%3a%22151944781451240919C20231301314%22%7d%5d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 13:14:58 GMT
Content-Type: image/png
Content-Length: 9934
Last-Modified: Mon, 04 Apr 2022 12:33:41 GMT
Connection: keep-alive
ETag: "624ae5a5-26ce"
Expires: Wed, 01 Mar 2023 13:14:58 GMT
Cache-Control: max-age=2592000, private
Accept-Ranges: bytes
www.platincasino.com/br/lp/sports
23.36.79.33301 Moved Permanently 430 B URL HTTP/2 www.platincasino.com/br/lp/sports
IP 23.36.79.33:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 0a3f0a4db788f26441d9bedf96509934
8841f8167c5f36cbb1951e590bdcba2b63644605
b10737dc87673f953d5f5656f89ceb5800167268f5c0cb6c9ccd909a080c30f4
GET /br/lp/sports HTTP/1.1
Host: www.platincasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
content-type: text/html; charset=UTF-8
location: https://www.platincasino.com/br/lp/sports.html
cache-tag: html
x-frame-options: SAMEORIGIN
content-length: 430
expires: Mon, 30 Jan 2023 13:14:58 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Mon, 30 Jan 2023 13:14:58 GMT
set-cookie: hl=en; expires=Tue, 30-Jan-2024 13:14:58 GMT; Max-Age=31536000; path=/
recent_games=%5B%5D; expires=Mon, 06-Feb-2023 13:14:58 GMT; Max-Age=604800; path=/; httponly; samesite=lax
b1pi=!vrR2rRD5MkbOEwN81GQs2bd/OrbFPy/DtSnmJXF3hBBIY428uLESEhi6Ec/zSIAnmnYSb4PGnz9IeMA=; path=/; Httponly; Secure
ak_bmsc=92FFAE2A3F600C83B99C8A732BE08E8F~000000000000000000000000000000~YAAQHU8kF4jbsuKFAQAAqAfRAhJYWLYCx7y/PasHdHo4alTes23VQ0IGO/rnpoGS5RmnK+LWPklGEGP7uGeSlPT7zt8Omgh6cvBDD7Mgiq6IvOBFihjd6LWUkjA7yx7b4HIhYXRCct2Oyd0By7jCDuZLqW8pMRZKyGB/VRve129qWpdaZyLW1yBfu1oxtleSxA9bH2qOgDU4sddQBZBdzQTNoCdiD1aevIAqbwMYRiUJWBTDSwDf8Bgy0tBpDKx0A8KHIcUvPbsAvZpTqszIUD5AhVpaQs95DJK/0eP4XPjs25tDDRqXp1qYZr1/BqPdX5kOtau2DVOm820EvabY0J58mXYPxklnYlwAG+17yHaXih3gK1yCF81l7Gq3BixLWnXeuZPQ8tp41mOBfvck; Domain=.platincasino.com; Path=/; Expires=Mon, 30 Jan 2023 15:14:58 GMT; Max-Age=7200; HttpOnly
X-Firefox-Spdy: h2
builder-assets.unbounce.com/published-css/main-7b78720.z.css
54.230.111.14200 OK 2.9 kB URL HTTP/2 builder-assets.unbounce.com/published-css/main-7b78720.z.css
IP 54.230.111.14:0
File type ASCII text, with very long lines (15017)
Hash 3d27e56a34e34b278ab5e182cbc3b587
b871dae022b6537150e18df2bbf266caaa013fdc
3646920461d3a5dd11dfb46a1d063bee0eaad079e9d3e9341942f24f3688401f
GET /published-css/main-7b78720.z.css HTTP/1.1
Host: builder-assets.unbounce.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.betwarrior.bet/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
content-length: 2902
date: Mon, 05 Dec 2022 01:58:05 GMT
last-modified: Wed, 23 Nov 2022 23:24:30 GMT
etag: "3d27e56a34e34b278ab5e182cbc3b587"
cache-control: max-age=31536000
content-encoding: gzip
x-amz-version-id: F0XZlkUrGu6OlrfKzU_C7UXh1V6i6hug
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0gyHm31NSwHME5prNQ4DjUGjapq9SC4MsxsTTzy0qlScsB9jSCb7Eg==
age: 4879014
X-Firefox-Spdy: h2
help.bwin.com/closed?sb=1&wm=5314018&zoneId=2081136
104.16.131.238200 OK 117 kB URL HTTP/2 help.bwin.com/closed?sb=1&wm=5314018&zoneId=2081136
IP 104.16.131.238:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (896), with CRLF, LF line terminators
Size 117 kB (117208 bytes)
Hash a12f08ebbf70e0a85fc27d598e47612c
2d76d87c4ae5df6b0b59c16b695d5cfb6cc23d45
7a7b5571cae8e100e15f9acb41d215dc3313d13876afcc9504345e236dec3f64
GET /closed?sb=1&wm=5314018&zoneId=2081136 HTTP/1.1
Host: help.bwin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __cf_bm=dd5gE1S2H4q859F8Z7RzKMOO1ueleqrC9kk9S4pndPs-1675084498-0-AZoYQVOMYo7a2389nZVlmu5rGW4UmsFqKf/UDZMx8GK0C6gMAyZ1SJfHn90j/YNJgcpmrcjpKqQGuQtoNlaxiJimt9INP+7A0oStgIUX3DTc
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:14:58 GMT
content-type: text/html; charset=utf-8
cache-control: public, max-age=900
last-modified: Mon, 30 Jan 2023 13:14:58 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=2592000
x-content-type-options: nosniff
cf-cache-status: EXPIRED
server: cloudflare
cf-ray: 791a79426e9db50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
lp.22betpartners.com/p/football-general/br/images/flags/brazilia-left.png
195.201.147.169200 OK 116 kB URL HTTP/1.1 lp.22betpartners.com/p/football-general/br/images/flags/brazilia-left.png
IP 195.201.147.169:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 770 x 656, 8-bit colormap, non-interlaced\012- data
Size 116 kB (116087 bytes)
Hash cc449ba60629274676672d885f2a6f4c
fdb2f78c0a850dc023da3ffe43314c7f3f975382
bbd03ee13eb6fc2126f7171f1f67bafee290952e86d4a1d2bbfe4c5b7a7c464e
GET /p/football-general/br/images/flags/brazilia-left.png HTTP/1.1
Host: lp.22betpartners.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lp.22betpartners.com/p/football-general/br/?btag=922646_A459717C39E047A0B74483180912021C
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a44781%2c%22BID%22%3a1519%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675084498227)%5c%2f%22%2c%22CookieTag%22%3a%22151944781451240919C20231301314%22%7d%5d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 13:14:58 GMT
Content-Type: image/png
Content-Length: 116087
Last-Modified: Mon, 04 Apr 2022 12:34:43 GMT
Connection: keep-alive
ETag: "624ae5e3-1c577"
Expires: Wed, 01 Mar 2023 13:14:58 GMT
Cache-Control: max-age=2592000, private
Accept-Ranges: bytes
20media.world/br/?btag=668128_D23E16FB1C024968B8A0592610A0718D
172.67.68.125302 Found 3.5 kB URL HTTP/2 20media.world/br/?btag=668128_D23E16FB1C024968B8A0592610A0718D
IP 172.67.68.125:0
Hash 4a8baa45fecbff51b8b9863b95788c9f
1dbc7f159b53fbd717d8cff486a39373d09aecfc
3a9ca2c9d6a36ce0283f1bc2502912ffb17c2acf9421d3b0ffd81a6be92b63af
GET /br/?btag=668128_D23E16FB1C024968B8A0592610A0718D HTTP/1.1
Host: 20media.world
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Mon, 30 Jan 2023 13:14:58 GMT
content-type: text/html; charset=UTF-8
location: https://20bet.com/br/?btag=668128_D23E16FB1C024968B8A0592610A0718D
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rrp7UxdLDcXzEJlQ9zDG4pMj75nErNku1ctTfg22geRZIpaRtfD1rThL8YaHehy%2Fdv92%2FdLoKWkVQOpW53OK6IV3w13PQ8NWIrNiNZNkxI8DC72L%2Fuhq5%2FCRceuzLhI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791a7942be01fab8-OSL
X-Firefox-Spdy: h2
lp.22betpartners.com/p/football-general/br/images/player1.png
195.201.147.169200 OK 175 kB URL HTTP/1.1 lp.22betpartners.com/p/football-general/br/images/player1.png
IP 195.201.147.169:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 384 x 452, 8-bit/color RGBA, non-interlaced\012- data
Size 175 kB (174928 bytes)
Hash 47822ec77d980986d61eee30a9281b4e
a90864d6ccbf4f36c3f39acb61acf94c0ef7c7dc
6a806bedc3301079614cac30ac9825126882a3b5c061df134c12df16eb5fc9f2
GET /p/football-general/br/images/player1.png HTTP/1.1
Host: lp.22betpartners.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lp.22betpartners.com/p/football-general/br/?btag=922646_A459717C39E047A0B74483180912021C
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a44781%2c%22BID%22%3a1519%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675084498227)%5c%2f%22%2c%22CookieTag%22%3a%22151944781451240919C20231301314%22%7d%5d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 13:14:58 GMT
Content-Type: image/png
Content-Length: 174928
Last-Modified: Mon, 04 Apr 2022 12:33:42 GMT
Connection: keep-alive
ETag: "624ae5a6-2ab50"
Expires: Wed, 01 Mar 2023 13:14:58 GMT
Cache-Control: max-age=2592000, private
Accept-Ranges: bytes
lp.22betpartners.com/p/football-general/br/images/smoke.png
195.201.147.169200 OK 76 kB URL HTTP/1.1 lp.22betpartners.com/p/football-general/br/images/smoke.png
IP 195.201.147.169:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 1556 x 291, 8-bit/color RGBA, non-interlaced\012- data
Hash d50be5749b63be4af34dbd192d53f83c
8c14c695a09c634d7af59d1325d28978506d6463
f565af44cfc2ba106b662aa2145e80eb1e4bbc5d7864b5980200d85fbb773302
GET /p/football-general/br/images/smoke.png HTTP/1.1
Host: lp.22betpartners.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lp.22betpartners.com/p/football-general/br/?btag=922646_A459717C39E047A0B74483180912021C
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a44781%2c%22BID%22%3a1519%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675084498227)%5c%2f%22%2c%22CookieTag%22%3a%22151944781451240919C20231301314%22%7d%5d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 13:14:58 GMT
Content-Type: image/png
Content-Length: 75667
Last-Modified: Mon, 04 Apr 2022 12:33:42 GMT
Connection: keep-alive
ETag: "624ae5a6-12793"
Expires: Wed, 01 Mar 2023 13:14:58 GMT
Cache-Control: max-age=2592000, private
Accept-Ranges: bytes
lp.22betpartners.com/p/football-general/br/images/slogan-bg.png
195.201.147.169200 OK 124 kB URL HTTP/1.1 lp.22betpartners.com/p/football-general/br/images/slogan-bg.png
IP 195.201.147.169:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 837 x 215, 8-bit/color RGBA, non-interlaced\012- data
Size 124 kB (124325 bytes)
Hash 8c33582db2683d7c19aa0df920421a4a
16963f8bd9260d6b1fd44ea8d32f3e91dd17fd03
9a7d5303934b795011cdd7612044d12188772c572f7eac64b410bcd89d84c08c
GET /p/football-general/br/images/slogan-bg.png HTTP/1.1
Host: lp.22betpartners.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lp.22betpartners.com/p/football-general/br/?btag=922646_A459717C39E047A0B74483180912021C
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a44781%2c%22BID%22%3a1519%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675084498227)%5c%2f%22%2c%22CookieTag%22%3a%22151944781451240919C20231301314%22%7d%5d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 13:14:58 GMT
Content-Type: image/png
Content-Length: 124325
Last-Modified: Mon, 04 Apr 2022 12:33:42 GMT
Connection: keep-alive
ETag: "624ae5a6-1e5a5"
Expires: Wed, 01 Mar 2023 13:14:58 GMT
Cache-Control: max-age=2592000, private
Accept-Ranges: bytes
www.platincasino.com/br/lp/sports.html
23.36.79.33302 Found 0 B URL HTTP/2 www.platincasino.com/br/lp/sports.html
IP 23.36.79.33:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /br/lp/sports.html HTTP/1.1
Host: www.platincasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
location: https://www.platincasino.com/no/lp/sports.html
content-length: 0
expires: Mon, 30 Jan 2023 13:14:58 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Mon, 30 Jan 2023 13:14:58 GMT
set-cookie: PHPSESSID=frgbrfgkcihgou6sckqq2ddbpi; path=/; secure; HttpOnly; SameSite=lax
b1pi=!8j4sw8MrQagTo2N81GQs2bd/OrbFP0O3IqGRK5VHFCRQj6qhgRg1KaUt8NK7POVfEjKuYD+EaEFJXbQ=; path=/; Httponly; Secure
ak_bmsc=D9F48296F9BE002724AC2B69404BC33F~000000000000000000000000000000~YAAQHU8kF6DbsuKFAQAABAjRAhJSK0ZOx/4qnNZbnav5pcC1OzgxwChKHrA+JNMM+IQZbVEZlPC5fT4xchqsXVNW54s8JDYAPWRAW3HxIhcHVXdKUKhsziy+0HaJ+1ulWe3XQidb50ud8jrUDsyg+mdda47BIwTAjoabTJkksVC/kUWuZ40ECiplOoafw+VLwNbRQty2E8tWSqzfpL/LSF/gL/LR/Q2UKcz0fBFlI19g7tGfaDIi5A5Tx4lOxU98YP4SjqI3gtEJ6jORwfxGl0LZRaYF8N8R02dFcwrJ8fC9/+BO9by9wzKVx32tkxhD5wqTktJ0uCtA0ERxQad4gWiC6ya4bih4fMeGhwJZHvIIQQVjX/+KVJOsGRnkt0Iknx+KsCpTYTDzNCbZSij0; Domain=.platincasino.com; Path=/; Expires=Mon, 30 Jan 2023 15:14:58 GMT; Max-Age=7200; HttpOnly
X-Firefox-Spdy: h2
lp.22betpartners.com/p/football-general/br/images/bg-footer.png
195.201.147.169200 OK 86 kB URL HTTP/1.1 lp.22betpartners.com/p/football-general/br/images/bg-footer.png
IP 195.201.147.169:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 1919 x 349, 8-bit/color RGBA, non-interlaced\012- data
Hash 613a257cde8cc72b94c34e337dc55db5
408e09e7fc446cc1183327382ae9009b71f5517d
acc28b2299d3e67d13b6d40468a2e9ea83906d965721283d187923e6f9b253b8
GET /p/football-general/br/images/bg-footer.png HTTP/1.1
Host: lp.22betpartners.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lp.22betpartners.com/p/football-general/br/?btag=922646_A459717C39E047A0B74483180912021C
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a44781%2c%22BID%22%3a1519%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675084498227)%5c%2f%22%2c%22CookieTag%22%3a%22151944781451240919C20231301314%22%7d%5d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 13:14:58 GMT
Content-Type: image/png
Content-Length: 86313
Last-Modified: Mon, 04 Apr 2022 12:33:40 GMT
Connection: keep-alive
ETag: "624ae5a4-15129"
Expires: Wed, 01 Mar 2023 13:14:58 GMT
Cache-Control: max-age=2592000, private
Accept-Ranges: bytes
lp.22betpartners.com/p/football-general/br/images/payment-2.png
195.201.147.169200 OK 1.9 kB URL HTTP/1.1 lp.22betpartners.com/p/football-general/br/images/payment-2.png
IP 195.201.147.169:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 37 x 22, 8-bit/color RGBA, non-interlaced\012- data
Hash 58c9f4136c5483de50346c4b714e2fcb
5c86e9512585f75c9cf4f8e551b1028f4cd753eb
fa35b8823660482a1208bc89e55448693cd3ae3ed3f0b81de47f49ea6512ec51
GET /p/football-general/br/images/payment-2.png HTTP/1.1
Host: lp.22betpartners.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lp.22betpartners.com/p/football-general/br/?btag=922646_A459717C39E047A0B74483180912021C
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a44781%2c%22BID%22%3a1519%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675084498227)%5c%2f%22%2c%22CookieTag%22%3a%22151944781451240919C20231301314%22%7d%5d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 13:14:58 GMT
Content-Type: image/png
Content-Length: 1851
Last-Modified: Mon, 04 Apr 2022 12:33:41 GMT
Connection: keep-alive
ETag: "624ae5a5-73b"
Expires: Wed, 01 Mar 2023 13:14:58 GMT
Cache-Control: max-age=2592000, private
Accept-Ranges: bytes
lp.22betpartners.com/p/football-general/br/images/payment-1.png
195.201.147.169200 OK 2.1 kB URL HTTP/1.1 lp.22betpartners.com/p/football-general/br/images/payment-1.png
IP 195.201.147.169:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 64 x 20, 8-bit/color RGBA, non-interlaced\012- data
Hash 383bfb306a462dbeecea0c63951ba5b6
d507137dbff0086b764b0e27e6bc25e8831efb8b
673146e9b4a20f9e6ba97d77c08dca9ae35d953dc8e10eeb9229695e8f40155e
GET /p/football-general/br/images/payment-1.png HTTP/1.1
Host: lp.22betpartners.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lp.22betpartners.com/p/football-general/br/?btag=922646_A459717C39E047A0B74483180912021C
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a44781%2c%22BID%22%3a1519%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675084498227)%5c%2f%22%2c%22CookieTag%22%3a%22151944781451240919C20231301314%22%7d%5d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 13:14:58 GMT
Content-Type: image/png
Content-Length: 2067
Last-Modified: Mon, 04 Apr 2022 12:33:41 GMT
Connection: keep-alive
ETag: "624ae5a5-813"
Expires: Wed, 01 Mar 2023 13:14:58 GMT
Cache-Control: max-age=2592000, private
Accept-Ranges: bytes
ajax.googleapis.com/ajax/libs/jquery/3.1.1/jquery.min.js
142.250.74.138200 OK 30 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/3.1.1/jquery.min.js
IP 142.250.74.138:0
File type ASCII text, with very long lines (32030)
Hash 04ba0252a9f264db106d4eaab8df4ccb
cf52d9b3df7839c5c64fbf33aafeced74b3db750
397852429e768ffbd12a78ce4b94f14e3ab4afabf84acb07c0bb5b7798e6e0b2
GET /ajax/libs/jquery/3.1.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.betwarrior.bet/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30244
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 13:13:41 GMT
expires: Fri, 26 Jan 2024 13:13:41 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 345677
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.jsdelivr.net/bxslider/4.2.12/jquery.bxslider.min.js
151.101.1.229200 OK 6.1 kB URL HTTP/2 cdn.jsdelivr.net/bxslider/4.2.12/jquery.bxslider.min.js
IP 151.101.1.229:0
File type ASCII text, with very long lines (23355)
Hash ea49215a394c5aa64726c7127cfaa134
964ecff00146356766b1dc9f13daf36197a93a42
2fbea21c694de25a01d2a0151629a67ab5d04af5e9e9af12f3482d672629695f
GET /bxslider/4.2.12/jquery.bxslider.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.betwarrior.bet/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
etag: W/"5bf7-z6ox3Bc9Kcb0lQd4zMXLOxqRM5Y"
content-encoding: gzip
accept-ranges: bytes
date: Mon, 30 Jan 2023 13:14:58 GMT
age: 8751018
x-served-by: cache-fra-eddf8230109-FRA, cache-bma1678-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 6087
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5ab3fc0f771043b141bf05f2b7f594a8
0e33abbb7def931e3974025cc08039241ea3a2eb
87bcd67aab5b0b63ee63fbcc030ca6fe5f80b9deee579452c74a900333c2cc2a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87BCD67AAB5B0B63EE63FBCC030CA6FE5F80B9DEEE579452C74A900333C2CC2A"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12984
Expires: Mon, 30 Jan 2023 16:51:22 GMT
Date: Mon, 30 Jan 2023 13:14:58 GMT
Connection: keep-alive
pixbet.com/casino/?btag=a_1856b_104c_PU_BR_PA_DT_VOLD
104.18.39.162403 Forbidden 4.8 kB URL HTTP/2 pixbet.com/casino/?btag=a_1856b_104c_PU_BR_PA_DT_VOLD
IP 104.18.39.162:0
Hash e68f0aa989eeb6e009da89d02285d2b1
7b6452c6c95ff3a82017d932f89a9d12e1414770
0545f4380121f5577734d073818c3b40b2f83384a57dc1be2bc185523e992b16
GET /casino/?btag=a_1856b_104c_PU_BR_PA_DT_VOLD HTTP/1.1
Host: pixbet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
date: Mon, 30 Jan 2023 13:14:58 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
set-cookie: __cf_bm=xYlOVwmpXc_lG4O0ZOrff4oH2gyxv6LUmxw0PFVAm5c-1675084498-0-AWih+s4rfHAvv2yO4CHEyHOTo1ZW9P6JgHH0fSPiEY084co5ggV8QmYfBjqpTvvE/aw3CDQfCzGDfkY123DpMgQ=; path=/; expires=Mon, 30-Jan-23 13:44:58 GMT; domain=.pixbet.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 791a7943c9bbfab4-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.jsdelivr.net/bxslider/4.2.12/jquery.bxslider.css
151.101.1.229200 OK 1.1 kB URL HTTP/2 cdn.jsdelivr.net/bxslider/4.2.12/jquery.bxslider.css
IP 151.101.1.229:0
Hash 68760c9babfe3ad5f6f4b3507194a236
f5308cff25f8bc5e02203de789f79724afe431ab
98b308dad1eb2fc50e7d452f451822f275b47ec8655c3c5b05cd8e32930fca52
GET /bxslider/4.2.12/jquery.bxslider.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.betwarrior.bet/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
etag: W/"f5e-9CY+ZfG2D1tXr+G8dDrQnwbBEmY"
content-encoding: gzip
accept-ranges: bytes
date: Mon, 30 Jan 2023 13:14:59 GMT
age: 1754647
x-served-by: cache-fra-eddf8230039-FRA, cache-bma1678-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1120
X-Firefox-Spdy: h2
b-partner.xyz/a74c621bf
172.67.218.53302 Found 2.1 kB IP 172.67.218.53:0
Hash 672cf0e5c65b0e09958672c198685ae9
2932e012b2d65f88f113ecc4d3af6376184a34a7
28d42547d197917f33da1a0bba82efa1165f59867028deee52db87cfaf676ef5
GET /a74c621bf HTTP/1.1
Host: b-partner.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Mon, 30 Jan 2023 13:14:58 GMT
content-type: text/html; charset=utf-8
location: https://bitslot.io/?stag=148527_63d7c2d2a7611a4f6145ca35&tracking_link=http%3A%2F%2Fb-partner.xyz%2Fa74c621bf
set-cookie: 73d3f1ba062585bce51f=63d7c2d2a7611a4f6145ca35; Expires=Wed, 01 Mar 2023 13:14:58 GMT
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
referrer-policy: strict-origin-when-cross-origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=T8ZDx3DOp6HzOhfIOXHXDJN2MYXd1jPhWH7oqDTDtmQLNYt%2BltYt7T2TkyFbf8lc6ozOW12%2BWZH6opgudM0fwKBWjEg4IiDEvE6J4Ay1f54VWKtlMkXK%2FD87BdcqkBBa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791a79424912fabc-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
lp.22betpartners.com/p/football-general/br/images/payment-4.png
195.201.147.169200 OK 2.4 kB URL HTTP/1.1 lp.22betpartners.com/p/football-general/br/images/payment-4.png
IP 195.201.147.169:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 118 x 20, 8-bit/color RGBA, non-interlaced\012- data
Hash 3f2ee7d2371e93e458f3a26bb87e5502
00fdd400f983073824a615bf2db51330a0e242eb
4bfd30909252b099520eb7a6d386a3734a2010acbb5244e24e475993c13ec0fd
GET /p/football-general/br/images/payment-4.png HTTP/1.1
Host: lp.22betpartners.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lp.22betpartners.com/p/football-general/br/?btag=922646_A459717C39E047A0B74483180912021C
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a44781%2c%22BID%22%3a1519%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675084498227)%5c%2f%22%2c%22CookieTag%22%3a%22151944781451240919C20231301314%22%7d%5d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 13:14:59 GMT
Content-Type: image/png
Content-Length: 2391
Last-Modified: Mon, 04 Apr 2022 12:33:41 GMT
Connection: keep-alive
ETag: "624ae5a5-957"
Expires: Wed, 01 Mar 2023 13:14:59 GMT
Cache-Control: max-age=2592000, private
Accept-Ranges: bytes
www.platincasino.com/no/lp/sports.html
23.36.79.33302 Found 298 B URL HTTP/2 www.platincasino.com/no/lp/sports.html
IP 23.36.79.33:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash c5a72b78d3a66d0581af4b52f3958d93
24a2d5779a5051e3eeb338f4b73b8ede9b6c91e9
4b9bf3fa30253a4d0e0aac81ffe2d2ddb3beb0c4fa6444f705efac246ceb0ea5
GET /no/lp/sports.html HTTP/1.1
Host: www.platincasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
location: /no/home.html
cache-tag: html
x-frame-options: SAMEORIGIN
content-length: 298
expires: Mon, 30 Jan 2023 13:14:59 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Mon, 30 Jan 2023 13:14:59 GMT
set-cookie: hl=no; expires=Tue, 30-Jan-2024 13:14:59 GMT; Max-Age=31536000; path=/
recent_games=%5B%5D; expires=Mon, 06-Feb-2023 13:14:59 GMT; Max-Age=604800; path=/; httponly; samesite=lax
b1pi=!JjIcq9FIH9snHC181GQs2bd/OrbFP8qyNV4mOtzvxgSvQUQOwvLSgY9MRT3gctcBzrwMhIYtdTNjrnI=; path=/; Httponly; Secure
ak_bmsc=EA34981A65912B3084FE57D1B03F108C~000000000000000000000000000000~YAAQHU8kF67bsuKFAQAATwjRAhJ2Onaip2Tq3oxWLn4pGb+y500IDIrF5564OM6NoGQwsM09dD2dGhYpUZ2mq7OCYCXWywnUvMoh3Z83B/YQ14jCXD+UKDP3hCEa3u01suz1K3P3J+zURZwCRw3HwvIfOZpVNNNSTqiwZLKckYyDVm4o5uZ+vYst0yWRYi0l0EgKVgch30kzEqLK8sQZXtnB7CI99BvFGK5AibOaW4TLLCxuA9Bl3LDPylG77xmYcsxmcjOyRNdzusLV1r7m4a5LwMJd4gSVBpdirY5g5zSyUwi4yPQksUSWwWTGqgsZe1xJl/hSK2Ql0W88a+R7A52Yz+ePKL8o4gZZCmIto8P194NRgY7z9DTkyWu6TzfJ4Z5EQ6wQuJpguJV05nLB; Domain=.platincasino.com; Path=/; Expires=Mon, 30 Jan 2023 15:14:58 GMT; Max-Age=7199; HttpOnly
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6236
Expires: Mon, 30 Jan 2023 14:58:55 GMT
Date: Mon, 30 Jan 2023 13:14:59 GMT
Connection: keep-alive
lp.22betpartners.com/p/football-general/br/images/payment-7.png
195.201.147.169200 OK 3.1 kB URL HTTP/1.1 lp.22betpartners.com/p/football-general/br/images/payment-7.png
IP 195.201.147.169:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 100 x 20, 8-bit/color RGBA, non-interlaced\012- data
Hash c6acd0e51b964de5285c442c6cd60b10
3ba052f3fd306f87aa4996c2226cef39edfeebe5
923a230014aa6355cc6d6ac74dbbc5f84dafd5213fb99b31dfa4a80d12ae089f
GET /p/football-general/br/images/payment-7.png HTTP/1.1
Host: lp.22betpartners.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lp.22betpartners.com/p/football-general/br/?btag=922646_A459717C39E047A0B74483180912021C
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a44781%2c%22BID%22%3a1519%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675084498227)%5c%2f%22%2c%22CookieTag%22%3a%22151944781451240919C20231301314%22%7d%5d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 13:14:59 GMT
Content-Type: image/png
Content-Length: 3127
Last-Modified: Mon, 04 Apr 2022 12:33:41 GMT
Connection: keep-alive
ETag: "624ae5a5-c37"
Expires: Wed, 01 Mar 2023 13:14:59 GMT
Cache-Control: max-age=2592000, private
Accept-Ranges: bytes
lp.22betpartners.com/p/football-general/br/images/payment-6.png
195.201.147.169200 OK 1.8 kB URL HTTP/1.1 lp.22betpartners.com/p/football-general/br/images/payment-6.png
IP 195.201.147.169:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 77 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash 5463fe1c14fc39282beb49268991f571
77ecc1a9ddc5fe2abd8dc752601df83417cf8183
9b083a0a29382a18dbbab0a793f550d76f03ed168ad69d823d935bf3126b1103
GET /p/football-general/br/images/payment-6.png HTTP/1.1
Host: lp.22betpartners.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lp.22betpartners.com/p/football-general/br/?btag=922646_A459717C39E047A0B74483180912021C
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a44781%2c%22BID%22%3a1519%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675084498227)%5c%2f%22%2c%22CookieTag%22%3a%22151944781451240919C20231301314%22%7d%5d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 13:14:59 GMT
Content-Type: image/png
Content-Length: 1750
Last-Modified: Mon, 04 Apr 2022 12:33:41 GMT
Connection: keep-alive
ETag: "624ae5a5-6d6"
Expires: Wed, 01 Mar 2023 13:14:59 GMT
Cache-Control: max-age=2592000, private
Accept-Ranges: bytes
record.platincasinoaffiliates.com/_ngIZ_9Igg2BDp78Ph1_jCGNd7ZgqdRLk/2/
104.18.189.136301 Moved Permanently 1.3 kB URL HTTP/2 record.platincasinoaffiliates.com/_ngIZ_9Igg2BDp78Ph1_jCGNd7ZgqdRLk/2/
IP 104.18.189.136:0
File type PNG image data, 16 x 26, 8-bit colormap, non-interlaced\012- data
Hash 5a13f88f19b2fdd5ff9cce9be6c6661c
c8a28cafc6377cb8ef3d923b242c01c0b22fc3a3
022bf6ad8f5b0a84b17e78da9186aad2cc05f5a3be6d229fc9889b93da8c6a0e
GET /_ngIZ_9Igg2BDp78Ph1_jCGNd7ZgqdRLk/2/ HTTP/1.1
Host: record.platincasinoaffiliates.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Mon, 30 Jan 2023 13:14:58 GMT
content-type: text/html; charset=utf-8
location: https://www.platincasino.com/br/lp/sports?ma_token=AhW2lTZouYepIlHLpwHUZ2Nd7ZgqdRLk&ma_affiliate_id=2541
cache-control: private, no-cache, must-revalidate, Cache-Control: no-cache
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *
pragma: no-cache
x-powered-by: ZBan
cf-cache-status: BYPASS
set-cookie: VID1=KSxTMFAtM0BULCM0VQpgCg%3D%3D; expires=Tue, 30-Jan-2024 13:14:58 GMT; Max-Age=31536000; path=/; secure; HttpOnly; SameSite=None
ZBan=AhW2lTZouYepIlHLpwHUZ2Nd7ZgqdRLk; expires=Tue, 30-Jan-2024 13:14:58 GMT; Max-Age=31536000; path=/; domain=.platincasinoaffiliates.com; secure; HttpOnly; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 791a79417d1fb50c-OSL
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9169e1aa-278a-45ac-a3cb-92421681099d.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9169e1aa-278a-45ac-a3cb-92421681099d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 01f406ed5d9b17a7aa00015301bddf94
d78e18830fc6cf231f66f95cc0e01520cfeebddf
33245ea764fb634a01ee9657e529a30567588ecbb10fc0e6499aac14cd21fe81
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9169e1aa-278a-45ac-a3cb-92421681099d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7333
x-amzn-requestid: 7563c72f-e40d-4e96-a73f-8aa404ae0b25
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhklyFK8IAMFzMQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e7be-7eb009311701187873f05b20;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:40:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: TtG9ZgGc6f034YegsSHOZcZw8Cp-rQwbd03IoB6rCBgAp-boKj_X4w==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:52:09 GMT
age: 55370
etag: "d78e18830fc6cf231f66f95cc0e01520cfeebddf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 65c02d8a1b0d6a210cb2a649c5c67469
027dbc7a104c922904f067ed15d696c363c11774
89d5443a1d313c632d09a583ef602aa4645a16986076387329f434262d15b0a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10997
x-amzn-requestid: a6fac0ab-1acf-4808-8785-3b4ec5e32edf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhj30FX7IAMFa5w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e698-005109ec2e76529e793678d6;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:35:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: skGKI_MWvDwpAbGibUcr8wTlimgoPU9ZYhEHltd3uhdJZ_GoNznVAA==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:53:08 GMT
age: 55311
etag: "027dbc7a104c922904f067ed15d696c363c11774"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
IP 104.18.20.226:0
Hash b161eb6ab32a46ad5426de8e86ff0a2c
b86b4f7ff7b6e5521acf69d1f3353391d4662d4e
5d59cf0a849adde6ff1d794816fb3f71e98b43dd66ddc5e33ca4c0064744d359
POST /ca/gsatlasr3dvtlsca2022q4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 13:14:59 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "88B693C71BB2FE5FE75213531EDA876422DE4624"
Expires: Tue, 31 Jan 2023 00:00:00 GMT
Last-Modified: Mon, 30 Jan 2023 12:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 1508
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 791a79478a5fb51b-OSL
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6236
Expires: Mon, 30 Jan 2023 14:58:55 GMT
Date: Mon, 30 Jan 2023 13:14:59 GMT
Connection: keep-alive
region1.google-analytics.com/g/collect?v=2&tid=G-45M1DQFW2B>m=2oe1p0&_p=1336734880&gcs=G1-0&cid=412134540.1675084511&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675084510&sct=1&seg=0&dl=https%3A%2F%2Fwww.bet365.com%2Folp%2Fopen-account%3Faffiliate%3D365_01175261&dt=%C3%85pningstilbud&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-45M1DQFW2B>m=2oe1p0&_p=1336734880&gcs=G1-0&cid=412134540.1675084511&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675084510&sct=1&seg=0&dl=https%3A%2F%2Fwww.bet365.com%2Folp%2Fopen-account%3Faffiliate%3D365_01175261&dt=%C3%85pningstilbud&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-45M1DQFW2B>m=2oe1p0&_p=1336734880&gcs=G1-0&cid=412134540.1675084511&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675084510&sct=1&seg=0&dl=https%3A%2F%2Fwww.bet365.com%2Folp%2Fopen-account%3Faffiliate%3D365_01175261&dt=%C3%85pningstilbud&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.bet365.com
Connection: keep-alive
Referer: https://www.bet365.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
access-control-allow-origin: https://www.bet365.com
date: Mon, 30 Jan 2023 13:14:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6236
Expires: Mon, 30 Jan 2023 14:58:55 GMT
Date: Mon, 30 Jan 2023 13:14:59 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 131eb343c5abd61939457d69bd371348
ffb2035cf64fc83f01db5c6f26ffa264b6aac95b
8486eb9dc6325018f8721bc6f37408f260b6e652b145280f2d778d860d3ec2d5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7538
x-amzn-requestid: 8bec493a-9c81-4cfd-b6e9-66f4f3d55cb7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fOOJQEZSoAMFb1w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf2a3b-5f0c9f3e4cac1ba26c802050;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 00:45:47 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3uybP14DBtrEK8ieNWHaQfz3Zl_JMl0_L9CGZgcusTjVCFIIaTpwIQ==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 00:23:18 GMT
age: 46301
etag: "ffb2035cf64fc83f01db5c6f26ffa264b6aac95b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6236
Expires: Mon, 30 Jan 2023 14:58:55 GMT
Date: Mon, 30 Jan 2023 13:14:59 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52796f60-dafe-46ba-9c7a-a08ce5e16c34.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52796f60-dafe-46ba-9c7a-a08ce5e16c34.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fe31ee140c2fd62e616c8a1edc9e78bb
7aa5fbdc8156514770ae620e81f1afef1c77890f
799af4bf9fa07ed27ebdc9d1a3344ee8a2b6529f076c263495b93290c47a1cc4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52796f60-dafe-46ba-9c7a-a08ce5e16c34.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8464
x-amzn-requestid: bf2cf356-ebb1-469b-ba35-a79bb009cad6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhj3qGeboAMFzNw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e697-7c96841f52b6a96d1b0eaf34;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:35:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: UNub7Gd4S0ogn5EJhtJVu8q1qML5_4eL2lIPQXiAuXy_q-XiR4s-5w==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:55:21 GMT
etag: "7aa5fbdc8156514770ae620e81f1afef1c77890f"
content-type: image/jpeg
age: 55178
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 419515f9ae0cf2ae08ab911e0a2edf92
2e022c370c39d22eed0686dfa9ef4d19af18741d
7f0126e196c79c53cadbedc3b7d2dee2f07ad2b67f6b17e4a721a443100a7493
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 30 Jan 2023 13:14:59 GMT
Last-Modified: Mon, 30 Jan 2023 12:55:55 GMT
Server: ECS (bsa/EB1B)
X-Cache: Miss from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: xfrMNdie_wBQDPZEJTKS3ZU0bi0sFLFL2Hczdcad3dBPZpCDrAqgtA==
Age: 1144
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 419515f9ae0cf2ae08ab911e0a2edf92
2e022c370c39d22eed0686dfa9ef4d19af18741d
7f0126e196c79c53cadbedc3b7d2dee2f07ad2b67f6b17e4a721a443100a7493
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 30 Jan 2023 13:14:59 GMT
Last-Modified: Mon, 30 Jan 2023 11:57:33 GMT
Server: ECS (nyb/1D28)
X-Cache: Miss from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: w6QKN5QynKMs-iK6h0EYvpgAxOUsMvpDsPuP4KFe9dBUcrvvWoqcDw==
Age: 4646
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 419515f9ae0cf2ae08ab911e0a2edf92
2e022c370c39d22eed0686dfa9ef4d19af18741d
7f0126e196c79c53cadbedc3b7d2dee2f07ad2b67f6b17e4a721a443100a7493
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=114677
Date: Mon, 30 Jan 2023 13:14:59 GMT
Etag: "63d6cefd-1d7"
Expires: Tue, 31 Jan 2023 21:06:16 GMT
Last-Modified: Sun, 29 Jan 2023 19:54:37 GMT
Server: ECS (nyb/1D23)
X-Cache: Miss from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: imi4znjNYnlxZfVnI9rkVROlmmkayECaKndz59G7odRyCHQXejuPSQ==
Age: 4300
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 419515f9ae0cf2ae08ab911e0a2edf92
2e022c370c39d22eed0686dfa9ef4d19af18741d
7f0126e196c79c53cadbedc3b7d2dee2f07ad2b67f6b17e4a721a443100a7493
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=113685
Date: Mon, 30 Jan 2023 13:14:59 GMT
Etag: "63d6cefd-1d7"
Expires: Tue, 31 Jan 2023 20:49:44 GMT
Last-Modified: Sun, 29 Jan 2023 19:54:37 GMT
Server: ECS (nyb/1D2C)
X-Cache: Miss from cloudfront
Via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: n4Huzur2ALTr2toiSQA_a-91rhwHsN2lBxlmxQf3WB9OTVo1jtZOgg==
Age: 3307
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 419515f9ae0cf2ae08ab911e0a2edf92
2e022c370c39d22eed0686dfa9ef4d19af18741d
7f0126e196c79c53cadbedc3b7d2dee2f07ad2b67f6b17e4a721a443100a7493
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 30 Jan 2023 13:14:59 GMT
Last-Modified: Mon, 30 Jan 2023 11:49:55 GMT
Server: ECS (bsa/EB1E)
X-Cache: Miss from cloudfront
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: SPNiRTU55dVW9miNhbIlAXjbdVPHj1vN4esR-nggtv9I-lXR4ByGwA==
Age: 5104
s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_santander.svg
16.12.0.36200 OK 4.7 kB URL HTTP/1.1 s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_santander.svg
IP 16.12.0.36:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 8853bd27115e397897bd4cb017b25974
9222a4bb2bd074051219f421d091645205cfe469
07602828f362a01f43ad6b884638f7761f7abf4b7aff304fe3e80649288e78c6
GET /static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_santander.svg HTTP/1.1
Host: s3.sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.betwarrior.bet/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: pg5m9x9y6T+/KyPagplJGwTFikr6srt/Avrjn2upWaM6GUT8plEYSnXdPkdKIIDQJ2KKXeAk4uA=
x-amz-request-id: 50X68NH57496RC4W
Date: Mon, 30 Jan 2023 13:15:00 GMT
Last-Modified: Mon, 17 May 2021 12:27:05 GMT
ETag: "8853bd27115e397897bd4cb017b25974"
Accept-Ranges: bytes
Content-Type: image/svg+xml
Server: AmazonS3
Content-Length: 4744
s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_caixa.svg
16.12.0.36200 OK 1.8 kB URL HTTP/1.1 s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_caixa.svg
IP 16.12.0.36:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 323d0b17d617eaabfb65e89cda2f23ad
17785ed5e122e73a467223ac2dc3caeadfaa1b25
676de7d4c29d435dca8dc96f33889ed90612cabdc8bf91b6cf2f41eaac197bb4
GET /static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_caixa.svg HTTP/1.1
Host: s3.sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.betwarrior.bet/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 0iA/Ra56sefIKo1BXMw+MCMA0u/BcXqQeB54Qgz7RxRXWImK/YWsjAeEv8ymhAqeHdg7mO7ObuE=
x-amz-request-id: 50X426H0RBKBN0KS
Date: Mon, 30 Jan 2023 13:15:00 GMT
Last-Modified: Mon, 17 May 2021 12:27:05 GMT
ETag: "323d0b17d617eaabfb65e89cda2f23ad"
Accept-Ranges: bytes
Content-Type: image/svg+xml
Server: AmazonS3
Content-Length: 1800
s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_neteller.svg
16.12.0.36200 OK 1.1 kB URL HTTP/1.1 s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_neteller.svg
IP 16.12.0.36:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash b01a178a2ffa74630c0daa6d67a26f25
a71b96b59534b6b2f334f03106a9db91f07faf14
b02f9215394cd32d597063108bf93fc486908a37073a6d949ca53b82252218a3
GET /static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_neteller.svg HTTP/1.1
Host: s3.sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.betwarrior.bet/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 55cOlZxvYbPbjjDuDCxm3dVXM7tf7+1AKsaKxY4A4e5WnffWoTrbwzeecf0/g5Wc8iNhtNNNcoA=
x-amz-request-id: 50X94W0VNNZT9HH5
Date: Mon, 30 Jan 2023 13:15:00 GMT
Last-Modified: Mon, 17 May 2021 12:27:05 GMT
ETag: "b01a178a2ffa74630c0daa6d67a26f25"
Accept-Ranges: bytes
Content-Type: image/svg+xml
Server: AmazonS3
Content-Length: 1143
s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_itau.svg
16.12.0.36200 OK 1.6 kB URL HTTP/1.1 s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_itau.svg
IP 16.12.0.36:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash ab7b5d27de627aa677fc8a285b942781
e36f294ec5bcf22f615e4af9329bdcf81fce6ee3
e8712dfee5f2d1b764ed7c69be66d4d1bc8dc0a0f2197e942387aa19f99e88a3
GET /static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_itau.svg HTTP/1.1
Host: s3.sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.betwarrior.bet/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: nolB0EJj6lc+Xp5igfPU+JmMoZFR/InW1CHoDCHeKzTaDUUdJ6SPGlRg5v+RZ0MVAJEW1HMgMME=
x-amz-request-id: 50X97ENEC67V4K6Q
Date: Mon, 30 Jan 2023 13:15:00 GMT
Last-Modified: Mon, 17 May 2021 12:27:05 GMT
ETag: "ab7b5d27de627aa677fc8a285b942781"
Accept-Ranges: bytes
Content-Type: image/svg+xml
Server: AmazonS3
Content-Length: 1608
s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_boleto.svg
16.12.0.36200 OK 4.1 kB URL HTTP/1.1 s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_boleto.svg
IP 16.12.0.36:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 06dfa71b9b2f3027e91a1bfeaff6948b
fe5c02d6e5f4f7a53b80cc973e418ae572d8df09
dc6458d733eb6bcf84ee37054ddf5bb8d7d3de5ea308f3f765c74aa05e782c40
GET /static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_boleto.svg HTTP/1.1
Host: s3.sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.betwarrior.bet/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: DU9G09sSbd2NA3KPu2tpuhOPINpJJLy2lYTjlSM3XZdv7BtTDFlnK4KCA/6oDR7noVFTaCG7oWQ=
x-amz-request-id: 50X92CQMVYXQ234M
Date: Mon, 30 Jan 2023 13:15:00 GMT
Last-Modified: Mon, 17 May 2021 12:27:04 GMT
ETag: "06dfa71b9b2f3027e91a1bfeaff6948b"
Accept-Ranges: bytes
Content-Type: image/svg+xml
Server: AmazonS3
Content-Length: 4070
bc.game/landing/sports-br?i=4cxse6dr&stag=17409_63d7c2d2a7611a4f6145ca2e&utm_source=4cxse6dr
104.18.37.127200 OK 33 kB URL HTTP/2 bc.game/landing/sports-br?i=4cxse6dr&stag=17409_63d7c2d2a7611a4f6145ca2e&utm_source=4cxse6dr
IP 104.18.37.127:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (16620)
Hash 5218b8e5cc5486e6515868a8a25f2aeb
56d71a51505cccf57fde0256a61a12db6732fbc5
a1231f32c540db75cc06cf903cbacb34149bffc2ea89812eec35234403a7be15
GET /landing/sports-br?i=4cxse6dr&stag=17409_63d7c2d2a7611a4f6145ca2e&utm_source=4cxse6dr HTTP/1.1
Host: bc.game
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:14:58 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
x-powered-by: Express
cache-control: max-age=8640000
cf-cache-status: MISS
server: cloudflare
cf-ray: 791a79433b23fac0-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_bradesco.svg
16.12.0.36200 OK 5.3 kB URL HTTP/1.1 s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_bradesco.svg
IP 16.12.0.36:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 1169d06998c13730c801af0013ae1777
62789d89ee71ba43dc193c00526f98a3c85f37e7
6c00b3a10624494369b709b92532999450b43743e8324fcdf0012f0571f26112
GET /static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_bradesco.svg HTTP/1.1
Host: s3.sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.betwarrior.bet/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: g6c4d6gv74yN1gDcF7f023sE5F+NHzFWk34qPJ4UBdT0yELjbB0O7iqm1YaQe+p2Mfbhljy+LLo=
x-amz-request-id: 50X3DSC0SVSQ7K4H
Date: Mon, 30 Jan 2023 13:15:00 GMT
Last-Modified: Mon, 17 May 2021 12:27:04 GMT
ETag: "1169d06998c13730c801af0013ae1777"
Accept-Ranges: bytes
Content-Type: image/svg+xml
Server: AmazonS3
Content-Length: 5288
s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_vcreditos.svg
16.12.0.36200 OK 3.6 kB URL HTTP/1.1 s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_vcreditos.svg
IP 16.12.0.36:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash a31ceb42356f3ef5aa00b9d8bb433ce1
e9cf88261cef92c0b58864a58e58e9d5f8215c02
e35676900ecf259d14f8969f3955d32a3dcfc250a83c2cc3726f9827c2b98d2f
GET /static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_vcreditos.svg HTTP/1.1
Host: s3.sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.betwarrior.bet/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: GLsrtuTCsdaOj70ck1Wp9rzCxiQmdmom/EV7Xf47uBB/ylY/+bf2rSj6jLPYTC6OR+1yD50TDNM=
x-amz-request-id: 50XDC4STXY93YT2B
Date: Mon, 30 Jan 2023 13:15:00 GMT
Last-Modified: Mon, 17 May 2021 12:27:05 GMT
ETag: "a31ceb42356f3ef5aa00b9d8bb433ce1"
Accept-Ranges: bytes
Content-Type: image/svg+xml
Server: AmazonS3
Content-Length: 3550
s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_banco_do_brasil.svg
16.12.0.36200 OK 3.9 kB URL HTTP/1.1 s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_banco_do_brasil.svg
IP 16.12.0.36:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash c9fa306c7fdeda6c997c62f9bd51c6e8
dba8935682eed1aafd9627c3f413ef24b1ef6245
bed50d50ea152b8818fd9c3605d730de9ff21e6f94b983c3b806243c1a5af4f1
GET /static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_banco_do_brasil.svg HTTP/1.1
Host: s3.sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.betwarrior.bet/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 3zPuJNMcG6fhxyyYzlzLy5QNWG/iUFZeNoOZpMrQrcaKh8SHArp813+Koz1PV6rKgAK/FmixSmI=
x-amz-request-id: 50XB8RK5NHNN8ARA
Date: Mon, 30 Jan 2023 13:15:00 GMT
Last-Modified: Mon, 17 May 2021 12:27:04 GMT
ETag: "c9fa306c7fdeda6c997c62f9bd51c6e8"
Accept-Ranges: bytes
Content-Type: image/svg+xml
Server: AmazonS3
Content-Length: 3928
s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_banrisul.svg
16.12.0.36200 OK 3.8 kB URL HTTP/1.1 s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_banrisul.svg
IP 16.12.0.36:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash ff04a04e27bce74e43c48b79a31a5cdd
ec16e07f904f3609cd298979cb1630226583e9c3
83eb14ee6661b60feb5cd7cccb440607df5df626292c8e9637be9e18ca6a945e
GET /static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_banrisul.svg HTTP/1.1
Host: s3.sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.betwarrior.bet/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: XiZpnO+lzAl1x2z75eI7I37Ufr7vFOv3/gwXy2uL1dHXulDt1Sf21XxW7wv9Ec1UpCY6OOqbZEc=
x-amz-request-id: 50XFQBA7AMK40TZH
Date: Mon, 30 Jan 2023 13:15:00 GMT
Last-Modified: Mon, 17 May 2021 12:27:04 GMT
ETag: "ff04a04e27bce74e43c48b79a31a5cdd"
Accept-Ranges: bytes
Content-Type: image/svg+xml
Server: AmazonS3
Content-Length: 3823
s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_banco_original.svg
16.12.0.36200 OK 5.9 kB URL HTTP/1.1 s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_banco_original.svg
IP 16.12.0.36:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 0882f0f5a300a9d0e9bedbbd2d8a2d78
f08746a9e248529d4009005b6b9600d6784df0da
68fa88c175526ad3bfe138a802394f21a4bddb6338c21ecf019d2051bd44b5a5
GET /static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_banco_original.svg HTTP/1.1
Host: s3.sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.betwarrior.bet/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: QaxdvvWTtWfdt4leSkeCDwPVzh6GPtBnz6OYB97+8yhSIs5TLySkidiQu378RXSguH3JC5A8Q5Y=
x-amz-request-id: 50X3845J3NGSABMX
Date: Mon, 30 Jan 2023 13:15:00 GMT
Last-Modified: Mon, 17 May 2021 12:27:04 GMT
ETag: "0882f0f5a300a9d0e9bedbbd2d8a2d78"
Accept-Ranges: bytes
Content-Type: image/svg+xml
Server: AmazonS3
Content-Length: 5942
s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_ecopayz.svg
16.12.0.36200 OK 3.8 kB URL HTTP/1.1 s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_ecopayz.svg
IP 16.12.0.36:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 82a8c1737556f9bf44d17e450393a191
48bca79f7fb606c4ad5fa5c36c0e01066f2e1d75
0ea54ac9ab54895a8cbacfeafe629f9d5fe42c1acdb1834cc43d8100290cad6e
GET /static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_ecopayz.svg HTTP/1.1
Host: s3.sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.betwarrior.bet/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: p1ZivxWlJeT7R21YhvYP2e8rY8O8/9IGvTgWooVH2K7mg6QqZhmYvE+mbfQn47UAN4/17ykRGks=
x-amz-request-id: P7RTGWM2X269YR26
Date: Mon, 30 Jan 2023 13:15:01 GMT
Last-Modified: Mon, 17 May 2021 12:27:05 GMT
ETag: "82a8c1737556f9bf44d17e450393a191"
Accept-Ranges: bytes
Content-Type: image/svg+xml
Server: AmazonS3
Content-Length: 3787
www.brazino-cdnsrv-cst.org/build/app.f8dfeb3a.css?v10263
185.76.9.21200 OK 346 kB URL HTTP/2 www.brazino-cdnsrv-cst.org/build/app.f8dfeb3a.css?v10263
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
Size 346 kB (346124 bytes)
Hash 03789510c2ef869abc3254c428d5527a
256ea0b50142b3bd402eaf03c6a6b25b852fa71a
22b92149dc2fbff36bc647b02ab84bd8ee69c50425b32f4ca0b1f9606f56ef6f
GET /build/app.f8dfeb3a.css?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:00 GMT
content-type: text/css
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"63aaf640-12aa2"
expires: Wed, 27 Dec 2023 13:49:14 GMT
last-modified: Tue, 27 Dec 2022 13:42:24 GMT
referrer-policy: same-origin
vary: Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: 4703b93d-5d87-453b-8fc2-68874eede269-3612022
x-accel-expires: @1703684954
server: CDN77-Turbo
x-77-nzt: AblMCRRKgjD/+sosAA
x-77-nzt-ray: af585630d00c596fd4c2d763a302730b
x-cache: HIT
x-age: 2935546
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_skrill.svg
16.12.0.36200 OK 1.4 kB URL HTTP/1.1 s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_skrill.svg
IP 16.12.0.36:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 480fbc2cb227ed53c815954cf150c86f
bfb5ffde0af383141abd65ba2ee599899457ce1e
480d0dc472f4e02acb903a68cde23bfcccf12382ff96df42d4775de9530c6e43
GET /static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_skrill.svg HTTP/1.1
Host: s3.sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.betwarrior.bet/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: ZUEoxeSi+d3mTE1LDNyWrA9NeQ+z33jmKE7OE9572qrMRXYojKKm0vYsJL3o0odUWXYGoADkYsw=
x-amz-request-id: P7RZAP3MS5S0TJQV
Date: Mon, 30 Jan 2023 13:15:01 GMT
Last-Modified: Mon, 17 May 2021 12:27:05 GMT
ETag: "480fbc2cb227ed53c815954cf150c86f"
Accept-Ranges: bytes
Content-Type: image/svg+xml
Server: AmazonS3
Content-Length: 1354
s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_payfun.svg
16.12.0.36200 OK 5.3 kB URL HTTP/1.1 s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_payfun.svg
IP 16.12.0.36:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash a64820b91d10fd4f986eff1ed262fafd
3b27421553ada42ef958a080c3869a751bf068d9
ad11bf8e95679d1ff9496f6d25b23d69b6541a8b64a8274da91797709bb3f116
GET /static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_payfun.svg HTTP/1.1
Host: s3.sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.betwarrior.bet/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: tGyKEtFu+j8ovXSM+rNza09TU4K/uxUQGpDjosZ15COlmkj00SxHLl2c/jF3iKmTUJbv7mh2A7I=
x-amz-request-id: P7RN6NYXG33WA5BZ
Date: Mon, 30 Jan 2023 13:15:01 GMT
Last-Modified: Mon, 17 May 2021 12:27:05 GMT
ETag: "a64820b91d10fd4f986eff1ed262fafd"
Accept-Ranges: bytes
Content-Type: image/svg+xml
Server: AmazonS3
Content-Length: 5300
br.betano.com/myaccount/ban/country-341629?alt=true
104.17.85.89200 OK 6.7 kB URL HTTP/2 br.betano.com/myaccount/ban/country-341629?alt=true
IP 104.17.85.89:0
Hash d56ed9c96fddc488866e867ebb38cc53
5e97126559bf9e0c5be1aea8f23719bc28004bd3
35d0ab796af512860644a29d488302a3a11f4adc13397bcdc77b1576777318cd
GET /myaccount/ban/country-341629?alt=true HTTP/1.1
Host: br.betano.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __cf_bm=Hdpb6dN6xHj4Qwc45Svc2IrvlRcHizcr5xFPhxCpnPc-1675084498-0-AUozjg8AI4UN99FgM10lXp11TWC1uHzBGlG8vI5e5++ODMKP+OIIP3u/fkUiZy0IFdy3EywuGlWJC+44qm83d4o=
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:14:58 GMT
content-type: text/html; charset=utf-8
content-security-policy: frame-ancestors https://*.betano.com:*
x-farm: BR-MYACCOUNT17
age: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: no-store
set-cookie: __RequestVerificationToken=RSkGBnD7PvyMRBbPJNxU3YvpQ0dpMreEkq7XnIHUfLCYXA2IYCRhXp3qEHVU6P4YAc_MOb--9C0MgidKs3a6jM1wi7r696cx05sHoLO3h6M1; path=/; secure; HttpOnly
sticky=stx46.773
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 791a79423fc9b509-OSL
content-encoding: br
X-Firefox-Spdy: h2
builder-assets.unbounce.com/published-js/main.bundle-fed11df.z.js
54.230.111.14200 OK 36 kB URL HTTP/2 builder-assets.unbounce.com/published-js/main.bundle-fed11df.z.js
IP 54.230.111.14:0
Hash 90f265f54474b43c15a34bea231681b0
0c499437daa4087fccf5bfb707352b17d78aaefb
bf99430c460e78e102d75b05239b2d51a68e7f253dd781802e0696e9bfec0f60
GET /published-js/main.bundle-fed11df.z.js HTTP/1.1
Host: builder-assets.unbounce.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.betwarrior.bet/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 33154
date: Sat, 12 Nov 2022 03:50:10 GMT
last-modified: Tue, 18 Jan 2022 21:17:50 GMT
etag: "0baa7928a61eec0ae7b70702e0a16542"
cache-control: max-age=31536000
content-encoding: gzip
x-amz-version-id: unUaqO9013Xc011S.3KQRlXYPC3pdAjV
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 7Ac2Kuqu8slmN4pSmDFhC6IahREYqtI8XBlJIvtyMUJtaRjh_ZDH4Q==
age: 6859490
X-Firefox-Spdy: h2
www.brazino-cdnsrv-cst.org/build/5666.5a30bb8f.js?v10263
185.76.9.21200 OK 21 kB URL HTTP/2 www.brazino-cdnsrv-cst.org/build/5666.5a30bb8f.js?v10263
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
Hash 63d2f970eb2bff9d0c4e1d6bb089bf6e
37c64aefeac49e2c4241dff28ede55e2209cfb4f
c0b520f48f1c28eca81d639e81bcb1ac627ab375adc4a2e91f16eb5c7431bbb6
GET /build/5666.5a30bb8f.js?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:00 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"63651122-19bb"
expires: Sat, 04 Nov 2023 14:39:22 GMT
last-modified: Fri, 04 Nov 2022 13:18:26 GMT
referrer-policy: same-origin
vary: Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: d50fd946-ff11-4ba8-95e6-03ad6261aeeb-3082022
x-accel-expires: @1699108762
server: CDN77-Turbo
x-77-nzt: AblMCRTcDF7/up5yAA
x-77-nzt-ray: af585630d00c596fd4c2d7638597740c
x-cache: HIT
x-age: 7511738
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.brazino-cdnsrv-cst.org/build/vueLocaleBlock.edd5b843.js?v10263
185.76.9.21200 OK 23 kB URL HTTP/2 www.brazino-cdnsrv-cst.org/build/vueLocaleBlock.edd5b843.js?v10263
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
Hash a3cd6590cbc7510497413d129f104c8e
0eb49d2d715512de9f3f9bacf70fa20dd2ff537b
8d25b0221ac74cb5d28454823da2de58349f59494f2cc06b82967e1eb189eb94
GET /build/vueLocaleBlock.edd5b843.js?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:00 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"6399e1a5-1c45"
expires: Thu, 14 Dec 2023 14:48:46 GMT
last-modified: Wed, 14 Dec 2022 14:45:57 GMT
referrer-policy: same-origin
vary: Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: 4e3a235f-d265-4a24-a4c6-066bbea393d6-3482022
x-accel-expires: @1702565326
server: CDN77-Turbo
x-77-nzt: AblMCRQ8IG//huA9AA
x-77-nzt-ray: af585630d00c596fd4c2d763c4bb0a0c
x-cache: HIT
x-age: 4055174
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_much_better.svg
16.12.0.36200 OK 6.4 kB URL HTTP/1.1 s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_much_better.svg
IP 16.12.0.36:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 6bd9449858dd1fc6d651a669742013a0
7a8afc8b5ce49b038712b210d4cddcf1bb96626d
6e00b84dc119b9e4438dbc4866c01326859ba83ff584a680f7c49eef2829289a
GET /static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_much_better.svg HTTP/1.1
Host: s3.sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.betwarrior.bet/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 8/7x5fRDz7h6OKKBex3hMIw1OHPEt8YowRqNUG6nAhtjuD+OSk9GhedMhxbQJHnMSxGbbjewhqI=
x-amz-request-id: P7RSDGR06GXYWN7T
Date: Mon, 30 Jan 2023 13:15:01 GMT
Last-Modified: Mon, 17 May 2021 12:27:05 GMT
ETag: "6bd9449858dd1fc6d651a669742013a0"
Accept-Ranges: bytes
Content-Type: image/svg+xml
Server: AmazonS3
Content-Length: 6432
www.brazino-cdnsrv-cst.org/build/runtime.c126acad.js?v10263
185.76.9.21200 OK 99 kB URL HTTP/2 www.brazino-cdnsrv-cst.org/build/runtime.c126acad.js?v10263
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
Hash e4c70e3a6b2a881a1846ff6372882ac2
410be879b068553a24c033ae3aa6f0615e63899a
29f0b6fa4c0a73caacca35894a362cfccdedd14f1b5e624cb5a633f785445b5c
GET /build/runtime.c126acad.js?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:00 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"63651122-dcb"
expires: Sat, 04 Nov 2023 14:39:22 GMT
last-modified: Fri, 04 Nov 2022 13:18:26 GMT
referrer-policy: same-origin
vary: Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: 4e1ee2d9-1244-4b1f-896b-8050d6811357-3082022
x-accel-expires: @1699108762
server: CDN77-Turbo
x-77-nzt: AblMCRSxDv3/up5yAA
x-77-nzt-ray: af585630d00c596fd4c2d7636ef36f0c
x-cache: HIT
x-age: 7511738
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.brazino-cdnsrv-cst.org/build/vueLocaleBlock.fc209836.css?v10263
185.76.9.21200 OK 63 kB URL HTTP/2 www.brazino-cdnsrv-cst.org/build/vueLocaleBlock.fc209836.css?v10263
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
Hash b41bd2d98cbaea21f49a796b58993f99
71cb92fbb7a6d9429e3f37301752428b9e9959c4
b76828decba186648c22ffd00c88b980ae813385a853c82a3c4d7f86e5bce394
GET /build/vueLocaleBlock.fc209836.css?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:00 GMT
content-type: text/css
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"63651122-c34"
expires: Sat, 04 Nov 2023 14:43:08 GMT
last-modified: Fri, 04 Nov 2022 13:18:26 GMT
referrer-policy: same-origin
vary: Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: aec43579-b344-4ae8-a605-0ad163c9145c-3082022
x-accel-expires: @1699108988
server: CDN77-Turbo
x-77-nzt: AblMCRSCvpT/2J1yAA
x-77-nzt-ray: af585630d00c596fd4c2d76330b6050c
x-cache: HIT
x-age: 7511512
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7c0c50fcbc7d92843f6b77e57a7fdf6b
18ec9d83cf0dd47c048b5b71e540f3a52dc9d743
8479db61777f843867bcebf8510a161cb18c87c5cf670d86890c409e2882540c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3696
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 13:15:01 GMT
Last-Modified: Mon, 30 Jan 2023 12:13:25 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
www.brazino-cdnsrv-cst.org/build/gameNsoft.0797258d.js?v10263
185.76.9.21200 OK 132 kB URL HTTP/2 www.brazino-cdnsrv-cst.org/build/gameNsoft.0797258d.js?v10263
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
Size 132 kB (131619 bytes)
Hash 94837ebdb4f16b20aadde2843aff152b
aa7292942edaad24b9f000b23256e5e540b3acf6
9199b65297a09a316c63bf1bda7399a10d8f4889046304f141f91a6aaf17a458
GET /build/gameNsoft.0797258d.js?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:00 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"6399e301-de6"
expires: Thu, 14 Dec 2023 14:58:08 GMT
last-modified: Wed, 14 Dec 2022 14:51:45 GMT
referrer-policy: same-origin
vary: Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: 516b2002-c50f-4b0f-9114-a55bdfc48761-3482022
x-accel-expires: @1702565888
server: CDN77-Turbo
x-77-nzt: AblMCRTvaNb/VN49AA
x-77-nzt-ray: af585630d00c596fd4c2d763f80dff0b
x-cache: HIT
x-age: 4054612
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash b48e97dc2f5267cb927615ef17b44fa9
cd05f89ca8d8e0b0f328eca58230499e39160d11
23beba8486f22fc11331d5605c704a08a26b704db8041f6316c8ea5bdb99ce02
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2940
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 13:15:01 GMT
Last-Modified: Mon, 30 Jan 2023 12:26:01 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash ef6f050a4cfd7d46443836a1fd0a52f7
5157855a1260ff67d9548211393e674bc828957c
b731a6f82c4b37a523172d2f6f2c4a6e943217672765af5baf4bffb9203fc1b9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2146
Cache-Control: max-age=151404
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 13:15:01 GMT
Etag: "63d766df-117"
Expires: Wed, 01 Feb 2023 07:18:25 GMT
Last-Modified: Mon, 30 Jan 2023 06:42:39 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 279
20bet.com/custom-assets/mainloader.gif
104.22.35.208200 OK 304 kB URL HTTP/2 20bet.com/custom-assets/mainloader.gif
IP 104.22.35.208:0
File type GIF image data, version 89a, 400 x 400\012- data
Size 304 kB (303571 bytes)
Hash 323a31f4cce6bcd83935bbccf0f665da
7ba68a35bec60487944b77a69f91c88556f7017a
9e9d2f310ed323e2649b69229dd077995f5c2217c12bc07c66ea3f17dbc1dafa
GET /custom-assets/mainloader.gif HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_D23E16FB1C024968B8A0592610A0718D
Cookie: btag=668128_D23E16FB1C024968B8A0592610A0718D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:01 GMT
content-type: image/gif
content-length: 303571
cf-ray: 791a7955196215e0-ARN
accept-ranges: bytes
age: 2339
cache-control: public, max-age=14400
last-modified: Mon, 30 Jan 2023 12:36:02 GMT
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers: Content-Length,Content-Range
server: cloudflare
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 44acbb5ce74011e1dc5bb7e2309e5278
2eeba36c3f528794b8e09ff6d525732fa63c1304
d785f3c60d1ca37bec09631fcc43edd582f5e376423b9e3f0c0bd66b75596d72
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1596
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 13:15:01 GMT
Last-Modified: Mon, 30 Jan 2023 12:48:25 GMT
Server: ECS (amb/6B95)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash b48e97dc2f5267cb927615ef17b44fa9
cd05f89ca8d8e0b0f328eca58230499e39160d11
23beba8486f22fc11331d5605c704a08a26b704db8041f6316c8ea5bdb99ce02
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6350
Cache-Control: max-age=159966
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 13:15:01 GMT
Etag: "63d777e5-117"
Expires: Wed, 01 Feb 2023 09:41:07 GMT
Last-Modified: Mon, 30 Jan 2023 07:55:17 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 279
www.brazino-cdnsrv-cst.org/build/vue.28a2d776.js?v10263
185.76.9.21200 OK 152 kB URL HTTP/2 www.brazino-cdnsrv-cst.org/build/vue.28a2d776.js?v10263
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
Size 152 kB (151621 bytes)
Hash cee5aca798bfd997cae1a329e8d88d2d
7596ebb78a39805132bddfdd80d92c19da6c31c7
3bb5b6528871f5cbffc40fa548c5928ba8633314fc33f913e6c1ae15a4a04fcd
GET /build/vue.28a2d776.js?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:00 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"63651122-3410e"
expires: Sat, 04 Nov 2023 14:43:08 GMT
last-modified: Fri, 04 Nov 2022 13:18:26 GMT
referrer-policy: same-origin
vary: Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: e8149239-0b32-44ac-8299-c64ddfa6cf42-3082022
x-accel-expires: @1699108988
server: CDN77-Turbo
x-77-nzt: AblMCRRdYqH/2J1yAA
x-77-nzt-ray: af585630d00c596fd4c2d76378047a0c
x-cache: HIT
x-age: 7511512
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
20bet.com/app/styles.5ea6fbabf5cdff36.css
104.22.35.208200 OK 32 kB URL HTTP/2 20bet.com/app/styles.5ea6fbabf5cdff36.css
IP 104.22.35.208:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash c607d7bb4aaa21ec373144e73035391e
df1f83e960ef5264bf0b0ed3c4f5a2bd4d86ced9
f7091ef15b978d85935aea8eee428d6b279ada8b22c8f804aea9d56e9741a7a1
GET /app/styles.5ea6fbabf5cdff36.css HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_D23E16FB1C024968B8A0592610A0718D
Cookie: btag=668128_D23E16FB1C024968B8A0592610A0718D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:01 GMT
content-type: text/css
cf-ray: 791a7955095515e0-ARN
etag: W/"63d122bc-23abd"
last-modified: Wed, 25 Jan 2023 12:38:20 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash df54df0dc7cc8659a60fded30903f3a0
16782da03e471687a369d3929b565de04557dc23
2b60333ba9715406492bdd30007c4ca3e9334c5e4912e70def43dd18294089ba
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=96511
Date: Mon, 30 Jan 2023 13:15:01 GMT
Etag: "63d69115-1d7"
Expires: Tue, 31 Jan 2023 16:03:32 GMT
Last-Modified: Sun, 29 Jan 2023 15:30:29 GMT
Server: ECS (nyb/1D10)
X-Cache: Miss from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: n-gPIeI08GiRfOClFDi49xOJCLGSZ-aNVOqeW31pSZHvJLKibEr2kw==
Age: 1983
e1.o.lencr.org/
23.36.77.32200 OK 346 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c981e272866cf3d7450356e64c42b91f
18f5585ac51587e06df81acbcce07143f7d0f6f8
a5c0ca574c665c58885de25993d1387a3f125bd15dd7f2021d24dba663db8e0e
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "A5C0CA574C665C58885DE25993D1387A3F125BD15DD7F2021D24DBA663DB8E0E"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9719
Expires: Mon, 30 Jan 2023 15:57:00 GMT
Date: Mon, 30 Jan 2023 13:15:01 GMT
Connection: keep-alive
20bet.com/br?btag=668128_D23E16FB1C024968B8A0592610A0718D
104.22.35.208200 OK 7.8 kB URL HTTP/2 20bet.com/br?btag=668128_D23E16FB1C024968B8A0592610A0718D
IP 104.22.35.208:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (6149), with CRLF, LF line terminators
Hash 53db1d024c45e26373efe01bea25194f
579c19aebf2039421e56220aec26d127798d50c8
be053e26744d9414710071a5c7b7969b3161e26c8bc0eae52923df9c1dc79bc2
GET /br?btag=668128_D23E16FB1C024968B8A0592610A0718D HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: btag=668128_D23E16FB1C024968B8A0592610A0718D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:00 GMT
content-type: text/html; charset=UTF-8
cf-ray: 791a79466e2615e0-ARN
cache-control: max-age=0, must-revalidate, private
expires: Mon, 30 Jan 2023 13:15:00 GMT
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers: Content-Length,Content-Range
set-cookie: btag=668128_D23E16FB1C024968B8A0592610A0718D; expires=Thu, 02-Mar-2023 00:00:00 GMT; Max-Age=2630700; path=/; secure; samesite=none
preferred-language=br; path=/; secure; httponly; samesite=lax
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com/sealassets/4ced2de25985ac9d3cbb787b97f50ae2-20bet.com-f5faf6d82a7be2057527120fa49724355adf2a8c973918d432fa7b70160234e717ac6b01358f27fc0aff52358b79fb11-c3ByaXRlLXNlYWwucG5n?status=valid
54.230.111.63200 OK 49 kB URL HTTP/2 c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com/sealassets/4ced2de25985ac9d3cbb787b97f50ae2-20bet.com-f5faf6d82a7be2057527120fa49724355adf2a8c973918d432fa7b70160234e717ac6b01358f27fc0aff52358b79fb11-c3ByaXRlLXNlYWwucG5n?status=valid
IP 54.230.111.63:0
File type PNG image data, 512 x 256, 8-bit/color RGBA, non-interlaced\012- data
Hash 8ef6782be55b8ce8f5b132d28af8e0d0
cb99df77f4865d9c2f287539a5ca474cf76f7d09
d614922fde9604f8899e47f3cc3d69bf952312b996f7cf1421163996710850fa
GET /sealassets/4ced2de25985ac9d3cbb787b97f50ae2-20bet.com-f5faf6d82a7be2057527120fa49724355adf2a8c973918d432fa7b70160234e717ac6b01358f27fc0aff52358b79fb11-c3ByaXRlLXNlYWwucG5n?status=valid HTTP/1.1
Host: c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 49397
date: Mon, 30 Jan 2023 13:12:54 GMT
x-powered-by: Express
cache-control: max-age=1200
etag: W/"c0f5-y5nfd/SGXZwvKHU5pcpHTPdvfQk"
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 791a763bb9929211-FRA
x-cache: Hit from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: gQocpSUWAdOBWGR3f9iJsagms8aCa2WsPnQu35B2jWVwRq1GivPz9Q==
age: 127
X-Firefox-Spdy: h2
a2.adform.net/Serving/TrackPoint/?pm=2635697&ADFPageName=Landing%20Page_Brazil&ADFdivider=|
185.167.164.43302 Found 28 kB URL HTTP/2 a2.adform.net/Serving/TrackPoint/?pm=2635697&ADFPageName=Landing%20Page_Brazil&ADFdivider=|
IP 185.167.164.43:0
Hash 25ca1f54d9dc24da5e028cb6f40a1b89
43efb9a0d6b68a9148396dad4687eccb4e501b93
111c8c21f8c3db0d2e35d093567691782277b5c1a4581f4f62c65ec830bc1a00
GET /Serving/TrackPoint/?pm=2635697&ADFPageName=Landing%20Page_Brazil&ADFdivider=| HTTP/1.1
Host: a2.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bc.game/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Mon, 30 Jan 2023 13:15:01 GMT
content-type: text/html; charset=utf-8
location: https://a2.adform.net/Serving/TrackPoint/?CC=1&pm=2635697&ADFPageName=Landing%20Page_Brazil&ADFdivider=|
cache-control: no-cache, no-store, must-revalidate, no-transform
pragma: no-cache
expires: -1
access-control-allow-origin: *
set-cookie: C=1; domain=adform.net; expires=Tue, 28-Feb-2023 13:15:01 GMT; path=/
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
aswpsdkus.com/notify/v1/ua-sdk.min.js
34.160.158.95200 OK 45 kB URL HTTP/2 aswpsdkus.com/notify/v1/ua-sdk.min.js
IP 34.160.158.95:0
Hash 9ddca6012652b17526941ab1a0270cb2
5c4c01fa289838e2dca50fffe8e0613e4d6ee641
b1b0c767ab133fb8aa8ec07a336e2d5b81460b049d3257ddf967f0a1d024f343
GET /notify/v1/ua-sdk.min.js HTTP/1.1
Host: aswpsdkus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdu6P7PveLQnUbNnWgxNKLDVcasezzCUeq_CDjiREgAzJro0r-Mq9ExR2xpjlUYsBbCZtquZtftSTYs2BsEebY_zMA
vary: X-Goog-Allowed-Resources
x-goog-generation: 1673371354401478
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 42942
content-encoding: gzip
x-goog-hash: crc32c=CzJWog==, md5=HNoHorvFXcr2hJVOfYl8QA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 42942
server: UploadServer
date: Mon, 30 Jan 2023 13:13:10 GMT
expires: Mon, 30 Jan 2023 13:18:10 GMT
cache-control: public,max-age=300,no-transform
age: 111
last-modified: Tue, 10 Jan 2023 17:22:34 GMT
etag: "1cda07a2bbc55dcaf684954e7d897c40"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ws-cdn001.akamaized.net/7693683943e78a298c36d469e68b47d8/widgetloader
23.36.77.8200 OK 60 kB URL HTTP/2 ws-cdn001.akamaized.net/7693683943e78a298c36d469e68b47d8/widgetloader
IP 23.36.77.8:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (41441)
Hash 8001333711a1764759a4b74d81e38ac5
db15f6ff4f6e0bd621b79edb8467e93b03799c66
b017d1ae23ba01bc11cec198e3b12f58f8939283243850bdbfb831ab39814107
GET /7693683943e78a298c36d469e68b47d8/widgetloader HTTP/1.1
Host: ws-cdn001.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-security-policy: frame-ancestors 'self' https://st-cdn001.akamaized.net https://ls-cdn001.akamaized.net
cache-control: public, max-age=120, stale-while-revalidate=60, immutable
etag: "b6022c7e91213f5bbba086ffb47e60f2-2965937c12cd0d66a8f961b7a928210b"
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
x-ing-v: 2
content-length: 60094
date: Mon, 30 Jan 2023 13:15:02 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
www.brazino-cdnsrv-cst.org/files/flags/United_Kingdom-01-1317.svg?v10263
185.76.9.21200 OK 32 kB URL HTTP/2 www.brazino-cdnsrv-cst.org/files/flags/United_Kingdom-01-1317.svg?v10263
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Hash fbad46c5db513fbe1dc12bca3cd68eb2
c0824a4f5bea2f87ee858e0f66d7d221acfafada
56fc3d0f7d1f36a41b10ea5d0937fc61afa2aa566ded3e124d5dd3eb903656e4
GET /files/flags/United_Kingdom-01-1317.svg?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:01 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"6006bbc7-548"
expires: Tue, 21 Nov 2023 13:04:44 GMT
last-modified: Tue, 19 Jan 2021 11:00:23 GMT
referrer-policy: same-origin
vary: Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: d73574d6-b7f7-4760-bdee-9c80e6b66173-3252022
x-accel-expires: @1700571884
server: CDN77-Turbo
x-77-nzt: AblMCRThVx7/aUtcAA
x-77-nzt-ray: af585630d00c596fd5c2d7630e90e82c
x-cache: HIT
x-age: 6048617
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1fc3c4ef0bd9c17908501ba61c428b1d
648e277f7124aa325ef9a9f1e0f33b22516e7191
79b885c5b5e9f7ad3054dcf96a24393a01ef59109a4193d22e65bbd90e234279
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "79B885C5B5E9F7AD3054DCF96A24393A01EF59109A4193D22E65BBD90E234279"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6825
Expires: Mon, 30 Jan 2023 15:08:47 GMT
Date: Mon, 30 Jan 2023 13:15:02 GMT
Connection: keep-alive
www.brazino-cdnsrv-cst.org/build/footerGameCategoriesBlock.95e12733.js?v10263
185.76.9.21200 OK 55 kB URL HTTP/2 www.brazino-cdnsrv-cst.org/build/footerGameCategoriesBlock.95e12733.js?v10263
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
Hash b7592672f451d7c2058d9b5f2c21dbcd
7fd46a0536a3e780c438056b8702c6d71e69fda3
11c257e02d6e66645e9a666369e9c6ac4a9cadb1b97a36a05de4f8af13b01a8e
GET /build/footerGameCategoriesBlock.95e12733.js?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:00 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"6399e1a5-7d2"
expires: Thu, 14 Dec 2023 14:48:46 GMT
last-modified: Wed, 14 Dec 2022 14:45:57 GMT
referrer-policy: same-origin
vary: Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: 77312741-bb79-423b-9e16-c52ad4468fef-3482022
x-accel-expires: @1702565326
server: CDN77-Turbo
x-77-nzt: AblMCRT9szP/huA9AA
x-77-nzt-ray: af585630d00c596fd4c2d7634ac02c0c
x-cache: HIT
x-age: 4055174
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
tracker.ads.sportradar.com/dist/tracker.js
23.36.79.8200 OK 12 kB URL HTTP/2 tracker.ads.sportradar.com/dist/tracker.js
IP 23.36.79.8:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (34755)
Hash b34b13d85152f71b7fd15289c78c0583
0bb20191b022bbd0e75f2bbce7f6332886079c2c
7a3fc57394ecc6745eb6e18745aa1e5e5d05cb2237c4d0d754ab43d33863a84c
GET /dist/tracker.js HTTP/1.1
Host: tracker.ads.sportradar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 20 Jan 2021 14:51:32 GMT
accept-ranges: bytes
server: AmazonS3
etag: "5ff82a1c468a89919e9437d33e0402cb"
x-amz-cf-pop: AMS50-C1
x-amz-cf-id: ETbLIh65aY9mAVLWVaDNXwp9snfbUH2WYXvAEL3sCX87VsDHTCtsDg==
vary: Accept-Encoding
content-encoding: gzip
unused62: 8096267
content-length: 11553
date: Mon, 30 Jan 2023 13:15:02 GMT
cache-control: max-age=900, public
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1fc3c4ef0bd9c17908501ba61c428b1d
648e277f7124aa325ef9a9f1e0f33b22516e7191
79b885c5b5e9f7ad3054dcf96a24393a01ef59109a4193d22e65bbd90e234279
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "79B885C5B5E9F7AD3054DCF96A24393A01EF59109A4193D22E65BBD90E234279"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6825
Expires: Mon, 30 Jan 2023 15:08:47 GMT
Date: Mon, 30 Jan 2023 13:15:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9aa4296611a0140d17fdca1dc970aba2
03801e1b1267595679c519893127bfa7b9b41303
f55e20c3111bb60b7395fda7e49f9a94ba57f106669205d96ef1cde8c8e281e8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F55E20C3111BB60B7395FDA7E49F9A94BA57F106669205D96EF1CDE8C8E281E8"
Last-Modified: Sun, 29 Jan 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10802
Expires: Mon, 30 Jan 2023 16:15:04 GMT
Date: Mon, 30 Jan 2023 13:15:02 GMT
Connection: keep-alive
tracker.ads.sportradar.com/dist//sp-2.14.0.js
23.36.79.8200 OK 30 kB URL HTTP/2 tracker.ads.sportradar.com/dist//sp-2.14.0.js
IP 23.36.79.8:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (64903)
Hash 44f237857b8d03f32b53fe551e83c95a
91536fe6c60d947d29dfcb5f04d09b752b5ccf03
a5e10dc2f3c729300afe8fe24aa430f57d91fdefa8112c0b35dd424ba612caa7
GET /dist//sp-2.14.0.js HTTP/1.1
Host: tracker.ads.sportradar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 20 Jan 2021 14:51:32 GMT
etag: "8dba669b94e3865c9205ef8fd15ee4d1"
accept-ranges: bytes
server: AmazonS3
x-amz-cf-pop: AMS50-C1
x-amz-cf-id: nhilYV6V-q1PhJgn8gs9dmUPL39Zd2IwgnsFUnicuqpA-U_Vrqb7CA==
vary: Accept-Encoding
content-encoding: gzip
content-length: 30370
date: Mon, 30 Jan 2023 13:15:02 GMT
cache-control: max-age=900, public
X-Firefox-Spdy: h2
97f5e28a6e174bb089f6d6f4991a7dff.js.ubembed.com/
151.101.193.131200 OK 179 kB URL HTTP/2 97f5e28a6e174bb089f6d6f4991a7dff.js.ubembed.com/
IP 151.101.193.131:0
File type ASCII text, with very long lines (477), with no line terminators
Size 179 kB (178550 bytes)
Hash 89351fd16f9e7d0a63641a905beaa913
db07f24be58681ef4a1a7b7f0a977dd896513740
7c373cf97878f9b7a9f02aa1b3c99b8039848481f6609ad53e0b620540c33fac
GET / HTTP/1.1
Host: 97f5e28a6e174bb089f6d6f4991a7dff.js.ubembed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.betwarrior.bet/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
x-amz-apigw-id: fjthgH6rjoEF3Tw=
x-amz-cf-pop: ARN56-P2
x-backend-region: eu_west_1
date: Mon, 30 Jan 2023 13:15:02 GMT
age: 0
x-cache: Miss from cloudfront, MISS
access-control-allow-origin: *
cache-control: max-age=0, must-revalidate
vary: Accept-Encoding, Referer
etag: W/118a4f51ff6c6f384eb2ec093c989704-v0.179.2
content-encoding: br
accept-ranges: none
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/raRVPOI4L3s
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/raRVPOI4L3s
IP 142.250.74.131:0
Hash 3effc1b83b158511cbb6916fa2594fd8
873444b47b4da25d5ad8d373cfe10cdb2967b4a7
c4536aa6801daf7e2b27d1a50bea8558d17d62071930bca805bb694effa96618
POST /s/gts1d4/raRVPOI4L3s HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 13:15:02 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
216.239.32.178200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 216.239.32.178:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.betwarrior.bet/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Mon, 30 Jan 2023 11:45:20 GMT
expires: Mon, 30 Jan 2023 13:45:20 GMT
cache-control: public, max-age=7200
age: 5382
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
tracker.growthbuddy.app/track.js?e=pageview&u=&i=DV-02355017850611493202&v=1.0.0&uid=343e5904-3236-4fb9-a2fa-6fced7da1613&_nc=1675084514583
54.74.8.139200 OK 0 B URL HTTP/2 tracker.growthbuddy.app/track.js?e=pageview&u=&i=DV-02355017850611493202&v=1.0.0&uid=343e5904-3236-4fb9-a2fa-6fced7da1613&_nc=1675084514583
IP 54.74.8.139:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /track.js?e=pageview&u=&i=DV-02355017850611493202&v=1.0.0&uid=343e5904-3236-4fb9-a2fa-6fced7da1613&_nc=1675084514583 HTTP/1.1
Host: tracker.growthbuddy.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:02 GMT
content-type: application/javascript; charset=utf-8
content-length: 0
set-cookie: INGRESSCOOKIE=1675084503.541.104.183606|4755d7349ad2180cc27216e76023fb56; Path=/; Secure; HttpOnly
cache-control: no-cache
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b38acd1e699a12df531a6b1bb880ff29
b92faf1a04af82b43bf42b671c77fb07a5158be5
d71afa48d651992475e46eb6bc8e349f03ac615dd2dd13c00d87b53570430c56
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D71AFA48D651992475E46EB6BC8E349F03AC615DD2DD13C00D87B53570430C56"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16000
Expires: Mon, 30 Jan 2023 17:41:42 GMT
Date: Mon, 30 Jan 2023 13:15:02 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash fc92b1944af1176cf072e4806fb3400f
5fc123268b42224b8136054003524e52c646086e
17ddfc1731eee5da2217b2ba4213351b85e2491220f0cd9af559fd257a3316c0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1565
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 13:15:02 GMT
Etag: "63d7113a-116"
Last-Modified: Mon, 30 Jan 2023 12:48:57 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 278
edge.fullstory.com/s/fs.js
35.201.112.186200 OK 67 kB URL HTTP/2 edge.fullstory.com/s/fs.js
IP 35.201.112.186:0
File type ASCII text, with very long lines (65250)
Hash ec7dfec851441d232bc8a84fc45a5414
60812690843620747014ba281e14d3e2f060f09c
f32c5f6559d068761c399771d559e37360f6dc9f61573e6206aa1dd4e6e1b987
GET /s/fs.js HTTP/1.1
Host: edge.fullstory.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://promo.betwarrior.bet
Connection: keep-alive
Referer: https://promo.betwarrior.bet/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdv5_vUNVy-L_tydWElkxqJwc0DDLF7NicGwm935fjSNbyDKBB5JIuRRR85iiwNCg526skFHK7BIYtmkK63T2fBZtBu4Vb4r
x-goog-generation: 1673966405157927
x-goog-metageneration: 1
x-goog-stored-content-encoding: br
x-goog-stored-content-length: 67293
content-encoding: br
x-goog-hash: crc32c=gaiv9w==, md5=7H3+yFFEHSMryKhPxFpUFA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 67293
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Mon, 30 Jan 2023 12:30:49 GMT
expires: Mon, 30 Jan 2023 13:30:49 GMT
cache-control: public, max-age=3600,no-transform
age: 2653
last-modified: Tue, 17 Jan 2023 14:40:05 GMT
etag: "ec7dfec851441d232bc8a84fc45a5414"
content-type: application/javascript
vary: X-Goog-Allowed-Resources,Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
20bet.com/app/polyfills.5e91295279033faf.esm.js
104.22.35.208200 OK 36 kB URL HTTP/2 20bet.com/app/polyfills.5e91295279033faf.esm.js
IP 104.22.35.208:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 26ccd9e9ec700a0ff6b62b528730d8a3
c480a97bc51cf8ca22001018805911401c7115d1
393a905b6fa16c7d71d830b06eac9875b0dc669ba6a954c02f242c979eea0b6f
GET /app/polyfills.5e91295279033faf.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_D23E16FB1C024968B8A0592610A0718D
Cookie: btag=668128_D23E16FB1C024968B8A0592610A0718D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:02 GMT
content-type: application/javascript
cf-ray: 791a795b3e0b15e0-ARN
etag: W/"63d122bb-17687"
last-modified: Wed, 25 Jan 2023 12:38:19 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
cm.teads.tv/v2/advertiser?referer=https%3A%2F%2Fpromo.betwarrior.bet%2Fpt%2Fwelcome-offer-sports%2F%3Futm_source%3Dnetrefer%26utm_medium%3Daffiliates%26utm_campaign%3Dsports%26btag%3D655952_617509A8022749D38051BF067D28C0F3&advertiser_id=28969
23.195.255.234200 OK 1.9 kB URL HTTP/1.1 cm.teads.tv/v2/advertiser?referer=https%3A%2F%2Fpromo.betwarrior.bet%2Fpt%2Fwelcome-offer-sports%2F%3Futm_source%3Dnetrefer%26utm_medium%3Daffiliates%26utm_campaign%3Dsports%26btag%3D655952_617509A8022749D38051BF067D28C0F3&advertiser_id=28969
IP 23.195.255.234:0
Hash 0b2d33613d27faf825891d2951c17719
c5b4f1d61428139e7d56bb73ee9ef9b0a9f7896f
b132e3fb81ac0e2a203f5bee477dbc8bc2ae0bec57432ec3e60c9eba7315ac14
GET /v2/advertiser?referer=https%3A%2F%2Fpromo.betwarrior.bet%2Fpt%2Fwelcome-offer-sports%2F%3Futm_source%3Dnetrefer%26utm_medium%3Daffiliates%26utm_campaign%3Dsports%26btag%3D655952_617509A8022749D38051BF067D28C0F3&advertiser_id=28969 HTTP/1.1
Host: cm.teads.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://promo.betwarrior.bet/
Origin: https://promo.betwarrior.bet
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json; charset=utf-8
Content-Length: 137
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://promo.betwarrior.bet
Observe-Browsing-Topics: ?1
Origin-Trial: Az9xQo/imzWWuauBg0JngENQMoxulJzGzdGQ0VfUZDk7et2DJfmfUxfOWnHlwQiZRFG+Grc8bH8xWgOPW2ltjQQAAAB+eyJvcmlnaW4iOiJodHRwczovL3RlYWRzLnR2OjQ0MyIsImZlYXR1cmUiOiJQcml2YWN5U2FuZGJveEFkc0FQSXMiLCJleHBpcnkiOjE2ODA2NTI3OTksImlzU3ViZG9tYWluIjp0cnVlLCJpc1RoaXJkUGFydHkiOnRydWV9
Expires: Mon, 30 Jan 2023 13:15:02 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Mon, 30 Jan 2023 13:15:02 GMT
Connection: keep-alive
Set-Cookie: ar_debug=1; Path=/; HttpOnly; Secure; SameSite=None
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e2d2b00ed4a3970f9b7c4561eec1f2ba
5d51d00a750a05bcad6aac56b5dcd410afff7591
20f4ee50766ee62c45e9a18f9646a856c1ae9b702a055c7d9131026dce630c42
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "20F4EE50766EE62C45E9A18F9646A856C1AE9B702A055C7D9131026DCE630C42"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2761
Expires: Mon, 30 Jan 2023 14:01:03 GMT
Date: Mon, 30 Jan 2023 13:15:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e2d2b00ed4a3970f9b7c4561eec1f2ba
5d51d00a750a05bcad6aac56b5dcd410afff7591
20f4ee50766ee62c45e9a18f9646a856c1ae9b702a055c7d9131026dce630c42
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "20F4EE50766EE62C45E9A18F9646A856C1AE9B702A055C7D9131026DCE630C42"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2761
Expires: Mon, 30 Jan 2023 14:01:03 GMT
Date: Mon, 30 Jan 2023 13:15:02 GMT
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 2001af70b15ae0570a2e0c6233575038
f2dd0366bd74917d457e252a908e2d436490e127
8d9988a8fe8079617aad2dd7e8bbea7e8d5fd5af45825d99a24e1e237503b529
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 30 Jan 2023 13:15:02 GMT
Last-Modified: Mon, 30 Jan 2023 12:00:38 GMT
Server: ECS (bsa/EB23)
X-Cache: Miss from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: KBvUQBwBu4ZezS2brj6Df_54G_amaZyfof0ZpILKdF7pbXzvKQbQhQ==
Age: 4464
a.exoclick.com/tag_gen.js
205.185.216.10200 OK 515 B URL HTTP/1.1 a.exoclick.com/tag_gen.js
IP 205.185.216.10:0
File type ASCII text, with very long lines (1030), with no line terminators
Hash 628e0302068ade64b5f411f39d5ce7e5
ff1a609269f34bad5ae67ed1678df3f7b905d018
c583ceaeae2e9a05e25c27b61520710f16b8b98ca7f9087a75ae90a040b8bc3f
GET /tag_gen.js HTTP/1.1
Host: a.exoclick.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 13:15:02 GMT
Connection: Keep-Alive
Content-Encoding: gzip
Content-Length: 515
Content-Type: application/javascript
Accept-Ranges: bytes
Cache-Control: max-age=10800
Server: nginx
etag: W/"a56c0470b9aa925085e51a6271a"
X-HW: 1675084502.dop220.sk1.t,1675084502.cds253.sk1.shn,1675084502.dop220.sk1.t,1675084502.cds251.sk1.c
Access-Control-Allow-Origin: *, *
20bet.com/app/main.7d3113c65a5d1503.esm.js
104.22.35.208200 OK 377 kB URL HTTP/2 20bet.com/app/main.7d3113c65a5d1503.esm.js
IP 104.22.35.208:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 377 kB (376611 bytes)
Hash 35001af71c7cadcb6c92e4c3fa9ad958
3e775516896b7da0515874496d0e94224f668ea8
b6048cf37caded8c8aa2e44a7185f9955679c4235a15c037c229044520c11621
GET /app/main.7d3113c65a5d1503.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_D23E16FB1C024968B8A0592610A0718D
Cookie: btag=668128_D23E16FB1C024968B8A0592610A0718D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:02 GMT
content-type: application/javascript
cf-ray: 791a795b3e0a15e0-ARN
etag: W/"63d122cb-166e22"
last-modified: Wed, 25 Jan 2023 12:38:35 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/raRVPOI4L3s
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/raRVPOI4L3s
IP 142.250.74.131:0
Hash 3effc1b83b158511cbb6916fa2594fd8
873444b47b4da25d5ad8d373cfe10cdb2967b4a7
c4536aa6801daf7e2b27d1a50bea8558d17d62071930bca805bb694effa96618
POST /s/gts1d4/raRVPOI4L3s HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 13:15:02 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.hotjar.com/c/hotjar-2053477.js?sv=6
54.230.111.113200 OK 5.1 kB URL HTTP/2 static.hotjar.com/c/hotjar-2053477.js?sv=6
IP 54.230.111.113:0
File type ASCII text, with very long lines (7535)
Hash c273ffa13cd93e9c9d6eec907150eef9
5e71d213d1c3ff4ebb61df54aae58e6dfa28db9a
a00e631207dc0ca9a9412833d3386295dabacfa66ef58b05aab1b21b06888199
GET /c/hotjar-2053477.js?sv=6 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Mon, 30 Jan 2023 13:14:35 GMT
cache-control: max-age=60
etag: W/7240360d3e47ab3fe10dd57f55192347
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: tivCjJHr8DXdARC44M5QYDU_BCoGQPMgQgksuN6O6lIHgxGUoterDA==
age: 27
X-Firefox-Spdy: h2
tsyndicate.com/api/v1/retargeting/set/f9cddbd8-2ed1-489d-a952-2eb87b3c2af0
136.243.51.205200 OK 35 B URL HTTP/2 tsyndicate.com/api/v1/retargeting/set/f9cddbd8-2ed1-489d-a952-2eb87b3c2af0
IP 136.243.51.205:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /api/v1/retargeting/set/f9cddbd8-2ed1-489d-a952-2eb87b3c2af0 HTTP/1.1
Host: tsyndicate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 13:15:02 GMT
content-type: text/plain; charset=utf-8
content-length: 35
pragma: no-cache
expires: 0
vary: *
x-api-version: 1
x-request-id: 5d06a50ce7d13375
set-cookie: ts_rt_f9cddbd8-2ed1-489d-a952-2eb87b3c2af0=AAMC; expires=Tue, 30 Jan 2024 13:15:02 GMT; path=/; HttpOnly; secure; SameSite=None
cache-control: no-cache, no-store, no-transform, must-revalidate, no-transform
x-robots-tag: none, noindex, nofollow
report-to: { "url": "https://pxl.tsyndicate.com/api/v1/heavy-ad/report", "max_age": 86401 }
X-Firefox-Spdy: h2
casino.cur.a8r.games/public/sg.js
104.18.13.198200 OK 697 B URL HTTP/2 casino.cur.a8r.games/public/sg.js
IP 104.18.13.198:0
Hash 07e486e6aad0e1890d2b984bf07446f1
d6f2b14150bb643a89f4425c5df4134797c77206
15898de4e74634d0fb93fded5009fa7378728e56e77fefe798ca1a83c8ff75b9
GET /public/sg.js HTTP/1.1
Host: casino.cur.a8r.games
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:01 GMT
content-type: text/javascript; charset=utf-8
strict-transport-security: max-age=15724800; includeSubDomains
last-modified: Mon, 30 Jan 2023 12:27:57 GMT
cf-cache-status: HIT
age: 2367
expires: Mon, 30 Jan 2023 17:15:01 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
server: cloudflare
cf-ray: 791a7955df96b4f4-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
my.rtmark.net/p.js?f=sync&lr=1&partner=aaf701063a8ca18d1dabaede0b2b4ccf979b170792f6433238e6a103d95b2c42
139.45.195.8200 OK 697 B URL HTTP/2 my.rtmark.net/p.js?f=sync&lr=1&partner=aaf701063a8ca18d1dabaede0b2b4ccf979b170792f6433238e6a103d95b2c42
IP 139.45.195.8:0
Hash cf633de7de2f19a7d49ccdfc8ab5f418
a13fa0a2c44bda5ab91a4cb436a09a2fcc6fb26f
5b8a031b9954f826049aca06a7994c457a36fc9da3e5efb87fedde6d3374aca8
GET /p.js?f=sync&lr=1&partner=aaf701063a8ca18d1dabaede0b2b4ccf979b170792f6433238e6a103d95b2c42 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 13:15:02 GMT
content-type: text/javascript
content-length: 697
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
www.brazino-cdnsrv-cst.org/build/categoryBlock.6098f315.js?v10263
185.76.9.21200 OK 15 kB URL HTTP/2 www.brazino-cdnsrv-cst.org/build/categoryBlock.6098f315.js?v10263
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
Hash f3798a6161497358d1cc94ff9d52200f
2e7ef250d9ec23afb0a15413f7d1dfd0d954072c
15fa72581ed8e5bbf98003029465f9a19324de7e37763d664081e0383334f7ba
GET /build/categoryBlock.6098f315.js?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:00 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"6399e1a5-8e1"
expires: Thu, 14 Dec 2023 14:48:46 GMT
last-modified: Wed, 14 Dec 2022 14:45:57 GMT
referrer-policy: same-origin
vary: Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: ff7ce03d-3b83-45b0-a04f-b545156b6905-3482022
x-accel-expires: @1702565326
server: CDN77-Turbo
x-77-nzt: AblMCRT5trT/huA9AA
x-77-nzt-ray: af585630d00c596fd4c2d7636d361c0c
x-cache: HIT
x-age: 4055174
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
a.sportradarserving.com/pixel?type=js&aid=1121&id=1859
3.124.85.119302 Moved Temporarily 0 B URL HTTP/1.1 a.sportradarserving.com/pixel?type=js&aid=1121&id=1859
IP 3.124.85.119:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel?type=js&aid=1121&id=1859 HTTP/1.1
Host: a.sportradarserving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Mon, 30 Jan 2023 13:15:02 GMT
Location: https://a.sportradarserving.com/ul_cb/pixel?type=js&aid=1121&id=1859
Set-Cookie: zuuid=bd670145-47c0-4e9d-b8ad-14c13d83f956; path=/; expires=Tue, 30-Jan-2024 13:15:02 GMT; domain=sportradarserving.com; samesite=none; secure
c=1675084502; path=/; expires=Tue, 30-Jan-2024 13:15:02 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1675084502; path=/; expires=Tue, 30-Jan-2024 13:15:02 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 0
Connection: keep-alive
a.sportradarserving.com/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
3.124.85.119302 Moved Temporarily 0 B URL HTTP/1.1 a.sportradarserving.com/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
IP 3.124.85.119:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId= HTTP/1.1
Host: a.sportradarserving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Mon, 30 Jan 2023 13:15:02 GMT
Location: https://a.sportradarserving.com/ul_cb/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
Set-Cookie: zuuid=448e5710-3034-4519-9047-9424d543a4d2; path=/; expires=Tue, 30-Jan-2024 13:15:02 GMT; domain=sportradarserving.com; samesite=none; secure
c=1675084502; path=/; expires=Tue, 30-Jan-2024 13:15:02 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1675084502; path=/; expires=Tue, 30-Jan-2024 13:15:02 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 0
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 6792cd5a1d9aa2ffa0ff27c6e253db6f
6a38bef9f7e6c52c6e65ea4067852ca98a644b51
a618416a16fbd310dbfe897c09e955fb888aadb35cfe704ce0a66e6d45d6e5be
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3446
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 13:15:02 GMT
Last-Modified: Mon, 30 Jan 2023 12:17:36 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 279
tm.jsuol.com.br/uoltm.js?id=anrasi
54.230.111.59200 OK 18 kB URL HTTP/2 tm.jsuol.com.br/uoltm.js?id=anrasi
IP 54.230.111.59:0
File type Unicode text, UTF-8 text, with very long lines (65476), with no line terminators
Hash 7d71975a9c485466c9612bd695c411e6
fedd4080a75da286640153d24f302122e4f1076f
a628155f1a56d154b91c8b9ed1430960f5e2edfad472cdeb5f33e8e90330c256
GET /uoltm.js?id=anrasi HTTP/1.1
Host: tm.jsuol.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 17899
date: Mon, 30 Jan 2023 12:19:57 GMT
server: marrakesh 1.16.6
last-modified: Fri, 25 Nov 2022 13:04:44 GMT
expires: Mon, 30 Jan 2023 13:19:57 GMT
content-encoding: gzip
cache-control: no-transform, max-age=3600, must-revalidate, proxy-revalidate, must-revalidate, proxy-revalidate, no-transform
etag: 7d71975a9c485466c9612bd695c411e6
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: YeKPjFXBVFbvfVDbyW4XRasQyktbTGYmpK0ApIz-C0kkMIeKaCokcg==
age: 3305
X-Firefox-Spdy: h2
script.hotjar.com/modules.a67d611ae12d5430b0d8.js
54.230.111.44200 OK 68 kB URL HTTP/2 script.hotjar.com/modules.a67d611ae12d5430b0d8.js
IP 54.230.111.44:0
File type Unicode text, UTF-8 text, with very long lines (48602)
Hash 32f2d01b085556c0d4a7f61b1d769e22
ab03c43019010344f0aa11e2debf38429bc552de
57a6800c7d919e3b0e42b214b44edf04b353c7c48e1800fd85d0fc0150a82365
GET /modules.a67d611ae12d5430b0d8.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 68283
date: Mon, 30 Jan 2023 11:42:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "32f2d01b085556c0d4a7f61b1d769e22"
last-modified: Mon, 30 Jan 2023 11:41:10 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Dy4WKf1yhx3syos2BZMEDnj6tftM1wl4Qs0MrEUOu-kvJpmGN_AplA==
age: 5576
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash fc92b1944af1176cf072e4806fb3400f
5fc123268b42224b8136054003524e52c646086e
17ddfc1731eee5da2217b2ba4213351b85e2491220f0cd9af559fd257a3316c0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5613
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 13:15:02 GMT
Etag: "63d7113a-116"
Last-Modified: Mon, 30 Jan 2023 11:41:30 GMT
Server: ECS (amb/6B94)
X-Cache: HIT
Content-Length: 278
c.clarity.ms/c.gif
20.234.93.27302 Found 0 B IP 20.234.93.27:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bc.game/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.bing.com/c.gif?CtsSyncId=97C36134CA564A29BC1881A72C16ECB2&RedC=c.clarity.ms&MXFR=343328F0038861CC0E0C3A5907886FB1
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SM=T; domain=c.clarity.ms; path=/; SameSite=None; Secure;
MUID=343328F0038861CC0E0C3A5907886FB1; domain=.clarity.ms; expires=Sat, 24-Feb-2024 13:15:02 GMT; path=/; SameSite=None; Secure; Priority=High;
date: Mon, 30 Jan 2023 13:15:02 GMT
content-length: 0
X-Firefox-Spdy: h2
t.teads.tv/track?action=pageView&env=js-web&tag_version=6.12.0_51a1e72&advertiser_id=28969&referer=https%3A%2F%2Fpromo.betwarrior.bet%2Fpt%2Fwelcome-offer-sports%2F%3Futm_source%3Dnetrefer%26utm_medium%3Daffiliates%26utm_campaign%3Dsports%26btag%3D655952_617509A8022749D38051BF067D28C0F3&user_session_id=4b85b680-d76d-42e6-ba88-73b0c0dc5e9e
2.18.173.43200 OK 23 B URL HTTP/2 t.teads.tv/track?action=pageView&env=js-web&tag_version=6.12.0_51a1e72&advertiser_id=28969&referer=https%3A%2F%2Fpromo.betwarrior.bet%2Fpt%2Fwelcome-offer-sports%2F%3Futm_source%3Dnetrefer%26utm_medium%3Daffiliates%26utm_campaign%3Dsports%26btag%3D655952_617509A8022749D38051BF067D28C0F3&user_session_id=4b85b680-d76d-42e6-ba88-73b0c0dc5e9e
IP 2.18.173.43:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash da5b449fff36752a93779fa4067cd2eb
71a96eea77f21ab5f1819b96c4cedd5cd34476ca
328e90a318268aea96180cc31666ae6d6f79d90d078c123bc3d98ee08a192fb7
GET /track?action=pageView&env=js-web&tag_version=6.12.0_51a1e72&advertiser_id=28969&referer=https%3A%2F%2Fpromo.betwarrior.bet%2Fpt%2Fwelcome-offer-sports%2F%3Futm_source%3Dnetrefer%26utm_medium%3Daffiliates%26utm_campaign%3Dsports%26btag%3D655952_617509A8022749D38051BF067D28C0F3&user_session_id=4b85b680-d76d-42e6-ba88-73b0c0dc5e9e HTTP/1.1
Host: t.teads.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.betwarrior.bet/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 23
cache-control: max-age=0, no-cache, no-store
expires: Sat, 26 Jul 1997 05:00:00 GMT
date: Mon, 30 Jan 2023 13:15:03 GMT
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
104.18.20.226200 OK 940 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.20.226:0
Hash 547ce5e4b188ec3649476ecee3cc6153
ed8f326e553dbd283b5ebeeb31727ca25de217b3
755a920ad689e2d913e804a60a5c660f49def3ab0a26e54b39292b8725807a9c
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 13:15:03 GMT
Content-Type: application/ocsp-response
Content-Length: 940
Connection: keep-alive
Expires: Fri, 03 Feb 2023 09:53:21 GMT
ETag: "ed8f326e553dbd283b5ebeeb31727ca25de217b3"
Last-Modified: Mon, 30 Jan 2023 09:53:22 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 654
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 791a79604e0bb51b-OSL
mc.yandex.ru/metrika/tag.js
87.250.251.119200 OK 74 kB URL HTTP/2 mc.yandex.ru/metrika/tag.js
IP 87.250.251.119:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (659)
Hash de9c4346801ea3636fb506b54c394b32
f998f9464013582483778132d544fbd106c6d9a1
c9a9f4cbaaf63148dbafd70126d101548d61884ac369c0b35b0e4efa244a9670
GET /metrika/tag.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 73853
date: Mon, 30 Jan 2023 13:15:03 GMT
access-control-allow-origin: *
etag: "63c93a4b-1207d"
expires: Mon, 30 Jan 2023 14:15:03 GMT
last-modified: Thu, 19 Jan 2023 15:40:43 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: application/javascript
content-encoding: br
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
victory2.web.7platform.net/js/app.89d998bd3bce92ee.js
35.228.160.115200 OK 66 kB URL HTTP/2 victory2.web.7platform.net/js/app.89d998bd3bce92ee.js
IP 35.228.160.115:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (65536), with no line terminators
Hash ad1e1cebfaab8fe69b6751d52039ee57
b70adce02618dc9d66a518777b487b4dcfb0856c
156dfb580e44f226f8f3947da02c3d07f6e4bcba80f70f2a3be666d5a96aaa24
GET /js/app.89d998bd3bce92ee.js HTTP/1.1
Host: victory2.web.7platform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory2.web.7platform.net/prematch?auth=b2b&lang=pt¤cy=BRL&logout=true&odds=decimal&timezone=UTC
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 102863
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Sun, 29 Jan 2023 08:40:40 GMT
etag: "c426406257ea7b8cc7437cb095c5307f-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GR1D268HDG21K9DDGB7FA66K
content-length: 66246
X-Firefox-Spdy: h2
victory2.web.7platform.net/js/dependencies.e6700d09ac57adfd.js
35.228.160.115200 OK 264 kB URL HTTP/2 victory2.web.7platform.net/js/dependencies.e6700d09ac57adfd.js
IP 35.228.160.115:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (65536), with no line terminators
Size 264 kB (264162 bytes)
Hash 5569012299a009cb96d9d0688efb0581
08783f5a83dd886fad8738402225e1c351ecf21e
0e20c272d1d52f2645ccf91d57311fc154f62f4cd03614b063a9c5da69f31587
GET /js/dependencies.e6700d09ac57adfd.js HTTP/1.1
Host: victory2.web.7platform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory2.web.7platform.net/prematch?auth=b2b&lang=pt¤cy=BRL&logout=true&odds=decimal&timezone=UTC
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 224686
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Fri, 27 Jan 2023 22:50:17 GMT
etag: "1eb159a9f5d9a357d9d974e0076b508d-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GR1D268GBTPZYK7YV7M5CD09
content-length: 264162
X-Firefox-Spdy: h2
20bet.com/assets/registration_loader.gif
104.22.35.208200 OK 190 kB URL HTTP/2 20bet.com/assets/registration_loader.gif
IP 104.22.35.208:0
File type GIF image data, version 89a, 200 x 200\012- data
Size 190 kB (190218 bytes)
Hash 970c1b0852106da323f78bc2b065eede
843e9db8df957182ec32f5bc8a1e74a3249655d0
11de3d33b7be490a6be50e32f995e8ce2e4a6d12a748e0363dcabd976dec1b4a
GET /assets/registration_loader.gif HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_D23E16FB1C024968B8A0592610A0718D
Cookie: btag=668128_D23E16FB1C024968B8A0592610A0718D; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:03 GMT
content-type: image/gif
content-length: 190218
cf-ray: 791a79617b2215e0-ARN
accept-ranges: bytes
etag: "63d12389-2e70a"
last-modified: Wed, 25 Jan 2023 12:41:45 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
X-Firefox-Spdy: h2
20bet.com/app/common.68e049bd60bde3ea.css
104.22.35.208200 OK 3.2 kB URL HTTP/2 20bet.com/app/common.68e049bd60bde3ea.css
IP 104.22.35.208:0
File type assembler source, ASCII text, with very long lines (3432), with no line terminators
Hash 8003c661409bb254e837c7ae7d6064db
b82cc04aa49f660439c1bdb4e099f1a568e40125
cfb8ece58155425aaa1e5edb3e30f4ae5aa7cd73e9fc6f6155255a51e0bad0bd
GET /app/common.68e049bd60bde3ea.css HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_D23E16FB1C024968B8A0592610A0718D
Cookie: btag=668128_D23E16FB1C024968B8A0592610A0718D; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:03 GMT
content-type: text/css
cf-ray: 791a79614af215e0-ARN
etag: W/"63d122d0-d68"
last-modified: Wed, 25 Jan 2023 12:38:40 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/data/get-countries
104.22.35.208204 No Content 0 B URL HTTP/2 platform.20bet.com/api/data/get-countries
IP 104.22.35.208:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/data/get-countries HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Mon, 30 Jan 2023 13:15:03 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 791a79631c7a15e0-ARN
X-Firefox-Spdy: h2
platform.20bet.com/api/market-group-sorting/get-all-ordered
104.22.35.208204 No Content 0 B URL HTTP/2 platform.20bet.com/api/market-group-sorting/get-all-ordered
IP 104.22.35.208:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/market-group-sorting/get-all-ordered HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Mon, 30 Jan 2023 13:15:03 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 791a79630c7515e0-ARN
X-Firefox-Spdy: h2
platform.20bet.com/api/v2/ip-data
104.22.35.208204 No Content 0 B URL HTTP/2 platform.20bet.com/api/v2/ip-data
IP 104.22.35.208:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v2/ip-data HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Mon, 30 Jan 2023 13:15:03 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 791a79630c7615e0-ARN
X-Firefox-Spdy: h2
platform.20bet.com/api/sport/list/-1/0/br
104.22.35.208204 No Content 0 B URL HTTP/2 platform.20bet.com/api/sport/list/-1/0/br
IP 104.22.35.208:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/sport/list/-1/0/br HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Mon, 30 Jan 2023 13:15:03 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 791a79630c7415e0-ARN
X-Firefox-Spdy: h2
platform.20bet.com/api/data/provinces
104.22.35.208204 No Content 0 B URL HTTP/2 platform.20bet.com/api/data/provinces
IP 104.22.35.208:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/data/provinces HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Mon, 30 Jan 2023 13:15:03 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 791a79633cb915e0-ARN
X-Firefox-Spdy: h2
platform.20bet.com/api/data/get-currencies
104.22.35.208204 No Content 0 B URL HTTP/2 platform.20bet.com/api/data/get-currencies
IP 104.22.35.208:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/data/get-currencies HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Mon, 30 Jan 2023 13:15:03 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 791a79634cba15e0-ARN
X-Firefox-Spdy: h2
platform.20bet.com/api/tournaments/bet-tournament/get-active?fields%5B%5D=tournaments&fields%5B%5D=leaderboards&fields%5B%5D=authorizedUsers
104.22.35.208204 No Content 0 B URL HTTP/2 platform.20bet.com/api/tournaments/bet-tournament/get-active?fields%5B%5D=tournaments&fields%5B%5D=leaderboards&fields%5B%5D=authorizedUsers
IP 104.22.35.208:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/tournaments/bet-tournament/get-active?fields%5B%5D=tournaments&fields%5B%5D=leaderboards&fields%5B%5D=authorizedUsers HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Mon, 30 Jan 2023 13:15:03 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 791a79638d1315e0-ARN
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b67335a8e235eacf68e4b7f98cc5dc40
887a9b34cf2ba9371bbe8c93e362c174668cf812
1ad2f6328af6d819acd85f4e4646afcafd945e17e555d5eeb54244db83cd48fa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 13:15:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
platform.20bet.com/api/v2/data/rates
104.22.35.208204 No Content 25 B URL HTTP/2 platform.20bet.com/api/v2/data/rates
IP 104.22.35.208:0
Hash 9f2755be57a11a8f3aa8eb4701dad510
fb6e2984be024bbcf06ee227531c5b68197a0d06
383c54519391b6bc9e1691bb6b656002e6f300331a295cc76eb98bc6539d4046
OPTIONS /api/v2/data/rates HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Mon, 30 Jan 2023 13:15:03 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 791a79638d1415e0-ARN
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js?render=6LeYXFIiAAAAAEinEF15OsBYNq5UXwmor7zuYO0g
142.250.74.164200 OK 586 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6LeYXFIiAAAAAEinEF15OsBYNq5UXwmor7zuYO0g
IP 142.250.74.164:0
File type ASCII text, with very long lines (884), with no line terminators
Hash 585ebc63e7bc2ce60a4cacef4cb3e4e7
edadbf655eb10f8df100bb9357a4394b343811d2
3e4f89f73a6c2f6a1617af63ee2f3f876936d4aec4966df0a72efab9db8eeb4b
GET /recaptcha/api.js?render=6LeYXFIiAAAAAEinEF15OsBYNq5UXwmor7zuYO0g HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Mon, 30 Jan 2023 13:15:03 GMT
date: Mon, 30 Jan 2023 13:15:03 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 586
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
20bet.com/app/7068.5de17cbb7fb34980.esm.js
104.22.35.208200 OK 9.9 kB URL HTTP/2 20bet.com/app/7068.5de17cbb7fb34980.esm.js
IP 104.22.35.208:0
File type ASCII text, with very long lines (34169), with no line terminators
Hash 2c65592c4044cdfebedf22bcbafac992
6250b25f1b0aa0febc43d65a6288f8f6814af88a
a5319f701bf9f27b049172686e2dc1750c5ddce9a82493dbc4a91cf39bcb6136
GET /app/7068.5de17cbb7fb34980.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_D23E16FB1C024968B8A0592610A0718D
Cookie: btag=668128_D23E16FB1C024968B8A0592610A0718D; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:03 GMT
content-type: application/javascript
cf-ray: 791a79613aee15e0-ARN
etag: W/"63d122b5-8579"
last-modified: Wed, 25 Jan 2023 12:38:13 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/common.bdcbef47d0b00ac1.esm.js
104.22.35.208200 OK 10 kB URL HTTP/2 20bet.com/app/common.bdcbef47d0b00ac1.esm.js
IP 104.22.35.208:0
File type ASCII text, with very long lines (32299), with no line terminators
Hash 2b33b6e488383d8790ce65de8b8c387d
21b0833dacfb09eb2fac5c3b68743a6233e78527
d42d5aade33d25ba6912c2352442248d16204c029949dba4fe0ad0eeff8f2b78
GET /app/common.bdcbef47d0b00ac1.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_D23E16FB1C024968B8A0592610A0718D
Cookie: btag=668128_D23E16FB1C024968B8A0592610A0718D; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:03 GMT
content-type: application/javascript
cf-ray: 791a79614af715e0-ARN
etag: W/"63d122c0-7e2b"
last-modified: Wed, 25 Jan 2023 12:38:24 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1141ae65ad448fb3438690d5042af728
aa8b236bb1099c9440bfe3e98530939623250c03
e55eeaf5cd454042706c3e2d7d2b0211e91087b430cb5bae6b9e030392f57b4b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 13:15:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
platform.20bet.com/api/v2/configurations
172.67.15.187204 No Content 0 B URL HTTP/2 platform.20bet.com/api/v2/configurations
IP 172.67.15.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v2/configurations HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 204 No Content
date: Mon, 30 Jan 2023 13:15:03 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 791a7963e94bb4fd-OSL
X-Firefox-Spdy: h2
platform.20bet.com/api/status
172.67.15.187204 No Content 0 B URL HTTP/2 platform.20bet.com/api/status
IP 172.67.15.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/status HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 204 No Content
date: Mon, 30 Jan 2023 13:15:03 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 791a7963e948b4fd-OSL
X-Firefox-Spdy: h2
admaxium.com/scripts/pa_rtg_brazino.js
172.67.193.247200 OK 566 B URL HTTP/2 admaxium.com/scripts/pa_rtg_brazino.js
IP 172.67.193.247:0
File type ASCII text, with very long lines (327), with no line terminators
Hash d33df74a414fe8b3388b79a413cca952
ac97cfa8573025388dc37be955b4146e59d70710
09de4d2985991b08b82111024923936bafa3896b0bca5f429108a6a22e15872e
GET /scripts/pa_rtg_brazino.js HTTP/1.1
Host: admaxium.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:02 GMT
content-type: text/javascript; charset=utf-8
status: 200 OK
cache-control: no-cache
access-control-allow-origin: *
x-request-id: e7ca1be6-0ec1-495b-9a3e-3fc65fa77df5
etag: W/"49b4ed1f548ec5abc3ecdcbc1ff95f21"
x-runtime: 0.004663
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tbnLiAw2R2l1s%2F8fOq6kYci9S0d%2FNpL%2BMFvw86OZU3IxGVK4I3fDnOLZCobQeZDYFBFAJJ6YkiDjry3QdFNhSy4Iwf0hOmfq3L1RQW%2FGWwjLmLLQf7BOdPvcjyvtFqk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791a795e3c8fb4ed-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
a.sportradarserving.com/ul_cb/pixel?type=js&aid=1121&id=1859
3.124.85.119200 OK 1.5 kB URL HTTP/1.1 a.sportradarserving.com/ul_cb/pixel?type=js&aid=1121&id=1859
IP 3.124.85.119:0
File type ASCII text, with very long lines (1527), with no line terminators
Hash d35f1bbafdc33c5bee774f494e2d958b
f8ade2a5aecf77699b8ae4e5cdf279c0ca3fd122
50483d23d272f7b980fbf9912b7b5f567221fa67d1295584dc2f60230bf54a17
GET /ul_cb/pixel?type=js&aid=1121&id=1859 HTTP/1.1
Host: a.sportradarserving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20bet.com/
Connection: keep-alive
Cookie: zuuid=448e5710-3034-4519-9047-9424d543a4d2; c=1675084502; zuuid_lu=1675084502
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store, must-revalidate
Content-Type: text/javascript; charset=UTF-8
Date: Mon, 30 Jan 2023 13:15:03 GMT
Set-Cookie: zuuid=448e5710-3034-4519-9047-9424d543a4d2; path=/; expires=Tue, 30-Jan-2024 13:15:03 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1675084503; path=/; expires=Tue, 30-Jan-2024 13:15:03 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k=1; path=/; expires=Tue, 30-Jan-2024 13:15:03 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k_lu=1675084503; path=/; expires=Tue, 30-Jan-2024 13:15:03 GMT; domain=sportradarserving.com; samesite=none; secure
bss=!bidswitch,444341703; path=/; expires=Tue, 30-Jan-2024 13:15:03 GMT; domain=sportradarserving.com; samesite=none; secure
cm2=!bidswitch,444413703; path=/; expires=Tue, 30-Jan-2024 13:15:03 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 1527
Connection: keep-alive
a.sportradarserving.com/ul_cb/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
3.124.85.119302 Moved Temporarily 0 B URL HTTP/1.1 a.sportradarserving.com/ul_cb/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
IP 3.124.85.119:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ul_cb/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId= HTTP/1.1
Host: a.sportradarserving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20bet.com/
Connection: keep-alive
Cookie: zuuid=448e5710-3034-4519-9047-9424d543a4d2; c=1675084502; zuuid_lu=1675084502
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Mon, 30 Jan 2023 13:15:03 GMT
Location: https://x.bidswitch.net/syncd?dsp_id=409&user_group=1&user_id=448e5710-3034-4519-9047-9424d543a4d2&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3D448e5710-3034-4519-9047-9424d543a4d2
Set-Cookie: zuuid=448e5710-3034-4519-9047-9424d543a4d2; path=/; expires=Tue, 30-Jan-2024 13:15:03 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1675084503; path=/; expires=Tue, 30-Jan-2024 13:15:03 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k=1; path=/; expires=Tue, 30-Jan-2024 13:15:03 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k_lu=1675084503; path=/; expires=Tue, 30-Jan-2024 13:15:03 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 0
Connection: keep-alive
mc.yandex.ru/metrika/advert.gif
87.250.251.119200 OK 43 B URL HTTP/2 mc.yandex.ru/metrika/advert.gif
IP 87.250.251.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Mon, 30 Jan 2023 13:15:03 GMT
access-control-allow-origin: *
etag: "63c93a4b-2b"
expires: Mon, 30 Jan 2023 14:15:03 GMT
accept-ranges: bytes
last-modified: Thu, 19 Jan 2023 15:40:43 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
c.bing.com/c.gif?CtsSyncId=97C36134CA564A29BC1881A72C16ECB2&RedC=c.clarity.ms&MXFR=343328F0038861CC0E0C3A5907886FB1
13.107.21.200302 Found 0 B URL HTTP/2 c.bing.com/c.gif?CtsSyncId=97C36134CA564A29BC1881A72C16ECB2&RedC=c.clarity.ms&MXFR=343328F0038861CC0E0C3A5907886FB1
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif?CtsSyncId=97C36134CA564A29BC1881A72C16ECB2&RedC=c.clarity.ms&MXFR=343328F0038861CC0E0C3A5907886FB1 HTTP/1.1
Host: c.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bc.game/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.clarity.ms/c.gif?CtsSyncId=97C36134CA564A29BC1881A72C16ECB2&MUID=33E56CC811CF656636897E61103A647C
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SRM_B=33E56CC811CF656636897E61103A647C; domain=c.bing.com; expires=Sat, 24-Feb-2024 13:15:03 GMT; path=/; SameSite=None; Secure;
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 26758894B4F848E9BE6D0FC1284C6472 Ref B: OSL30EDGE0122 Ref C: 2023-01-30T13:15:03Z
date: Mon, 30 Jan 2023 13:15:03 GMT
content-length: 0
X-Firefox-Spdy: h2
platform.20bet.com/api/match-statuses/get-all/br
104.22.35.208200 OK 1.9 kB URL HTTP/2 platform.20bet.com/api/match-statuses/get-all/br
IP 104.22.35.208:0
File type JSON data\012- , ASCII text, with very long lines (6960), with no line terminators
Hash c55912f75d71047a24118db8385ad30d
4f198ba6ab1fe904a49c9fb1460d5c216381feed
c832417536cb1c5a235b727a75e77c75ab0c172e5164c836eeff0527cb007443
GET /api/match-statuses/get-all/br HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:03 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 791a79650e5615e0-ARN
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/tournaments/bet-tournament/get-active?fields%5B%5D=tournaments&fields%5B%5D=leaderboards&fields%5B%5D=authorizedUsers
104.22.35.208200 OK 456 B URL HTTP/2 platform.20bet.com/api/tournaments/bet-tournament/get-active?fields%5B%5D=tournaments&fields%5B%5D=leaderboards&fields%5B%5D=authorizedUsers
IP 104.22.35.208:0
File type JSON data\012- , ASCII text, with very long lines (1757), with no line terminators
Hash 41e22945c850cf403ce359989451fc7e
31c776b2d7ed9667505d7b8d36aa407ab4d25256
0234dd1fdbe6e314413fb653dde435fbf3e47cb99ff6adb379e62a4645eb7d9e
GET /api/tournaments/bet-tournament/get-active?fields%5B%5D=tournaments&fields%5B%5D=leaderboards&fields%5B%5D=authorizedUsers HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:03 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 791a79644dc015e0-ARN
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/data/get-countries
104.22.35.208200 OK 18 kB URL HTTP/2 platform.20bet.com/api/data/get-countries
IP 104.22.35.208:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 5d6481560e0853ba56f0f743944a286f
b4e3f6a4fe1d11a3e2115a884fc6a22dec1b6981
47dc8aedbafb16c9c902e46d35c948218900b10d8fdea497d859e624d8ea43a4
GET /api/data/get-countries HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:03 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 791a7963ed7315e0-ARN
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5b9943d0ede56f4621a69e0c208f0f00
0aab9fec24b3b22055cb7e2be40712c2cb885927
b2c45fa40739c489125fb9150a94900f1ab59b8e2bf646e69c77ef3ee17ba9f0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B2C45FA40739C489125FB9150A94900F1AB59B8E2BF646E69C77EF3EE17BA9F0"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18209
Expires: Mon, 30 Jan 2023 18:18:33 GMT
Date: Mon, 30 Jan 2023 13:15:04 GMT
Connection: keep-alive
tm.uol.com.br/dynad-track-cookies.html?name=dynad_rt&expname=dynad_rt_exp&client=UOLADS.993&expires=90
23.36.76.250200 OK 2.2 kB URL HTTP/2 tm.uol.com.br/dynad-track-cookies.html?name=dynad_rt&expname=dynad_rt_exp&client=UOLADS.993&expires=90
IP 23.36.76.250:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4329)
Hash e7c65ea45009f1b8c973cba8b72919b8
cddaf59b5e11bb97c740f66a794e6dfcde14d3fa
523a308657b5651d4555836ec32bc93932a1f8a60d326538c3ae3b3f5e5d2890
GET /dynad-track-cookies.html?name=dynad_rt&expname=dynad_rt_exp&client=UOLADS.993&expires=90 HTTP/1.1
Host: tm.uol.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: 00d0803f4eac86bcf972c6d0a5f99e59
last-modified: Thu, 24 Jun 2021 12:48:03 GMT
content-type: text/html;charset=UTF-8
p3p: CP="NOI DSP COR NID TAIa OUR IND COM NAV INT CNT"
x-akamai-transformed: 9 186 0 pmb=mRUM,1
content-encoding: gzip
cache-control: no-transform, must-revalidate, proxy-revalidate, max-age=600
date: Mon, 30 Jan 2023 13:15:04 GMT
content-length: 2214
vary: Accept-Encoding
server-timing: cdn-cache; desc=REVALIDATE, edge; dur=30, origin; dur=810
akamai-cache-status: Miss from child, RefreshHit from parent
akamai-grn: 0.f64c2417.1675084503.995c589
X-Firefox-Spdy: h2
tm.uol.com.br/dynad-track-cookies.html?name=DEretargeting&expname=DEretargetingExp&client=UOLADS.993&expires=90&expdomain=1
23.36.76.250200 OK 2.2 kB URL HTTP/2 tm.uol.com.br/dynad-track-cookies.html?name=DEretargeting&expname=DEretargetingExp&client=UOLADS.993&expires=90&expdomain=1
IP 23.36.76.250:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4329)
Hash bce8483352e4523f37d3531d86ff5d89
35e4d64198117cdab1fa7e1cafd545ca1e293778
186c67a379856557249327b7771f2402f4161b6eadb7d7a0b5fc7ded5dc18249
GET /dynad-track-cookies.html?name=DEretargeting&expname=DEretargetingExp&client=UOLADS.993&expires=90&expdomain=1 HTTP/1.1
Host: tm.uol.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: 00d0803f4eac86bcf972c6d0a5f99e59
last-modified: Thu, 24 Jun 2021 12:28:56 GMT
content-type: text/html;charset=UTF-8
p3p: CP="NOI DSP COR NID TAIa OUR IND COM NAV INT CNT"
x-akamai-transformed: 9 186 0 pmb=mRUM,1
content-encoding: gzip
cache-control: no-transform, must-revalidate, proxy-revalidate, max-age=600
date: Mon, 30 Jan 2023 13:15:04 GMT
content-length: 2211
vary: Accept-Encoding
server-timing: cdn-cache; desc=REVALIDATE, edge; dur=10, origin; dur=838
akamai-cache-status: Miss from child, RefreshHit from parent
akamai-grn: 0.f64c2417.1675084503.995c595
X-Firefox-Spdy: h2
platform.20bet.com/api/popular/line-menu/br
172.67.15.187204 No Content 0 B URL HTTP/2 platform.20bet.com/api/popular/line-menu/br
IP 172.67.15.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/popular/line-menu/br HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Mon, 30 Jan 2023 13:15:04 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 791a7967ff7eb4fd-OSL
X-Firefox-Spdy: h2
platform.20bet.com/api/market-descriptions/get-all-outcomes/br
104.22.35.208200 OK 14 kB URL HTTP/2 platform.20bet.com/api/market-descriptions/get-all-outcomes/br
IP 104.22.35.208:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 3f198390664d70fe0efa35118832a343
251daa0a32dfd3928f1851c99da59e0f0f94a15d
1af6d2f0c1a2aa57f27f3977367cbad41dcf3b4629b57c3cd346fef9e8bab9e6
GET /api/market-descriptions/get-all-outcomes/br HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:04 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 791a7964be1115e0-ARN
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/market-group-sorting/get-all-ordered
104.22.35.208200 OK 4.1 kB URL HTTP/2 platform.20bet.com/api/market-group-sorting/get-all-ordered
IP 104.22.35.208:0
File type JSON data\012- , ASCII text, with very long lines (23709), with no line terminators
Hash b0117dcdadb485c43d6f4afe10d887e2
eb61c12a1ef08fb62362b280c54d7f8856bcd0a6
0645609bedcf755825f72d391ba169cf80d1dddebe36f278bdfd017c151eb775
GET /api/market-group-sorting/get-all-ordered HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:03 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 791a7963fd7815e0-ARN
content-encoding: br
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 5f33996f825ccff5149d48f8e26d3b28
133a06ed1c03dc457487a9d49f11904aa86e4d1e
0b54c88b1dd42e4e68630a8ff5d110ac1267294e47d3884d42a742601bdd2d2f
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=100132
Date: Mon, 30 Jan 2023 13:15:04 GMT
Etag: "63d68fdf-1d7"
Expires: Tue, 31 Jan 2023 17:03:56 GMT
Last-Modified: Sun, 29 Jan 2023 15:25:19 GMT
Server: ECS (bsa/EB22)
X-Cache: Miss from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: oq2_zXWQlMd9L0k18uQzgDWcdIRV_9I4rkvJ_HLh7tKeeq9sFB3BJA==
Age: 5917
adjs.media/resources/content/betwarrior.js
188.114.97.1200 OK 5.8 kB URL HTTP/2 adjs.media/resources/content/betwarrior.js
IP 188.114.97.1:0
File type ASCII text, with very long lines (2524)
Hash 2fcb417d3d1b5e5df9172c8d0fed22de
9a0ae18ee67c68c05e6238e3c2bf6ef77c28e5ef
0425977226516f40bc08572c2a70c496e7a8ad78788a91e484e591409fdbcb3c
GET /resources/content/betwarrior.js HTTP/1.1
Host: adjs.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.betwarrior.bet/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:02 GMT
content-type: text/javascript; charset=utf-8
status: 200 OK
cache-control: max-age=604800, private
access-control-allow-origin: *
referrer-policy: strict-origin-when-cross-origin
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
x-request-id: 56a06cb9-8d66-4bdb-afc1-1c2406eff644
x-download-options: noopen
etag: W/"c00b4fe1e029000c3b11359c21279c5d"
x-runtime: 0.003239
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4V5rt5QMYZDxMMybrDP1rS1YjqFda8LOuKCRgdswBiIL4ZiOyDN%2BNhvxp7nlYRPm70ygh%2F5lT1MSeclYVbJz0dpQuU1fU%2FFAM6c7%2BfScMhrLnIGe1rRP4XPWeuKM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791a795a4be20b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
platform.20bet.com/api/data/provinces
104.22.35.208200 OK 4.0 kB URL HTTP/2 platform.20bet.com/api/data/provinces
IP 104.22.35.208:0
File type JSON data\012- , ASCII text, with very long lines (1894), with no line terminators
Hash f99207590d3b0022deee74779dfeed5c
f2094bf3efcfbdfe0f7f73edc4e3dc96134e8170
2bfc72ccf05b61118d0d66bff0eef437e6548dfc3f2d3b03d15685d100e1fb13
GET /api/data/provinces HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:03 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 791a79640d9215e0-ARN
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/data/get-currencies
104.22.35.208200 OK 8.0 kB URL HTTP/2 platform.20bet.com/api/data/get-currencies
IP 104.22.35.208:0
File type JSON data\012- , ASCII text, with very long lines (10746), with no line terminators
Hash 4a2866a0be6cac0e8ac22324df31521c
69aa4559a5cb1bf15d786b27d1e366613fe41741
5fd1f89fc148a803f5872f81b7d97f708c0540cbafc4279fd43af8a7f73429aa
GET /api/data/get-currencies HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:03 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 791a79642db515e0-ARN
content-encoding: br
X-Firefox-Spdy: h2
track.trackingtraffo.com/pixel/js?auth=v3eu8spg&event=visit
88.214.195.156200 OK 422 B URL HTTP/1.1 track.trackingtraffo.com/pixel/js?auth=v3eu8spg&event=visit
IP 88.214.195.156:0
Hash a84da22ba993cb90a87bbc7196a83564
284dae1447b59756ec476d581d6aad1ddd3218c3
98b0ce9e2f8df8f89c2adf5bcc0cf0eaf3b43c8b7fb26418f8a72179f4e6a440
GET /pixel/js?auth=v3eu8spg&event=visit HTTP/1.1
Host: track.trackingtraffo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 30 Jan 2023 13:15:04 GMT
Content-Type: text/javascript
Content-Length: 422
Connection: keep-alive
Cache-Control: no-cache, max-age=0, must-revalidate, proxy-revalidate, no-store
Pragma: no-cache
Expires: Sat, 01 Jan 2000 00:00:00 GMT
20bet.com/app/2096.c1ad3bd039c852b6.esm.js
104.22.35.208200 OK 3.3 kB URL HTTP/2 20bet.com/app/2096.c1ad3bd039c852b6.esm.js
IP 104.22.35.208:0
File type ASCII text, with very long lines (4814), with no line terminators
Hash de42f14782f0f0e3e20edf93d2eb037c
6c74bfd69ffe048a0b6e0d47430d1ae397b2ba6f
d3aeae52d04e25895b5c67212b2a472b4412c5b06a6ce1ea1c23d4ccfb75f87b
GET /app/2096.c1ad3bd039c852b6.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_D23E16FB1C024968B8A0592610A0718D
Cookie: btag=668128_D23E16FB1C024968B8A0592610A0718D; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:04 GMT
content-type: application/javascript
cf-ray: 791a7967a84915e0-ARN
etag: W/"63d122c0-12ce"
last-modified: Wed, 25 Jan 2023 12:38:24 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/8459.ac653e03c2d7c942.esm.js
104.22.35.208200 OK 1.4 kB URL HTTP/2 20bet.com/app/8459.ac653e03c2d7c942.esm.js
IP 104.22.35.208:0
File type ASCII text, with very long lines (3244), with no line terminators
Hash 4d2423ce0c807fc1ad156fe84e92f0b0
4a680555e9a9fc86bffb1e54452d59433d68655d
f524f847a13b928a1e1ccba18670a22b2aeecbab52348c7c327f8368c8d83375
GET /app/8459.ac653e03c2d7c942.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_D23E16FB1C024968B8A0592610A0718D
Cookie: btag=668128_D23E16FB1C024968B8A0592610A0718D; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:04 GMT
content-type: application/javascript
cf-ray: 791a7967a84015e0-ARN
etag: W/"63d122bb-cac"
last-modified: Wed, 25 Jan 2023 12:38:19 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
c.clarity.ms/c.gif?CtsSyncId=97C36134CA564A29BC1881A72C16ECB2&MUID=33E56CC811CF656636897E61103A647C
20.234.93.27200 OK 42 B URL HTTP/2 c.clarity.ms/c.gif?CtsSyncId=97C36134CA564A29BC1881A72C16ECB2&MUID=33E56CC811CF656636897E61103A647C
IP 20.234.93.27:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 1 x 1\012- data
Hash 32023bb33cfb2a1990a4ef2d85b6ac16
23dcc6d4b5bfe00357fd0248bb5955b8e36bb8f1
99c2917ee5b2a01459a923bdd1c676f15ee73b62b87f696e6735312d26f51e12
GET /c.gif?CtsSyncId=97C36134CA564A29BC1881A72C16ECB2&MUID=33E56CC811CF656636897E61103A647C HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bc.game/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
content-type: image/gif
last-modified: Tue, 17 Jan 2023 20:36:49 GMT
accept-ranges: bytes
etag: "b1c8df6cb32ad91:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: ANONCHK=0; domain=c.clarity.ms; expires=Mon, 30-Jan-2023 13:25:04 GMT; path=/; SameSite=None; Secure;
date: Mon, 30 Jan 2023 13:15:04 GMT
content-length: 42
X-Firefox-Spdy: h2
s.go-mpulse.net/boomerang/CW5BG-SWTYZ-UMRD7-EZCHN-SGWTB
184.24.44.135200 OK 50 kB URL HTTP/2 s.go-mpulse.net/boomerang/CW5BG-SWTYZ-UMRD7-EZCHN-SGWTB
IP 184.24.44.135:0
File type C source, ASCII text, with very long lines (65103)
Hash 8991c3ec80ec8fbc41382a55679e3911
8cc8cee91d671038acd9e3ae611517d6801b0909
f55bacd4a20fef96f5c736a912d1947be85c268df18003395e511c1e860e8800
GET /boomerang/CW5BG-SWTYZ-UMRD7-EZCHN-SGWTB HTTP/1.1
Host: s.go-mpulse.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tm.uol.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
cache-control: max-age=604800
content-encoding: br
last-modified: Wed, 21 Dec 2022 16:39:24 GMT
timing-allow-origin: *
vary: Accept-Encoding
x-n: S
content-length: 50393
date: Mon, 30 Jan 2023 13:15:04 GMT
X-Firefox-Spdy: h2
20bet.com/assets/banners/sport_welcome_bonus_slider1.png
104.22.35.208200 OK 410 kB URL HTTP/2 20bet.com/assets/banners/sport_welcome_bonus_slider1.png
IP 104.22.35.208:0
File type PNG image data, 1180 x 230, 8-bit/color RGB, non-interlaced\012- data
Size 410 kB (410034 bytes)
Hash 1acd184fd3ac4c4be12141d895452491
284ea482259c33bb752471167c31d3c98f90f157
55eb2a350404fdfab5af5318b934c672fb244aa9c2c30e8030d8dcf33d3c20ff
GET /assets/banners/sport_welcome_bonus_slider1.png HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_D23E16FB1C024968B8A0592610A0718D
Cookie: btag=668128_D23E16FB1C024968B8A0592610A0718D; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:04 GMT
content-type: image/png
content-length: 410034
cf-ray: 791a7969897815e0-ARN
accept-ranges: bytes
etag: "63d12365-641b2"
last-modified: Wed, 25 Jan 2023 12:41:09 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
X-Firefox-Spdy: h2
20bet.com/app/2929.f8f5c8474525d5d8.esm.js
104.22.35.208200 OK 2.1 kB URL HTTP/2 20bet.com/app/2929.f8f5c8474525d5d8.esm.js
IP 104.22.35.208:0
File type ASCII text, with very long lines (3695), with no line terminators
Hash 596e24a341bfb313b6134e8bd11e1035
a9406263bf480ea51860a7ee11ce52f1b0de4af2
76724dc5061fb02b90b19c7fc678df5481f1147ce0ad60ae7611467f33fefb47
GET /app/2929.f8f5c8474525d5d8.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_D23E16FB1C024968B8A0592610A0718D
Cookie: btag=668128_D23E16FB1C024968B8A0592610A0718D; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:04 GMT
content-type: application/javascript
cf-ray: 791a7967b85315e0-ARN
etag: W/"63d122c0-e6f"
last-modified: Wed, 25 Jan 2023 12:38:24 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 735f2def07ef868ef25b6037bcf0be87
fa93f0060da5b2f6ce7726543d9009f53ef53636
5aab10d106d53bd2039c4c6e05cd173a687ecfc3b5053e4eb2c9d94e33270928
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1286
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 13:15:04 GMT
Last-Modified: Mon, 30 Jan 2023 12:53:38 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 278
20bet.com/app/9117.59a1f36812423e88.esm.js
104.22.35.208200 OK 10 kB URL HTTP/2 20bet.com/app/9117.59a1f36812423e88.esm.js
IP 104.22.35.208:0
File type ASCII text, with very long lines (1998), with no line terminators
Hash 48262a1cfb5f7243bbe63b8f3ce054b2
6685492059db13932cfb7defcf3dc478746b0297
c982a24143c43e8cabcf01fbbbadd2057feb807ddba2ab144233e3c0ccf211ab
GET /app/9117.59a1f36812423e88.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_D23E16FB1C024968B8A0592610A0718D
Cookie: btag=668128_D23E16FB1C024968B8A0592610A0718D; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:04 GMT
content-type: application/javascript
cf-ray: 791a7967b85515e0-ARN
etag: W/"63d122c0-7ce"
last-modified: Wed, 25 Jan 2023 12:38:24 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
cdn.softswiss.net/i/s4/softswiss/Avalon.webp
104.17.112.131200 OK 16 kB URL HTTP/2 cdn.softswiss.net/i/s4/softswiss/Avalon.webp
IP 104.17.112.131:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 190x190, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 5e9b5b0692b58afcf1d628d48526f2b3
bcde9d2ff74ab1d813b89c04c12622bfed641f53
2547dfecce42b36b1eaba9e9b91021023c46a9011e40bffb47acd30afcc94f7e
GET /i/s4/softswiss/Avalon.webp HTTP/1.1
Host: cdn.softswiss.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:04 GMT
content-type: image/webp
content-length: 15564
last-modified: Mon, 29 Mar 2021 10:15:02 GMT
etag: "6061a8a6-3ccc"
expires: Mon, 30 Jan 2023 13:38:03 GMT
cache-control: max-age=86400
referrer-policy: strict-origin-when-cross-origin
cf-cache-status: HIT
age: 84703
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 791a796bdd25b529-OSL
X-Firefox-Spdy: h2
cdn.softswiss.net/i/s4/softswiss/AztecMagicDeluxe.webp
104.17.112.131200 OK 11 kB URL HTTP/2 cdn.softswiss.net/i/s4/softswiss/AztecMagicDeluxe.webp
IP 104.17.112.131:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 190x190, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0e798d7fd0b2b215ab93f826402a78ba
edf1572b82e7a41e631a88b95e1f36b1b7a313a5
9a23457a09a069e2fb1da411a072b466a036fbff97c4f30b221ba2784963298d
GET /i/s4/softswiss/AztecMagicDeluxe.webp HTTP/1.1
Host: cdn.softswiss.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:04 GMT
content-type: image/webp
content-length: 10792
last-modified: Thu, 27 Jun 2019 06:47:09 GMT
etag: "5d14666d-2a28"
expires: Mon, 30 Jan 2023 13:41:16 GMT
cache-control: max-age=86400
referrer-policy: strict-origin-when-cross-origin
cf-cache-status: HIT
age: 84703
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 791a796bdd30b529-OSL
X-Firefox-Spdy: h2
20bet.com/app/5098.27c66aa495a483d6.esm.js
104.22.35.208200 OK 7.4 kB URL HTTP/2 20bet.com/app/5098.27c66aa495a483d6.esm.js
IP 104.22.35.208:0
File type ASCII text, with very long lines (570), with no line terminators
Hash 49e50139a36a99fb1ac2e1b70f4e1264
ee270addc4dbf07e25d4733e33f9204b321a7647
7bc4b926bf1a597362df331c5142c907fe4165a507f9dddd87e1dd58252fee94
GET /app/5098.27c66aa495a483d6.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_D23E16FB1C024968B8A0592610A0718D
Cookie: btag=668128_D23E16FB1C024968B8A0592610A0718D; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:04 GMT
content-type: application/javascript
cf-ray: 791a796a19cf15e0-ARN
etag: W/"63d122cb-23a"
last-modified: Wed, 25 Jan 2023 12:38:35 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
cdn.softswiss.net/i/s4/softswiss/AztecMagic.webp
104.17.112.131200 OK 11 kB URL HTTP/2 cdn.softswiss.net/i/s4/softswiss/AztecMagic.webp
IP 104.17.112.131:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 190x190, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 26bd76e01329f390e7ecb77be4f599d7
e21351fc8cf7f600c87e9ae03767c4fb3b6fe0f7
c27ad5697835b9b9cabcf2843dc4c5486c13a20d001ee81860765cf2534ca362
GET /i/s4/softswiss/AztecMagic.webp HTTP/1.1
Host: cdn.softswiss.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:04 GMT
content-type: image/webp
content-length: 11148
last-modified: Thu, 27 Jun 2019 06:47:09 GMT
etag: "5d14666d-2b8c"
expires: Mon, 30 Jan 2023 13:41:16 GMT
cache-control: max-age=86400
referrer-policy: strict-origin-when-cross-origin
cf-cache-status: HIT
age: 84703
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 791a796bfd54b529-OSL
X-Firefox-Spdy: h2
cdn.softswiss.net/i/s4/softswiss/BookOfCats.webp
104.17.112.131200 OK 16 kB URL HTTP/2 cdn.softswiss.net/i/s4/softswiss/BookOfCats.webp
IP 104.17.112.131:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 190x190, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 792bb655b6681db08392bab762bf955c
dc0ddea33457b2d7f598e0b74d0ed0cea2d362d5
6f8154161dc63d6e4238ca20345c22718a5d7722e03995dd37f87159aa61decd
GET /i/s4/softswiss/BookOfCats.webp HTTP/1.1
Host: cdn.softswiss.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:04 GMT
content-type: image/webp
content-length: 16252
last-modified: Tue, 03 Nov 2020 12:55:02 GMT
etag: "5fa15326-3f7c"
expires: Mon, 30 Jan 2023 13:53:40 GMT
cache-control: max-age=86400
referrer-policy: strict-origin-when-cross-origin
cf-cache-status: HIT
age: 73783
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 791a796c0d60b529-OSL
X-Firefox-Spdy: h2
20bet.com/app/9320.d7618dd1fd8f0311.esm.js
104.22.35.208200 OK 18 kB URL HTTP/2 20bet.com/app/9320.d7618dd1fd8f0311.esm.js
IP 104.22.35.208:0
File type ASCII text, with very long lines (4208), with no line terminators
Hash e6e44e8fb3712d2487716c76f73ee2fc
47c0338757410ac310d12cd18b276eab2dda1138
2109aabe8e1d936f241a1f31a36a791ee4d53288e2f837f22747072adb99d394
GET /app/9320.d7618dd1fd8f0311.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_D23E16FB1C024968B8A0592610A0718D
Cookie: btag=668128_D23E16FB1C024968B8A0592610A0718D; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:04 GMT
content-type: application/javascript
cf-ray: 791a7967b84d15e0-ARN
etag: W/"63d122b5-1070"
last-modified: Wed, 25 Jan 2023 12:38:13 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/8319.7ec039d8049267af.esm.js
104.22.35.208200 OK 20 kB URL HTTP/2 20bet.com/app/8319.7ec039d8049267af.esm.js
IP 104.22.35.208:0
File type ASCII text, with very long lines (9718), with no line terminators
Hash c462742dcf156b37e0fdcd9e5c1194df
92ee8026ca6af464574fb23be257061b10ab3157
50987a99cd6fb6960ed411bb1434ae796412869557beb9c261397029a6235404
GET /app/8319.7ec039d8049267af.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_D23E16FB1C024968B8A0592610A0718D
Cookie: btag=668128_D23E16FB1C024968B8A0592610A0718D; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:04 GMT
content-type: application/javascript
cf-ray: 791a7967a84a15e0-ARN
etag: W/"63d122c0-25f6"
last-modified: Wed, 25 Jan 2023 12:38:24 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
secure.adnxs.com/seg?add=32401244&t=1
185.89.211.116307 Redirection 0 B URL HTTP/1.1 secure.adnxs.com/seg?add=32401244&t=1
IP 185.89.211.116:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /seg?add=32401244&t=1 HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Mon, 30 Jan 2023 13:15:05 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://secure.adnxs.com/bounce?%2Fseg%3Fadd%3D32401244%26t%3D1
AN-X-Request-Uuid: 5c3fcadc-ffdc-4d8c-8dbf-2d766d3848b3
Set-Cookie: uuid2=3368410398937801542; SameSite=None; Path=/; Max-Age=7776000; Expires=Sun, 30-Apr-2023 13:15:05 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 956.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
vars.hotjar.com/box-fc6c0cda90900662e5160cde908b3e86.html
54.230.111.75200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-fc6c0cda90900662e5160cde908b3e86.html
IP 54.230.111.75:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash c34915675a9e912c93dac934322be7d1
1d0c20a805821d76fdef8b95eace30ac659a9454
091ab4e6d3f86a5e7bc8c7c3e9805df420c13f77627902dd204abc1f28b6336d
GET /box-fc6c0cda90900662e5160cde908b3e86.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1034
date: Fri, 27 Jan 2023 09:04:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "c34915675a9e912c93dac934322be7d1"
last-modified: Fri, 27 Jan 2023 09:03:53 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Gm2aDPbvOZcfXaNX_Qu32SbQXlFWrASGP14-HoWpymeux84_gg5VKA==
age: 274259
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e9eba61fbe87bc53d60d0fdd1ba6adb4
8dbb3dfacfaad4ce0fd3a355790cb9b245e01e07
9c0233792f873315e75ce5396d1a210f2df665db23ab858a0724f66bbb4528e7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 13:15:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
zz.connextra.com/dcs/tagController/tag/d3ea3fb1f9d4/homepage
104.85.191.64200 OK 16 kB URL HTTP/2 zz.connextra.com/dcs/tagController/tag/d3ea3fb1f9d4/homepage
IP 104.85.191.64:0
File type HTML document text\012- exported SGML document, ASCII text, with very long lines (2407)
Hash a48b7d649ea4ff6d54adcc1966fdf787
d8d4c0645613806cf861cfa1d793e40aca2748f0
1479166998807326fbc3aa71ab41a46597b3dc39c6e9c9b372c0a0286030add0
GET /dcs/tagController/tag/d3ea3fb1f9d4/homepage HTTP/1.1
Host: zz.connextra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
content-type: text/javascript;charset=utf-8
content-length: 16263
cache-control: must-revalidate, max-age=274
expires: Mon, 30 Jan 2023 13:19:39 GMT
date: Mon, 30 Jan 2023 13:15:05 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
scripts.mediamathrdrt.com/scripts/k_betwarrior.js
104.21.1.138200 OK 60 kB URL HTTP/2 scripts.mediamathrdrt.com/scripts/k_betwarrior.js
IP 104.21.1.138:0
File type ASCII text, with very long lines (65521)
Hash 917ade30cef3192499807587df78c2b7
c0cca751a55451833350f265b7dc2143db14f68a
b631e167747d93efb6ceadaa8b4ad664a050a791319c996556764b92120a20e7
GET /scripts/k_betwarrior.js HTTP/1.1
Host: scripts.mediamathrdrt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.betwarrior.bet/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:02 GMT
content-type: text/javascript; charset=utf-8
status: 200 OK
cache-control: no-cache
access-control-allow-origin: *
x-request-id: f09b908b-1081-40cf-8fa5-37da8384b262
etag: W/"1de573845760313eaa1e33d831f42aca"
x-runtime: 0.013163
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0ZMS5KiX6nw1misO5Pk01UlJ1yhkmVJzOZQHkqJ6vYPDrWM8RIDp3jNqdmqb04Y9VhbufJKoMxeN1CnCRbYjQq4WCLhe81o%2B6oH1PwpNTaeXZhcaYujkQxYjB5dD%2BhGrrVWkZzCeVybkYMhy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791a795a5f601c06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 3b035d55095b3d9455e0b28a101ab9db
56f7cf13a778f67cddb51fd15413eb37135b9f47
7907f9195b593abb8b052d4df0c6ab8a872d2689b91d25c1af3116f568849b8c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4226
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 13:15:05 GMT
Last-Modified: Mon, 30 Jan 2023 12:04:39 GMT
Server: ECS (amb/6B94)
X-Cache: HIT
Content-Length: 278
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e9eba61fbe87bc53d60d0fdd1ba6adb4
8dbb3dfacfaad4ce0fd3a355790cb9b245e01e07
9c0233792f873315e75ce5396d1a210f2df665db23ab858a0724f66bbb4528e7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 13:15:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
secure.adnxs.com/bounce?%2Fseg%3Fadd%3D32401244%26t%3D1
185.89.211.116200 OK 0 B URL HTTP/1.1 secure.adnxs.com/bounce?%2Fseg%3Fadd%3D32401244%26t%3D1
IP 185.89.211.116:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fseg%3Fadd%3D32401244%26t%3D1 HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20bet.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Mon, 30 Jan 2023 13:15:05 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: 39627dab-8949-4409-be65-4f4f565ecbe7
Set-Cookie: anj=dTM7k!M4/8CxrEQF']wIg2GUfLk(0R!@wnf-Te9(>wL5L!!':D$[Qjf; SameSite=None; Path=/; Max-Age=7776000; Expires=Sun, 30-Apr-2023 13:15:05 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 956.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
platform.20bet.com/api/v3/menu/line/br?period=5
172.67.15.187204 No Content 0 B URL HTTP/2 platform.20bet.com/api/v3/menu/line/br?period=5
IP 172.67.15.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v3/menu/line/br?period=5 HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Mon, 30 Jan 2023 13:15:05 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 791a796d2839b4fd-OSL
X-Firefox-Spdy: h2
platform.20bet.com/api/v3/menu/line/br?period=0
172.67.15.187204 No Content 0 B URL HTTP/2 platform.20bet.com/api/v3/menu/line/br?period=0
IP 172.67.15.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v3/menu/line/br?period=0 HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Mon, 30 Jan 2023 13:15:05 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 791a796d1834b4fd-OSL
X-Firefox-Spdy: h2
platform.20bet.com/api/event/list?isTop_eq=1&oddsExists_eq=1&competitor2Id_neq=&competitor1Id_neq=&main=1&status_in%5B%5D=0&limit=15&relations%5B%5D=league&relations%5B%5D=odds&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=players&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=br
172.67.15.187204 No Content 0 B URL HTTP/2 platform.20bet.com/api/event/list?isTop_eq=1&oddsExists_eq=1&competitor2Id_neq=&competitor1Id_neq=&main=1&status_in%5B%5D=0&limit=15&relations%5B%5D=league&relations%5B%5D=odds&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=players&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=br
IP 172.67.15.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/event/list?isTop_eq=1&oddsExists_eq=1&competitor2Id_neq=&competitor1Id_neq=&main=1&status_in%5B%5D=0&limit=15&relations%5B%5D=league&relations%5B%5D=odds&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=players&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=br HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Mon, 30 Jan 2023 13:15:05 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 791a796dea23b4fd-OSL
X-Firefox-Spdy: h2
platform.20bet.com/api/user/is-auth
172.67.15.187204 No Content 0 B URL HTTP/2 platform.20bet.com/api/user/is-auth
IP 172.67.15.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/user/is-auth HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Mon, 30 Jan 2023 13:15:05 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 791a796dea28b4fd-OSL
X-Firefox-Spdy: h2
platform.20bet.com/api/event/list?isTopLive_eq=1&competitor2Id_neq=&competitor1Id_neq=&status_in%5B%5D=2&status_in%5B%5D=1&oddsExists_eq=1&main=1&limit=15&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=players&relations%5B%5D=sportCategories&relations%5B%5D=broadcasts&relations%5B%5D=statistics&relations%5B%5D=additionalInfo&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=br
172.67.15.187204 No Content 0 B URL HTTP/2 platform.20bet.com/api/event/list?isTopLive_eq=1&competitor2Id_neq=&competitor1Id_neq=&status_in%5B%5D=2&status_in%5B%5D=1&oddsExists_eq=1&main=1&limit=15&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=players&relations%5B%5D=sportCategories&relations%5B%5D=broadcasts&relations%5B%5D=statistics&relations%5B%5D=additionalInfo&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=br
IP 172.67.15.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/event/list?isTopLive_eq=1&competitor2Id_neq=&competitor1Id_neq=&status_in%5B%5D=2&status_in%5B%5D=1&oddsExists_eq=1&main=1&limit=15&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=players&relations%5B%5D=sportCategories&relations%5B%5D=broadcasts&relations%5B%5D=statistics&relations%5B%5D=additionalInfo&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=br HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Mon, 30 Jan 2023 13:15:05 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 791a796dfa40b4fd-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 3b035d55095b3d9455e0b28a101ab9db
56f7cf13a778f67cddb51fd15413eb37135b9f47
7907f9195b593abb8b052d4df0c6ab8a872d2689b91d25c1af3116f568849b8c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 13:15:05 GMT
Etag: "63d7874b-116"
Server: ECS (amb/6BC0)
Content-Length: 278
platform.20bet.com/api/v3/menu/live/br
172.67.15.187204 No Content 0 B URL HTTP/2 platform.20bet.com/api/v3/menu/live/br
IP 172.67.15.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v3/menu/live/br HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Mon, 30 Jan 2023 13:15:05 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 791a796dd9f1b4fd-OSL
X-Firefox-Spdy: h2
platform.20bet.com/api/v4/coupon/get?system=1&lang=br
172.67.15.187204 No Content 0 B URL HTTP/2 platform.20bet.com/api/v4/coupon/get?system=1&lang=br
IP 172.67.15.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v4/coupon/get?system=1&lang=br HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Mon, 30 Jan 2023 13:15:05 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 791a796dea07b4fd-OSL
X-Firefox-Spdy: h2
cdn.livechatinc.com/tracking.js
95.101.10.161200 OK 26 kB URL HTTP/2 cdn.livechatinc.com/tracking.js
IP 95.101.10.161:0
ASN #20940 Akamai International B.V.
Hash 349345e8baec106d74b4eb289b8d2b0b
5c4a724241c19e2de9063da2c3dc0c4a3366ea7a
a69d354aa4044e3786dc89e3a46f415276b8657f0caa8c8355b12558cfde8695
GET /tracking.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Wed, 25 Jan 2023 08:47:12 GMT
x-amz-version-id: iNzmqDcn1iRKaLiTk37THrDgz9osPO8C
server: AmazonS3
content-encoding: br
etag: W/"29e075294399875f6fd4bdaa0f4a20e4"
vary: Accept-Encoding
x-amz-cf-pop: HAM50-P2
x-amz-cf-id: 5u3S8SQ2vBURIIW1wAHlf1ewj7O-VH6XVggEm945QBhoGAgQC4G-PQ==
content-length: 25911
cache-control: max-age=28800
expires: Mon, 30 Jan 2023 21:15:05 GMT
date: Mon, 30 Jan 2023 13:15:05 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
X-Firefox-Spdy: h2
c.go-mpulse.net/api/config.json?key=CW5BG-SWTYZ-UMRD7-EZCHN-SGWTB&d=tm.uol.com.br&t=5583615&v=1.720.0&sl=0&si=20f40446-e638-4cac-8ce9-d138a0a5fa10-rpavhg&plugins=AK,ConfigOverride,Continuity,PageParams,IFrameDelay,AutoXHR,SPA,History,Angular,Backbone,Ember,RT,CrossDomain,BW,PaintTiming,NavigationTiming,ResourceTiming,Memory,CACHE_RELOAD,Errors,TPAnalytics,UserTiming,Akamai,Early,EventTiming,LOGN&acao=&ak.ai=730186
2.18.172.137200 OK 51 B URL HTTP/1.1 c.go-mpulse.net/api/config.json?key=CW5BG-SWTYZ-UMRD7-EZCHN-SGWTB&d=tm.uol.com.br&t=5583615&v=1.720.0&sl=0&si=20f40446-e638-4cac-8ce9-d138a0a5fa10-rpavhg&plugins=AK,ConfigOverride,Continuity,PageParams,IFrameDelay,AutoXHR,SPA,History,Angular,Backbone,Ember,RT,CrossDomain,BW,PaintTiming,NavigationTiming,ResourceTiming,Memory,CACHE_RELOAD,Errors,TPAnalytics,UserTiming,Akamai,Early,EventTiming,LOGN&acao=&ak.ai=730186
IP 2.18.172.137:0
File type JSON data\012- , ASCII text
Hash 192c625187a5fef1b734d29b83897699
d8416aa3824eb4e4c2cf4f15142cdb9a7f144a7a
b3a6f75eb5d0f83b2aa13d6dc74ccc19870b82a27edef9af60adcefdf33f3311
GET /api/config.json?key=CW5BG-SWTYZ-UMRD7-EZCHN-SGWTB&d=tm.uol.com.br&t=5583615&v=1.720.0&sl=0&si=20f40446-e638-4cac-8ce9-d138a0a5fa10-rpavhg&plugins=AK,ConfigOverride,Continuity,PageParams,IFrameDelay,AutoXHR,SPA,History,Angular,Backbone,Ember,RT,CrossDomain,BW,PaintTiming,NavigationTiming,ResourceTiming,Memory,CACHE_RELOAD,Errors,TPAnalytics,UserTiming,Akamai,Early,EventTiming,LOGN&acao=&ak.ai=730186 HTTP/1.1
Host: c.go-mpulse.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://tm.uol.com.br
Connection: keep-alive
Referer: https://tm.uol.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: private, max-age=120, stale-while-revalidate=60, stale-if-error=120
Timing-Allow-Origin: *
Content-Length: 51
Date: Mon, 30 Jan 2023 13:15:05 GMT
Connection: keep-alive
Content-Type: application/json
c.go-mpulse.net/api/config.json?key=CW5BG-SWTYZ-UMRD7-EZCHN-SGWTB&d=tm.uol.com.br&t=5583615&v=1.720.0&sl=0&si=5a90cbd9-f8b7-4ce7-8cf8-0284f80908a3-rpavhg&plugins=AK,ConfigOverride,Continuity,PageParams,IFrameDelay,AutoXHR,SPA,History,Angular,Backbone,Ember,RT,CrossDomain,BW,PaintTiming,NavigationTiming,ResourceTiming,Memory,CACHE_RELOAD,Errors,TPAnalytics,UserTiming,Akamai,Early,EventTiming,LOGN&acao=&ak.ai=730186
2.18.172.137200 OK 51 B URL HTTP/1.1 c.go-mpulse.net/api/config.json?key=CW5BG-SWTYZ-UMRD7-EZCHN-SGWTB&d=tm.uol.com.br&t=5583615&v=1.720.0&sl=0&si=5a90cbd9-f8b7-4ce7-8cf8-0284f80908a3-rpavhg&plugins=AK,ConfigOverride,Continuity,PageParams,IFrameDelay,AutoXHR,SPA,History,Angular,Backbone,Ember,RT,CrossDomain,BW,PaintTiming,NavigationTiming,ResourceTiming,Memory,CACHE_RELOAD,Errors,TPAnalytics,UserTiming,Akamai,Early,EventTiming,LOGN&acao=&ak.ai=730186
IP 2.18.172.137:0
File type JSON data\012- , ASCII text
Hash 192c625187a5fef1b734d29b83897699
d8416aa3824eb4e4c2cf4f15142cdb9a7f144a7a
b3a6f75eb5d0f83b2aa13d6dc74ccc19870b82a27edef9af60adcefdf33f3311
GET /api/config.json?key=CW5BG-SWTYZ-UMRD7-EZCHN-SGWTB&d=tm.uol.com.br&t=5583615&v=1.720.0&sl=0&si=5a90cbd9-f8b7-4ce7-8cf8-0284f80908a3-rpavhg&plugins=AK,ConfigOverride,Continuity,PageParams,IFrameDelay,AutoXHR,SPA,History,Angular,Backbone,Ember,RT,CrossDomain,BW,PaintTiming,NavigationTiming,ResourceTiming,Memory,CACHE_RELOAD,Errors,TPAnalytics,UserTiming,Akamai,Early,EventTiming,LOGN&acao=&ak.ai=730186 HTTP/1.1
Host: c.go-mpulse.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://tm.uol.com.br
Connection: keep-alive
Referer: https://tm.uol.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: private, max-age=120, stale-while-revalidate=60, stale-if-error=120
Timing-Allow-Origin: *
Content-Length: 51
Date: Mon, 30 Jan 2023 13:15:05 GMT
Connection: keep-alive
Content-Type: application/json
c.go-mpulse.net/api/config.json?key=CW5BG-SWTYZ-UMRD7-EZCHN-SGWTB&d=tm.uol.com.br&t=5583615&v=1.720.0&sl=0&si=e6373af3-1181-4f0b-ad65-1bc8a9ba975b-rpavhf&plugins=AK,ConfigOverride,Continuity,PageParams,IFrameDelay,AutoXHR,SPA,History,Angular,Backbone,Ember,RT,CrossDomain,BW,PaintTiming,NavigationTiming,ResourceTiming,Memory,CACHE_RELOAD,Errors,TPAnalytics,UserTiming,Akamai,Early,EventTiming,LOGN&acao=&ak.ai=730186
2.18.172.137200 OK 51 B URL HTTP/1.1 c.go-mpulse.net/api/config.json?key=CW5BG-SWTYZ-UMRD7-EZCHN-SGWTB&d=tm.uol.com.br&t=5583615&v=1.720.0&sl=0&si=e6373af3-1181-4f0b-ad65-1bc8a9ba975b-rpavhf&plugins=AK,ConfigOverride,Continuity,PageParams,IFrameDelay,AutoXHR,SPA,History,Angular,Backbone,Ember,RT,CrossDomain,BW,PaintTiming,NavigationTiming,ResourceTiming,Memory,CACHE_RELOAD,Errors,TPAnalytics,UserTiming,Akamai,Early,EventTiming,LOGN&acao=&ak.ai=730186
IP 2.18.172.137:0
File type JSON data\012- , ASCII text
Hash 192c625187a5fef1b734d29b83897699
d8416aa3824eb4e4c2cf4f15142cdb9a7f144a7a
b3a6f75eb5d0f83b2aa13d6dc74ccc19870b82a27edef9af60adcefdf33f3311
GET /api/config.json?key=CW5BG-SWTYZ-UMRD7-EZCHN-SGWTB&d=tm.uol.com.br&t=5583615&v=1.720.0&sl=0&si=e6373af3-1181-4f0b-ad65-1bc8a9ba975b-rpavhf&plugins=AK,ConfigOverride,Continuity,PageParams,IFrameDelay,AutoXHR,SPA,History,Angular,Backbone,Ember,RT,CrossDomain,BW,PaintTiming,NavigationTiming,ResourceTiming,Memory,CACHE_RELOAD,Errors,TPAnalytics,UserTiming,Akamai,Early,EventTiming,LOGN&acao=&ak.ai=730186 HTTP/1.1
Host: c.go-mpulse.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://tm.uol.com.br
Connection: keep-alive
Referer: https://tm.uol.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: private, max-age=120, stale-while-revalidate=60, stale-if-error=120
Timing-Allow-Origin: *
Content-Length: 51
Date: Mon, 30 Jan 2023 13:15:05 GMT
Connection: keep-alive
Content-Type: application/json
platform.20bet.com/api/event/list?sportId_eq=1&period=5&limit=10&competitor2Id_neq=&competitor1Id_neq=&oddsExists_eq=1&status_in%5B%5D=0&main=1&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=tips&relations%5B%5D=sportCategories&relations%5B%5D=withMarketsCount&lang=br
172.67.15.187204 No Content 0 B URL HTTP/2 platform.20bet.com/api/event/list?sportId_eq=1&period=5&limit=10&competitor2Id_neq=&competitor1Id_neq=&oddsExists_eq=1&status_in%5B%5D=0&main=1&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=tips&relations%5B%5D=sportCategories&relations%5B%5D=withMarketsCount&lang=br
IP 172.67.15.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/event/list?sportId_eq=1&period=5&limit=10&competitor2Id_neq=&competitor1Id_neq=&oddsExists_eq=1&status_in%5B%5D=0&main=1&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=tips&relations%5B%5D=sportCategories&relations%5B%5D=withMarketsCount&lang=br HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Mon, 30 Jan 2023 13:15:05 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 791a796fdd38b4fd-OSL
X-Firefox-Spdy: h2
20bet.com/app/2775.71943518a4ff78b7.esm.js
104.22.35.208200 OK 4.9 kB URL HTTP/2 20bet.com/app/2775.71943518a4ff78b7.esm.js
IP 104.22.35.208:0
File type ASCII text, with very long lines (3429), with no line terminators
Hash c6a30968b6575629be31e7143745f58d
dafd55f049ba0843aff9ffa8e2665b53dab3cde5
8c6fb99aedf98684282035a294cde0ae91e69385336e303b3aa87fc713758018
GET /app/2775.71943518a4ff78b7.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_D23E16FB1C024968B8A0592610A0718D
Cookie: btag=668128_D23E16FB1C024968B8A0592610A0718D; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:04 GMT
content-type: application/javascript
cf-ray: 791a7967a84515e0-ARN
etag: W/"63d122b5-d65"
last-modified: Wed, 25 Jan 2023 12:38:13 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/8522.093b2b3cd6f2d1e6.esm.js
104.22.35.208200 OK 3.8 kB URL HTTP/2 20bet.com/app/8522.093b2b3cd6f2d1e6.esm.js
IP 104.22.35.208:0
File type ASCII text, with very long lines (2374), with no line terminators
Hash c9f0d59bf321868b000dc7124cdb2f4e
493dd82705e7211ba800fedf91528edaec4a8955
561b070d983ed1637017314aa9f69ce033e4f76808a61584965e44015c15402d
GET /app/8522.093b2b3cd6f2d1e6.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_D23E16FB1C024968B8A0592610A0718D
Cookie: btag=668128_D23E16FB1C024968B8A0592610A0718D; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:04 GMT
content-type: application/javascript
cf-ray: 791a7967a84815e0-ARN
etag: W/"63d122bb-946"
last-modified: Wed, 25 Jan 2023 12:38:19 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/sport/1059.svg
104.22.35.208200 OK 23 kB URL HTTP/2 20bet.com/assets/sport/1059.svg
IP 104.22.35.208:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (323)
Hash 312dc58a1aeb0286281771400eb6f951
90d0c2273cded7450ffed35310ce2fab35b4ac03
8e26fda3e34d1679a6dd4ec68efe3bdf51e9344ff4654f7156e9e04d625b75de
GET /assets/sport/1059.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_D23E16FB1C024968B8A0592610A0718D
Cookie: btag=668128_D23E16FB1C024968B8A0592610A0718D; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:05 GMT
content-type: image/svg+xml
cf-ray: 791a796fbe1915e0-ARN
etag: W/"63d12374-3f3"
last-modified: Wed, 25 Jan 2023 12:41:24 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc895bb6-fa1f-4972-a2f8-5ce71b0c72c0.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc895bb6-fa1f-4972-a2f8-5ce71b0c72c0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6d200552d23c85c199558b79cc24348f
8cc20b9ce98eeacd5b826268da24955a82e78a01
09b05ae6f75b5141401ddc49014e0eb2eac0856ba3b5020bc85f4a9a64d3d2a6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc895bb6-fa1f-4972-a2f8-5ce71b0c72c0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9700
x-amzn-requestid: 9f944a46-7e39-44c3-a640-3c7e9b778bca
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhkoEEkJIAMFs0w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e7cd-4b29196f5bd1b2fb04e6363f;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:40:29 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Jdh2u-xrCjqq1SKWL7hCTqrlGRjbytuxecJS-cwiXb5FQypGKYbFzg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:55:35 GMT
age: 55170
etag: "8cc20b9ce98eeacd5b826268da24955a82e78a01"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
platform.20bet.com/api/v3/menu/line/br?period=5
104.22.35.208200 OK 16 kB URL HTTP/2 platform.20bet.com/api/v3/menu/line/br?period=5
IP 104.22.35.208:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 6c972b039d086acce9d0ea03a52e08cf
8a1d856e2ab2c8f6e8768fbe9a18c7dc4b1ce7ba
f955eb1983eaa088f03ca8b396063c38a0b4ac58c17886af4f70fb7f568983c5
GET /api/v3/menu/line/br?period=5 HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:05 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 791a796decb015e0-ARN
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/teams/ts_black.webp
104.22.35.208200 OK 1.5 kB URL HTTP/2 20bet.com/assets/teams/ts_black.webp
IP 104.22.35.208:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 8f33cbd14dfbd92c2033cfcfe9acbe05
888e8820b7610d71f87d221fcd380b5437a8ced7
094dbedfcdd666cc62e645d3f50190392f3ba4ee1ea122f63c0f9881980db462
GET /assets/teams/ts_black.webp HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_D23E16FB1C024968B8A0592610A0718D
Cookie: btag=668128_D23E16FB1C024968B8A0592610A0718D; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:05 GMT
content-type: image/webp
content-length: 1490
cf-ray: 791a79715f7415e0-ARN
accept-ranges: bytes
etag: "63d12366-5d2"
last-modified: Wed, 25 Jan 2023 12:41:10 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
X-Firefox-Spdy: h2
platform.20bet.com/api/v3/menu/line/br?period=0
104.22.35.208200 OK 33 kB URL HTTP/2 platform.20bet.com/api/v3/menu/line/br?period=0
IP 104.22.35.208:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash cf6eadaa18caa213274afa4aea693194
c964275bd1918d4cd1d0f201daf7645909f06973
060d1d66cbd6f043537570af3d0d03aa38969212b58787f0692c579c7f9db162
GET /api/v3/menu/line/br?period=0 HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:05 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 791a796e2cd515e0-ARN
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/sport/22.svg
104.22.35.208200 OK 2.7 kB URL HTTP/2 20bet.com/assets/sport/22.svg
IP 104.22.35.208:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (341)
Hash 85482a4054752d7573617d57a30a4f2a
7211499d25c9f633ade6110f91ebd5d6f6f83506
5cebd06c352f42d37d0e215835b9066dc4c2b753fbd4a6fd52fd8948dd164c42
GET /assets/sport/22.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_D23E16FB1C024968B8A0592610A0718D
Cookie: btag=668128_D23E16FB1C024968B8A0592610A0718D; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:05 GMT
content-type: image/svg+xml
cf-ray: 791a796fce1e15e0-ARN
etag: W/"63d1236d-905"
last-modified: Wed, 25 Jan 2023 12:41:17 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
gravity-2.de.nsoftcdn.com/v1/web/bootstrap?v=pt
104.16.96.78200 OK 22 kB URL HTTP/2 gravity-2.de.nsoftcdn.com/v1/web/bootstrap?v=pt
IP 104.16.96.78:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (65188), with no line terminators
Hash 04d867e036a78b2a51caf70f324cc597
98fc0dcc7e4a53cc17eec236fe19a702e51e480a
644432ef9d9415ff95675f341e9c46982dadda396a8faab58179f6c9ff058e06
GET /v1/web/bootstrap?v=pt HTTP/1.1
Host: gravity-2.de.nsoftcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Nsft-SCD-Company-Name: victorybrl
X-Nsft-SCD-Company-Id: ee010c47-eb96-4ffe-a11f-bf2736607193
X-Nsft-SCD-App-Base-Name: victory2_web
X-Nsft-SCD-App-Name: victorybrl_web
X-Nsft-SCD-Locale: pt
X-Nsft-SCD-Version: 1.1
Origin: https://victory2.web.7platform.net
Connection: keep-alive
Referer: https://victory2.web.7platform.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:05 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: https://victory2.web.7platform.net
vary: Origin
access-control-allow-credentials: true
access-control-expose-headers: Access-Token,X-Nsft-IAM-Refresh-Token
etag: W/"14390-C352TujYMMknR2S0kHiUr289YMk"
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 791a79712d2ab51e-OSL
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/sport/15.svg
104.22.35.208200 OK 2.9 kB URL HTTP/2 20bet.com/assets/sport/15.svg
IP 104.22.35.208:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (372)
Hash 33e320836d8556cf46ef0752aa5b5804
26587afc51c69b8b36add04ad6a355728e474b63
f61e4736182484de338df206c70146c09bdedad1389ce1894db768070ae3c0b2
GET /assets/sport/15.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_D23E16FB1C024968B8A0592610A0718D
Cookie: btag=668128_D23E16FB1C024968B8A0592610A0718D; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:05 GMT
content-type: image/svg+xml
cf-ray: 791a796fae0415e0-ARN
etag: W/"63d1237b-a14"
last-modified: Wed, 25 Jan 2023 12:41:31 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
sc-events-sdk.sharechat.com/web-sdk.js
34.120.129.12200 OK 12 kB URL HTTP/2 sc-events-sdk.sharechat.com/web-sdk.js
IP 34.120.129.12:0
File type ASCII text, with very long lines (11862), with no line terminators
Hash 590bf0022120d1610cba44ba02e12810
5dc081270f226a5e3ee9b47ad279ed2b1cdcf492
07886428aa53f7fa0b69b0b5e236e171be8c492d7020686b0fdec11f572c07a8
GET /web-sdk.js HTTP/1.1
Host: sc-events-sdk.sharechat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdu2D4soC6YQ7VpmKrVawrPzObrmMDt0acA-o8MM9LeEIGrLBLQmYuoqt8b8gyU7yK3ZzdlJsLjicaNWpERSp5bPEUA8VPXJ
vary: X-Goog-Allowed-Resources
x-goog-generation: 1667891067679001
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 11862
x-goog-hash: crc32c=ZVy9+A==, md5=WQvwAiEg0WEMukS6AuEoEA==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 11862
server: UploadServer
date: Mon, 30 Jan 2023 12:15:10 GMT
expires: Mon, 30 Jan 2023 13:15:10 GMT
cache-control: public, max-age=3600
age: 3596
last-modified: Tue, 08 Nov 2022 07:04:27 GMT
etag: "590bf0022120d1610cba44ba02e12810"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash 481f2caa83bb9618991a1c9a866f89f7
53cbb0da7f49c1ac5420b5b4587f747db4873078
f7d9064a69de8103d91020ebf749303f97fbd12da8940b02d9fe83372691bcdb
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Mon, 30 Jan 2023 13:15:06 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sun, 29 Jan 2023 20:45:45 GMT
Expires: Mon, 30 Jan 2023 20:45:45 GMT
ETag: "53cbb0da7f49c1ac5420b5b4587f747db4873078"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
20bet.com/assets/teams/ts_rose.webp
104.22.35.208200 OK 1.8 kB URL HTTP/2 20bet.com/assets/teams/ts_rose.webp
IP 104.22.35.208:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 19ba1e0b01ca14f99e3538dbaa5e0d8e
f806fee3d7dfe2df6e93dfbf798828024efbe367
8f8b4c3beba9d41fa572c8e140ff15aafed6c9d4b6178ee9b3098edf5a4a4699
GET /assets/teams/ts_rose.webp HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_D23E16FB1C024968B8A0592610A0718D
Cookie: btag=668128_D23E16FB1C024968B8A0592610A0718D; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:06 GMT
content-type: image/webp
content-length: 1834
cf-ray: 791a7973c9be15e0-ARN
accept-ranges: bytes
etag: "63d1238a-72a"
last-modified: Wed, 25 Jan 2023 12:41:46 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
X-Firefox-Spdy: h2
20bet.com/assets/teams/ts_red.webp
104.22.35.208200 OK 1.7 kB URL HTTP/2 20bet.com/assets/teams/ts_red.webp
IP 104.22.35.208:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash d1320b0cb7ec9f824158acaa04ea6013
44f617f188bd37cfb350033dbb595d78e3200314
b59467e2e36267ebeea9fc7ef9f906b2f970775b33680459a725dcd8a390a5fe
GET /assets/teams/ts_red.webp HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_D23E16FB1C024968B8A0592610A0718D
Cookie: btag=668128_D23E16FB1C024968B8A0592610A0718D; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:06 GMT
content-type: image/webp
content-length: 1724
cf-ray: 791a7973d9ca15e0-ARN
accept-ranges: bytes
etag: "63d1236d-6bc"
last-modified: Wed, 25 Jan 2023 12:41:17 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
X-Firefox-Spdy: h2
20bet.com/assets/teams/ts_green.webp
104.22.35.208200 OK 1.7 kB URL HTTP/2 20bet.com/assets/teams/ts_green.webp
IP 104.22.35.208:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 88d73994168be3c3d2b7b26289de1df9
300a4dbdc3bbe9b8b81ba5e032dca3eef46faa0c
90b2c071db8d20db78a924a8f7bc424a27523816ca240b4d1d32e9943c474d2d
GET /assets/teams/ts_green.webp HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_D23E16FB1C024968B8A0592610A0718D
Cookie: btag=668128_D23E16FB1C024968B8A0592610A0718D; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:06 GMT
content-type: image/webp
content-length: 1734
cf-ray: 791a7973d9c715e0-ARN
accept-ranges: bytes
etag: "63d1238a-6c6"
last-modified: Wed, 25 Jan 2023 12:41:46 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
X-Firefox-Spdy: h2
20bet.com/assets/teams/ts_blue.webp
104.22.35.208200 OK 1.9 kB URL HTTP/2 20bet.com/assets/teams/ts_blue.webp
IP 104.22.35.208:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 4a16a0521346d6dabf88bf7132859d6e
e178f71c9c08047283e900db04d43b45a67fc3e2
3991d5a7a14c1effd84c0e1ff845f415cfa955bff6d62fe860f94a0b6a408847
GET /assets/teams/ts_blue.webp HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_D23E16FB1C024968B8A0592610A0718D
Cookie: btag=668128_D23E16FB1C024968B8A0592610A0718D; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:06 GMT
content-type: image/webp
content-length: 1850
cf-ray: 791a7973d9c915e0-ARN
accept-ranges: bytes
etag: "63d1237b-73a"
last-modified: Wed, 25 Jan 2023 12:41:31 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
X-Firefox-Spdy: h2
platform.20bet.com/api/popular/line-menu/br
104.22.35.208200 OK 4.9 kB URL HTTP/2 platform.20bet.com/api/popular/line-menu/br
IP 104.22.35.208:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 57bfa6e4de006c8531611b26ba24217a
a2d390d6444d0170c9a052c6f231982a61a5a75e
8aba62296cb0583dada504302bee324e6415a00302151476933d27a9532cf194
GET /api/popular/line-menu/br HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:05 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 791a796ddcaa15e0-ARN
content-encoding: br
X-Firefox-Spdy: h2
victory2.web.7platform.net/css/app.340a0c83f21a5e76.css
35.228.160.115200 OK 24 kB URL HTTP/2 victory2.web.7platform.net/css/app.340a0c83f21a5e76.css
IP 35.228.160.115:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (65536), with no line terminators
Hash 3708677c83abd65efd22c3aa1ee3299d
f600b46424125aa9ecac1e838fc0534e9a73678a
29fdb6454d772b0d23e0b89c48f3de242d38d4e3d0ee1dbb02863d34ceda3a65
GET /css/app.340a0c83f21a5e76.css HTTP/1.1
Host: victory2.web.7platform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://victory2.web.7platform.net/prematch?auth=b2b&lang=pt¤cy=BRL&logout=true&odds=decimal&timezone=UTC
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 79497
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: text/css; charset=UTF-8
date: Sun, 29 Jan 2023 15:10:09 GMT
etag: "39fc6e20cbc270ac631c051771294ef0-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GR1D299JAQ2P9BW9E3K5SVES
content-length: 23671
X-Firefox-Spdy: h2
dwmu1hf7ovvid.cloudfront.net/flags/br.svg
54.230.245.39200 OK 8.1 kB URL HTTP/2 dwmu1hf7ovvid.cloudfront.net/flags/br.svg
IP 54.230.245.39:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1691)
Hash 87032851c3532c9dd64f20f4bee155a9
27f6ca5c6b33941a063cfd5d2c9825b4308cec13
5626545274de6de8e4e2c0f800b7b664bc3521f0ee9bc98547f3cbec3effe2d8
GET /flags/br.svg HTTP/1.1
Host: dwmu1hf7ovvid.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 8097
date: Mon, 30 Jan 2023 08:03:38 GMT
last-modified: Tue, 10 Aug 2021 11:34:21 GMT
etag: "87032851c3532c9dd64f20f4bee155a9"
x-amz-version-id: oLA4rFPGFJ1I.a1Euu8aM418ji222aoF
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: pBP83GxH3v4_B2Ou5s8IcwiP4ZZwdghZ5oKz6hygUx46vIUlcwnAKw==
age: 18689
X-Firefox-Spdy: h2
dwmu1hf7ovvid.cloudfront.net/logos/payments/mastercard.png
54.230.245.39200 OK 4.9 kB URL HTTP/2 dwmu1hf7ovvid.cloudfront.net/logos/payments/mastercard.png
IP 54.230.245.39:0
File type PNG image data, 128 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 3241207a4b2fd4957d6bf25551667d07
fa4588d222c491655174054a55273c17218210af
75c4977294b4f07265036907f1288561f535269399333c1a7bc84d47a942a9eb
GET /logos/payments/mastercard.png HTTP/1.1
Host: dwmu1hf7ovvid.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 4921
date: Sun, 29 Jan 2023 14:42:41 GMT
last-modified: Tue, 22 Feb 2022 12:42:14 GMT
etag: "3241207a4b2fd4957d6bf25551667d07"
x-amz-version-id: KMC3MLOi8PXeeV_QBnKLG5q42XSR1qG3
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: brpabBoKDPL0sfwnG2uOCUuxXN5dgpDQ5vVgrpmM1OH0OHhRW5Pgew==
age: 81146
X-Firefox-Spdy: h2
dwmu1hf7ovvid.cloudfront.net/logos/payments/skrill.png
54.230.245.39200 OK 8.6 kB URL HTTP/2 dwmu1hf7ovvid.cloudfront.net/logos/payments/skrill.png
IP 54.230.245.39:0
File type PNG image data, 288 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 47f40f5d04da2e30b11d090fa6037682
710f41a13f263930df694ca181b6c450f41bab2f
86b71d35f5a194b2f76154ffb728b3899df3580ee04e930bb61b75ac7d45b5a8
GET /logos/payments/skrill.png HTTP/1.1
Host: dwmu1hf7ovvid.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 8586
last-modified: Tue, 22 Feb 2022 12:42:14 GMT
x-amz-version-id: MSXopNYhJLGyCWAlXhjcGC1KHjX.dZwu
accept-ranges: bytes
server: AmazonS3
date: Sun, 29 Jan 2023 13:20:58 GMT
etag: "47f40f5d04da2e30b11d090fa6037682"
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3HnqWrOCPPU7mnEATTkpJv_SuGlrNYgY_eZ9E8D5Erh_P_C_xaaVFw==
age: 86049
X-Firefox-Spdy: h2
dwmu1hf7ovvid.cloudfront.net/logos/payments/neteller.png
54.230.245.39200 OK 6.1 kB URL HTTP/2 dwmu1hf7ovvid.cloudfront.net/logos/payments/neteller.png
IP 54.230.245.39:0
File type PNG image data, 552 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash eeb697231d2c6593826a47cf1529b14b
ef237c9155e776448ed96ea382de97fccb09b9be
d89204c004f685457bd1e75a807acefb312e6824ba734bb20ab8f38855581422
GET /logos/payments/neteller.png HTTP/1.1
Host: dwmu1hf7ovvid.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 6057
date: Sun, 29 Jan 2023 14:42:41 GMT
last-modified: Tue, 22 Feb 2022 12:42:14 GMT
etag: "eeb697231d2c6593826a47cf1529b14b"
x-amz-version-id: ry8AeevZLGZHGjeR9MLYjs6xH4K5iCws
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: KswXD6fOXXs-veyHYcJNqfUi7OsRxoybpx80diO_aKN4xuueCRVupA==
age: 81146
X-Firefox-Spdy: h2
20bet.com/app/1742.157c0f3c644cecdb.esm.js
104.22.35.208200 OK 24 kB URL HTTP/2 20bet.com/app/1742.157c0f3c644cecdb.esm.js
IP 104.22.35.208:0
File type ASCII text, with very long lines (1849), with no line terminators
Hash c73240778ebb24236fc96124d49b21b3
eb7d1eb8a9c03497eb36e687bf7822b80e51bc20
187579534e73e1fcf0f5cedd2a44ae4f0d57a27609b1f55b1bd66079f0a95585
GET /app/1742.157c0f3c644cecdb.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_D23E16FB1C024968B8A0592610A0718D
Cookie: btag=668128_D23E16FB1C024968B8A0592610A0718D; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:04 GMT
content-type: application/javascript
cf-ray: 791a7967b85015e0-ARN
etag: W/"63d122bb-739"
last-modified: Wed, 25 Jan 2023 12:38:19 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
dwmu1hf7ovvid.cloudfront.net/logos/payments/dinners_discover.png
54.230.245.39200 OK 7.3 kB URL HTTP/2 dwmu1hf7ovvid.cloudfront.net/logos/payments/dinners_discover.png
IP 54.230.245.39:0
File type PNG image data, 280 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 1ffdc0c354fb61c82d541b6ffdc05801
8fd9754fb232ce86a5fde7fdc1586e9296a985f3
85dff21b45f210cb509aa2679ac7963656694351a68c18a3f3bfa2466bf1d370
GET /logos/payments/dinners_discover.png HTTP/1.1
Host: dwmu1hf7ovvid.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 7263
last-modified: Tue, 22 Feb 2022 12:42:14 GMT
x-amz-version-id: 4McFBlgFojXFEl66w3ib_VY.XF9jr3n2
accept-ranges: bytes
server: AmazonS3
date: Mon, 30 Jan 2023 13:09:25 GMT
etag: "1ffdc0c354fb61c82d541b6ffdc05801"
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: OHYZDiOAwz40LQx10TBnGwFlmDJMvum8WGz18L5J3iulliEf_qMq5A==
age: 342
X-Firefox-Spdy: h2
dwmu1hf7ovvid.cloudfront.net/logos/payments/visa.png
54.230.245.39200 OK 16 kB URL HTTP/2 dwmu1hf7ovvid.cloudfront.net/logos/payments/visa.png
IP 54.230.245.39:0
File type PNG image data, 300 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 36173aebea7c2ce4980ccc03f86475c6
60fc024fa81af09658f2106d75911842bcba07f9
b207dba6fb8520a62a21d7fe27e71c7ec0f04ba7699333d8bdb8d0d4db6586a6
GET /logos/payments/visa.png HTTP/1.1
Host: dwmu1hf7ovvid.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 15474
last-modified: Tue, 22 Feb 2022 12:42:14 GMT
x-amz-version-id: HkQ6L.Uh.twI2d896j7ipYI85XH4j2be
accept-ranges: bytes
server: AmazonS3
date: Mon, 30 Jan 2023 13:09:25 GMT
etag: "36173aebea7c2ce4980ccc03f86475c6"
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: gy7bEqDstQA_58KTITF4etn9cHjhhIEYuqGP9Y8G-p1VWn1WJGMFUw==
age: 342
X-Firefox-Spdy: h2
dwmu1hf7ovvid.cloudfront.net/logos/payments/jeton.png
54.230.245.39200 OK 9.3 kB URL HTTP/2 dwmu1hf7ovvid.cloudfront.net/logos/payments/jeton.png
IP 54.230.245.39:0
File type PNG image data, 380 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 36dfc3931a5e173acc0e6d6855180467
db15f4d7897475fdf81523a21ef1d49ec9831855
038ef0be9548497a550c80c8f0a4446ec46c36b83918b58381dc3d87573269e3
GET /logos/payments/jeton.png HTTP/1.1
Host: dwmu1hf7ovvid.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 9258
date: Sun, 29 Jan 2023 14:42:41 GMT
last-modified: Tue, 22 Feb 2022 12:42:14 GMT
etag: "36dfc3931a5e173acc0e6d6855180467"
x-amz-version-id: 9Smog0AtA_2J86heSGZH22Fwxq63WkLZ
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: oeuOHlRTWan2wcGsAV4ccboG6DuVjUeO_xofquJXfo1DDckIWKIdEg==
age: 81146
X-Firefox-Spdy: h2
api.livechatinc.com/v3.3/customer/action/get_configuration?license_id=9054575&version=299752.12.12.43703.2870.1356.1580.16.3.3.3.244.1730&group_id=24&jsonp=__lc_static_config
95.101.10.161200 OK 1.4 kB URL HTTP/2 api.livechatinc.com/v3.3/customer/action/get_configuration?license_id=9054575&version=299752.12.12.43703.2870.1356.1580.16.3.3.3.244.1730&group_id=24&jsonp=__lc_static_config
IP 95.101.10.161:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (3985), with no line terminators
Hash f8a43b2efa034178ecd264425287b9c0
41a5d4178b27a0a5859e4d4978b5765972e5cd0f
528296be7cd0d1d14f29ad581f947066003fcbc3cfc0ebc69a2c124385ece401
GET /v3.3/customer/action/get_configuration?license_id=9054575&version=299752.12.12.43703.2870.1356.1580.16.3.3.3.244.1730&group_id=24&jsonp=__lc_static_config HTTP/1.1
Host: api.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
content-type: application/javascript; charset=UTF-8
legacy: 2023-06-30
vary: Accept-Encoding
content-length: 1388
cache-control: public, max-age=449
expires: Mon, 30 Jan 2023 13:22:35 GMT
date: Mon, 30 Jan 2023 13:15:06 GMT
X-Firefox-Spdy: h2
20bet.com/app/3048.9609a2d0804371c8.esm.js
104.22.35.208200 OK 6.7 kB URL HTTP/2 20bet.com/app/3048.9609a2d0804371c8.esm.js
IP 104.22.35.208:0
File type ASCII text, with very long lines (1994), with no line terminators
Hash 46dbf59658c5329403fc2a918416cae5
387f3304410c7757eeeed549b255ac8d3c5b5c76
cd9cbb224c25cdbdcac864f3694df21fcdd417664bcc2ca50d97fdb8de76d375
GET /app/3048.9609a2d0804371c8.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_D23E16FB1C024968B8A0592610A0718D
Cookie: btag=668128_D23E16FB1C024968B8A0592610A0718D; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:04 GMT
content-type: application/javascript
cf-ray: 791a7967b85f15e0-ARN
etag: W/"63d122b5-7ca"
last-modified: Wed, 25 Jan 2023 12:38:13 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2827b615fd8bc2ef8814f3b41f3c4e48
c070854fcea702dd84e2173ae050211730f7f74e
29ad23cfc0a11fa0a4a039a5e13f063365f077cb1e667eef90e50b75ebba3d9b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1705
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 13:15:06 GMT
Etag: "63d77ed6-1d7"
Last-Modified: Mon, 30 Jan 2023 12:46:41 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
20bet.com/app/9114.2d954ca350db845b.esm.js
104.22.35.208200 OK 15 kB URL HTTP/2 20bet.com/app/9114.2d954ca350db845b.esm.js
IP 104.22.35.208:0
File type ASCII text, with very long lines (1192), with no line terminators
Hash 4fa98abe6fc8f1ce2c79488a67a9dac8
11c69e873fbd8288415c5f02c751e723bc5c8035
6edae902c70f2b7b6dc393b5f7b4a7a85819768bb565d30ed7011dc805bbef97
GET /app/9114.2d954ca350db845b.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_D23E16FB1C024968B8A0592610A0718D
Cookie: btag=668128_D23E16FB1C024968B8A0592610A0718D; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:04 GMT
content-type: application/javascript
cf-ray: 791a7967f87e15e0-ARN
etag: W/"63d122cb-4a8"
last-modified: Wed, 25 Jan 2023 12:38:35 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/watch.js
87.250.251.119200 OK 59 kB URL HTTP/2 mc.yandex.ru/metrika/watch.js
IP 87.250.251.119:0
Hash b96b0a8adb1bbf2c6171c07d9875737e
027f3946d113dbf4f28199360256d4484cbe6b04
9cb31e79905e400c4c5804db8abf021acd1b5022abed5d450710a963ed0331f6
GET /metrika/watch.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 58140
date: Mon, 30 Jan 2023 13:15:06 GMT
access-control-allow-origin: *
etag: "63c93a4b-e31c"
expires: Mon, 30 Jan 2023 14:15:06 GMT
last-modified: Thu, 19 Jan 2023 15:40:43 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: application/javascript
content-encoding: br
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
dwmu1hf7ovvid.cloudfront.net/logos/payments/cryptocurrency.png
54.230.245.39200 OK 9.9 kB URL HTTP/2 dwmu1hf7ovvid.cloudfront.net/logos/payments/cryptocurrency.png
IP 54.230.245.39:0
File type PNG image data, 342 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash c52fe749ee73a628e7c7020c185c80cb
e2ccff466dfe2829ccb0e5fe564ba04994ddbc6f
1998b613aec342fb0df530978a6136f9b59be0bd1664f1b656c6a23e46cadd70
GET /logos/payments/cryptocurrency.png HTTP/1.1
Host: dwmu1hf7ovvid.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 9908
date: Sun, 29 Jan 2023 17:55:39 GMT
last-modified: Tue, 22 Feb 2022 12:42:14 GMT
etag: "c52fe749ee73a628e7c7020c185c80cb"
x-amz-version-id: h_PHZ.6DGxv3SDQImdb1EMg8_ca0xkrs
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1gwaFWqzGUtlpKvVwtAgsDJjvZyLJ0-l8JHpQBVPmyl8R3VOVv3pIg==
age: 69568
X-Firefox-Spdy: h2
20bet.com/assets/sport/18.svg
104.22.35.208200 OK 2.3 kB URL HTTP/2 20bet.com/assets/sport/18.svg
IP 104.22.35.208:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (370)
Hash e418d4e559fc59f4740416bec1a95973
9b8b463d19e5706c4dc1b29c07a17e7d225edb12
0513d559b5a0c0af1d72bdcf2ba617b74a59e97fabb56ed7bd1ac797e2ab9a51
GET /assets/sport/18.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_D23E16FB1C024968B8A0592610A0718D
Cookie: btag=668128_D23E16FB1C024968B8A0592610A0718D; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:05 GMT
content-type: image/svg+xml
cf-ray: 791a796fce2b15e0-ARN
etag: W/"63d1236d-fd0"
last-modified: Wed, 25 Jan 2023 12:41:17 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c239475b53a2314c43c5922ef55e73f8
e30168fe4daa7e6ebe19591863e7175bf9ad784d
2f985a21771f800b54258c8b1e70a38c9249ef7b9bf2ec61e01d5717c2e204d4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5199
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 13:15:06 GMT
Last-Modified: Mon, 30 Jan 2023 11:48:27 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
20bet.com/assets/sport/1056.svg
104.22.35.208200 OK 641 B URL HTTP/2 20bet.com/assets/sport/1056.svg
IP 104.22.35.208:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (356)
Hash 749d181cb92bacb35053b4017ec5ad9b
b23a1a7d91252e3103a16b98d4a59af723d5cf8c
d9dd314008d9bf3e77b95addb4f77e7513cc7467a71d9f2a0b880de291eaa425
GET /assets/sport/1056.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_D23E16FB1C024968B8A0592610A0718D
Cookie: btag=668128_D23E16FB1C024968B8A0592610A0718D; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:05 GMT
content-type: image/svg+xml
cf-ray: 791a796fce2915e0-ARN
etag: W/"63d1237b-2ca"
last-modified: Wed, 25 Jan 2023 12:41:31 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/5352.a47af8ab3119be30.esm.js
104.22.35.208200 OK 0 B URL HTTP/2 20bet.com/app/5352.a47af8ab3119be30.esm.js
IP 104.22.35.208:0
GET /app/5352.a47af8ab3119be30.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_D23E16FB1C024968B8A0592610A0718D
Cookie: btag=668128_D23E16FB1C024968B8A0592610A0718D; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:04 GMT
content-type: application/javascript
cf-ray: 791a7967c86315e0-ARN
etag: W/"63d122b5-3ba"
last-modified: Wed, 25 Jan 2023 12:38:13 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
www.brazino-cdnsrv-cst.org/build/categoryBlock.15f60701.css?v10263
185.76.9.21200 OK 0 B URL HTTP/2 www.brazino-cdnsrv-cst.org/build/categoryBlock.15f60701.css?v10263
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
GET /build/categoryBlock.15f60701.css?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:00 GMT
content-type: text/css
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"63651122-de6"
expires: Sat, 04 Nov 2023 14:39:22 GMT
last-modified: Fri, 04 Nov 2022 13:18:26 GMT
referrer-policy: same-origin
vary: Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: 6e48885e-939a-49b7-981d-a1f0ab6b6103-3082022
x-accel-expires: @1699108762
server: CDN77-Turbo
x-77-nzt: AblMCRR6Nr//up5yAA
x-77-nzt-ray: af585630d00c596fd4c2d76342ba130c
x-cache: HIT
x-age: 7511738
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.clarity.ms/tag/ev3k86mzo2
13.107.237.53200 OK 0 B URL HTTP/2 www.clarity.ms/tag/ev3k86mzo2
IP 13.107.237.53:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /tag/ev3k86mzo2 HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bc.game/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: application/x-javascript
expires: -1
set-cookie: CLID=27857fb32cfd48c8933c96edf15cdf14.20230130.20240130; expires=Tue, 30 Jan 2024 13:15:02 GMT; path=/; secure; samesite=none; httponly
request-context: appId=cid-v1:e97341f6-8fff-46a6-9229-fbbfe0892c78
x-cache: CONFIG_NOCACHE
x-azure-ref: 01sLXYwAAAADc5SSoJzItSI80RfALQNlDQ1BIMzBFREdFMDQxMwA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Mon, 30 Jan 2023 13:15:01 GMT
X-Firefox-Spdy: h2
cdn.onesignal.com/sdks/OneSignalSDK.js
104.18.226.52200 OK 0 B URL HTTP/2 cdn.onesignal.com/sdks/OneSignalSDK.js
IP 104.18.226.52:0
GET /sdks/OneSignalSDK.js HTTP/1.1
Host: cdn.onesignal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:01 GMT
content-type: application/javascript
etag: W/"ae63ef8ff03da61fffaa7f165729897a"
access-control-allow-headers: OneSignal-Subscription-Id
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 2905
expires: Thu, 02 Feb 2023 13:15:01 GMT
cache-control: public, max-age=259200
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains
server: cloudflare
cf-ray: 791a79556c2bb4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/v2/data/rates
104.22.35.208200 OK 0 B URL HTTP/2 platform.20bet.com/api/v2/data/rates
IP 104.22.35.208:0
GET /api/v2/data/rates HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:03 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 791a79648dee15e0-ARN
content-encoding: br
X-Firefox-Spdy: h2
d1wfowvne3d4em.cloudfront.net/flags/ar.svg
54.230.245.101200 OK 0 B URL HTTP/2 d1wfowvne3d4em.cloudfront.net/flags/ar.svg
IP 54.230.245.101:0
GET /flags/ar.svg HTTP/1.1
Host: d1wfowvne3d4em.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
date: Sun, 29 Jan 2023 16:55:23 GMT
last-modified: Thu, 05 Jan 2023 15:45:57 GMT
etag: W/"d205ca1376dbe5ce35b5b926fe739959"
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: lXwpwJ5NHecMrdwvOWhT0GDk-O-7A7Q5ac8RBfnxyRKz1gAhsUuKTQ==
age: 73184
X-Firefox-Spdy: h2
bitslot.io/?stag=148527_63d7c2d2a7611a4f6145ca35&tracking_link=http%3A%2F%2Fb-partner.xyz%2Fa74c621bf
104.18.18.207301 Moved Permanently 0 B URL HTTP/2 bitslot.io/?stag=148527_63d7c2d2a7611a4f6145ca35&tracking_link=http%3A%2F%2Fb-partner.xyz%2Fa74c621bf
IP 104.18.18.207:0
GET /?stag=148527_63d7c2d2a7611a4f6145ca35&tracking_link=http%3A%2F%2Fb-partner.xyz%2Fa74c621bf HTTP/1.1
Host: bitslot.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Mon, 30 Jan 2023 13:14:58 GMT
location: https://www.bitslot.io/?stag=148527_63d7c2d2a7611a4f6145ca35&tracking_link=http%3A%2F%2Fb-partner.xyz%2Fa74c621bf
cache-control: max-age=3600
expires: Mon, 30 Jan 2023 14:14:58 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 791a7944bfe1b506-OSL
X-Firefox-Spdy: h2
20bet.com/app/vendor.8d05cdc77c691d56.esm.js
104.22.35.208200 OK 0 B URL HTTP/2 20bet.com/app/vendor.8d05cdc77c691d56.esm.js
IP 104.22.35.208:0
GET /app/vendor.8d05cdc77c691d56.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_D23E16FB1C024968B8A0592610A0718D
Cookie: btag=668128_D23E16FB1C024968B8A0592610A0718D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:02 GMT
content-type: application/javascript
cf-ray: 791a795b4e1015e0-ARN
etag: W/"63d122cc-251846"
last-modified: Wed, 25 Jan 2023 12:38:36 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
megapari.com/registration?tag=d_2032927m_25437c_
83.147.204.197200 OK 0 B URL HTTP/2 megapari.com/registration?tag=d_2032927m_25437c_
IP 83.147.204.197:0
ASN #202492 Silverhill Group Holding Ltd
GET /registration?tag=d_2032927m_25437c_ HTTP/1.1
Host: megapari.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 13:14:59 GMT
content-type: text/html; charset=utf-8
x-frame-options: SAMEORIGIN
set-cookie: SESSION=f3a9ad580e60fe3c0af0c689ba7744cb; path=/; secure; HttpOnly; SameSite=Lax
ua=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
_glhf=1675102274; expires=Mon, 30-Jan-2023 14:14:58 GMT; Max-Age=3600; path=/
referral_values=%7B%22type%22%3A%22reflinkid%22%2C%22val%22%3A%22d_2032927m_25437c_%22%2C%22additional%22%3A%7B%22name_tag%22%3A%22tag%22%2C%22ref_partner_id%22%3Anull%2C%22bw_%22%3Anull%7D%7D; expires=Fri, 31-Mar-2023 13:14:58 GMT; Max-Age=5184000; path=/; HttpOnly
is_rtl=1; expires=Tue, 30-Jan-2024 13:14:58 GMT; Max-Age=31536000; path=/; HttpOnly
disallow_sport=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; HttpOnly
visit=1-63651f0521094a98f80774635097832b; path=/; HttpOnly
referral_values=%7B%22type%22%3A%22reflinkid%22%2C%22val%22%3A%22d_2032927m_25437c_%22%2C%22additional%22%3A%7B%22name_tag%22%3A%22tag%22%2C%22ref_partner_id%22%3Anull%2C%22bw_%22%3Anull%7D%7D; expires=Fri, 31-Mar-2023 13:14:58 GMT; Max-Age=5184000; path=/; HttpOnly
reflinkid=d_2032927m_25437c_; expires=Thu, 02-Mar-2023 13:14:58 GMT; Max-Age=2678400; path=/; HttpOnly
fast_coupon=true; expires=Mon, 06-Feb-2023 13:14:58 GMT; Max-Age=604800; path=/
v3fr=1; expires=Thu, 02-Feb-2023 13:14:58 GMT; Max-Age=259200; path=/; HttpOnly; SameSite=lax
lng=en; expires=Wed, 01-Mar-2023 13:14:58 GMT; Max-Age=2592000; path=/
flaglng=en; expires=Wed, 01-Mar-2023 13:14:58 GMT; Max-Age=2592000; path=/
auid=U5PMxWPXwtOcYH7cAyokAg==; path=/; secure; httponly; samesite=lax
vary: Accept-Encoding
content-encoding: br
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
www.brazino-cdnsrv-cst.org/build/app.af895d81.js?v10263
185.76.9.21200 OK 0 B URL HTTP/2 www.brazino-cdnsrv-cst.org/build/app.af895d81.js?v10263
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
GET /build/app.af895d81.js?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:00 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"6399e1a5-c929"
expires: Thu, 14 Dec 2023 14:48:46 GMT
last-modified: Wed, 14 Dec 2022 14:45:57 GMT
referrer-policy: same-origin
vary: Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: 91eff718-2708-4238-a4cb-a59db88f5ab9-3482022
x-accel-expires: @1702565326
server: CDN77-Turbo
x-77-nzt: AblMCRR70GH/huA9AA
x-77-nzt-ray: af585630d00c596fd4c2d76301d8e20b
x-cache: HIT
x-age: 4055174
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.brazino-cdnsrv-cst.org/build/commons.c7802f4c.js?v10263
185.76.9.21200 OK 0 B URL HTTP/2 www.brazino-cdnsrv-cst.org/build/commons.c7802f4c.js?v10263
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
GET /build/commons.c7802f4c.js?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:00 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"6399e1a5-3783a"
expires: Thu, 14 Dec 2023 14:48:46 GMT
last-modified: Wed, 14 Dec 2022 14:45:57 GMT
referrer-policy: same-origin
vary: Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: ab1d35f1-5cdc-444c-b639-4561b155f1ff-3482022
x-accel-expires: @1702565326
server: CDN77-Turbo
x-77-nzt: AblMCRR7hTn/huA9AA
x-77-nzt-ray: af585630d00c596fd4c2d7636a604c0c
x-cache: HIT
x-age: 4055174
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
platform.20bet.com/api/v3/casino/game?dev_id=popular&per_page=6&has_live=0&perPage=6
104.22.35.208200 OK 0 B URL HTTP/2 platform.20bet.com/api/v3/casino/game?dev_id=popular&per_page=6&has_live=0&perPage=6
IP 104.22.35.208:0
GET /api/v3/casino/game?dev_id=popular&per_page=6&has_live=0&perPage=6 HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:04 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 791a7969092615e0-ARN
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/6485.56c33e7a5448e82e.esm.js
104.22.35.208200 OK 0 B URL HTTP/2 20bet.com/app/6485.56c33e7a5448e82e.esm.js
IP 104.22.35.208:0
GET /app/6485.56c33e7a5448e82e.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_D23E16FB1C024968B8A0592610A0718D
Cookie: btag=668128_D23E16FB1C024968B8A0592610A0718D; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:03 GMT
content-type: application/javascript
cf-ray: 791a79614afa15e0-ARN
etag: W/"63d122d0-30e"
last-modified: Wed, 25 Jan 2023 12:38:40 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
cdn.seon.io/js/v4/agent.js
54.230.111.40200 OK 0 B URL HTTP/2 cdn.seon.io/js/v4/agent.js
IP 54.230.111.40:0
GET /js/v4/agent.js HTTP/1.1
Host: cdn.seon.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Mon, 30 Jan 2023 12:40:27 GMT
last-modified: Tue, 20 Dec 2022 16:00:08 GMT
etag: W/"c34c3067f651e0fea2609171ab7bfec0"
cache-control: max-age=3600
x-amz-version-id: oBwuMALhSWNlluJ4Z9BGO_.GELHIAD3H
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: G_hivXsWlZlCVZmM5FCD56jHq7jxcfOfat0CXBSsyhA4W4CSw9TC3Q==
age: 2075
X-Firefox-Spdy: h2
menhir.gb.nsoftcdn.com/logout
104.16.96.78200 OK 0 B URL HTTP/2 menhir.gb.nsoftcdn.com/logout
IP 104.16.96.78:0
GET /logout HTTP/1.1
Host: menhir.gb.nsoftcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
HTTP-X-SEVEN-CLUB-UUID: ee010c47-eb96-4ffe-a11f-bf2736607193
HTTP-X-NAB-DP: Web
SEVEN-LOCALE: pt
Origin: https://victory2.web.7platform.net
Connection: keep-alive
Referer: https://victory2.web.7platform.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:06 GMT
content-type: application/json
cache-control: no-cache
access-control-allow-origin: https://victory2.web.7platform.net
access-control-allow-credentials: true
access-control-expose-headers: access-token, x-nsft-seven-tp-token, x-nsft-iam-refresh-token, content-disposition
allow: GET
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 791a7975dd6fb51e-OSL
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/event/list?sportId_eq=1&limit=10&competitor2Id_neq=&competitor1Id_neq=&oddsExists_eq=1&main=1&status_in%5B%5D=2&status_in%5B%5D=1&relations%5B%5D=odds&relations%5B%5D=withMarketsCount&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=broadcasts&relations%5B%5D=statistics&relations%5B%5D=additionalInfo&relations%5B%5D=tips&lang=br
104.22.35.208200 OK 0 B URL HTTP/2 platform.20bet.com/api/event/list?sportId_eq=1&limit=10&competitor2Id_neq=&competitor1Id_neq=&oddsExists_eq=1&main=1&status_in%5B%5D=2&status_in%5B%5D=1&relations%5B%5D=odds&relations%5B%5D=withMarketsCount&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=broadcasts&relations%5B%5D=statistics&relations%5B%5D=additionalInfo&relations%5B%5D=tips&lang=br
IP 104.22.35.208:0
GET /api/event/list?sportId_eq=1&limit=10&competitor2Id_neq=&competitor1Id_neq=&oddsExists_eq=1&main=1&status_in%5B%5D=2&status_in%5B%5D=1&relations%5B%5D=odds&relations%5B%5D=withMarketsCount&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=broadcasts&relations%5B%5D=statistics&relations%5B%5D=additionalInfo&relations%5B%5D=tips&lang=br HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:05 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 791a7970cf0415e0-ARN
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/sport/1067.svg
104.22.35.208200 OK 0 B URL HTTP/2 20bet.com/assets/sport/1067.svg
IP 104.22.35.208:0
GET /assets/sport/1067.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_D23E16FB1C024968B8A0592610A0718D
Cookie: btag=668128_D23E16FB1C024968B8A0592610A0718D; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:05 GMT
content-type: image/svg+xml
cf-ray: 791a796fde3315e0-ARN
etag: W/"63d1236d-474"
last-modified: Wed, 25 Jan 2023 12:41:17 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
blancoshrimp.com/SB/BR/
104.21.73.164200 OK 0 B IP 104.21.73.164:0
GET /SB/BR/ HTTP/1.1
Host: blancoshrimp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:14:57 GMT
content-type: text/html
last-modified: Tue, 17 Jan 2023 10:43:03 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FLcFa8uKG0G4nhZVsGr9hzqXuI3ItG29%2BP2uxcoWhrMpYMaWitRUz52ugkExJ8I2EwMYQvhHl3CuwxZOsSHO4jupufcYCpAwkDu1X8BPau4FhemDwX0db%2FK3ymYVG5jLZrQn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791a793a58b9fabc-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
megapari.com/registration/?tag=d_2032927m_25437c_
83.147.204.197308 Permanent Redirect 0 B URL HTTP/2 megapari.com/registration/?tag=d_2032927m_25437c_
IP 83.147.204.197:0
ASN #202492 Silverhill Group Holding Ltd
GET /registration/?tag=d_2032927m_25437c_ HTTP/1.1
Host: megapari.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 308 Permanent Redirect
server: nginx
date: Mon, 30 Jan 2023 13:14:58 GMT
content-type: text/html; charset=utf-8
location: https://megapari.com/registration?tag=d_2032927m_25437c_
x-frame-options: SAMEORIGIN
set-cookie: SESSION=a0b5ea3b4d295ab723a9a822be7b3855; path=/; secure; HttpOnly; SameSite=Lax
ua=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
_glhf=1675102274; expires=Mon, 30-Jan-2023 14:14:58 GMT; Max-Age=3600; path=/
dnb=1; path=/; httponly; samesite=lax
auid=U5PMxWPXwtKcYH7cAyojAg==; path=/; secure; httponly; samesite=lax
x-reason: 1079,1021
cache-control: no-cache, private
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
20bet.com/br/?btag=668128_D23E16FB1C024968B8A0592610A0718D
104.22.35.208301 Moved Permanently 0 B URL HTTP/2 20bet.com/br/?btag=668128_D23E16FB1C024968B8A0592610A0718D
IP 104.22.35.208:0
GET /br/?btag=668128_D23E16FB1C024968B8A0592610A0718D HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Mon, 30 Jan 2023 13:14:58 GMT
content-type: text/html; charset=UTF-8
location: /br?btag=668128_D23E16FB1C024968B8A0592610A0718D
cf-ray: 791a79454d4115e0-ARN
set-cookie: btag=668128_D23E16FB1C024968B8A0592610A0718D; expires=Thu, 02-Mar-2023 00:00:00 GMT; Max-Age=2630702; path=/; secure; samesite=none
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers: Content-Length,Content-Range
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2
20bet.com/app/main.b68e1bf4397e28f0.css
104.22.35.208200 OK 0 B URL HTTP/2 20bet.com/app/main.b68e1bf4397e28f0.css
IP 104.22.35.208:0
GET /app/main.b68e1bf4397e28f0.css HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_D23E16FB1C024968B8A0592610A0718D
Cookie: btag=668128_D23E16FB1C024968B8A0592610A0718D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:01 GMT
content-type: text/css
cf-ray: 791a7955095415e0-ARN
etag: W/"63d122c0-5d667"
last-modified: Wed, 25 Jan 2023 12:38:24 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/2742.7218039944d73442.esm.js
104.22.35.208200 OK 0 B URL HTTP/2 20bet.com/app/2742.7218039944d73442.esm.js
IP 104.22.35.208:0
GET /app/2742.7218039944d73442.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_D23E16FB1C024968B8A0592610A0718D
Cookie: btag=668128_D23E16FB1C024968B8A0592610A0718D; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:04 GMT
content-type: application/javascript
cf-ray: 791a7967b85915e0-ARN
etag: W/"63d122cb-239"
last-modified: Wed, 25 Jan 2023 12:38:35 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/5051.bc8a43a20e262efb.esm.js
104.22.35.208200 OK 0 B URL HTTP/2 20bet.com/app/5051.bc8a43a20e262efb.esm.js
IP 104.22.35.208:0
GET /app/5051.bc8a43a20e262efb.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_D23E16FB1C024968B8A0592610A0718D
Cookie: btag=668128_D23E16FB1C024968B8A0592610A0718D; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:04 GMT
content-type: application/javascript
cf-ray: 791a7967f88315e0-ARN
etag: W/"63d122c0-c1d"
last-modified: Wed, 25 Jan 2023 12:38:24 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
refpaiozdg.top/L?tag=d_2032927m_25437c_&site=2032927&ad=25437&r=registration/
45.135.120.29303 See Other 0 B URL HTTP/2 refpaiozdg.top/L?tag=d_2032927m_25437c_&site=2032927&ad=25437&r=registration/
IP 45.135.120.29:0
GET /L?tag=d_2032927m_25437c_&site=2032927&ad=25437&r=registration/ HTTP/1.1
Host: refpaiozdg.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 303 See Other
server: nginx
date: Mon, 30 Jan 2023 13:14:58 GMT
cache-control: private
location: https://megapari.com:443//registration/?tag=d_2032927m_25437c_
x-aspnetmvc-version: 5.0
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
104.16.57.101200 OK 0 B URL HTTP/2 static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
IP 104.16.57.101:0
GET /beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:01 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2022.10.1
last-modified: Fri, 21 Oct 2022 01:56:09 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 791a79558af9b50f-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www.brazino-cdnsrv-cst.org/files/flags/Brazil-01-6807-9882.svg?v10263
185.76.9.21200 OK 0 B URL HTTP/2 www.brazino-cdnsrv-cst.org/files/flags/Brazil-01-6807-9882.svg?v10263
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
GET /files/flags/Brazil-01-6807-9882.svg?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:01 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"5fbfe73e-8ebb"
expires: Sat, 04 Nov 2023 14:43:12 GMT
last-modified: Thu, 26 Nov 2020 17:34:54 GMT
referrer-policy: same-origin
vary: Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: 96526c45-1830-4e4d-a39e-9405722a4807-3082022
x-accel-expires: @1699108992
server: CDN77-Turbo
x-77-nzt: AblMCRSzGWn/1Z1yAA
x-77-nzt-ray: af585630d00c596fd5c2d76395c7cf2c
x-cache: HIT
x-age: 7511509
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
platform.20bet.com/api/sport/list/-1/0/br
104.22.35.208200 OK 0 B URL HTTP/2 platform.20bet.com/api/sport/list/-1/0/br
IP 104.22.35.208:0
GET /api/sport/list/-1/0/br HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:03 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 791a79640d8a15e0-ARN
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/5832.49ca6f37190d0208.esm.js
104.22.35.208200 OK 0 B URL HTTP/2 20bet.com/app/5832.49ca6f37190d0208.esm.js
IP 104.22.35.208:0
GET /app/5832.49ca6f37190d0208.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_D23E16FB1C024968B8A0592610A0718D
Cookie: btag=668128_D23E16FB1C024968B8A0592610A0718D; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:04 GMT
content-type: application/javascript
cf-ray: 791a7967580815e0-ARN
etag: W/"63d122d0-1c4fc"
last-modified: Wed, 25 Jan 2023 12:38:40 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/633.544404564094be98.esm.js
104.22.35.208200 OK 0 B URL HTTP/2 20bet.com/app/633.544404564094be98.esm.js
IP 104.22.35.208:0
GET /app/633.544404564094be98.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_D23E16FB1C024968B8A0592610A0718D
Cookie: btag=668128_D23E16FB1C024968B8A0592610A0718D; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:05 GMT
content-type: application/javascript
cf-ray: 791a7971afc515e0-ARN
etag: W/"63d122bb-d47"
last-modified: Wed, 25 Jan 2023 12:38:19 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/sport/1054.svg
104.22.35.208200 OK 0 B URL HTTP/2 20bet.com/assets/sport/1054.svg
IP 104.22.35.208:0
GET /assets/sport/1054.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_D23E16FB1C024968B8A0592610A0718D
Cookie: btag=668128_D23E16FB1C024968B8A0592610A0718D; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:05 GMT
content-type: image/svg+xml
cf-ray: 791a796fce2715e0-ARN
etag: W/"63d12383-10d5"
last-modified: Wed, 25 Jan 2023 12:41:39 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
f12.bet/?btag=a_3672b_86c_PU_BR_PA_DT_VOLD
104.18.41.151403 Forbidden 0 B URL HTTP/2 f12.bet/?btag=a_3672b_86c_PU_BR_PA_DT_VOLD
IP 104.18.41.151:0
GET /?btag=a_3672b_86c_PU_BR_PA_DT_VOLD HTTP/1.1
Host: f12.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
date: Mon, 30 Jan 2023 13:14:58 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
set-cookie: __cf_bm=mt1Esa7pi5XPSs6_PONRQJCMSZJZERNwNeWjFY_uiBw-1675084498-0-AXbpe2Qpsj1wg1eEgYtllr+K7ag1e2pcxYht2YwQRlFpfEoDyOBCo/uAel/q09jP1WtI1kWZXUU1HWxGQ4IEa0c=; path=/; expires=Mon, 30-Jan-23 13:44:58 GMT; domain=.f12.bet; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 791a7943fd280b4d-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
20bet.com/app/runtime.8c9eb00653bf6069.esm.js
104.22.35.208200 OK 0 B URL HTTP/2 20bet.com/app/runtime.8c9eb00653bf6069.esm.js
IP 104.22.35.208:0
GET /app/runtime.8c9eb00653bf6069.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_D23E16FB1C024968B8A0592610A0718D
Cookie: btag=668128_D23E16FB1C024968B8A0592610A0718D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:02 GMT
content-type: application/javascript
cf-ray: 791a795b3e0c15e0-ARN
etag: W/"63d122cb-26c7"
last-modified: Wed, 25 Jan 2023 12:38:35 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/market-descriptions/get-all-markets/br
104.22.35.208200 OK 0 B URL HTTP/2 platform.20bet.com/api/market-descriptions/get-all-markets/br
IP 104.22.35.208:0
GET /api/market-descriptions/get-all-markets/br HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:04 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 791a7964ce1c15e0-ARN
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/6612.8b90df75e8984f5b.esm.js
104.22.35.208200 OK 0 B URL HTTP/2 20bet.com/app/6612.8b90df75e8984f5b.esm.js
IP 104.22.35.208:0
GET /app/6612.8b90df75e8984f5b.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_D23E16FB1C024968B8A0592610A0718D
Cookie: btag=668128_D23E16FB1C024968B8A0592610A0718D; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:04 GMT
content-type: application/javascript
cf-ray: 791a7967b85715e0-ARN
etag: W/"63d122b5-4ac"
last-modified: Wed, 25 Jan 2023 12:38:13 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/v4/coupon/get?system=1&lang=br
104.22.35.208200 OK 0 B URL HTTP/2 platform.20bet.com/api/v4/coupon/get?system=1&lang=br
IP 104.22.35.208:0
GET /api/v4/coupon/get?system=1&lang=br HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:05 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
set-cookie: sid=e56185b372fc5aeb29f71cee78e0b8e2; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 791a796ebd5515e0-ARN
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/sport/4.svg
104.22.35.208200 OK 0 B URL HTTP/2 20bet.com/assets/sport/4.svg
IP 104.22.35.208:0
GET /assets/sport/4.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_D23E16FB1C024968B8A0592610A0718D
Cookie: btag=668128_D23E16FB1C024968B8A0592610A0718D; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:05 GMT
content-type: image/svg+xml
cf-ray: 791a796fae0715e0-ARN
etag: W/"63d12383-15d5"
last-modified: Wed, 25 Jan 2023 12:41:39 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
menhir.gb.nsoftcdn.com/logout
104.16.96.78200 OK 0 B URL HTTP/2 menhir.gb.nsoftcdn.com/logout
IP 104.16.96.78:0
OPTIONS /logout HTTP/1.1
Host: menhir.gb.nsoftcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: http-x-nab-dp,http-x-seven-club-uuid,seven-locale
Referer: https://victory2.web.7platform.net/
Origin: https://victory2.web.7platform.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:06 GMT
content-type: text/html; charset=UTF-8
cache-control: no-cache
access-control-allow-credentials: true
access-control-allow-methods: POST, GET, DELETE, PUT, OPTIONS, PATCH
access-control-allow-headers: origin, x-requested-with, authorization, content-type, accept, x-custom-header, http-x-nab-device-uuid, http-x-nab-dp, http-x-nab-company-id, http-x-nab-betshop-id, http-x-nab-productinstance-id, http-x-nab-productname, x-http-client, http-x-nab-cpvuuid, seven-app, http-x-seven-club-uuid, seven-locale, http-x-seven-client-ip, seven-tp-token, seven-tp-custom, authentication-method, x-seven-device-token, seven-company-uuid, x-nsft-wallet-usergroup, x-nsft-seven-application, x-nsft-seven-company-uuid, x-nsft-seven-tp-token, x-nsft-seven-account-id, x-nsft-iam-refresh-token
access-control-max-age: 3600
access-control-allow-origin: https://victory2.web.7platform.net
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 791a79751c0ab51e-OSL
content-encoding: br
X-Firefox-Spdy: h2
assets.nsoft-cdn.com/public/cdn/iframe-resizer/3.4.0/script.js
188.114.97.1200 OK 0 B URL HTTP/2 assets.nsoft-cdn.com/public/cdn/iframe-resizer/3.4.0/script.js
IP 188.114.97.1:0
GET /public/cdn/iframe-resizer/3.4.0/script.js HTTP/1.1
Host: assets.nsoft-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:00 GMT
content-type: application/x-javascript
cf-bgj: minify
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,http-x-nab-company-id,http-x-nab-dp,http-x-nab-betshop-id,http-x-nab-device-uuid,origin,authorization,HTTP-X-SEVEN-CLUB-UUID,SEVEN-LOCALE,SEVEN-APP
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
cache-control: max-age=18000
expires: Mon, 30 Jan 2023 08:45:35 GMT
last-modified: Tue, 26 Apr 2016 16:01:40 GMT
state_fullfiled: 1.3
vary: Accept-Encoding
cf-cache-status: HIT
age: 11823
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fgyuxXowLMuxv7T4K6X%2FOFMJiZ1GAPPT1fMAk6G8C3OHm3OOneNhgf4C3kxaDUuxCda4zNQ7BqgFbRnL1q4jwqx3IhsWcmffpm%2B6irS1aaIy0urPxeGinZru3Kjn%2F92OSbVTXxqsQA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791a794db89db524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
20bet.com/app/4089.cc1a089afebdaee0.esm.js
104.22.35.208200 OK 0 B URL HTTP/2 20bet.com/app/4089.cc1a089afebdaee0.esm.js
IP 104.22.35.208:0
GET /app/4089.cc1a089afebdaee0.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_D23E16FB1C024968B8A0592610A0718D
Cookie: btag=668128_D23E16FB1C024968B8A0592610A0718D; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:04 GMT
content-type: application/javascript
cf-ray: 791a796a19d715e0-ARN
etag: W/"63d122b5-372"
last-modified: Wed, 25 Jan 2023 12:38:13 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/sport/10.svg
104.22.35.208200 OK 0 B URL HTTP/2 20bet.com/assets/sport/10.svg
IP 104.22.35.208:0
GET /assets/sport/10.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_D23E16FB1C024968B8A0592610A0718D
Cookie: btag=668128_D23E16FB1C024968B8A0592610A0718D; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:05 GMT
content-type: image/svg+xml
cf-ray: 791a796fce2015e0-ARN
etag: W/"63d12374-16ac"
last-modified: Wed, 25 Jan 2023 12:41:24 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
partnerbcgame.com/db2e7562c
188.114.97.1302 Found 0 B URL HTTP/2 partnerbcgame.com/db2e7562c
IP 188.114.97.1:0
GET /db2e7562c HTTP/1.1
Host: partnerbcgame.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Mon, 30 Jan 2023 13:14:58 GMT
content-type: text/html; charset=utf-8
location: https://bc.game/landing/sports-br?i=4cxse6dr&stag=17409_63d7c2d2a7611a4f6145ca2e&utm_source=4cxse6dr
set-cookie: 6b86b273ff34fce19d6b=63d7c2d2a7611a4f6145ca2e; Expires=Wed, 01 Mar 2023 13:14:58 GMT
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
referrer-policy: strict-origin-when-cross-origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JLO%2B3tjju5qdZ9aj9YsqvmV0Bl8TItO3MSQnxeR1xO4blFU%2BCgipicjSMdSrl86Fhg0xYcQCis6STctIJ6q8%2BsNWyMUGz2oHyeSymK7b%2FaDJ8CiY5B2iORy7BpyzuzSCTYU7ww%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791a79412948b517-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.platincasino.com/no/home.html
23.36.79.33200 OK 0 B URL HTTP/2 www.platincasino.com/no/home.html
IP 23.36.79.33:0
ASN #20940 Akamai International B.V.
GET /no/home.html HTTP/1.1
Host: www.platincasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
cache-tag: html
x-frame-options: SAMEORIGIN
x-akamai-transformed: 9 - 0 pmb=mTOE,4
vary: Accept-Encoding
content-encoding: gzip
expires: Mon, 30 Jan 2023 13:15:00 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Mon, 30 Jan 2023 13:15:00 GMT
set-cookie: PHPSESSID=vntg7mkipvgj2lsl26q909v0mv; path=/; secure; HttpOnly; SameSite=lax
hl=no; expires=Tue, 30-Jan-2024 13:15:00 GMT; Max-Age=31536000; path=/
recent_games=%5B%5D; expires=Mon, 06-Feb-2023 13:15:00 GMT; Max-Age=604800; path=/; httponly; samesite=lax
b1pi=!Qsnialb/MvgEXdh81GQs2bd/OrbFP4nL5Q/PRw+u728JH3pq0d/HXB5vOonADMbvb/V4Ey6+JXXjDBs=; path=/; Httponly; Secure
ak_bmsc=74E063818446D2299A291548D8583A79~000000000000000000000000000000~YAAQHU8kF07csuKFAQAA3wzRAhIJIzlGVMVPSoqzikESqFVKXmeFuI+m1u/ogaf8s/hr9xnM7Mp+OuTXafy2J+EMD4krnYaKJ+6ZauGZpsOUpYK8WOkji4pH9XP3oenmUTuKWkFUF55oQy8Nto8dbB0dghT2w7AojdWOqFZj+raTRPxOqBU3aGN9SNQO2VryHxWTehvXFrpTeUERMrZm1P0J/Cnut18aYkY3NU9tFU6cbkITLx159bxtsUH1DoSY4Rl74ox1aOqCabcHpItRvCuTkvGESRKiP5m9v81kmsQub0CV8Nz0Q43PTJ2DvoJDl/N2ODxEOUvB0+Z5Symm4/p7CGOOOS4ZqjhJ+lnA1xN0i4a/1kAWaQ7ljaIaq10wUCgKjKhO+5GVBlVG8NbX; Domain=.platincasino.com; Path=/; Expires=Mon, 30 Jan 2023 15:14:59 GMT; Max-Age=7199; HttpOnly
bm_mi=D7DDCEDA11925E3FC43C338B01A4AAB7~YAAQHU8kF0/csuKFAQAA3wzRAhKk9GoCaFyii1sBayaBjb6lVXcj8KaLDxztNy7OHz6gxe2Pbr4xwOimKhjOWgihuttwEDugNUqDceaECkIM/8kNXZzL9fycVHG2OUxfd7r1XEw2mkYIn9XhLBxGHDEjOaJWhfX5poyHU6WpU+CxltfX4KfDcOUaDHm1ht3BpsEoMdxt8F7H6O2jZ0DI5kUQul8FeHrymkjdrvS0i0WY4UY6KSask2Y5R1RBbRQAEaWu/3nqPPHcFy7UYMRplZvgU8WKD5k3h2YfUNQGzEPEPjFtgFmzJMpgiVGX6DIzvPItFntcFrhow+iU4LRFTg==~1; Domain=.platincasino.com; Path=/; Expires=Mon, 30 Jan 2023 13:15:00 GMT; Max-Age=0; Secure
X-Firefox-Spdy: h2
20bet.com/app/4031.b91f4417cd75a26b.esm.js
104.22.35.208200 OK 0 B URL HTTP/2 20bet.com/app/4031.b91f4417cd75a26b.esm.js
IP 104.22.35.208:0
GET /app/4031.b91f4417cd75a26b.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_D23E16FB1C024968B8A0592610A0718D
Cookie: btag=668128_D23E16FB1C024968B8A0592610A0718D; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:04 GMT
content-type: application/javascript
cf-ray: 791a7967b86115e0-ARN
etag: W/"63d122c6-4d5"
last-modified: Wed, 25 Jan 2023 12:38:30 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/sport/21.svg
104.22.35.208200 OK 0 B URL HTTP/2 20bet.com/assets/sport/21.svg
IP 104.22.35.208:0
GET /assets/sport/21.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_D23E16FB1C024968B8A0592610A0718D
Cookie: btag=668128_D23E16FB1C024968B8A0592610A0718D; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:05 GMT
content-type: image/svg+xml
cf-ray: 791a796fce3015e0-ARN
etag: W/"63d12374-805"
last-modified: Wed, 25 Jan 2023 12:41:24 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/event/list?isTopLive_eq=1&competitor2Id_neq=&competitor1Id_neq=&status_in%5B%5D=2&status_in%5B%5D=1&oddsExists_eq=1&main=1&limit=15&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=players&relations%5B%5D=sportCategories&relations%5B%5D=broadcasts&relations%5B%5D=statistics&relations%5B%5D=additionalInfo&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=br
104.22.35.208200 OK 0 B URL HTTP/2 platform.20bet.com/api/event/list?isTopLive_eq=1&competitor2Id_neq=&competitor1Id_neq=&status_in%5B%5D=2&status_in%5B%5D=1&oddsExists_eq=1&main=1&limit=15&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=players&relations%5B%5D=sportCategories&relations%5B%5D=broadcasts&relations%5B%5D=statistics&relations%5B%5D=additionalInfo&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=br
IP 104.22.35.208:0
GET /api/event/list?isTopLive_eq=1&competitor2Id_neq=&competitor1Id_neq=&status_in%5B%5D=2&status_in%5B%5D=1&oddsExists_eq=1&main=1&limit=15&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=players&relations%5B%5D=sportCategories&relations%5B%5D=broadcasts&relations%5B%5D=statistics&relations%5B%5D=additionalInfo&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=br HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:05 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 791a796e5cf815e0-ARN
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/sport/14.svg
104.22.35.208200 OK 0 B URL HTTP/2 20bet.com/assets/sport/14.svg
IP 104.22.35.208:0
GET /assets/sport/14.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_D23E16FB1C024968B8A0592610A0718D
Cookie: btag=668128_D23E16FB1C024968B8A0592610A0718D; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:05 GMT
content-type: image/svg+xml
cf-ray: 791a796fce2115e0-ARN
etag: W/"63d12366-cd6"
last-modified: Wed, 25 Jan 2023 12:41:10 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
www.brazino-cdnsrv-cst.org/build/footerGameCategoriesBlock.d4480993.css?v10263
185.76.9.21200 OK 0 B URL HTTP/2 www.brazino-cdnsrv-cst.org/build/footerGameCategoriesBlock.d4480993.css?v10263
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
GET /build/footerGameCategoriesBlock.d4480993.css?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:00 GMT
content-type: text/css
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"63651122-167f"
expires: Sat, 04 Nov 2023 14:43:08 GMT
last-modified: Fri, 04 Nov 2022 13:18:26 GMT
referrer-policy: same-origin
vary: Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: 7350a3bb-2381-4ec8-872d-01f87bea1fe8-3082022
x-accel-expires: @1699108988
server: CDN77-Turbo
x-77-nzt: AblMCRTQHGP/2J1yAA
x-77-nzt-ray: af585630d00c596fd4c2d763bb84210c
x-cache: HIT
x-age: 7511512
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.brazino-cdnsrv-cst.org/build/gameNsoft.84c838d4.css?v10263
185.76.9.21200 OK 0 B URL HTTP/2 www.brazino-cdnsrv-cst.org/build/gameNsoft.84c838d4.css?v10263
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
GET /build/gameNsoft.84c838d4.css?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:00 GMT
content-type: text/css
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"63651122-5f7"
expires: Sat, 04 Nov 2023 14:43:08 GMT
last-modified: Fri, 04 Nov 2022 13:18:26 GMT
referrer-policy: same-origin
vary: Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: f6b27cc4-4a89-4bba-aef2-545160810f07-3082022
x-accel-expires: @1699108988
server: CDN77-Turbo
x-77-nzt: AblMCRTZBH7/2J1yAA
x-77-nzt-ray: af585630d00c596fd4c2d76368826b0c
x-cache: HIT
x-age: 7511512
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
platform.20bet.com/api/user/is-auth
104.22.35.208200 OK 0 B URL HTTP/2 platform.20bet.com/api/user/is-auth
IP 104.22.35.208:0
GET /api/user/is-auth HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:05 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 791a796e3cea15e0-ARN
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/event/list?isTop_eq=1&oddsExists_eq=1&competitor2Id_neq=&competitor1Id_neq=&main=1&status_in%5B%5D=0&limit=15&relations%5B%5D=league&relations%5B%5D=odds&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=players&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=br
104.22.35.208200 OK 0 B URL HTTP/2 platform.20bet.com/api/event/list?isTop_eq=1&oddsExists_eq=1&competitor2Id_neq=&competitor1Id_neq=&main=1&status_in%5B%5D=0&limit=15&relations%5B%5D=league&relations%5B%5D=odds&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=players&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=br
IP 104.22.35.208:0
GET /api/event/list?isTop_eq=1&oddsExists_eq=1&competitor2Id_neq=&competitor1Id_neq=&main=1&status_in%5B%5D=0&limit=15&relations%5B%5D=league&relations%5B%5D=odds&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=players&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=br HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:05 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 791a796e3ce215e0-ARN
content-encoding: br
X-Firefox-Spdy: h2
a2.adform.net/Serving/TrackPoint/?CC=1&pm=2635697&ADFPageName=Landing%20Page_Brazil&ADFdivider=|
185.167.164.43200 OK 0 B URL HTTP/2 a2.adform.net/Serving/TrackPoint/?CC=1&pm=2635697&ADFPageName=Landing%20Page_Brazil&ADFdivider=|
IP 185.167.164.43:0
GET /Serving/TrackPoint/?CC=1&pm=2635697&ADFPageName=Landing%20Page_Brazil&ADFdivider=| HTTP/1.1
Host: a2.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bc.game/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 13:15:02 GMT
content-type: image/gif
cache-control: no-cache, no-store, must-revalidate, no-transform
pragma: no-cache
expires: -1
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
tag.growthbuddy.app/tag.js?id=DV-02355017850611493202
54.74.8.139200 OK 0 B URL HTTP/2 tag.growthbuddy.app/tag.js?id=DV-02355017850611493202
IP 54.74.8.139:0
GET /tag.js?id=DV-02355017850611493202 HTTP/1.1
Host: tag.growthbuddy.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:02 GMT
content-type: application/javascript; charset=utf-8
set-cookie: INGRESSCOOKIE=1675084503.397.104.814214|5f2e1b57d78510d04b0cf9036879032b; Path=/; Secure; HttpOnly
vary: Accept-Encoding
cache-control: public, max-age=7200
x-content-type-options: nosniff
etag: "1382-4YuDa3owVc9r2LUx5CM7dj7oB9U"
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
20bet.com/app/2786.7bb20f7c68bb8324.esm.js
104.22.35.208200 OK 0 B URL HTTP/2 20bet.com/app/2786.7bb20f7c68bb8324.esm.js
IP 104.22.35.208:0
GET /app/2786.7bb20f7c68bb8324.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_D23E16FB1C024968B8A0592610A0718D
Cookie: btag=668128_D23E16FB1C024968B8A0592610A0718D; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:04 GMT
content-type: application/javascript
cf-ray: 791a7967a84215e0-ARN
etag: W/"63d122c6-d0f"
last-modified: Wed, 25 Jan 2023 12:38:30 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
menhir.gb.nsoftcdn.com/web/resource/locales
104.16.96.78200 OK 0 B URL HTTP/2 menhir.gb.nsoftcdn.com/web/resource/locales
IP 104.16.96.78:0
OPTIONS /web/resource/locales HTTP/1.1
Host: menhir.gb.nsoftcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: http-x-seven-club-uuid
Referer: https://victory2.web.7platform.net/
Origin: https://victory2.web.7platform.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:05 GMT
content-type: text/html; charset=UTF-8
cache-control: no-cache
access-control-allow-credentials: true
access-control-allow-methods: POST, GET, DELETE, PUT, OPTIONS, PATCH
access-control-allow-headers: origin, x-requested-with, authorization, content-type, accept, x-custom-header, http-x-nab-device-uuid, http-x-nab-dp, http-x-nab-company-id, http-x-nab-betshop-id, http-x-nab-productinstance-id, http-x-nab-productname, x-http-client, http-x-nab-cpvuuid, seven-app, http-x-seven-club-uuid, seven-locale, http-x-seven-client-ip, seven-tp-token, seven-tp-custom, authentication-method, x-seven-device-token, seven-company-uuid, x-nsft-wallet-usergroup, x-nsft-seven-application, x-nsft-seven-company-uuid, x-nsft-seven-tp-token, x-nsft-seven-account-id, x-nsft-iam-refresh-token
access-control-max-age: 3600
access-control-allow-origin: https://victory2.web.7platform.net
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 791a796e890bb51e-OSL
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/sport/30.svg
104.22.35.208200 OK 0 B URL HTTP/2 20bet.com/assets/sport/30.svg
IP 104.22.35.208:0
GET /assets/sport/30.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_D23E16FB1C024968B8A0592610A0718D
Cookie: btag=668128_D23E16FB1C024968B8A0592610A0718D; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:05 GMT
content-type: image/svg+xml
cf-ray: 791a796fde3215e0-ARN
etag: W/"63d12366-8f6"
last-modified: Wed, 25 Jan 2023 12:41:10 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
collect.analyse.lnearn.com/sa.gif?project=production
54.230.111.102200 OK 0 B URL HTTP/2 collect.analyse.lnearn.com/sa.gif?project=production
IP 54.230.111.102:0
POST /sa.gif?project=production HTTP/1.1
Host: collect.analyse.lnearn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 1668
Origin: https://bc.game
Connection: keep-alive
Referer: https://bc.game/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
date: Mon, 30 Jan 2023 13:15:02 GMT
server: Sws
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: Mon, 28 Sep 1970 05:00:00 GMT
x-cache: Miss from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: XqkssW7U2TgHfKOWdeYy65VDg6JQqkUubJH8m01tsA9vT-LKnZ9QOg==
X-Firefox-Spdy: h2
platform.20bet.com/api/status
104.22.35.208200 OK 0 B URL HTTP/2 platform.20bet.com/api/status
IP 104.22.35.208:0
GET /api/status HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:03 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 791a79650e5515e0-ARN
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/5027.e25d74db3e3a68fa.esm.js
104.22.35.208200 OK 0 B URL HTTP/2 20bet.com/app/5027.e25d74db3e3a68fa.esm.js
IP 104.22.35.208:0
GET /app/5027.e25d74db3e3a68fa.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_D23E16FB1C024968B8A0592610A0718D
Cookie: btag=668128_D23E16FB1C024968B8A0592610A0718D; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:04 GMT
content-type: application/javascript
cf-ray: 791a7967681c15e0-ARN
etag: W/"63d122c6-ef"
last-modified: Wed, 25 Jan 2023 12:38:30 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/v2/ip-data
104.22.35.208200 OK 0 B URL HTTP/2 platform.20bet.com/api/v2/ip-data
IP 104.22.35.208:0
GET /api/v2/ip-data HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b18ad1b7-8d53-42ce-a949-9867ce4fabce.1675084515.1.1675084515.1675084515.29768485-a991-4951-9c62-2012535f8d05
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:03 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 791a7963fd7b15e0-ARN
content-encoding: br
X-Firefox-Spdy: h2
gml-grp.com/C.ashx?btag=a_9862b_619c_&affid=2566&siteid=9862&adid=619&c=PU_CD_BR_PA_DT_VOLD&AutoR=1
188.114.97.1302 Found 0 B URL HTTP/2 gml-grp.com/C.ashx?btag=a_9862b_619c_&affid=2566&siteid=9862&adid=619&c=PU_CD_BR_PA_DT_VOLD&AutoR=1
IP 188.114.97.1:0
GET /C.ashx?btag=a_9862b_619c_&affid=2566&siteid=9862&adid=619&c=PU_CD_BR_PA_DT_VOLD&AutoR=1 HTTP/1.1
Host: gml-grp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Mon, 30 Jan 2023 13:14:58 GMT
content-type: text/html; charset=utf-8
location: https://br.betano.com/?btag=a_9862b_619c_PU_CD_BR_PA_DT_VOLD&utm_medium=2566&utm_source=1&siteid=9862
cache-control: private
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
x-aspnet-version: 4.0.30319
set-cookie: CEK=a; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; SameSite=None; Secure
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RHypDUymmuzUmbt9hl%2FGLz9RNM8e98lGjmKKKEGiKcmzaknAapAF5UdYFoboz9NE6mClEtBjtqVxTuaTpcaZ9bZMfKG%2F9NEfbpE%2FOS6qoAJpz1MzTEzwrMoWS4dAmw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791a79403d490b59-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.br.betboo.com/pt-br/mobileportal/register?productId=SPORTSBOOK&trid=in13741
104.17.133.181302 Found 0 B URL HTTP/2 www.br.betboo.com/pt-br/mobileportal/register?productId=SPORTSBOOK&trid=in13741
IP 104.17.133.181:0
GET /pt-br/mobileportal/register?productId=SPORTSBOOK&trid=in13741 HTTP/1.1
Host: www.br.betboo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Mon, 30 Jan 2023 13:14:58 GMT
content-type: text/html; charset=utf-8
location: https://help.br.betboo.com/closed?productId=SPORTSBOOK&trid=in13741
cache-control: private
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
accept-language: en-US,en;q=0.5
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
x-forwarded-for: 91.90.42.154, 172.70.246.250
x-forwarded-proto: https
cf-visitor: {"scheme":"https"}
upgrade-insecure-requests: 1
sec-fetch-dest: iframe
sec-fetch-mode: navigate
sec-fetch-site: cross-site
cf-connecting-ip: 91.90.42.154
true-client-ip: 91.90.42.154
cdn-loop: cloudflare
x-redirect-source: Redirex
cf-cache-status: DYNAMIC
set-cookie: redirex-original=http://www.br.betboo.com:80/pt-br/mobileportal/register?productId=SPORTSBOOK&trid=in13741;Ip=91.90.42.154;Path=/;Domain=.betboo.com;Expires=Mon, 30-Jan-2023 13:19:58 GMT;secure;HttpOnly
__cf_bm=ZaFuHEpsGcOckax2gtAKTK80QBz.SjWHLXNDnvX.P0E-1675084498-0-AQFzuhYJDpCCOt8VNni3/Hz4Mi7rZgUx+UOVxr2f8vFOGgD3rUSOoVMwJsIaQm5kjZQTIPYpk2r4VaNLs6/HOn0=; path=/; expires=Mon, 30-Jan-23 13:44:58 GMT; domain=.betboo.com; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=2592000
server: cloudflare
cf-ray: 791a7940ae101bfa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
promo.bwin.com/pt-br/promo/p/sports/latam/bem-vindo?sb=1&wm=5314018&zoneId=2081136
104.16.131.238302 Found 0 B URL HTTP/2 promo.bwin.com/pt-br/promo/p/sports/latam/bem-vindo?sb=1&wm=5314018&zoneId=2081136
IP 104.16.131.238:0
GET /pt-br/promo/p/sports/latam/bem-vindo?sb=1&wm=5314018&zoneId=2081136 HTTP/1.1
Host: promo.bwin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Mon, 30 Jan 2023 13:14:58 GMT
content-type: text/html; charset=utf-8
location: https://help.bwin.com/closed?sb=1&wm=5314018&zoneId=2081136
cache-control: private
vary: User-Agent
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
accept-language: en-US,en;q=0.5
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
x-forwarded-for: 91.90.42.154, 172.70.246.57
x-forwarded-proto: https
cf-visitor: {"scheme":"https"}
upgrade-insecure-requests: 1
sec-fetch-dest: iframe
sec-fetch-mode: navigate
sec-fetch-site: cross-site
cf-connecting-ip: 91.90.42.154
true-client-ip: 91.90.42.154
cdn-loop: cloudflare
x-redirect-source: Redirex
cf-cache-status: DYNAMIC
set-cookie: redirex-original=http://promo.bwin.com:80/pt-br/promo/p/sports/latam/bem-vindo?sb=1&wm=5314018&zoneId=2081136;Ip=91.90.42.154;Path=/;Domain=.bwin.com;Expires=Mon, 30-Jan-2023 13:19:58 GMT;secure;HttpOnly
__cf_bm=dd5gE1S2H4q859F8Z7RzKMOO1ueleqrC9kk9S4pndPs-1675084498-0-AZoYQVOMYo7a2389nZVlmu5rGW4UmsFqKf/UDZMx8GK0C6gMAyZ1SJfHn90j/YNJgcpmrcjpKqQGuQtoNlaxiJimt9INP+7A0oStgIUX3DTc; path=/; expires=Mon, 30-Jan-23 13:44:58 GMT; domain=.bwin.com; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=2592000
server: cloudflare
cf-ray: 791a79410c72b50c-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
lp.22betpartners.com/p/football-general/br/images/bakground-image1.jpg
195.201.147.169200 OK 0 B URL HTTP/1.1 lp.22betpartners.com/p/football-general/br/images/bakground-image1.jpg
IP 195.201.147.169:0
ASN #24940 Hetzner Online GmbH
GET /p/football-general/br/images/bakground-image1.jpg HTTP/1.1
Host: lp.22betpartners.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lp.22betpartners.com/p/football-general/br/?btag=922646_A459717C39E047A0B74483180912021C
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a44781%2c%22BID%22%3a1519%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675084498227)%5c%2f%22%2c%22CookieTag%22%3a%22151944781451240919C20231301314%22%7d%5d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 30 Jan 2023 13:14:58 GMT
Content-Type: image/jpeg
Content-Length: 1069847
Last-Modified: Mon, 04 Apr 2022 12:33:41 GMT
Connection: keep-alive
ETag: "624ae5a5-105317"
Expires: Wed, 01 Mar 2023 13:14:58 GMT
Cache-Control: max-age=2592000, private
Accept-Ranges: bytes
www.brazino-cdnsrv-cst.org/build/3831.531bea3d.js?v10263
185.76.9.21200 OK 0 B URL HTTP/2 www.brazino-cdnsrv-cst.org/build/3831.531bea3d.js?v10263
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
GET /build/3831.531bea3d.js?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 13:15:00 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"6399e1a5-219bc"
expires: Thu, 14 Dec 2023 14:48:46 GMT
last-modified: Wed, 14 Dec 2022 14:45:57 GMT
referrer-policy: same-origin
vary: Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: 67e3997b-1875-492f-b3d3-6b0198c4e5fe-3482022
x-accel-expires: @1702565326
server: CDN77-Turbo
x-77-nzt: AblMCRSyRAr/huA9AA
x-77-nzt-ray: af585630d00c596fd4c2d763de219c0b
x-cache: HIT
x-age: 4055174
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
d1wfowvne3d4em.cloudfront.net/flags/gr.svg
54.230.245.101200 OK 0 B URL HTTP/2 d1wfowvne3d4em.cloudfront.net/flags/gr.svg
IP 54.230.245.101:0
GET /flags/gr.svg HTTP/1.1
Host: d1wfowvne3d4em.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Thu, 05 Jan 2023 15:46:01 GMT
server: AmazonS3
content-encoding: br
date: Sun, 29 Jan 2023 15:55:24 GMT
etag: W/"471d733ad436f655210fcb2a9e7d356a"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: rYa2ql9Uaup7Z3_jUYtcg4luT1JFhBTWTLEFKpP5ahvWYPinoGx4fQ==
age: 76783
X-Firefox-Spdy: h2