blancoshrimp.com/SB/CL
301 Moved Permanently 162 B IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert fortinet Malware
GET /SB/CL HTTP/1.1
Host: blancoshrimp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 04 Feb 2023 04:54:20 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://blancoshrimp.com/SB/CL
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NOUthl9MBIQxcwlEOvGyEhDNclZIlQOtoH8P%2Fhy0%2FrjdKm%2ByWiJgzjUeLaiWE9rPypKcqn%2BqKxMz7vtPuFsSszcjzJNvwX2VGYTBmKfkf1MLuiNFuGxDObNLdGMIpnpw8hNL"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7940cecbcec9b503-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d4e95d0d8982bcd07804baf6fc88231c
5027abda0875bd2529dd4d6691784c74da71a9ee
373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2786
Expires: Sat, 04 Feb 2023 05:40:46 GMT
Date: Sat, 04 Feb 2023 04:54:20 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e935ea42be4feaed61a824b0b903913e
f966cfa80d65a805cb9d7c6a53b3340865d7c51a
eb0ce9ae50d156fe5924b2d77346735e4e93b5240cff301c9aa835bb0b385815
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB0CE9AE50D156FE5924B2D77346735E4E93B5240CFF301C9AA835BB0B385815"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9718
Expires: Sat, 04 Feb 2023 07:36:19 GMT
Date: Sat, 04 Feb 2023 04:54:21 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Retry-After, Content-Length, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 04 Feb 2023 04:43:35 GMT
content-type: application/json
age: 646
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7d2222d41721947297aaeb5a6e3d0714
04cc1ee417c8bf6338657fd4c2e4e1c1ddfd3065
de0e45969a2ad95e52f7e2fbd0d021d9075dd7b14666c929346efe111f648f7c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DE0E45969A2AD95E52F7E2FBD0D021D9075DD7B14666C929346EFE111F648F7C"
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8174
Expires: Sat, 04 Feb 2023 07:10:35 GMT
Date: Sat, 04 Feb 2023 04:54:21 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: KitouZSWMehj4IWpiX1DUFv6fmMGa/OR3dyDxaGaaIP/FYtHLaCop5oaLJtvsuh1QH236hFssrM=
x-amz-request-id: TPAD7PPW1ASKFE28
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 04 Feb 2023 04:23:51 GMT
age: 1830
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash b4cede06098e6bce7ae3b9e7f5083d87
ffadab025aeea8377e6d019cf76ea7d59742f621
8dc6a46f189f992da3bde42f357f107b12c29b1c078ab713d7a545174a629766
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 799
Cache-Control: max-age=89730
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 04:54:21 GMT
Etag: "63dc9d60-117"
Expires: Sun, 05 Feb 2023 05:49:51 GMT
Last-Modified: Fri, 03 Feb 2023 05:36:32 GMT
Server: ECS (amb/6B98)
X-Cache: HIT
Content-Length: 279
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 04:54:21 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash b4cede06098e6bce7ae3b9e7f5083d87
ffadab025aeea8377e6d019cf76ea7d59742f621
8dc6a46f189f992da3bde42f357f107b12c29b1c078ab713d7a545174a629766
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 799
Cache-Control: max-age=89730
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 04:54:21 GMT
Etag: "63dc9d60-117"
Expires: Sun, 05 Feb 2023 05:49:51 GMT
Last-Modified: Fri, 03 Feb 2023 05:36:32 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 279
code.jquery.com/jquery-3.6.0.slim.min.js
200 OK 25 kB URL HTTP/2 code.jquery.com/jquery-3.6.0.slim.min.js
IP
File type ASCII text, with very long lines (65241)
Hash ae3ffbb71d763d2a1ca869e4866b23ae
22723a163afd77efe96e92eaca712583612b3e73
29dda737fcaf96a8a4ea6d0dd66c6e379a4c98cf3374647388650ee6e48a462c
GET /jquery-3.6.0.slim.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://blancoshrimp.com
Connection: keep-alive
Referer: https://blancoshrimp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:21 GMT
content-encoding: gzip
content-length: 24587
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-11ab4"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1675486461.dop210.sk1.t,1675486461.cds014.sk1.hn,1675486461.cds211.sk1.c
X-Firefox-Spdy: h2
blancoshrimp.com/SB/CL
301 Moved Permanently 2.5 kB IP
Hash a4960e9ed5da9eeaf598ba708daec5c8
5ebcaad7d59ab4d8fc64081453bf601711307ee6
f247aa967dc59fd56bcc63e19b50ddf10f236c22e3388f761bd734fff4866fc2
Analyzer Verdict Alert fortinet Malware
GET /SB/CL HTTP/1.1
Host: blancoshrimp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
date: Sat, 04 Feb 2023 04:54:21 GMT
content-type: text/html
location: https://blancoshrimp.com/SB/CL/
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=k8XNsJUHUNF%2BBfc1aXHsi%2BxggciR1AhazPi9Ag5sgOqaZ9V4rxzON%2BUAfZr5FOLUJkbF61BJjWupzooFhhh6TLJgeeui%2F7hU%2BTj9B1OWXILxOOxSH6Yqhs7R1zcvucf35Fhc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7940cecde8e01c0a-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 426 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
Hash c591bd5f9474799049231fa33e74c66e
ea6b26e0d6dd4f7b29a0c931f4f62d49a2b3b2e7
8fa7713977adcbb4f516737f8ed6af4a40829e6e8d5c130a6f488c827c964181
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 04 Feb 2023 04:49:07 GMT
age: 314
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.securely-send.com/storage/pu_cd_cl_pa_vold.js
200 OK 41 kB URL HTTP/2 www.securely-send.com/storage/pu_cd_cl_pa_vold.js
IP
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (41172), with no line terminators
Hash 0c908c6f9c6c7e9d3f66af297caff294
7d2999d0e2dbab2bee93a39dc75fa65bfe7855e2
203ed273308a981bc02af71ad49691c5d97f50cb60089f84eb2cea74ded7d193
Analyzer Verdict Alert fortinet Phishing
GET /storage/pu_cd_cl_pa_vold.js HTTP/1.1
Host: www.securely-send.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blancoshrimp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sat, 04 Feb 2023 04:54:21 GMT
content-type: application/javascript; charset=utf-8
content-length: 41172
last-modified: Wed, 01 Feb 2023 09:57:59 GMT
etag: "63da37a7-a0d4"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3099
Expires: Sat, 04 Feb 2023 05:46:00 GMT
Date: Sat, 04 Feb 2023 04:54:21 GMT
Connection: keep-alive
www.bet365.com/olp/open-account?affiliate=365_01098744
200 OK 4.6 kB URL HTTP/1.1 www.bet365.com/olp/open-account?affiliate=365_01098744
IP
ASN #209242 Cloudflare London, LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash e0dd3525b10906c71346871f813e019b
9bc86d002cfa9b1284899cd3008993f408897801
beae724140fdf360c56a441daba83ef1b62652c2c89a890b9a7132a1082f8f43
GET /olp/open-account?affiliate=365_01098744 HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 04:54:21 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ServerDetails: <!--2P1 - 79-->
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=kj_yuWaX5fSKZzQgH8YZwtEk3gaD0r5RFIQblD1kD8Y-1675486461-0-AatJzQNX5Y52oh2Eh1TQ6IZGCrQ8w5ItPJ08HrACXUf9vdVikG5IAfCb3tM/afnlLEYnlcfRMDjNeECe/KHBUIU=; path=/; expires=Sat, 04-Feb-23 05:24:21 GMT; domain=.bet365.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 7940ced2fe05b4ee-OSL
ocsp.digicert.com/
200 OK 279 B IP
Hash 6f5501c015c524f0dd4d0978012c466b
50afd0f8006dc626aa4da59e68943dc4af8305e6
93ec17f37844115a1f1e84c899626bb562a9150e8877189c66dd28e90f29e81c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4606
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 04:54:21 GMT
Last-Modified: Sat, 04 Feb 2023 03:37:35 GMT
Server: ECS (amb/6BA7)
X-Cache: HIT
Content-Length: 279
www.bet365.com/olpc/nn/143/0/1/open-account
200 OK 13 kB URL HTTP/1.1 www.bet365.com/olpc/nn/143/0/1/open-account
IP
ASN #209242 Cloudflare London, LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2285), with CRLF line terminators
Hash 0ac54a6bd4ed9160469c2963c5be99d3
2ce7ecd28702ee29e23d81405657feb2c33624c2
c24682a94b6a21e445e978d6216258617b3ab8d3d17a9a60cafe502d314f981c
GET /olpc/nn/143/0/1/open-account HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/olp/open-account?affiliate=365_01098744
Cookie: __cf_bm=kj_yuWaX5fSKZzQgH8YZwtEk3gaD0r5RFIQblD1kD8Y-1675486461-0-AatJzQNX5Y52oh2Eh1TQ6IZGCrQ8w5ItPJ08HrACXUf9vdVikG5IAfCb3tM/afnlLEYnlcfRMDjNeECe/KHBUIU=
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 04:54:22 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 12839
Connection: keep-alive
Cache-Control: private
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Security-Policy: default-src 'self';script-src 'self' 'unsafe-inline' https://www.googletagmanager.com;frame-src 'self' http://members.bet365.com 'nonce-WwyptYzNoFdyhG+AN4yVIjc9CnPH5CmjP+deW4JNyEU=';style-src 'self' 'unsafe-inline';img-src 'self' data: https://content001.bet365.com/ https://content001.bet365.com/SportsContent/ 'nonce-WwyptYzNoFdyhG+AN4yVIjc9CnPH5CmjP+deW4JNyEU=';connect-src 'self' https://www.google-analytics.com http://members.bet365.com https://extra.bet365.com 'nonce-WwyptYzNoFdyhG+AN4yVIjc9CnPH5CmjP+deW4JNyEU=';font-src 'self' data: 'nonce-WwyptYzNoFdyhG+AN4yVIjc9CnPH5CmjP+deW4JNyEU=';
Last-Modified: Fri, 03 Feb 2023 20:55:05 GMT
CF-Cache-Status: HIT
Age: 14271
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 7940ced3ce4cb4ee-OSL
status.thawte.com/
200 OK 471 B IP
Hash dba0022a9b170fdd4f03167987b46aa2
4e8ee780d81673bf7d457d77aa84eb45bc4b8d66
2c4fb89413268c130924d107be68bf916748287c1aead30f2e5f59ee3ca76609
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5622
Cache-Control: max-age=111874
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 04:54:22 GMT
Etag: "63dce10a-1d7"
Expires: Sun, 05 Feb 2023 11:58:56 GMT
Last-Modified: Fri, 03 Feb 2023 10:25:14 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
www.bet365.com/olpc/Content/Fonts/FTN45__W.woff2
200 OK 46 kB URL HTTP/1.1 www.bet365.com/olpc/Content/Fonts/FTN45__W.woff2
IP
ASN #209242 Cloudflare London, LLC
File type Web Open Font Format (Version 2), TrueType, length 45892, version 1.590\012- data
Hash e3596a29429736364ebfef73786a55ab
7bd9b6b18b0985c080d520610c0ab74a128d71bd
6e28311fc68644a88a32df782c7371991894bc6a6a81f8ff70f971b4470c3751
GET /olpc/Content/Fonts/FTN45__W.woff2 HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/olpc/nn/143/0/1/open-account
Cookie: __cf_bm=kj_yuWaX5fSKZzQgH8YZwtEk3gaD0r5RFIQblD1kD8Y-1675486461-0-AatJzQNX5Y52oh2Eh1TQ6IZGCrQ8w5ItPJ08HrACXUf9vdVikG5IAfCb3tM/afnlLEYnlcfRMDjNeECe/KHBUIU=
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 04:54:22 GMT
Content-Length: 45892
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 00:51:58 GMT
CF-Cache-Status: HIT
Age: 12814
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7940ced42e6fb4ee-OSL
ocsp.digicert.com/
200 OK 280 B IP
Hash 0470d90bd42cb55e4c17d152729c2ab8
9e22586e486e56464c6a4ff8c873bf8a96674bd4
eb33829d01d862b9a387e1bb79ee7a32a5070198b6a0ad76172d0cbf75f84049
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1987
Cache-Control: max-age=146037
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 04:54:22 GMT
Etag: "63dd74b0-118"
Expires: Sun, 05 Feb 2023 21:28:19 GMT
Last-Modified: Fri, 03 Feb 2023 20:55:12 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 280
push.services.mozilla.com/
101 Switching Protocols 1.6 kB URL HTTP/1.1 push.services.mozilla.com/
IP
Hash 4eaceadc91883cd29923d1e8efeb7669
537ac1ceb94c9fff930b136f48648d0e8c6be89f
e1d877ebead2331e534cd9ed14498edd203e9a9a17cd505ffedb11214356c554
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Y9+tFl4B+80BSiuazgVWTw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: NusMUYWEPTKj+KhM7ZIi5r8Fp0A=
ic.aff-handler.com/C/45577?sr=1853545
302 Found 309 B URL HTTP/1.1 ic.aff-handler.com/C/45577?sr=1853545
IP
ASN #201071 Virtual Internet Services Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash ff093dcd45bc0f4fdf062d2401493ae1
5d9d8650d889cb1f2b9910b1f53a00825ffa4633
e07db0b6dc4a09471daa5b040d2aba673c9e0e69c36ad01fbb5a9c6183c1db23
GET /C/45577?sr=1853545 HTTP/1.1
Host: ic.aff-handler.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Pragma: no-cache
Content-Type: text/html; charset=utf-8
Expires: 0
Location: https://es.888casino.com/exclusive-mob/spinson.htm?sr=1853545&mm_id=45577&utm_source=aff&utm_medium=casap&utm_content=100138643&utm_campaign=100138643_1853545_nodescription
Server:
X-AspNetMvc-Version: 4.0
Set-Cookie: uffiliate_click_45577_1853545_=uffiliate_click_45577_1853545_; expires=Mon, 06-Mar-2023 04:54:22 GMT; path=/; SameSite=None; Secure
srv: 1231321
Date: Sat, 04 Feb 2023 04:54:21 GMT
Content-Length: 309
ocsp.digicert.com/
200 OK 279 B IP
Hash 6f5501c015c524f0dd4d0978012c466b
50afd0f8006dc626aa4da59e68943dc4af8305e6
93ec17f37844115a1f1e84c899626bb562a9150e8877189c66dd28e90f29e81c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 894
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 04:54:22 GMT
Etag: "63dcae58-117"
Last-Modified: Sat, 04 Feb 2023 04:39:28 GMT
Server: ECS (amb/6B8A)
X-Cache: HIT
Content-Length: 279
www.bet365.com/olpc/olpc-styles.css?v=ADHdDai99bBc7EkexwsG2Dy6MZFuXii0weu-ag9vIh01
200 OK 125 kB URL HTTP/1.1 www.bet365.com/olpc/olpc-styles.css?v=ADHdDai99bBc7EkexwsG2Dy6MZFuXii0weu-ag9vIh01
IP
ASN #209242 Cloudflare London, LLC
File type Unicode text, UTF-8 text, with very long lines (335), with CRLF line terminators
Size 125 kB (124685 bytes)
Hash dd53b53b336bc4ed72b70391cdce8608
ef277ce9827cea6ac495e1628b6f123c91334745
2f4b5295a21a0883f6f1d490ead1f98e7516c077f48a758b5d12cce1a7ac44fe
GET /olpc/olpc-styles.css?v=ADHdDai99bBc7EkexwsG2Dy6MZFuXii0weu-ag9vIh01 HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/olpc/nn/143/0/1/open-account
Cookie: __cf_bm=kj_yuWaX5fSKZzQgH8YZwtEk3gaD0r5RFIQblD1kD8Y-1675486461-0-AatJzQNX5Y52oh2Eh1TQ6IZGCrQ8w5ItPJ08HrACXUf9vdVikG5IAfCb3tM/afnlLEYnlcfRMDjNeECe/KHBUIU=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 04:54:22 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: public
Content-Encoding: gzip
Expires: Sat, 03 Feb 2024 20:51:52 GMT
Last-Modified: Fri, 03 Feb 2023 20:51:52 GMT
Vary: User-Agent,Accept-Encoding
CF-Cache-Status: HIT
Server: cloudflare
CF-RAY: 7940ced44aa4b4fd-OSL
www.bet365.com/olpc/olpc-scripts.js?v=KDTjkmVXa0zSSWIyyHmLFOBOjdyHlaqJQbhw88pHAIA1
200 OK 7.8 kB URL HTTP/1.1 www.bet365.com/olpc/olpc-scripts.js?v=KDTjkmVXa0zSSWIyyHmLFOBOjdyHlaqJQbhw88pHAIA1
IP
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (22529), with no line terminators
Hash 0f970d13f157c52f1f0e1eaa43d225c0
6e2bd108ccb272927e5f1ceef33697867862306f
5881568c0f146564710d8c30b9056ae1b2404d45e7cb09f9b455fedeabdcb821
GET /olpc/olpc-scripts.js?v=KDTjkmVXa0zSSWIyyHmLFOBOjdyHlaqJQbhw88pHAIA1 HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/olpc/nn/143/0/1/open-account
Cookie: __cf_bm=kj_yuWaX5fSKZzQgH8YZwtEk3gaD0r5RFIQblD1kD8Y-1675486461-0-AatJzQNX5Y52oh2Eh1TQ6IZGCrQ8w5ItPJ08HrACXUf9vdVikG5IAfCb3tM/afnlLEYnlcfRMDjNeECe/KHBUIU=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 04:54:22 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 7792
Connection: keep-alive
Cache-Control: public
Content-Encoding: gzip
Expires: Sat, 03 Feb 2024 20:51:52 GMT
Last-Modified: Fri, 03 Feb 2023 20:51:52 GMT
Vary: User-Agent,Accept-Encoding
CF-Cache-Status: HIT
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 7940ced44e7ab4ee-OSL
e1.o.lencr.org/
200 OK 346 B IP
ASN #20940 Akamai International B.V.
Hash b62003434217935f45d4a36c288cc814
4c36aae857ca36f64b7dfd33c16f6ec8bdeb2c33
cdaa0d2f5507d7d1e230ba2cdd823c980c7473d5bf4f4a8c8cd3c3185a364319
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "CDAA0D2F5507D7D1E230BA2CDD823C980C7473D5BF4F4A8C8CD3C3185A364319"
Last-Modified: Wed, 01 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6063
Expires: Sat, 04 Feb 2023 06:35:25 GMT
Date: Sat, 04 Feb 2023 04:54:22 GMT
Connection: keep-alive
www.bet365.com/members/services/host/Scripts/js/ProductCommon_v1.js
200 OK 3.6 kB URL HTTP/1.1 www.bet365.com/members/services/host/Scripts/js/ProductCommon_v1.js
IP
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (9857), with no line terminators
Hash 8526418443f6bcfead67615247d3e38a
6935cb6ce3e37192afcd3d08ec3b2d9c18035d20
49fa8353e8973f41c38723a669bd3200fd658ba87d6c121eb45da4af631825aa
GET /members/services/host/Scripts/js/ProductCommon_v1.js HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/olpc/nn/143/0/1/open-account
Cookie: __cf_bm=kj_yuWaX5fSKZzQgH8YZwtEk3gaD0r5RFIQblD1kD8Y-1675486461-0-AatJzQNX5Y52oh2Eh1TQ6IZGCrQ8w5ItPJ08HrACXUf9vdVikG5IAfCb3tM/afnlLEYnlcfRMDjNeECe/KHBUIU=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 04:54:22 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: 0
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
x-bet-hop: 1
Content-Encoding: gzip
Last-Modified: Sat, 04 Feb 2023 04:54:22 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7940ced45c99b50b-OSL
gml-grp.com/C.ashx?btag=a_10570b_1326c_&affid=3318&siteid=10570&adid=1326&c=PU_CL_PA_SB_DT_VOLD
302 Found 937 B URL HTTP/2 gml-grp.com/C.ashx?btag=a_10570b_1326c_&affid=3318&siteid=10570&adid=1326&c=PU_CL_PA_SB_DT_VOLD
IP
Hash 3b8b969c397bc0deedf87b3c6b5993d7
d6e793e7bfe52e6d04e660392e8a6ec777651cc7
e053f90bad29184ead7ee8a8502a051bb477cadeece6c81a21f0cc2362c23525
GET /C.ashx?btag=a_10570b_1326c_&affid=3318&siteid=10570&adid=1326&c=PU_CL_PA_SB_DT_VOLD HTTP/1.1
Host: gml-grp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 04 Feb 2023 04:54:22 GMT
content-type: text/html; charset=utf-8
cache-control: private
location: //gml-grp.com/C.ashx?btag=a_10570b_1326c_&affid=3318&siteid=10570&adid=1326&c=PU_CL_PA_SB_DT_VOLD&AutoR=1
x-aspnet-version: 4.0.30319
set-cookie: CEK=a; expires=Fri, 05-May-2023 04:54:22 GMT; path=/; SameSite=None; Secure
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HwRnnoW6c%2FLzgTU2CTBTrqv0ItK5yLWFNeftwIbvEendF7UWH62N2hwAEadmXlVHakVPGN1D5oGCKOQHelwPaUWmzMPQxfBAJQfcx68MSs4gsfkM0IUrkDExt4DHCQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7940ced39f0bb51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash c181c51a9326d56e60915a792c306c2c
de1cc0ce1384905e65a9fa9575743091d785e528
b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 04:54:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.bet365.com/members/services/host/Scripts/js/ProductCommon_v1.js?seed=AEAxsBqGAQAA_Z3-S_aTpSL96eDQ1ESYCvuxLU1JZecVstCdwmJu0wBZSmuY&PIRXTcSdwp--z=q
200 OK 178 kB URL HTTP/1.1 www.bet365.com/members/services/host/Scripts/js/ProductCommon_v1.js?seed=AEAxsBqGAQAA_Z3-S_aTpSL96eDQ1ESYCvuxLU1JZecVstCdwmJu0wBZSmuY&PIRXTcSdwp--z=q
IP
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (65536), with no line terminators
Size 178 kB (177795 bytes)
Hash 4d9ba2b074d4d1f497c468c74952f45a
e7489dec9eb72b43118e18337f962dfaea12bd5b
0d1c9f6b47951260fff37797c5cc8586db1c542313a84e6769c4be19b62bd31e
GET /members/services/host/Scripts/js/ProductCommon_v1.js?seed=AEAxsBqGAQAA_Z3-S_aTpSL96eDQ1ESYCvuxLU1JZecVstCdwmJu0wBZSmuY&PIRXTcSdwp--z=q HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/olpc/nn/143/0/1/open-account
Cookie: __cf_bm=kj_yuWaX5fSKZzQgH8YZwtEk3gaD0r5RFIQblD1kD8Y-1675486461-0-AatJzQNX5Y52oh2Eh1TQ6IZGCrQ8w5ItPJ08HrACXUf9vdVikG5IAfCb3tM/afnlLEYnlcfRMDjNeECe/KHBUIU=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 04:54:22 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: public, max-age=3600, immutable
x-bet-hop: 1
Content-Encoding: gzip
Last-Modified: Sat, 04 Feb 2023 04:30:00 GMT
CF-Cache-Status: HIT
Age: 1460
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7940ced4dae8b4fd-OSL
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 7d482750bf7fdfcaa38c0efd583ef4dc
a4f68a124e4be130bc838e70f23fd4c6d2f4ef2d
5e6f1cadf4bc425664bb26fa2b384cf13900461b689c77d0916b1d2edd41337c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 04:54:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 279 B IP
Hash ad469929409b1f1048436200705c4353
4826b02ac262d2f4d634e4e838cb560c8c11e08a
dcb5a89cd9ea0eade4402db78c0cc423640703b2a9a880e37240421128b93de6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 04:54:22 GMT
Etag: "63dc8b38-117"
Server: ECS (amb/6B82)
Content-Length: 279
ocsp.digicert.com/
200 OK 280 B IP
Hash 4cff2d11ab486bf4c1d7b16f9408dbb7
847e0bbea9d1206340ec5d03063a72068086c7ab
5f3a553621dd89c40420d21556706a97607edb7eeccb0f28aabd5a468ff99157
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4167
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 04:54:22 GMT
Etag: "63dd9671-118"
Last-Modified: Sat, 04 Feb 2023 03:44:55 GMT
Server: ECS (amb/6BA7)
X-Cache: HIT
Content-Length: 280
members.bet365.com/Members/Helpers/DefaultAff.aspx?affiliate=365_01098744
200 OK 177 B URL HTTP/1.1 members.bet365.com/Members/Helpers/DefaultAff.aspx?affiliate=365_01098744
IP
ASN #209242 Cloudflare London, LLC
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 475774a26d4f30240a3534bcbd2fd161
9fd7b986673786b4fc80943b330bd1c03256049e
f7541d6ca43b4da74a89ec05885dceabf1a4af132d36326cf7974a47c904c811
GET /Members/Helpers/DefaultAff.aspx?affiliate=365_01098744 HTTP/1.1
Host: members.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/
Cookie: __cf_bm=kj_yuWaX5fSKZzQgH8YZwtEk3gaD0r5RFIQblD1kD8Y-1675486461-0-AatJzQNX5Y52oh2Eh1TQ6IZGCrQ8w5ItPJ08HrACXUf9vdVikG5IAfCb3tM/afnlLEYnlcfRMDjNeECe/KHBUIU=
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 04:54:22 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 177
Connection: keep-alive
Cache-Control: private
Content-Encoding: gzip
Vary: Accept-Encoding
ME-Redirect: PQB
Set-Cookie: Affiliates=Code=365_01098744%2f166167511045&prd=Sports; domain=.bet365.com; expires=Tue, 21-Mar-2023 04:54:22 GMT; path=/; secure
session=processform=0; path=/; secure
pstk=2930BFF8D7B9A621A394BE81CC305CC0000003; domain=.bet365.com; path=/; secure
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7940ced45dd61c02-OSL
ocsp.digicert.com/
200 OK 280 B IP
Hash 4cff2d11ab486bf4c1d7b16f9408dbb7
847e0bbea9d1206340ec5d03063a72068086c7ab
5f3a553621dd89c40420d21556706a97607edb7eeccb0f28aabd5a468ff99157
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3388
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 04:54:22 GMT
Last-Modified: Sat, 04 Feb 2023 03:57:54 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 280
www.googletagmanager.com/gtm.js?id=GTM-T2BKDHM
200 OK 40 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-T2BKDHM
IP
File type ASCII text, with very long lines (1759)
Hash 32307fa2cd761a6a7041a805b27ee3b9
5d568ca56b1879d3315ac1baa4949ebe8f8f9f65
235579a776d468ba3f534c47aae62a0b44a0e8fc49ae95373e8d54d78b9a255d
GET /gtm.js?id=GTM-T2BKDHM HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 04 Feb 2023 04:54:22 GMT
expires: Sat, 04 Feb 2023 04:54:22 GMT
cache-control: private, max-age=900
last-modified: Sat, 04 Feb 2023 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 40119
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
wleuroearners.adsrv.eacdn.com/C.ashx?btag=a_170087b_2849c_&affid=13634&siteid=170092&adid=2849&c=PU_CL_PA_SB_DT_VOLD_BETHARD
302 Found 271 B URL HTTP/1.1 wleuroearners.adsrv.eacdn.com/C.ashx?btag=a_170087b_2849c_&affid=13634&siteid=170092&adid=2849&c=PU_CL_PA_SB_DT_VOLD_BETHARD
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 33d019c97c088d213dadcac7600c5aa8
8734f047bdf2024924760ea74b45d254d2346925
8838019272080e18fb5336f81511cd84d8d7f0c9d79e35b390f1b57d4d97a48d
GET /C.ashx?btag=a_170087b_2849c_&affid=13634&siteid=170092&adid=2849&c=PU_CL_PA_SB_DT_VOLD_BETHARD HTTP/1.1
Host: wleuroearners.adsrv.eacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: //wleuroearners.adsrv.eacdn.com/C.ashx?btag=a_170087b_2849c_&affid=13634&siteid=170092&adid=2849&c=PU_CL_PA_SB_DT_VOLD_BETHARD&AutoR=1
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
Set-Cookie: CEK=a; expires=Fri, 05-May-2023 04:54:22 GMT; path=/; SameSite=None; Secure
X-Powered-By: ASP.NET
X-XSS-Protection: 1; mode=block
Date: Sat, 04 Feb 2023 04:54:22 GMT
Content-Length: 271
Vary: Accept-Encoding
ocsp.digicert.com/
200 OK 280 B IP
Hash 4cff2d11ab486bf4c1d7b16f9408dbb7
847e0bbea9d1206340ec5d03063a72068086c7ab
5f3a553621dd89c40420d21556706a97607edb7eeccb0f28aabd5a468ff99157
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4167
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 04:54:22 GMT
Last-Modified: Sat, 04 Feb 2023 03:44:55 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
200 OK 280 B IP
Hash 4cff2d11ab486bf4c1d7b16f9408dbb7
847e0bbea9d1206340ec5d03063a72068086c7ab
5f3a553621dd89c40420d21556706a97607edb7eeccb0f28aabd5a468ff99157
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3388
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 04:54:22 GMT
Last-Modified: Sat, 04 Feb 2023 03:57:54 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 280
content001.bet365.com/SportsContent/Global/Footer/SPORTSX1-ESSA_2.png
200 OK 6.4 kB URL HTTP/1.1 content001.bet365.com/SportsContent/Global/Footer/SPORTSX1-ESSA_2.png
IP
ASN #209242 Cloudflare London, LLC
File type PNG image data, 162 x 35, 8-bit/color RGBA, non-interlaced\012- data
Hash 1b8c19b189cccdda7105465a474c9b4d
6ef1cecd283f484606c987259e06a22ff3aff7ae
101ca051649af6826119108f51311f70b4d58e94242c8877a2b8a9247b90f54f
GET /SportsContent/Global/Footer/SPORTSX1-ESSA_2.png HTTP/1.1
Host: content001.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/
Cookie: __cf_bm=kj_yuWaX5fSKZzQgH8YZwtEk3gaD0r5RFIQblD1kD8Y-1675486461-0-AatJzQNX5Y52oh2Eh1TQ6IZGCrQ8w5ItPJ08HrACXUf9vdVikG5IAfCb3tM/afnlLEYnlcfRMDjNeECe/KHBUIU=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 04:54:22 GMT
Content-Type: image/png
Content-Length: 6386
Connection: keep-alive
Last-Modified: Tue, 04 Jun 2019 13:21:41 GMT
Timing-Allow-Origin: *
CF-Cache-Status: HIT
Expires: Thu, 09 Feb 2023 04:54:22 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7940ced5686c1c0e-OSL
content001.bet365.com/SportsContent/Global/Footer/GordonMoody/GordonMoody-GT-x2_Grey99.png
200 OK 5.3 kB URL HTTP/1.1 content001.bet365.com/SportsContent/Global/Footer/GordonMoody/GordonMoody-GT-x2_Grey99.png
IP
ASN #209242 Cloudflare London, LLC
File type PNG image data, 188 x 60, 8-bit gray+alpha, non-interlaced\012- data
Hash 40ed9c8ae714b944f87008ab90bb071d
32bbf71529809e6ea3521c5636838a76c7488fae
b163877ec48382be73ffdf62c6a5dc5ded37443856dde414e591dfe85b61f070
GET /SportsContent/Global/Footer/GordonMoody/GordonMoody-GT-x2_Grey99.png HTTP/1.1
Host: content001.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/
Cookie: __cf_bm=kj_yuWaX5fSKZzQgH8YZwtEk3gaD0r5RFIQblD1kD8Y-1675486461-0-AatJzQNX5Y52oh2Eh1TQ6IZGCrQ8w5ItPJ08HrACXUf9vdVikG5IAfCb3tM/afnlLEYnlcfRMDjNeECe/KHBUIU=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 04:54:22 GMT
Content-Type: image/png
Content-Length: 5324
Connection: keep-alive
Last-Modified: Mon, 11 Oct 2021 13:13:24 GMT
Timing-Allow-Origin: *
CF-Cache-Status: HIT
Expires: Thu, 09 Feb 2023 04:54:22 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7940ced56e970b59-OSL
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash c181c51a9326d56e60915a792c306c2c
de1cc0ce1384905e65a9fa9575743091d785e528
b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 04:54:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
content001.bet365.com/SportsContent/Global/Footer/SPORTSX2-18.png
200 OK 4.4 kB URL HTTP/1.1 content001.bet365.com/SportsContent/Global/Footer/SPORTSX2-18.png
IP
ASN #209242 Cloudflare London, LLC
File type PNG image data, 65 x 65, 8-bit/color RGBA, non-interlaced\012- data
Hash 097b1799e6f2ab026f137f91b4627384
fd6a5222f5743cccc954a311b6d30b4125179244
5af616c5e6ad0d97aa233ed4644776ca94de0cfb1a653844d8a5d9ee46e756af
GET /SportsContent/Global/Footer/SPORTSX2-18.png HTTP/1.1
Host: content001.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/
Cookie: __cf_bm=kj_yuWaX5fSKZzQgH8YZwtEk3gaD0r5RFIQblD1kD8Y-1675486461-0-AatJzQNX5Y52oh2Eh1TQ6IZGCrQ8w5ItPJ08HrACXUf9vdVikG5IAfCb3tM/afnlLEYnlcfRMDjNeECe/KHBUIU=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 04:54:22 GMT
Content-Type: image/png
Content-Length: 4400
Connection: keep-alive
Last-Modified: Fri, 20 Mar 2015 09:13:01 GMT
Timing-Allow-Origin: *
CF-Cache-Status: HIT
Expires: Thu, 09 Feb 2023 04:54:22 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7940ced57a5eb511-OSL
ocsp.digicert.com/
200 OK 279 B IP
Hash 8191ddc55a60a041c1a06b81855e89c5
61f9a74bc9409427e04debc63a3dffd213baca20
5496ca4e9db5429aa12b8676cc579245656ede1136c2222329752a5dab85005d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3856
Cache-Control: max-age=122678
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 04:54:22 GMT
Etag: "63dd1224-117"
Expires: Sun, 05 Feb 2023 14:59:00 GMT
Last-Modified: Fri, 03 Feb 2023 13:54:44 GMT
Server: ECS (amb/6BA7)
X-Cache: HIT
Content-Length: 279
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9f93c096cdd2ec76c3dea40a1d63727f
2b1a3aad4481dbe2add0369b6373490d34f880a7
6e334d037f771664bf03bbe1769d375010b8b1418d0b097b72a975352b9db015
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6E334D037F771664BF03BBE1769D375010B8B1418D0B097B72A975352B9DB015"
Last-Modified: Thu, 02 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8047
Expires: Sat, 04 Feb 2023 07:08:29 GMT
Date: Sat, 04 Feb 2023 04:54:22 GMT
Connection: keep-alive
wleuroearners.adsrv.eacdn.com/C.ashx?btag=a_170087b_2849c_&affid=13634&siteid=170092&adid=2849&c=PU_CL_PA_SB_DT_VOLD_BETHARD&AutoR=1
302 Found 210 B URL HTTP/1.1 wleuroearners.adsrv.eacdn.com/C.ashx?btag=a_170087b_2849c_&affid=13634&siteid=170092&adid=2849&c=PU_CL_PA_SB_DT_VOLD_BETHARD&AutoR=1
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 7b6547c2dc89567a4a96093c7f4cd5ed
8587c85b87b8277f158b86c2e4deac11028745d0
b741f539da2dccb08ce41120469afa6a71bc5f3129099e814e2356c927be03f2
GET /C.ashx?btag=a_170087b_2849c_&affid=13634&siteid=170092&adid=2849&c=PU_CL_PA_SB_DT_VOLD_BETHARD&AutoR=1 HTTP/1.1
Host: wleuroearners.adsrv.eacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: CEK=a
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: https://www.bethard.com/casino-welcome-offer?btag=a_170092b_2849c_PU_CL_PA_SB_DT_VOLD_BETHARD
Server: Microsoft-IIS/10.0
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
X-AspNet-Version: 4.0.30319
Set-Cookie: XYZ=3&1&148&&&&0&1&&6a5b0591-5957-4395-8bb9-3a01ce311ca8&&a_170092b_2849&; expires=Fri, 05-May-2023 04:54:22 GMT; path=/; SameSite=None; Secure
A_2849=a=2849&r=0&fv=0&lv=0&vc=0&fc=20230204&lc=20230204045422&cc=1; expires=Fri, 05-May-2023 04:54:22 GMT; path=/; SameSite=None; Secure
PM_2=c=PU_CL_PA_SB_DT_VOLD_BETHARD&s=170092&ad=2849&md=0&pm=2&d=20230204045422&ip=1532635802&r=0&ref=&RedirectParams=btag%3da_170092b_2849c_PU_CL_PA_SB_DT_VOLD_BETHARD; expires=Fri, 05-May-2023 04:54:22 GMT; path=/; SameSite=None; Secure
CEK=a; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; SameSite=None; Secure
X-Powered-By: ASP.NET
X-XSS-Protection: 1; mode=block
Date: Sat, 04 Feb 2023 04:54:22 GMT
Content-Length: 210
Vary: Accept-Encoding
content001.bet365.com/SportsContent/Global/Footer/bet365%20grey%20footer%20logo.png
200 OK 7.9 kB URL HTTP/1.1 content001.bet365.com/SportsContent/Global/Footer/bet365%20grey%20footer%20logo.png
IP
ASN #209242 Cloudflare London, LLC
File type PNG image data, 255 x 53, 8-bit/color RGBA, non-interlaced\012- data
Hash 51325bd6f5ada6b0eba71b19dda89dd7
4c67ca4f77680cd5acdcf04cac6b9a673e5ccc70
6ad4d67eed235fafc8ddfab188fa2e968ba4345718c8338bd7f4fbfafa6f8a2b
GET /SportsContent/Global/Footer/bet365%20grey%20footer%20logo.png HTTP/1.1
Host: content001.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/
Cookie: __cf_bm=kj_yuWaX5fSKZzQgH8YZwtEk3gaD0r5RFIQblD1kD8Y-1675486461-0-AatJzQNX5Y52oh2Eh1TQ6IZGCrQ8w5ItPJ08HrACXUf9vdVikG5IAfCb3tM/afnlLEYnlcfRMDjNeECe/KHBUIU=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 04:54:22 GMT
Content-Type: image/png
Content-Length: 7868
Connection: keep-alive
Last-Modified: Thu, 11 Jun 2015 14:13:32 GMT
Timing-Allow-Origin: *
CF-Cache-Status: HIT
Expires: Thu, 09 Feb 2023 04:54:22 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7940ced5ac3db518-OSL
content001.bet365.com/SportsContent/Global/Footer/MGALICENSED.png
200 OK 2.0 kB URL HTTP/1.1 content001.bet365.com/SportsContent/Global/Footer/MGALICENSED.png
IP
ASN #209242 Cloudflare London, LLC
File type PNG image data, 88 x 44, 8-bit/color RGBA, non-interlaced\012- data
Hash d8cb8a91c78942815c69aaeea7c79162
0a36fd477b2c7d88bb67d95e806bf5838d1b39cd
057c251de5bc8825df293db443b8c9a99e01f856abe658c741a89c86b6bfa2e1
GET /SportsContent/Global/Footer/MGALICENSED.png HTTP/1.1
Host: content001.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/
Cookie: __cf_bm=kj_yuWaX5fSKZzQgH8YZwtEk3gaD0r5RFIQblD1kD8Y-1675486461-0-AatJzQNX5Y52oh2Eh1TQ6IZGCrQ8w5ItPJ08HrACXUf9vdVikG5IAfCb3tM/afnlLEYnlcfRMDjNeECe/KHBUIU=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 04:54:22 GMT
Content-Type: image/png
Content-Length: 1979
Connection: keep-alive
Last-Modified: Wed, 10 Jul 2019 13:20:52 GMT
Timing-Allow-Origin: *
CF-Cache-Status: HIT
Expires: Thu, 09 Feb 2023 04:54:22 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7940ced5a91eb4e8-OSL
content001.bet365.com/SportsContent/Global/Footer/eCogra-Horizontal2x.png
200 OK 1.7 kB URL HTTP/1.1 content001.bet365.com/SportsContent/Global/Footer/eCogra-Horizontal2x.png
IP
ASN #209242 Cloudflare London, LLC
File type PNG image data, 206 x 48, 8-bit colormap, non-interlaced\012- data
Hash 9c970e4a7854f871873d7b1401701536
2236689845834104a586507057840c7229c7353c
d0438c85b7b5f9c21ac9a1975ccd12464f5f8cbf15d3353ee700e2617f913349
GET /SportsContent/Global/Footer/eCogra-Horizontal2x.png HTTP/1.1
Host: content001.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/
Cookie: __cf_bm=kj_yuWaX5fSKZzQgH8YZwtEk3gaD0r5RFIQblD1kD8Y-1675486461-0-AatJzQNX5Y52oh2Eh1TQ6IZGCrQ8w5ItPJ08HrACXUf9vdVikG5IAfCb3tM/afnlLEYnlcfRMDjNeECe/KHBUIU=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 04:54:22 GMT
Content-Type: image/png
Content-Length: 1671
Connection: keep-alive
Last-Modified: Wed, 11 Aug 2021 10:23:12 GMT
Timing-Allow-Origin: *
CF-Cache-Status: HIT
Expires: Thu, 09 Feb 2023 04:54:22 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7940ced5af35fab4-OSL
promo.20bet.partners/redirect.aspx?pid=191768&bid=1971&lpid=1088
307 Temporary Redirect 146 B URL HTTP/2 promo.20bet.partners/redirect.aspx?pid=191768&bid=1971&lpid=1088
IP
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /redirect.aspx?pid=191768&bid=1971&lpid=1088 HTTP/1.1
Host: promo.20bet.partners
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
content-type: text/html
content-length: 0
location: https://20media.world/cl?btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
p3p: CP="This is not a P3P policy! It is used to bypass IEs problematic handling of cookies"
x-aspnet-version: 4.0.30319
request-context: appId=cid-v1:83ffbda4-9458-475e-90ec-4427cfb5c3b0
access-control-expose-headers: Request-Context
expires: Sat, 04 Feb 2023 04:54:22 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 04 Feb 2023 04:54:22 GMT
set-cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a191768%2c%22BID%22%3a1971%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675486462355)%5c%2f%22%2c%22CookieTag%22%3a%221971191768451240919C202324454%22%7d%5d; SameSite=None;; domain=.20bet.partners; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; secure
NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%221095017602%7c1%22%7d%5d; domain=.20bet.partners; expires=Mon, 04-Feb-3022 04:54:22 GMT; path=/; secure; SameSite=Strict
server-timing: cdn-cache; desc=MISS, edge; dur=21, origin; dur=66
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 7d482750bf7fdfcaa38c0efd583ef4dc
a4f68a124e4be130bc838e70f23fd4c6d2f4ef2d
5e6f1cadf4bc425664bb26fa2b384cf13900461b689c77d0916b1d2edd41337c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 04:54:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 04:54:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://blancoshrimp.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 Feb 2023 07:08:09 GMT
expires: Sat, 03 Feb 2024 07:08:09 GMT
cache-control: public, max-age=31536000
age: 78373
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 04:54:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 04:54:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gml-grp.com/C.ashx?btag=a_10570b_1326c_&affid=3318&siteid=10570&adid=1326&c=PU_CL_PA_SB_DT_VOLD&AutoR=1
302 Found 233 B URL HTTP/2 gml-grp.com/C.ashx?btag=a_10570b_1326c_&affid=3318&siteid=10570&adid=1326&c=PU_CL_PA_SB_DT_VOLD&AutoR=1
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash dbe9cbd2ad3d4fe12008cb9de903c63a
665082e816858c8afdd6e6cb6e7859e55eae0419
6abb4b7452d94ace267e686f8083699d39a39546e059bd41ca2162ca0f4e670a
GET /C.ashx?btag=a_10570b_1326c_&affid=3318&siteid=10570&adid=1326&c=PU_CL_PA_SB_DT_VOLD&AutoR=1 HTTP/1.1
Host: gml-grp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: CEK=a
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sat, 04 Feb 2023 04:54:22 GMT
content-type: text/html; charset=utf-8
location: https://cl.betano.com/?btag=a_10570b_1326c_PU_CL_PA_SB_DT_VOLD&utm_medium=3318&utm_source=1&siteid=10570
cache-control: private
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
x-aspnet-version: 4.0.30319
set-cookie: XYZ=3&1&148&&&&0&1&&1e2489a5-d7b7-4a27-a9f2-5bb918856fd3&&a_10570b_1326&; expires=Fri, 05-May-2023 04:54:22 GMT; path=/; SameSite=None; Secure
A_1326=a=1326&r=0&fv=0&lv=0&vc=0&fc=20230204&lc=20230204045422&cc=1; expires=Fri, 05-May-2023 04:54:22 GMT; path=/; SameSite=None; Secure
PM_26=c=PU_CL_PA_SB_DT_VOLD&s=10570&ad=1326&md=0&pm=26&d=20230204045422&ip=2728320674&r=0&ref=&RedirectParams=btag%3da_10570b_1326c_PU_CL_PA_SB_DT_VOLD%26utm_medium%3d3318%26utm_source%3d1%26siteid%3d10570; expires=Fri, 05-May-2023 04:54:22 GMT; path=/; SameSite=None; Secure
CEK=a; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; SameSite=None; Secure
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Bk6n9oH%2FOg32HanNpaalQ%2FLkdeyqiDtjo0YwBoCF0%2Bvj3iLEE8AadSHQWWXZVh0mQHUI6gLWzISs5XKv0IKls2kCPrvApalRZ2lcjPM9B2kc0gD5zKPwmnCR41NxZA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7940ced44f53b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
media.betwarrior.bet/redirect.aspx?pid=9277&bid=3038
307 Temporary Redirect 0 B URL HTTP/2 media.betwarrior.bet/redirect.aspx?pid=9277&bid=3038
IP
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect.aspx?pid=9277&bid=3038 HTTP/1.1
Host: media.betwarrior.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
content-type: text/html
content-length: 0
location: https://betwarrior.bet/es/sports?register&btag=655952_21BD135492B14C7588C5257752483980
p3p: CP="This is not a P3P policy! It is used to bypass IEs problematic handling of cookies"
x-aspnet-version: 4.0.30319
request-context: appId=cid-v1:83ffbda4-9458-475e-90ec-4427cfb5c3b0
access-control-expose-headers: Request-Context
expires: Sat, 04 Feb 2023 04:54:22 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 04 Feb 2023 04:54:22 GMT
set-cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a9277%2c%22BID%22%3a3038%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675486462418)%5c%2f%22%2c%22CookieTag%22%3a%2230389277451240919C202324454%22%7d%5d; SameSite=None;; domain=.betwarrior.bet; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; secure
NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%2239604845%7c1%22%7d%5d; domain=.betwarrior.bet; expires=Mon, 04-Feb-3022 04:54:22 GMT; path=/; secure; SameSite=Strict
server-timing: cdn-cache; desc=MISS, edge; dur=20, origin; dur=146
X-Firefox-Spdy: h2
e1.o.lencr.org/
200 OK 346 B IP
ASN #20940 Akamai International B.V.
Hash b62003434217935f45d4a36c288cc814
4c36aae857ca36f64b7dfd33c16f6ec8bdeb2c33
cdaa0d2f5507d7d1e230ba2cdd823c980c7473d5bf4f4a8c8cd3c3185a364319
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "CDAA0D2F5507D7D1E230BA2CDD823C980C7473D5BF4F4A8C8CD3C3185A364319"
Last-Modified: Wed, 01 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6063
Expires: Sat, 04 Feb 2023 06:35:25 GMT
Date: Sat, 04 Feb 2023 04:54:22 GMT
Connection: keep-alive
ocsp.r2m01.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP
Hash 997dde171f446e13d9cb0d42b2b71e21
6370a3f11b9bad3d5c08dfeebb454b86eeee0f42
27ed7e5582a8ff051ecc988c83de2a8e109a916f9e6bc760d9f775baa0c237b0
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=107019
Date: Sat, 04 Feb 2023 04:54:22 GMT
Etag: "63dcd86b-1d7"
Expires: Sun, 05 Feb 2023 10:38:01 GMT
Last-Modified: Fri, 03 Feb 2023 09:48:27 GMT
Server: ECS (nyb/1D08)
X-Cache: Miss from cloudfront
Via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Sgbfdrmo8FBPefSzTELA0UicR2VRBiicjeu0nV69lBAv448zlbb3Mw==
Age: 2974
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 04:54:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.bet365.com/olpc/nn/143/0/1/cookieconsentajax?
200 OK 1.4 kB URL HTTP/1.1 www.bet365.com/olpc/nn/143/0/1/cookieconsentajax?
IP
ASN #209242 Cloudflare London, LLC
File type Unicode text, UTF-8 text, with very long lines (489), with CRLF, LF line terminators
Hash 41bc7a3cb016ed2e39c03d0cc8be6b42
b18485bc2f7d8bb65434447040e3b6a7125a0509
6b68a474dc9ab3d547c5584d6a1de4360570147384669553d528ee80495e9f57
POST /olpc/nn/143/0/1/cookieconsentajax? HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.bet365.com
Connection: keep-alive
Referer: https://www.bet365.com/olpc/nn/143/0/1/open-account
Cookie: __cf_bm=kj_yuWaX5fSKZzQgH8YZwtEk3gaD0r5RFIQblD1kD8Y-1675486461-0-AatJzQNX5Y52oh2Eh1TQ6IZGCrQ8w5ItPJ08HrACXUf9vdVikG5IAfCb3tM/afnlLEYnlcfRMDjNeECe/KHBUIU=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Content-Length: 0
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 04:54:22 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 1362
Connection: keep-alive
Cache-Control: private
Content-Encoding: gzip
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7940ced6cbb7b4fd-OSL
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a063d956f2cb831cbed24bfb9c7bd7b5
8dd3bbecea83d899816754f26ce4e7d017d603e3
7c481700b9197d8bdc2474011d3196de33b81d936e923f82d57517ed2df169ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7C481700B9197D8BDC2474011D3196DE33B81D936E923F82D57517ED2DF169BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21350
Expires: Sat, 04 Feb 2023 10:50:12 GMT
Date: Sat, 04 Feb 2023 04:54:22 GMT
Connection: keep-alive
es.888casino.com/exclusive-mob/spinson.htm?sr=1853545&mm_id=45577&utm_source=aff&utm_medium=casap&utm_content=100138643&utm_campaign=100138643_1853545_nodescription
301 Moved Permanently 0 B URL HTTP/2 es.888casino.com/exclusive-mob/spinson.htm?sr=1853545&mm_id=45577&utm_source=aff&utm_medium=casap&utm_content=100138643&utm_campaign=100138643_1853545_nodescription
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /exclusive-mob/spinson.htm?sr=1853545&mm_id=45577&utm_source=aff&utm_medium=casap&utm_content=100138643&utm_campaign=100138643_1853545_nodescription HTTP/1.1
Host: es.888casino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
content-length: 0
location: https://es.888casino.com/exclusive-mob/spinson.htm?utm_campaign=100138643_1853545_nodescription&utm_content=100138643&utm_medium=casap&utm_source=aff
date: Sat, 04 Feb 2023 04:54:22 GMT
x-wcs-correlation-id: sr9KDR34Bvs1tvNVoHS7XNecylnFk4KnMH8k8XfJbPk3USMKg4orHQ==
set-cookie: 888TempQueryCookie=sr%3D1853545; max-age=60; domain=888casino.com; path=/; secure; samesite=none; httponly
888Cookie=isftd%3Dfalse%26isreal%3Dfalse%26lang%3Des%26OSR%3D1853545%26RefType%3DNoReferrer%26TestData%3D%7B%22mm_id%22%3A%2245577%22%2C%22orig-lp%22%3A%22https%3A%2F%2Fes.888casino.com%2Fexclusive-mob%2Fspinson.htm%22%2C%22referrer%22%3A%22NULL%22%2C%22utm_campaign%22%3A%22100138643_1853545_nodescription%22%2C%22utm_content%22%3A%22100138643%22%2C%22utm_medium%22%3A%22casap%22%2C%22utm_source%22%3A%22aff%22%7D; max-age=604800; domain=888casino.com; path=/; secure; samesite=none; httponly
888TempContext=testdata%3D%7B%22mm_id%22%3A%2245577%22%2C%22orig-lp%22%3A%22https%3A%2F%2Fes.888casino.com%2Fexclusive-mob%2Fspinson.htm%22%2C%22referrer%22%3A%22NULL%22%2C%22utm_campaign%22%3A%22100138643_1853545_nodescription%22%2C%22utm_content%22%3A%22100138643%22%2C%22utm_medium%22%3A%22casap%22%2C%22utm_source%22%3A%22aff%22%7D; max-age=60; domain=888casino.com; path=/; secure; samesite=none; httponly
apigw-requestid: fzC3zhhrDoEEJfA=
vary: Cookie
x-cache: Miss from cloudfront
via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: sr9KDR34Bvs1tvNVoHS7XNecylnFk4KnMH8k8XfJbPk3USMKg4orHQ==
X-Firefox-Spdy: h2
refpaiozdg.top/L?tag=d_2032927m_25437c_&site=2032927&ad=25437&r=registration/
303 See Other 280 B URL HTTP/2 refpaiozdg.top/L?tag=d_2032927m_25437c_&site=2032927&ad=25437&r=registration/
IP
Hash 6532a75964edb50e0c7553000a143734
78b346793ca37e698664ee5f1a2f231d1cfa85be
18f670cd00d4d86fc4aa5eaf03301404a227fd3251a936cfc9f56ab5f6dfc212
GET /L?tag=d_2032927m_25437c_&site=2032927&ad=25437&r=registration/ HTTP/1.1
Host: refpaiozdg.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 303 See Other
server: nginx
date: Sat, 04 Feb 2023 04:54:22 GMT
cache-control: private
location: https://megapari.com:443//registration/?tag=d_2032927m_25437c_
x-aspnetmvc-version: 5.0
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash f6ee5358ccb0ba20f9b6e9395dead455
7610e0ad8117428d6f9e53b9e26f9525c7beb533
76ed7a3c00e1e91c88b4549201879b1bfabcf630f91a59ab309bddddc8ef8a55
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=108750
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 04:54:22 GMT
Etag: "63dceacc-117"
Expires: Sun, 05 Feb 2023 11:06:52 GMT
Last-Modified: Fri, 03 Feb 2023 11:06:52 GMT
Server: nginx
Content-Length: 279
ocsp.digicert.com/
200 OK 280 B IP
Hash 7cb1a8fed67e2352132e9bce1c0af485
ef7cb36cd2c03cfab17d3ac932150415e0242137
36e08d60d56a1755e227d1ed390fb6f854be650eb945ec95d9d8839ed25c0713
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 04:54:22 GMT
Server: ECS (amb/6B82)
Content-Length: 280
in.betsson.com/cl-bono-de-bienvenida-sb/cl?from=Em9dnW8M7MgXKa-T0ntvbmNd7ZgqdRLk-AP0846390900&affcode=AP0846390900&utm_medium=MA_Affiliates&utm_source=10687405
301 Moved Permanently 468 B URL HTTP/2 in.betsson.com/cl-bono-de-bienvenida-sb/cl?from=Em9dnW8M7MgXKa-T0ntvbmNd7ZgqdRLk-AP0846390900&affcode=AP0846390900&utm_medium=MA_Affiliates&utm_source=10687405
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash ab0b83439c800750dcc3bdafa5d894c5
51779c865de446c7d8399fbc7721e5e779294578
a6cc1734e6de3d8f74f496988b99e879b7f311909301622e6bf932b3a4755631
GET /cl-bono-de-bienvenida-sb/cl?from=Em9dnW8M7MgXKa-T0ntvbmNd7ZgqdRLk-AP0846390900&affcode=AP0846390900&utm_medium=MA_Affiliates&utm_source=10687405 HTTP/1.1
Host: in.betsson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: ZBan=Em9dnW8M7MgXKa-T0ntvbmNd7ZgqdRLk
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
content-type: text/html; charset=iso-8859-1
content-length: 468
location: https://in.betsson.com/cl-bono-de-bienvenida-sb/cl/?from=Em9dnW8M7MgXKa-T0ntvbmNd7ZgqdRLk-AP0846390900&affcode=AP0846390900&utm_medium=MA_Affiliates&utm_source=10687405
date: Sat, 04 Feb 2023 04:54:22 GMT
server: Apache/2.4.52 (Ubuntu)
strict-transport-security: max-age=3153600; includeSubDomains
x-cache: Miss from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 75L0RFZQx0-EmmD-H41qhbrthzlt524W1-siTybyBHliedMgBDpikA==
X-Firefox-Spdy: h2
megapari.com//registration/?tag=d_2032927m_25437c_
301 Moved Permanently 0 B URL HTTP/2 megapari.com//registration/?tag=d_2032927m_25437c_
IP
ASN #202492 Silverhill Group Holding Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET //registration/?tag=d_2032927m_25437c_ HTTP/1.1
Host: megapari.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Sat, 04 Feb 2023 04:54:22 GMT
content-type: text/html; charset=utf-8
content-length: 0
x-frame-options: SAMEORIGIN
set-cookie: SESSION=cc2c54f09dab2dd874aaea56d54ad6f1; path=/; secure; HttpOnly; SameSite=Lax
ua=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
auid=U5PMxWPd5P6PFxygA76AAg==; path=/; secure; httponly; samesite=lax
location: /registration/?tag=d_2032927m_25437c_
x-reason: 100
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
in.betsson.com/cl-bono-de-bienvenida-sb/cl/?from=Em9dnW8M7MgXKa-T0ntvbmNd7ZgqdRLk-AP0846390900&affcode=AP0846390900&utm_medium=MA_Affiliates&utm_source=10687405
200 OK 14 kB URL HTTP/2 in.betsson.com/cl-bono-de-bienvenida-sb/cl/?from=Em9dnW8M7MgXKa-T0ntvbmNd7ZgqdRLk-AP0846390900&affcode=AP0846390900&utm_medium=MA_Affiliates&utm_source=10687405
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (46340)
Hash 229f629d620940a8a54cc650cf3e2b9b
27c098b6b08bf51817fea44a454ea32ee017c82a
33c7020c84d17bb6c46e7ef35345a6615440bc764f5760316b2ec70b2e99ac48
GET /cl-bono-de-bienvenida-sb/cl/?from=Em9dnW8M7MgXKa-T0ntvbmNd7ZgqdRLk-AP0846390900&affcode=AP0846390900&utm_medium=MA_Affiliates&utm_source=10687405 HTTP/1.1
Host: in.betsson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: ZBan=Em9dnW8M7MgXKa-T0ntvbmNd7ZgqdRLk
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html;charset=UTF-8
content-length: 14129
date: Sat, 04 Feb 2023 04:54:22 GMT
server: Apache/2.4.52 (Ubuntu)
strict-transport-security: max-age=3153600; includeSubDomains
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: aBWkFqeof4ixsNikJucUYHAWW2M4G4fGGqUtwPgLL6OlDvS5fTIdeg==
X-Firefox-Spdy: h2
www.bethard.com/casino-welcome-offer?btag=a_170092b_2849c_PU_CL_PA_SB_DT_VOLD_BETHARD
302 Found 86 B URL HTTP/2 www.bethard.com/casino-welcome-offer?btag=a_170092b_2849c_PU_CL_PA_SB_DT_VOLD_BETHARD
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document, ASCII text, with no line terminators
Hash 5986d4b7aeb014114935ad2583ed03fc
bf66d9eca2a4e75f9545e909634d2a7312b4972a
91df76043759e39dee57ad8155abb0752936e47a107e46c961efbef6630d7a4f
GET /casino-welcome-offer?btag=a_170092b_2849c_PU_CL_PA_SB_DT_VOLD_BETHARD HTTP/1.1
Host: www.bethard.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-length: 86
content-type: text/html; charset=utf-8
location: /casino-welcome-offer
vary: Accept, Accept-Encoding
set-cookie: tg-btag=a_170092b_2849c_PU_CL_PA_SB_DT_VOLD_BETHARD; Path=/; Secure; SameSite=None
request-context: appId=cid-v1:348c03f1-ca35-4cab-8f52-7cf62bcf9880
content-security-policy: frame-ancestors 'self' https://*.regily.com https://*.bethard.com https://www.kasinonetti.com https://www.casinospesialisten.net https://askgamblers.com https://sebost.se
strict-transport-security: max-age=31536000; includeSubDomains
x-cache: CONFIG_NOCACHE
x-azure-ref: 0/uTdYwAAAABFLettS1xQT7Lgte9pTBCdQ1BIMzBFREdFMDQxOABjNzY2NTFmNS1lNDBlLTRiOGQtOTkwYy1lYzc0ZTAwYjliYzY=
date: Sat, 04 Feb 2023 04:54:22 GMT
X-Firefox-Spdy: h2
ocsp.r2m01.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP
Hash 997dde171f446e13d9cb0d42b2b71e21
6370a3f11b9bad3d5c08dfeebb454b86eeee0f42
27ed7e5582a8ff051ecc988c83de2a8e109a916f9e6bc760d9f775baa0c237b0
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=107019
Date: Sat, 04 Feb 2023 04:54:22 GMT
Etag: "63dcd86b-1d7"
Expires: Sun, 05 Feb 2023 10:38:01 GMT
Last-Modified: Fri, 03 Feb 2023 09:48:27 GMT
Server: ECS (nyb/1D08)
X-Cache: Miss from cloudfront
Via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: fZRyRygh9zOt5ozlKHuGjgivlc1wyyR4nNV5nF6p-hBoFg9yjB-o7g==
Age: 2974
www.bethard.com/casino-welcome-offer
302 Found 92 B URL HTTP/2 www.bethard.com/casino-welcome-offer
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document, ASCII text, with no line terminators
Hash 7ee0ae630427ed1528a904f4a4007d34
975588b130909625cdbb3e274068ead44efe6dcd
de6de59a269e46ad6b4f6d3f9b978d2333c35e50b0c617bd7e10e1f4037da47d
GET /casino-welcome-offer HTTP/1.1
Host: www.bethard.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: tg-btag=a_170092b_2849c_PU_CL_PA_SB_DT_VOLD_BETHARD
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
content-length: 92
content-type: text/html; charset=utf-8
location: /en/casino-welcome-offer
vary: Accept, Accept-Encoding
request-context: appId=cid-v1:348c03f1-ca35-4cab-8f52-7cf62bcf9880
content-security-policy: frame-ancestors 'self' https://*.regily.com https://*.bethard.com https://www.kasinonetti.com https://www.casinospesialisten.net https://askgamblers.com https://sebost.se
strict-transport-security: max-age=31536000; includeSubDomains
x-cache: CONFIG_NOCACHE
x-azure-ref: 0/uTdYwAAAACdMXKy6/jtSqtDChwa7OYBQ1BIMzBFREdFMDQxOABjNzY2NTFmNS1lNDBlLTRiOGQtOTkwYy1lYzc0ZTAwYjliYzY=
date: Sat, 04 Feb 2023 04:54:22 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash 3ed38454db4ae5c4884006ba06b0f2b6
b5a94b859f49f9ab05634275f23d077de5c02cd4
296ce4ac6f888f753b8487df0824c2d593635557ad42c6d4eeefe1bcdb112182
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4538
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 04:54:22 GMT
Last-Modified: Sat, 04 Feb 2023 03:38:44 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 279
cdn.cookielaw.org/scripttemplates/otSDKStub.js
200 OK 8.4 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/otSDKStub.js
IP
File type ASCII text, with very long lines (25592)
Hash e248bb3ed9070ee48f0b5bc674e6a49d
46a6ac373399405df390e910c580cf850dce9886
74fd866eaf62b63cec2b85eadf2245e9302107f4c8fabc25f9c3e5cd49f40a6b
GET /scripttemplates/otSDKStub.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://in.betsson.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:22 GMT
content-type: application/javascript
content-length: 8384
content-encoding: gzip
content-md5: 4ki7PtkHDuSPC1vGdOaknQ==
last-modified: Thu, 02 Feb 2023 13:33:36 GMT
etag: 0x8DB05221689032C
x-ms-request-id: 3a8b6a68-201e-0101-2064-379f4e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 36951
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7940ced97eb20b51-OSL
X-Firefox-Spdy: h2
in.betsson.com/ui/scriptloader.php
200 OK 3.7 kB URL HTTP/2 in.betsson.com/ui/scriptloader.php
IP
File type ASCII text, with very long lines (3472), with CRLF, LF line terminators
Hash b68bf25aa5735f706b7d9604589573e7
7728d24de400ed82be825a69134cf61af11f0939
a9747f6fd154adc70be836cab13aac2816d5e2d60fa98428442c917edfb37cd9
GET /ui/scriptloader.php HTTP/1.1
Host: in.betsson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://in.betsson.com/cl-bono-de-bienvenida-sb/cl/?from=Em9dnW8M7MgXKa-T0ntvbmNd7ZgqdRLk-AP0846390900&affcode=AP0846390900&utm_medium=MA_Affiliates&utm_source=10687405
Cookie: ZBan=Em9dnW8M7MgXKa-T0ntvbmNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 3725
date: Mon, 23 Jan 2023 07:51:08 GMT
server: Apache/2.4.52 (Ubuntu)
strict-transport-security: max-age=3153600; includeSubDomains
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: egWQF8UH6i-wQS_8vsV2uo8k0lXA-PPfLd0LVFdr6GSUcQS1BeZSyQ==
age: 1026194
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/f1dbabb7-1b41-46c6-a924-f2073e4e762d/f1dbabb7-1b41-46c6-a924-f2073e4e762d.json
200 OK 3.2 kB URL HTTP/2 cdn.cookielaw.org/consent/f1dbabb7-1b41-46c6-a924-f2073e4e762d/f1dbabb7-1b41-46c6-a924-f2073e4e762d.json
IP
File type JSON data\012- , ASCII text, with very long lines (11678), with no line terminators
Hash c0080563e159625b14e4d5a7603bf32f
940244d346abb65e1e672b4d91dcbe4d56142fe8
517b42fe901607872aaf3a5665ebb3c9bb481d327e65196b14a0c922f3b4969c
GET /consent/f1dbabb7-1b41-46c6-a924-f2073e4e762d/f1dbabb7-1b41-46c6-a924-f2073e4e762d.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://in.betsson.com
Connection: keep-alive
Referer: https://in.betsson.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:23 GMT
content-type: application/x-javascript
content-length: 3158
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: wAgFY+FZYlsU5NWnYDvzLw==
last-modified: Thu, 11 Aug 2022 11:03:34 GMT
etag: 0x8DA7B8922758CCF
x-ms-request-id: ca6e301c-801e-0161-6f8d-adda6c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 10867
expires: Sun, 05 Feb 2023 04:54:23 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7940ced9dcfdb503-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 280 B IP
Hash f8fc0de3d6e8a8edb2073177fd428a0c
a5cf2e5a3766c080690b8e05e2e81281b7e1ef1a
cc4180b726a47f45e697b60c8ac73cc255710aef077781220a728257f78f78fc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5482
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 04:54:23 GMT
Last-Modified: Sat, 04 Feb 2023 03:23:01 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 280
cdnroute.bpsgameserver.com/echo-cdn-origin/themes/betsson/1674118443/js/compressed/echo.min.js
200 OK 197 kB URL HTTP/2 cdnroute.bpsgameserver.com/echo-cdn-origin/themes/betsson/1674118443/js/compressed/echo.min.js
IP
File type Unicode text, UTF-8 text, with very long lines (32000)
Size 197 kB (196857 bytes)
Hash 8fc222aac483b14568cfeddcefcf9856
b80c9bf9fa8ec4d410ac207fd79de33ce35b8447
14dfba22254706c1604c921864b2fbc2862ab0555b6799501a6a111dfbbe205d
GET /echo-cdn-origin/themes/betsson/1674118443/js/compressed/echo.min.js HTTP/1.1
Host: cdnroute.bpsgameserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://in.betsson.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript
content-length: 196857
date: Thu, 19 Jan 2023 09:24:44 GMT
server: Apache/2.4.52 (Ubuntu)
last-modified: Thu, 19 Jan 2023 08:54:07 GMT
etag: "c29da-5f29a1366f67b-br"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sat, 18 Feb 2023 09:24:44 GMT
content-encoding: br
access-control-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 0exeYrcj8DO5EGYPvrbTymCgzEbfcv6dtB1Te4l0tJm1M9pabvGpDA==
age: 1366179
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.39.0/otBannerSdk.js
200 OK 90 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.39.0/otBannerSdk.js
IP
File type ASCII text, with very long lines (65455)
Hash 669fc272b6662bb850d92e9cfedf53a7
e573ee887b0ca01445457cc338f510c559a092f4
e77f0bfe908a1ee2181992bad85721333d192528c2a00aac42077549f7d377ba
GET /scripttemplates/6.39.0/otBannerSdk.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://in.betsson.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:23 GMT
content-type: application/javascript
content-length: 90454
content-encoding: gzip
content-md5: Zp/CcrZmK7hQ2S6c/t9Tpw==
last-modified: Fri, 26 Aug 2022 16:31:04 GMT
etag: 0x8DA87805EB35DE2
x-ms-request-id: 41a1e322-301e-0173-6402-efee70000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 29844
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7940cedadf1f0b51-OSL
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 158390a3306a62f17714b4cb0e43e518
579a15de60cd85be9b4d8e54f1f894c3166fd557
9a96da74d2a316b50aeaaae1391fac4e3495f70b98a61f00b69dd415a1ab55c0
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 04 Feb 2023 04:54:23 GMT
Last-Modified: Sat, 04 Feb 2023 03:05:27 GMT
Server: ECS (bsa/EB13)
X-Cache: Miss from cloudfront
Via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: NF9ZrcLP_YVs6pDkoiBM-GpVz42Do3D5C6zT-vFkiewznIpNgqQ6Gg==
Age: 6536
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 63b184a8ae82b614a6b4204dbcb3579e
a09e9c3757f414192415e485db34bf98385505a9
560d261f29dbd5ba75486099ef825587483b49e724bf160f13601acdeecb2068
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=103202
Date: Sat, 04 Feb 2023 04:54:23 GMT
Etag: "63dcc0a0-1d7"
Expires: Sun, 05 Feb 2023 09:34:25 GMT
Last-Modified: Fri, 03 Feb 2023 08:06:56 GMT
Server: ECS (nyb/1D1A)
X-Cache: Miss from cloudfront
Via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: jgkzog5rWsGGqwNg7KbWeY1-sOrsc9DQHsFBwk8Xr0zoBxU4NOlHpw==
Age: 5249
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7553
Expires: Sat, 04 Feb 2023 07:00:16 GMT
Date: Sat, 04 Feb 2023 04:54:23 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7553
Expires: Sat, 04 Feb 2023 07:00:16 GMT
Date: Sat, 04 Feb 2023 04:54:23 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7553
Expires: Sat, 04 Feb 2023 07:00:16 GMT
Date: Sat, 04 Feb 2023 04:54:23 GMT
Connection: keep-alive
cdn.cookielaw.org/consent/f1dbabb7-1b41-46c6-a924-f2073e4e762d/c15e6223-6008-45c0-bd61-d5fb7c5b4f73/en-us.json
200 OK 40 kB URL HTTP/2 cdn.cookielaw.org/consent/f1dbabb7-1b41-46c6-a924-f2073e4e762d/c15e6223-6008-45c0-bd61-d5fb7c5b4f73/en-us.json
IP
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (65516), with no line terminators
Hash 0dd6140bd20d837258000e83ad0f7ee0
a831acb47c96326d64eda75503813d5e541c36ec
bfad3ccc15bf3d9503aebb428e4f375014ca1a57f2071245574fae7adbb7b6ec
GET /consent/f1dbabb7-1b41-46c6-a924-f2073e4e762d/c15e6223-6008-45c0-bd61-d5fb7c5b4f73/en-us.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://in.betsson.com/
Origin: https://in.betsson.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:23 GMT
content-type: application/x-javascript
content-length: 39904
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: DdYUC9INg3JYAA6DrQ9+4A==
last-modified: Thu, 11 Aug 2022 10:59:59 GMT
etag: 0x8DA7B88A278C412
x-ms-request-id: 3487e052-901e-00f2-1476-ad0a72000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 25908
expires: Sun, 05 Feb 2023 04:54:23 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7940cedbcdd2b503-OSL
X-Firefox-Spdy: h2
bitslot.io/?stag=148527_63dde4fef4a4f54db0ba8d24&tracking_link=http%3A%2F%2Fb-partner.xyz%2Fad702947f
301 Moved Permanently 9.5 kB URL HTTP/2 bitslot.io/?stag=148527_63dde4fef4a4f54db0ba8d24&tracking_link=http%3A%2F%2Fb-partner.xyz%2Fad702947f
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3ac51fd6789cbe19c2d484c9022b0e39
bcba22a7b7f5dd1f59fffd1027e5d7002cecb6e9
300b5e50cb910f9f4905ee7313d98763b68f85f5874db499cc94469fb14cabfe
GET /?stag=148527_63dde4fef4a4f54db0ba8d24&tracking_link=http%3A%2F%2Fb-partner.xyz%2Fad702947f HTTP/1.1
Host: bitslot.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Sat, 04 Feb 2023 04:54:22 GMT
location: https://www.bitslot.io/?stag=148527_63dde4fef4a4f54db0ba8d24&tracking_link=http%3A%2F%2Fb-partner.xyz%2Fad702947f
cache-control: max-age=3600
expires: Sat, 04 Feb 2023 05:54:22 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 7940ced79bf1b4fd-OSL
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72a06bff-2a3c-4fc8-9c7a-5649a696581e.png
200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72a06bff-2a3c-4fc8-9c7a-5649a696581e.png
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a032104cf4ccc6ea31f163ca16386487
a0573916c3d72f0554928963c0a74413fdcb3558
8ba7b6e9b3fa28f6fd27f5f006cedac10f50d7da6c109155a2476cf04f4df932
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72a06bff-2a3c-4fc8-9c7a-5649a696581e.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8909
x-amzn-requestid: 29f57721-99ae-4927-b324-b0a40668e2f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyDqqEPuIAMFqpg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd7fdd-156c25027894630b61e5770c;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:42:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 6-RtedWR4ubEBwe85bNcobzqb2Cy9aEUzyT3tlhJ95zD5SgiuS7coA==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:11:43 GMT
age: 24160
etag: "a0573916c3d72f0554928963c0a74413fdcb3558"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/loader/index.es2017.js
200 OK 78 B URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/loader/index.es2017.js
IP
Hash 0fdc437b89bf46bca8fc492a05b5cb3c
ee8d395e2b61dbfaeae938b1c1e0bd56cfbf0397
6ac3b56975178012793ab68fbb1431305008beb77881d51ee26ae00a41e0cad7
GET /prod/common/complib/loader/index.es2017.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://in.betsson.com
Connection: keep-alive
Referer: https://in.betsson.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 7Xe/qfZDHu5yUupsfpbNKySv1r6MPlx1zWH1SYfT2e1S8Bp1wTS80JqmNZ+kvr0rN6fV0Ygp+sA=
x-amz-request-id: MX4CYJ0JX85K55VN
Date: Sat, 04 Feb 2023 04:54:24 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 01 Feb 2023 15:22:34 GMT
ETag: "0fdc437b89bf46bca8fc492a05b5cb3c"
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 78
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4e245a51-5c03-4b84-b42a-29fa3a7806e9.jpeg
200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4e245a51-5c03-4b84-b42a-29fa3a7806e9.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 65cd12302c9ca5468dbc9a98155970e0
a0c63213c3021e40f8ea54f2da6a5c165ed5cfd1
8463155faca74f13ec4500fed98289d8bfbdc4a989d1cb7580736018eadf1000
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4e245a51-5c03-4b84-b42a-29fa3a7806e9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7992
x-amzn-requestid: ba4f95d9-6081-4b34-955c-bbe8e7b2335c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyEEjGsdIAMF84w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8083-7666baa66ccdec9b5fec8736;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:45:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: A3c6sSs_b8KkREPa26a8X9NTEZpHGDjElR9hT-NXwg6dYpeuRNZXfA==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:10:21 GMT
age: 24242
etag: "a0c63213c3021e40f8ea54f2da6a5c165ed5cfd1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg
200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e5b4e4f15da3323c73974c3f1cdb5d74
1f14971d0cf979cc34ff191849dc43d86e8ac463
5893d7e5b2fd9de92829b303c42d0c07ff32b3f6b8705b6f5b4a784315c8808e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5174
x-amzn-requestid: 35630c70-3bad-47b4-94bb-09c873632194
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD7EFAHIAMFQQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8046-317b1fbb3bee0f377697bf3d;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: OD5cy75AkNMwTIvIool2nKbKgr5Jpo1Plm_X_YPr3rdPbg86_V2fdA==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:00:26 GMT
age: 24837
etag: "1f14971d0cf979cc34ff191849dc43d86e8ac463"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-45M1DQFW2B>m=45je3210&_p=63007005&gcs=G1-0&cid=1869701109.1675486497&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675486496&sct=1&seg=0&dl=https%3A%2F%2Fwww.bet365.com%2Folp%2Fopen-account%3Faffiliate%3D365_01098744&dt=%C3%85pningstilbud&en=page_view&_fv=1&_nsi=1&_ss=1
204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-45M1DQFW2B>m=45je3210&_p=63007005&gcs=G1-0&cid=1869701109.1675486497&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675486496&sct=1&seg=0&dl=https%3A%2F%2Fwww.bet365.com%2Folp%2Fopen-account%3Faffiliate%3D365_01098744&dt=%C3%85pningstilbud&en=page_view&_fv=1&_nsi=1&_ss=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-45M1DQFW2B>m=45je3210&_p=63007005&gcs=G1-0&cid=1869701109.1675486497&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675486496&sct=1&seg=0&dl=https%3A%2F%2Fwww.bet365.com%2Folp%2Fopen-account%3Faffiliate%3D365_01098744&dt=%C3%85pningstilbud&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.bet365.com
Connection: keep-alive
Referer: https://www.bet365.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.bet365.com
date: Sat, 04 Feb 2023 04:54:23 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/polyfills/index.js
200 OK 1.1 kB URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/polyfills/index.js
IP
Hash d584dac684dbfccbd3271d63a2c59ed1
81d1179f903109a0d78f99626fea0b7466ce29ea
954f4ed0d5d08ce0bf5307007eaaf3d7c7c062a3d112b147b8710af544a4a844
GET /prod/common/complib/esm/polyfills/index.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://in.betsson.com
Connection: keep-alive
Referer: https://cbt-gecko-storage.s3.eu-central-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: L1EFWQVzTVzK7Ty3B5VlJ8N9zfEyeeDeHReASWMw5dxNHQrQJjo3JCXbYtTTgOTkYQQEFgK2mgo=
x-amz-request-id: MX41EM1HK5DEX5QM
Date: Sat, 04 Feb 2023 04:54:24 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 01 Feb 2023 15:22:34 GMT
ETag: "d584dac684dbfccbd3271d63a2c59ed1"
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 1143
ocsp.digicert.com/
200 OK 280 B IP
Hash 7cb1a8fed67e2352132e9bce1c0af485
ef7cb36cd2c03cfab17d3ac932150415e0242137
36e08d60d56a1755e227d1ed390fb6f854be650eb945ec95d9d8839ed25c0713
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=113085
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 04:54:23 GMT
Etag: "63dcfbbc-118"
Expires: Sun, 05 Feb 2023 12:19:08 GMT
Last-Modified: Fri, 03 Feb 2023 12:19:08 GMT
Server: nginx
Content-Length: 280
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/loader.js
200 OK 4.3 kB URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/loader.js
IP
File type Java source, ASCII text, with very long lines (3280)
Hash 1dee864a18a5c118812abfad81713014
090d7df3c71c641a2c4eb4b5151a7da3a176d40a
6e6c279c4bc498ae566b6bb9ee399c19be757dc99e47c6b8b9211c23f254b075
GET /prod/common/complib/esm/loader.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://in.betsson.com
Connection: keep-alive
Referer: https://cbt-gecko-storage.s3.eu-central-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 1/IAIH7o9FqKl2wjq1yL1PY0HUQqL5reFDmDdk23xhoJCxDkNn+2BDd8mgQytDcGP/FwzKkVkPA=
x-amz-request-id: MX45ZJFZDNQGJYWQ
Date: Sat, 04 Feb 2023 04:54:24 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 01 Feb 2023 15:22:34 GMT
ETag: "1dee864a18a5c118812abfad81713014"
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 4322
cdn.cookielaw.org/scripttemplates/6.39.0/assets/otFlat.json
200 OK 3.0 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.39.0/assets/otFlat.json
IP
File type JSON data\012- , ASCII text, with very long lines (11118)
Hash 5f1f3dee54d56068cc422c2e182af30c
307e86761b9ecbc0262af0358acfc0e0b95e7ea5
482ea2a9ca60ee6292211fcbfb5ea4b28ef501cd7be34899a43384c8f9a113e8
GET /scripttemplates/6.39.0/assets/otFlat.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://in.betsson.com/
Origin: https://in.betsson.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:23 GMT
content-type: application/json
content-length: 3007
content-encoding: gzip
content-md5: Xx897lTVYGjMQiwuGCrzDA==
last-modified: Fri, 26 Aug 2022 16:30:55 GMT
etag: 0x8DA87805972EF22
x-ms-request-id: ff9313ca-501e-0141-3078-b9b6a0000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 74010
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7940cedfaf4db503-OSL
X-Firefox-Spdy: h2
cdnroute.bpsgameserver.com/echo-cdn-origin/themes/betsson/1674118443/css/compressed/betsson.min.css
200 OK 590 kB URL HTTP/2 cdnroute.bpsgameserver.com/echo-cdn-origin/themes/betsson/1674118443/css/compressed/betsson.min.css
IP
File type Unicode text, UTF-8 text, with very long lines (64798), with no line terminators
Size 590 kB (590291 bytes)
Hash cd369271712cd6ee84fc2b8a5474af99
1594ccca2a3c16975efd62def37f56eb8d1334b2
9e806e81f32d17625f8cdf9bf95cef7448b4b6a7689d4b20caea10c2460319a1
GET /echo-cdn-origin/themes/betsson/1674118443/css/compressed/betsson.min.css HTTP/1.1
Host: cdnroute.bpsgameserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://in.betsson.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
date: Thu, 19 Jan 2023 09:24:44 GMT
server: Apache/2.4.52 (Ubuntu)
last-modified: Thu, 19 Jan 2023 08:54:06 GMT
etag: "e44fe-5f29a13538cc5-br"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sat, 18 Feb 2023 09:24:44 GMT
content-encoding: br
access-control-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 8EcbnyjHydSTaJWM6snp6l-z3nHt_3KSyN0qkninFi0fyE6ExhN7CA==
age: 1366179
X-Firefox-Spdy: h2
megapari.com/registration?tag=d_2032927m_25437c_
200 OK 31 kB URL HTTP/2 megapari.com/registration?tag=d_2032927m_25437c_
IP
ASN #202492 Silverhill Group Holding Ltd
Hash 08b516c6d549a80afd3443f7f93726d7
96d6ce6fa12f9de8eac823cd55b40ed044f5f3c3
e82e9b41a29b8c92b0669f5e59f330f07756be0c50ff7123d5207c4c47ff4d5c
GET /registration?tag=d_2032927m_25437c_ HTTP/1.1
Host: megapari.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 04:54:23 GMT
content-type: text/html; charset=utf-8
x-frame-options: SAMEORIGIN
set-cookie: SESSION=fd8e2a742a9b4309a024cb06beec5ac9; path=/; secure; HttpOnly; SameSite=Lax
ua=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
_glhf=1675504238; expires=Sat, 04-Feb-2023 05:54:22 GMT; Max-Age=3600; path=/
referral_values=%7B%22type%22%3A%22reflinkid%22%2C%22val%22%3A%22d_2032927m_25437c_%22%2C%22additional%22%3A%7B%22name_tag%22%3A%22tag%22%2C%22ref_partner_id%22%3Anull%2C%22bw_%22%3Anull%7D%7D; expires=Wed, 05-Apr-2023 04:54:23 GMT; Max-Age=5184000; path=/; HttpOnly
is_rtl=1; expires=Sun, 04-Feb-2024 04:54:23 GMT; Max-Age=31536000; path=/; HttpOnly
disallow_sport=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; HttpOnly
visit=1-3c0e9c42ad3548acf9dfd46fa9cbec42; path=/; HttpOnly
referral_values=%7B%22type%22%3A%22reflinkid%22%2C%22val%22%3A%22d_2032927m_25437c_%22%2C%22additional%22%3A%7B%22name_tag%22%3A%22tag%22%2C%22ref_partner_id%22%3Anull%2C%22bw_%22%3Anull%7D%7D; expires=Wed, 05-Apr-2023 04:54:23 GMT; Max-Age=5184000; path=/; HttpOnly
reflinkid=d_2032927m_25437c_; expires=Sat, 04-Mar-2023 04:54:23 GMT; Max-Age=2419200; path=/; HttpOnly
fast_coupon=true; expires=Sat, 11-Feb-2023 04:54:23 GMT; Max-Age=604800; path=/
v3fr=1; expires=Tue, 07-Feb-2023 04:54:23 GMT; Max-Age=259200; path=/; HttpOnly; SameSite=lax
lng=en; expires=Mon, 06-Mar-2023 04:54:23 GMT; Max-Age=2592000; path=/
flaglng=en; expires=Mon, 06-Mar-2023 04:54:23 GMT; Max-Age=2592000; path=/
auid=U5PMxWPd5P+PFxygA76DAg==; path=/; secure; httponly; samesite=lax
vary: Accept-Encoding
content-encoding: br
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
cdn.cookielaw.org/logos/ef1e7412-c61f-4d80-8864-afd77df9fe19/f1dbabb7-1b41-46c6-a924-f2073e4e762d/e2b09f74-8c8c-441e-9884-ffa585cc341f/betsson.png
200 OK 8.5 kB URL HTTP/2 cdn.cookielaw.org/logos/ef1e7412-c61f-4d80-8864-afd77df9fe19/f1dbabb7-1b41-46c6-a924-f2073e4e762d/e2b09f74-8c8c-441e-9884-ffa585cc341f/betsson.png
IP
File type PNG image data, 318 x 57, 8-bit/color RGBA, non-interlaced\012- data
Hash 859aca7869c488ed6b04eb203250c4e1
fea586929aede21efa8ccbc87024dc21e1aaaf2b
ebf3c2f1ce0729ecee607abcd13b46df41d46f9e7b33dc71b44e488fbac42f0c
GET /logos/ef1e7412-c61f-4d80-8864-afd77df9fe19/f1dbabb7-1b41-46c6-a924-f2073e4e762d/e2b09f74-8c8c-441e-9884-ffa585cc341f/betsson.png HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://in.betsson.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:24 GMT
content-type: application/octet-stream
content-length: 8535
content-md5: hZrKeGnEiO1rBOsgMlDE4Q==
last-modified: Mon, 01 Jun 2020 09:26:09 GMT
etag: 0x8D8060DD16450A8
x-ms-request-id: e93db895-b01e-0126-7caf-590507000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 6900
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7940cee018830b51-OSL
X-Firefox-Spdy: h2
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/index-c8ce0eba.js
200 OK 146 kB URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/index-c8ce0eba.js
IP
File type ASCII text, with very long lines (1726)
Size 146 kB (146308 bytes)
Hash 98e671a31d29c2283e57432b06911d14
1d0a598b3f57212e64fefdbdc2c71c02f9089800
05af1e15f9140851b7d1b9251cd98e4ed80bbb7c86ec84fd67e82cace03fdeeb
GET /prod/common/complib/esm/index-c8ce0eba.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://in.betsson.com
Connection: keep-alive
Referer: https://cbt-gecko-storage.s3.eu-central-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: CoalLr3CK50EFGXPeVrMufYNnUtPKQ3vP84/zCuea+FH+6rebz//c6zHZm1l7uR4KYkwVAbVBPE=
x-amz-request-id: MX4ENN72Y8Z46QGS
Date: Sat, 04 Feb 2023 04:54:24 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 01 Feb 2023 15:22:34 GMT
ETag: "98e671a31d29c2283e57432b06911d14"
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 146308
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/cbt-footer.entry.js
200 OK 15 kB URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/cbt-footer.entry.js
IP
File type C++ source text\012- Java source, ASCII text, with very long lines (4837)
Hash 13e026cd20ab6e3d04d97b4e6d831c23
b43989b8125b7e2c9d096d389a65ef43a7833fc6
dcdacdc267f6f3cca03b8225c9ed74392627df790023230be3306dd25c10a34c
GET /prod/common/complib/esm/cbt-footer.entry.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://in.betsson.com
Connection: keep-alive
Referer: https://cbt-gecko-storage.s3.eu-central-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: qlCByXShyULT1QcSXTIjonf1llWNzwEOUm75Dgm2Ab1OXQ83JjEr2PPjyZePQvC4KFCLFsxg1pM=
x-amz-request-id: A49K2HE4XY87MYNE
Date: Sat, 04 Feb 2023 04:54:25 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 01 Feb 2023 15:22:34 GMT
ETag: "13e026cd20ab6e3d04d97b4e6d831c23"
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 15116
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/const-6eaf0a26.js
200 OK 145 B URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/const-6eaf0a26.js
IP
Hash 5a3e80c9c806e8b73d6e3023558b6973
f9e09308c0aab87ee21495928b0799c8e0e37577
ac3c500f15515186e6ba3ba3bec6a918b13f8623abd6aee8c61a018d5b93bf44
GET /prod/common/complib/esm/const-6eaf0a26.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://in.betsson.com
Connection: keep-alive
Referer: https://cbt-gecko-storage.s3.eu-central-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: ExvGtBegEOJOldwhnIERcHdzvPJFbbG3N+B2AUBvv7yDsPytZiZE+C6swg3j6BiJu903vsO1Wns=
x-amz-request-id: A49YNEDPHG81M3M1
Date: Sat, 04 Feb 2023 04:54:25 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 01 Feb 2023 15:22:34 GMT
ETag: "5a3e80c9c806e8b73d6e3023558b6973"
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 145
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://in.betsson.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Sat, 04 Feb 2023 03:44:08 GMT
expires: Sat, 04 Feb 2023 05:44:08 GMT
cache-control: public, max-age=7200
age: 4216
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.bethard.com/en/casino-welcome-offer
200 OK 2.7 kB URL HTTP/2 www.bethard.com/en/casino-welcome-offer
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash 549e1e838b861fb0ef54f6cf614836bd
73269b0bdfa4c49ab371d76b4bbc7979e9dfe8a0
3d07cc1632f1a6bf09ebff1a148a8edcde5f2547b37ee881e7fef5d3909a1f58
GET /en/casino-welcome-offer HTTP/1.1
Host: www.bethard.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: tg-btag=a_170092b_2849c_PU_CL_PA_SB_DT_VOLD_BETHARD
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
content-encoding: gzip
etag: W/"888c2-+fvxqLSx1vmJjzVUUYakxAiHjhs"
vary: Accept-Encoding
set-cookie: locale=en-US; Path=/; Secure
hadLocale=false; Path=/; Secure
proxy-cache-key=%2Fen%2Fcasino-welcome-offeren-US-NO-Desktop-2.24.2; Max-Age=604800; Path=/; Expires=Sat, 11 Feb 2023 04:54:22 GMT; Secure
request-context: appId=cid-v1:348c03f1-ca35-4cab-8f52-7cf62bcf9880
content-security-policy: frame-ancestors 'self' https://*.regily.com https://*.bethard.com https://www.kasinonetti.com https://www.casinospesialisten.net https://askgamblers.com https://sebost.se
strict-transport-security: max-age=31536000; includeSubDomains
x-cache: CONFIG_NOCACHE
x-azure-ref: 0/uTdYwAAAABZV/XL7RADQ6MbQDBFojSPQ1BIMzBFREdFMDQxOABjNzY2NTFmNS1lNDBlLTRiOGQtOTkwYy1lYzc0ZTAwYjliYzY=
date: Sat, 04 Feb 2023 04:54:22 GMT
X-Firefox-Spdy: h2
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/buildQueryParams-c973808d.js
200 OK 697 B URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/buildQueryParams-c973808d.js
IP
Hash 67f7419202508dd74f0b825c7aef2016
3033673d54259f9b6d1a4c0d05807c4708621f99
a6f8bde448949f7d7d97d1f45b007456e7e1bad138a043494a02406abcae83d6
GET /prod/common/complib/esm/buildQueryParams-c973808d.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://in.betsson.com
Connection: keep-alive
Referer: https://cbt-gecko-storage.s3.eu-central-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: liTNMyZAwsVRC1fiqHUW3MqjiOgiZ7/35RC6LlridU86HNzmUbLJe57zMnApLZOtJJsFi8Z+n9Y=
x-amz-request-id: A49SA420MH2YHE01
Date: Sat, 04 Feb 2023 04:54:25 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 01 Feb 2023 15:22:34 GMT
ETag: "67f7419202508dd74f0b825c7aef2016"
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 697
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/mergeQueryParams-88a359e0.js
200 OK 624 B URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/mergeQueryParams-88a359e0.js
IP
Hash 9aea40615e4e048e215b623517189c3c
50a9728b7bd0abd51b76ab11f30b31c9bb9c694b
8289f147df083108e3e860c31962a0771e6bb25e8cf39d5d4b39aeb25b02b534
GET /prod/common/complib/esm/mergeQueryParams-88a359e0.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://in.betsson.com
Connection: keep-alive
Referer: https://cbt-gecko-storage.s3.eu-central-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 9TBBq86WATowBo1ZVezrxDtY2KWShdCdZptFtEL7BHCtAmXWPF7+PepJyFB7RmWmnxcybS8YyRQ=
x-amz-request-id: A49QGH1NQJKCWJ19
Date: Sat, 04 Feb 2023 04:54:25 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 01 Feb 2023 15:22:34 GMT
ETag: "9aea40615e4e048e215b623517189c3c"
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 624
ocsp.digicert.com/
200 OK 279 B IP
Hash 85cc6b2d1246c598e6c3e2d6e7be475d
d91c3e0bbb1e3eebe57cb90438525cb0ee375581
10233b5e7c8d9e4075d1855643ddb97797753b45891f0c46fab50737303a1b04
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5611
Cache-Control: max-age=102862
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 04:54:25 GMT
Etag: "63dcbde4-117"
Expires: Sun, 05 Feb 2023 09:28:47 GMT
Last-Modified: Fri, 03 Feb 2023 07:55:16 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
200 OK 1.0 kB IP
File type gzip compressed data, max compression\012- data
Hash cae3ed3816140cbdf2df79e66e32d5a1
14fe35b6403478c54d8c2cab16c4ce5f1770bf04
227d6c6b3e6aae7729c3f5981817424ca9c5c5f59f3aa83b4f9f967877921cc5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4173
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 04:54:25 GMT
Last-Modified: Sat, 04 Feb 2023 03:44:52 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 279
cl.betano.com/myaccount/ban/country-341629?alt=true
200 OK 308 kB URL HTTP/2 cl.betano.com/myaccount/ban/country-341629?alt=true
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1487), with CRLF line terminators
Size 308 kB (307940 bytes)
Hash 1537c7829b551c85d249791bf35f874e
423beea6d2c5f911de8870e3bc8d337c936c2b27
b57438704b9e62eb5d76c2e72c0f99f747511901be54045474ac85c69cb7c42b
GET /myaccount/ban/country-341629?alt=true HTTP/1.1
Host: cl.betano.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __cf_bm=mdlRC1bpQRxmBRV8NwXV0frtjTCZgVPge3F1aAKbydM-1675486462-0-AVwP65Prwt3GtQJR7izsCdVp/AfDLCOUfFjcWh05vJvLXj4E3jkpqFmfbG9eojNAwpMsqDs3IyhU3PqbwDxAVso=; __cflb=02DiuGceHiQJNHkJzaK58TapK4TTCJt38mWzvtms7otRN
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:22 GMT
content-type: text/html; charset=utf-8
content-security-policy: frame-ancestors https://*.betano.com:*
x-farm: 10
age: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: no-store
set-cookie: __RequestVerificationToken=rp_Op9Tfp7TUhlarFxUWRRkZqqNmRjm8JtCX_Yob9fn-XmJGXCNjhmgaT6P0uEmQadkOn4Rrz_WlVcXCTtXPApS3u39LaSaFbBJGimo09do1; path=/; secure; HttpOnly
sticky=stx20.528
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7940ced668eeb521-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 280 B IP
Hash 8f42559cf8dd3597cd7553c19f16216d
e1488e54b36649b7c9aff25f4c935111fabb4001
ff9435af94c617636110409988bb9215c85126e0485a1cd66cfddc5fa41534b0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5395
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 04:54:25 GMT
Etag: "63dda2ff-118"
Last-Modified: Sat, 04 Feb 2023 03:24:30 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
200 OK 279 B IP
Hash 85cc6b2d1246c598e6c3e2d6e7be475d
d91c3e0bbb1e3eebe57cb90438525cb0ee375581
10233b5e7c8d9e4075d1855643ddb97797753b45891f0c46fab50737303a1b04
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5229
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 04:54:25 GMT
Last-Modified: Sat, 04 Feb 2023 03:27:17 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 279
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 99b6df75cf88b7f368b272159870a738
9bc31dc5c0f4b847d47e2ee8a565b21a373b9d80
5f2016ad3444cb9b6f19019687d1d60efee467095a2263b43efd84ffd98cca2e
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=141253
Date: Sat, 04 Feb 2023 04:54:25 GMT
Etag: "63dd589b-1d7"
Expires: Sun, 05 Feb 2023 20:08:38 GMT
Last-Modified: Fri, 03 Feb 2023 18:55:23 GMT
Server: ECS (bsa/EB24)
X-Cache: Miss from cloudfront
Via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: NRPcJn3phYYWCpUkexNEOKDJDsTSSwXab8g1R7Vi2mBfv_XLy03z5A==
Age: 4395
c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com/apg-seal.js
200 OK 61 kB URL HTTP/2 c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com/apg-seal.js
IP
Hash 8d3b758b21bc0d80118576827a78670a
0e19d5da363b5c51845283fa5b7188fca85e6c01
8056937adf9873782aee57a1b85b0e3ae1e7c936958c9c477600e1612e5b160e
Analyzer Verdict Alert fortinet Malware
GET /apg-seal.js HTTP/1.1
Host: c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
date: Sat, 04 Feb 2023 04:52:47 GMT
x-powered-by: Express
cache-control: max-age=300
etag: W/"e0f-srtuzMc4N/aL1CNcfTXZUDms+G0"
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7940cc876965bb9e-FRA
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: hWPcc5iCPtlBX8S0zdK-wtL6xQZFdwdGtTRC13sNm-1TAR0JCXrwDQ==
age: 98
X-Firefox-Spdy: h2
20bet.com/configuration.js
200 OK 51 kB URL HTTP/2 20bet.com/configuration.js
IP
Hash 7b68f970f224315776f5ceae42770367
989af2d3cba1a252fc5b86162657868f982edfd1
571dd191c734ba27d0bf9b69d86045fcccd8cf5ef6d75a141a35d34df0f3a4a4
GET /configuration.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/cl?btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
Cookie: btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:25 GMT
content-type: text/javascript; charset=UTF-8
cf-ray: 7940cee9185395e5-ARN
cache-control: no-cache, no-store, private
vary: Accept-Encoding
cf-cache-status: BYPASS
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers: Content-Length,Content-Range
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Montserrat:wght@300;400;500;600&display=swap
200 OK 471 B URL HTTP/2 fonts.googleapis.com/css2?family=Montserrat:wght@300;400;500;600&display=swap
IP
Hash 078c6b8c278273a136af1354d01664f2
afe1398c1d2d6165117c014b97250de327283867
9836592a7c1aff09a52c3782b7e12a3893c412babb2f944715e3bc10cf928196
GET /css2?family=Montserrat:wght@300;400;500;600&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blancoshrimp.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 04 Feb 2023 04:54:22 GMT
date: Sat, 04 Feb 2023 04:54:22 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.seon.io/js/v4/agent.js
200 OK 111 kB URL HTTP/2 cdn.seon.io/js/v4/agent.js
IP
Size 111 kB (110992 bytes)
Hash f98c315b5c09a33666e2834221d95aa5
1565ba7a0518b7fbabb3735c86ad451b23dc9872
5590e6d02a60fef06746ed35ae865a0f4ef3f714bdcab2b4cc9db58e3422fd30
GET /js/v4/agent.js HTTP/1.1
Host: cdn.seon.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 20 Dec 2022 16:00:08 GMT
x-amz-version-id: oBwuMALhSWNlluJ4Z9BGO_.GELHIAD3H
server: AmazonS3
content-encoding: gzip
date: Sat, 04 Feb 2023 04:19:19 GMT
cache-control: max-age=3600
etag: W/"c34c3067f651e0fea2609171ab7bfec0"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: POcXvI8WoiSrs4Tybd15Gs4VXkI9zs_fxrdpKwURicri5yHU9j9fhQ==
age: 2121
X-Firefox-Spdy: h2
aswpsdkus.com/notify/v1/ua-sdk.min.js
200 OK 43 kB URL HTTP/2 aswpsdkus.com/notify/v1/ua-sdk.min.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 1cda07a2bbc55dcaf684954e7d897c40
ad0c471c1cd361f7a4ef8deb825aa63eb1b01029
8e12a7991dda2a0e6cbd6ba7423a98ea668c2f47a83f7b70180d21b1f3893270
GET /notify/v1/ua-sdk.min.js HTTP/1.1
Host: aswpsdkus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdv5WqPO2pVF1soApMpC6dMZtXWtMZqfkQTtQBvJildASrq55Xog0QMyEjrJKqQBrKrIQCOfLctn51Ph7v0Jf6bmaw
vary: X-Goog-Allowed-Resources
x-goog-generation: 1673371354401478
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 42942
content-encoding: gzip
x-goog-hash: crc32c=CzJWog==, md5=HNoHorvFXcr2hJVOfYl8QA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 42942
server: UploadServer
date: Sat, 04 Feb 2023 04:49:37 GMT
expires: Sat, 04 Feb 2023 04:54:37 GMT
cache-control: public,max-age=300,no-transform
age: 288
last-modified: Tue, 10 Jan 2023 17:22:34 GMT
etag: "1cda07a2bbc55dcaf684954e7d897c40"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ws-cdn001.akamaized.net/7693683943e78a298c36d469e68b47d8/widgetloader
200 OK 60 kB URL HTTP/2 ws-cdn001.akamaized.net/7693683943e78a298c36d469e68b47d8/widgetloader
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (41453)
Hash 297124fbf369cd0269a9f454c978304a
052c58495f020b2a1823a08660c8493d959f1e21
5036b21a973f75c53f34c10a4da742dd668d0de498960cf6a2376d97b4856333
GET /7693683943e78a298c36d469e68b47d8/widgetloader HTTP/1.1
Host: ws-cdn001.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-security-policy: frame-ancestors 'self' https://st-cdn001.akamaized.net https://ls-cdn001.akamaized.net
cache-control: public, max-age=120, stale-while-revalidate=60, immutable
etag: "dbd94835299851de14a09ce08183eb22-ad178b20a3ae52f75aa81f88f35a1d95"
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
x-ing-v: 2
content-length: 60140
date: Sat, 04 Feb 2023 04:54:25 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
200 OK 37 kB URL HTTP/2 static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
IP
File type Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
Hash dcd2009aa38af1b9d05eb2b03404df2b
17bf6497ce2e1bd20976e0954b573e50279f72c4
316374a1b32bb8816f8ed8c3ddc00d99574e23ccdd03fccdc59a7a29f802ce0a
GET /beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:25 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2022.10.1
last-modified: Fri, 21 Oct 2022 01:56:09 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 7940cee97b71b505-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
tracker.ads.sportradar.com/dist/tracker.js
200 OK 13 kB URL HTTP/2 tracker.ads.sportradar.com/dist/tracker.js
IP
ASN #20940 Akamai International B.V.
Hash 209662503c4bc3494186cd12ff80e6dd
1f030739921d8a554b931405cb6b58ebd770dbad
318bb77dcb4b6fe4eef29ba824e223fa601b9342944b2635c8055c8b57464021
GET /dist/tracker.js HTTP/1.1
Host: tracker.ads.sportradar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 20 Jan 2021 14:51:32 GMT
accept-ranges: bytes
server: AmazonS3
etag: "5ff82a1c468a89919e9437d33e0402cb"
x-amz-cf-pop: AMS50-C1
x-amz-cf-id: ETbLIh65aY9mAVLWVaDNXwp9snfbUH2WYXvAEL3sCX87VsDHTCtsDg==
vary: Accept-Encoding
content-encoding: gzip
unused62: 8096267
content-length: 11553
date: Sat, 04 Feb 2023 04:54:26 GMT
cache-control: max-age=900, public
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 0d6835764236fb3a3be70dfdb8596a46
68ba4e3d19da38e8e04f235f13afb9b23f912837
d3878cd0c475298a1a0d9341e388250cb2a16f452601e09ac365387cc74e530e
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=95440
Date: Sat, 04 Feb 2023 04:54:26 GMT
Etag: "63dcb6d2-1d7"
Expires: Sun, 05 Feb 2023 07:25:06 GMT
Last-Modified: Fri, 03 Feb 2023 07:25:06 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 1c2iaoEIJfgSGf7hoj-dKDM0tPV4idgy9ZMSYgC99nKchzsH7MrBhw==
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 0fbd0093a0ac02e7eb15807f24f3d721
4de38da90cb5293da24ec66a3e529d01d94d149b
a232f98ad97eef8a2bff64a3dda41bcc09c7a0f87f3c3b33c1c6ab27bb79c7ca
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A232F98AD97EEF8A2BFF64A3DDA41BCC09C7A0F87F3C3B33C1C6AB27BB79C7CA"
Last-Modified: Fri, 03 Feb 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6213
Expires: Sat, 04 Feb 2023 06:37:59 GMT
Date: Sat, 04 Feb 2023 04:54:26 GMT
Connection: keep-alive
ocsp.entrust.net/
200 OK 1.6 kB IP
Hash 62d0e3a8fba23e2c4367b78df6425029
8d5d41dcd0a9da3c50682fea6225ce05b8513f85
1550af722223d0f7c2ecf711422b58f7c6789dcc0ea11b486c4030d2daa243de
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "1550AF722223D0F7C2ECF711422B58F7C6789DCC0EA11B486C4030D2DAA243DE"
Last-Modified: Fri, 03 Feb 2023 18:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=554
Expires: Sat, 04 Feb 2023 05:03:40 GMT
Date: Sat, 04 Feb 2023 04:54:26 GMT
Connection: keep-alive
tracker.ads.sportradar.com/dist//sp-2.14.0.js
200 OK 32 kB URL HTTP/2 tracker.ads.sportradar.com/dist//sp-2.14.0.js
IP
ASN #20940 Akamai International B.V.
Hash 5d469e760f64d87fa7644b98e32e7559
62443e291bab47708403a3d7830a93f131d9845b
69f1f128b4f8d2393d6259cdfb3dfdcb80dd75496e3af1a32a9fb1391249f975
GET /dist//sp-2.14.0.js HTTP/1.1
Host: tracker.ads.sportradar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 20 Jan 2021 14:51:32 GMT
etag: "8dba669b94e3865c9205ef8fd15ee4d1"
accept-ranges: bytes
server: AmazonS3
x-amz-cf-pop: AMS50-C1
x-amz-cf-id: nhilYV6V-q1PhJgn8gs9dmUPL39Zd2IwgnsFUnicuqpA-U_Vrqb7CA==
vary: Accept-Encoding
content-encoding: gzip
content-length: 30370
date: Sat, 04 Feb 2023 04:54:26 GMT
cache-control: max-age=900, public
X-Firefox-Spdy: h2
a.sportradarserving.com/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
302 Moved Temporarily 0 B URL HTTP/1.1 a.sportradarserving.com/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId= HTTP/1.1
Host: a.sportradarserving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Sat, 04 Feb 2023 04:54:26 GMT
Location: https://a.sportradarserving.com/ul_cb/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
Set-Cookie: zuuid=3f29cbd4-106f-4f1c-9ee5-74d5ea1c8f2d; path=/; expires=Sun, 04-Feb-2024 04:54:26 GMT; domain=sportradarserving.com; samesite=none; secure
c=1675486466; path=/; expires=Sun, 04-Feb-2024 04:54:26 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1675486466; path=/; expires=Sun, 04-Feb-2024 04:54:26 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 0
Connection: keep-alive
a.sportradarserving.com/pixel?type=js&aid=1121&id=1859
302 Moved Temporarily 0 B URL HTTP/1.1 a.sportradarserving.com/pixel?type=js&aid=1121&id=1859
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel?type=js&aid=1121&id=1859 HTTP/1.1
Host: a.sportradarserving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Sat, 04 Feb 2023 04:54:26 GMT
Location: https://a.sportradarserving.com/ul_cb/pixel?type=js&aid=1121&id=1859
Set-Cookie: zuuid=830857d8-935c-40f0-bb8a-2c7358250470; path=/; expires=Sun, 04-Feb-2024 04:54:26 GMT; domain=sportradarserving.com; samesite=none; secure
c=1675486466; path=/; expires=Sun, 04-Feb-2024 04:54:26 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1675486466; path=/; expires=Sun, 04-Feb-2024 04:54:26 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 0
Connection: keep-alive
tracker.growthbuddy.app/track.js?e=pageview&u=&i=DV-02355017850611493202&v=1.0.0&uid=d58ff9b9-c395-4fee-a980-29f64d194803&_nc=1675486500467
200 OK 0 B URL HTTP/2 tracker.growthbuddy.app/track.js?e=pageview&u=&i=DV-02355017850611493202&v=1.0.0&uid=d58ff9b9-c395-4fee-a980-29f64d194803&_nc=1675486500467
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /track.js?e=pageview&u=&i=DV-02355017850611493202&v=1.0.0&uid=d58ff9b9-c395-4fee-a980-29f64d194803&_nc=1675486500467 HTTP/1.1
Host: tracker.growthbuddy.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:26 GMT
content-type: application/javascript; charset=utf-8
content-length: 0
set-cookie: INGRESSCOOKIE=1675486467.47.105.429299|4755d7349ad2180cc27216e76023fb56; Path=/; Secure; HttpOnly
cache-control: no-cache
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
tag.growthbuddy.app/tag.js?id=DV-02355017850611493202
200 OK 15 kB URL HTTP/2 tag.growthbuddy.app/tag.js?id=DV-02355017850611493202
IP
Hash 6e0659730804400a86b2e21bfb8240c5
0fb973b08739d90bc7471c99edf028aa2fe22712
36b0dad1ba25224826ee3dcf84b47e2895ab99dd575a9f156d869ad4bb708ffd
GET /tag.js?id=DV-02355017850611493202 HTTP/1.1
Host: tag.growthbuddy.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:26 GMT
content-type: application/javascript; charset=utf-8
set-cookie: INGRESSCOOKIE=1675486467.331.105.114889|5f2e1b57d78510d04b0cf9036879032b; Path=/; Secure; HttpOnly
vary: Accept-Encoding
cache-control: public, max-age=7200
x-content-type-options: nosniff
etag: "1382-4YuDa3owVc9r2LUx5CM7dj7oB9U"
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
20bet.com/app/vendor.7f46fa567274024c.esm.js
200 OK 472 kB URL HTTP/2 20bet.com/app/vendor.7f46fa567274024c.esm.js
IP
File type ASCII text, with very long lines (65451)
Size 472 kB (472050 bytes)
Hash 236054aafb52639d613e4ac89560bda2
c34862694926d8c3429878b59373f7a4c7846542
665aa6c43c1762a8d960ae4e16fa6a6763b1717b3a11daaa512654d4a42b820d
GET /app/vendor.7f46fa567274024c.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/cl?btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
Cookie: btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:26 GMT
content-type: application/javascript
cf-ray: 7940ceeba93995e5-ARN
etag: W/"63dcff70-251c87"
last-modified: Fri, 03 Feb 2023 12:34:56 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
www.bitslot.io/?stag=148527_63dde4fef4a4f54db0ba8d24&tracking_link=http%3A%2F%2Fb-partner.xyz%2Fad702947f
403 Forbidden 12 kB URL HTTP/2 www.bitslot.io/?stag=148527_63dde4fef4a4f54db0ba8d24&tracking_link=http%3A%2F%2Fb-partner.xyz%2Fad702947f
IP
Hash 49f2c7993d0aebcb7dc8aacfc9c18a2d
501d4a4a5658bbe69323dd9477d1d68173ad0132
b5e01725b90885d2ac129719b6087bf5347bc8d6e4c9f1d9ef8360944b13ff6d
GET /?stag=148527_63dde4fef4a4f54db0ba8d24&tracking_link=http%3A%2F%2Fb-partner.xyz%2Fad702947f HTTP/1.1
Host: www.bitslot.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
date: Sat, 04 Feb 2023 04:54:22 GMT
content-type: text/html; charset=UTF-8
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-frame-options: SAMEORIGIN
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 7940ced7ec07b4fd-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
20bet.com/app/common.3697a9055d1996ae.esm.js
200 OK 11 kB URL HTTP/2 20bet.com/app/common.3697a9055d1996ae.esm.js
IP
File type ASCII text, with very long lines (32302), with no line terminators
Hash 3dfbfc339d77662ec3168fb27e769ba8
7c9917a38cd806e042d4b8476ce82f224615b065
34a50d112b4caa3141f82e814f08f525e03abfa489c61f252f3a31386c875238
GET /app/common.3697a9055d1996ae.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/cl?btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
Cookie: btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:26 GMT
content-type: application/javascript
cf-ray: 7940cef1db2295e5-ARN
etag: W/"63dcff85-7e2e"
last-modified: Fri, 03 Feb 2023 12:35:17 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-2053477.js?sv=6
200 OK 72 kB URL HTTP/2 static.hotjar.com/c/hotjar-2053477.js?sv=6
IP
File type ASCII text, with very long lines (7460)
Hash a94fa303d2b33421d2a1d83caa68dbb0
ae5fb04987c64c71007e5aeac39178e602b6087b
d6a8182bd3bac97c6aab97f1cc3971be173ca556b29e8bbfd87335727894c723
GET /c/hotjar-2053477.js?sv=6 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Sat, 04 Feb 2023 04:54:21 GMT
cache-control: max-age=60
etag: W/801ffbedba15b05395e9f8756b0758f9
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ZNWjJguqT4WICD-F-Wuj2bEw6MYedtwXFC-5d4ExyobqrbmOyQGPiQ==
age: 5
X-Firefox-Spdy: h2
assets.customer.io/assets/track.js
200 OK 2.5 kB URL HTTP/2 assets.customer.io/assets/track.js
IP
File type ASCII text, with very long lines (6536)
Hash 75ce8a211bd03fc032b696d617aff45b
756155dac09128770a51a8e34f49cff63e3809a1
8ae0ca209d8cd77b3003ab7ebd923e816725f5da4d9017066e861936ffab0371
GET /assets/track.js HTTP/1.1
Host: assets.customer.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 26 Jan 2023 16:12:22 GMT
server: AmazonS3
content-encoding: gzip
date: Fri, 03 Feb 2023 16:12:51 GMT
etag: W/"60648b7089f3133807fa043435dcaf74"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ALc9SsqTiEsYSw84eEhG2rhqUNXQAMUzF7TAJcTybX5VOGLZkg0__g==
age: 65777
X-Firefox-Spdy: h2
platform.20bet.com/api/match-statuses/get-all/es
204 No Content 69 kB URL HTTP/2 platform.20bet.com/api/match-statuses/get-all/es
IP
Hash 6fceb8cb64c8ee8f6413cab794d80127
8078b2e71dd3605724125f97c0cfd6e26fd90e11
4a80114222344bce1e724c44d14eafc0ee5d9f26fc6e804b34adb3e9ec274d7a
OPTIONS /api/match-statuses/get-all/es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 04:54:27 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7940cef7f8f02d8f-ARN
X-Firefox-Spdy: h2
platform.20bet.com/api/data/get-currencies
204 No Content 0 B URL HTTP/2 platform.20bet.com/api/data/get-currencies
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/data/get-currencies HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 04:54:27 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7940cef808f62d8f-ARN
X-Firefox-Spdy: h2
platform.20bet.com/api/tournaments/bet-tournament/get-active?fields%5B%5D=tournaments&fields%5B%5D=leaderboards&fields%5B%5D=authorizedUsers
204 No Content 0 B URL HTTP/2 platform.20bet.com/api/tournaments/bet-tournament/get-active?fields%5B%5D=tournaments&fields%5B%5D=leaderboards&fields%5B%5D=authorizedUsers
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/tournaments/bet-tournament/get-active?fields%5B%5D=tournaments&fields%5B%5D=leaderboards&fields%5B%5D=authorizedUsers HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 04:54:27 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7940cef808f72d8f-ARN
X-Firefox-Spdy: h2
platform.20bet.com/api/status
204 No Content 0 B URL HTTP/2 platform.20bet.com/api/status
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/status HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 04:54:27 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7940cef818fd2d8f-ARN
X-Firefox-Spdy: h2
platform.20bet.com/api/v2/data/rates
204 No Content 0 B URL HTTP/2 platform.20bet.com/api/v2/data/rates
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v2/data/rates HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 04:54:27 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7940cef819012d8f-ARN
X-Firefox-Spdy: h2
platform.20bet.com/api/sport/list/-1/0/es
204 No Content 0 B URL HTTP/2 platform.20bet.com/api/sport/list/-1/0/es
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/sport/list/-1/0/es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 04:54:27 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7940cef8190a2d8f-ARN
X-Firefox-Spdy: h2
betwarrior.bet/es/sports?register&btag=655952_21BD135492B14C7588C5257752483980
301 Moved Permanently 36 kB URL HTTP/2 betwarrior.bet/es/sports?register&btag=655952_21BD135492B14C7588C5257752483980
IP
Hash 09bbba171a538948c3c7134113df0162
93dc6c06099b26f1150f849ca732fa784ac9556c
5368d8bcd0749a7b4750725f03a57aad22e92d656b8b68b7699067aba5614aaa
GET /es/sports?register&btag=655952_21BD135492B14C7588C5257752483980 HTTP/1.1
Host: betwarrior.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a9277%2c%22BID%22%3a3038%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675486462418)%5c%2f%22%2c%22CookieTag%22%3a%2230389277451240919C202324454%22%7d%5d
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Sat, 04 Feb 2023 04:54:23 GMT
content-type: text/html; charset=utf-8
location: /region_not_supported?register&btag=655952_21BD135492B14C7588C5257752483980
cf-ray: 7940ced81cc2b505-OSL
cache-control: no-cache, private, no-store, must-revalidate, max-stale=0, post-check=0, pre-check=0
vary: Accept, Accept-Encoding
cf-cache-status: DYNAMIC
x-powered-by: Express
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 621b586028d5acaf29b8777ca0872ce1
9d2a358576d0acab58e2eacf7765b686cee9181f
a7c99a5217e394c715679780ae1e3e60202653547212b0a4fd2efab0e1a01015
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 04:54:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
a.sportradarserving.com/ul_cb/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
302 Moved Temporarily 0 B URL HTTP/1.1 a.sportradarserving.com/ul_cb/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ul_cb/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId= HTTP/1.1
Host: a.sportradarserving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20bet.com/
Connection: keep-alive
Cookie: zuuid=830857d8-935c-40f0-bb8a-2c7358250470; c=1675486466; zuuid_lu=1675486466
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Sat, 04 Feb 2023 04:54:27 GMT
Location: https://x.bidswitch.net/syncd?dsp_id=409&user_group=1&user_id=830857d8-935c-40f0-bb8a-2c7358250470&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3D830857d8-935c-40f0-bb8a-2c7358250470
Set-Cookie: zuuid=830857d8-935c-40f0-bb8a-2c7358250470; path=/; expires=Sun, 04-Feb-2024 04:54:27 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1675486467; path=/; expires=Sun, 04-Feb-2024 04:54:27 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k=1; path=/; expires=Sun, 04-Feb-2024 04:54:27 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k_lu=1675486467; path=/; expires=Sun, 04-Feb-2024 04:54:27 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 0
Connection: keep-alive
a.sportradarserving.com/ul_cb/pixel?type=js&aid=1121&id=1859
200 OK 1.5 kB URL HTTP/1.1 a.sportradarserving.com/ul_cb/pixel?type=js&aid=1121&id=1859
IP
File type ASCII text, with very long lines (1527), with no line terminators
Hash a79856022c7db837f193eb9c60bcd36f
24f035216f40f3358a79147f6da67e3412bc627a
793b12ffc3ae52c628a50f29bd098cbef1da5a493ccaf0cf18417b4710f3b861
GET /ul_cb/pixel?type=js&aid=1121&id=1859 HTTP/1.1
Host: a.sportradarserving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20bet.com/
Connection: keep-alive
Cookie: zuuid=830857d8-935c-40f0-bb8a-2c7358250470; c=1675486466; zuuid_lu=1675486466
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store, must-revalidate
Content-Type: text/javascript; charset=UTF-8
Date: Sat, 04 Feb 2023 04:54:27 GMT
Set-Cookie: zuuid=830857d8-935c-40f0-bb8a-2c7358250470; path=/; expires=Sun, 04-Feb-2024 04:54:27 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1675486467; path=/; expires=Sun, 04-Feb-2024 04:54:27 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k=1; path=/; expires=Sun, 04-Feb-2024 04:54:27 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k_lu=1675486467; path=/; expires=Sun, 04-Feb-2024 04:54:27 GMT; domain=sportradarserving.com; samesite=none; secure
cm2=!bidswitch,444815667; path=/; expires=Sun, 04-Feb-2024 04:54:27 GMT; domain=sportradarserving.com; samesite=none; secure
bss=!bidswitch,444743667; path=/; expires=Sun, 04-Feb-2024 04:54:27 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 1527
Connection: keep-alive
platform.20bet.com/api/data/get-countries
204 No Content 0 B URL HTTP/2 platform.20bet.com/api/data/get-countries
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/data/get-countries HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 04:54:27 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7940cef7e8da2d8f-ARN
X-Firefox-Spdy: h2
20bet.com/app/main.8912bbb1732c40fd.esm.js
200 OK 383 kB URL HTTP/2 20bet.com/app/main.8912bbb1732c40fd.esm.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Size 383 kB (382676 bytes)
Hash ec2213d11e264be471121e3d55ff4e7a
3c1cf880a02d3f4db6793302d8a1683d66511322
929bc7b6de4665ac1b94342fc070c4410d436c9c0ebdfba45fd2f6501585aadc
GET /app/main.8912bbb1732c40fd.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/cl?btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
Cookie: btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:26 GMT
content-type: application/javascript
cf-ray: 7940ceeba93695e5-ARN
etag: W/"63dcff74-16d44e"
last-modified: Fri, 03 Feb 2023 12:35:00 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/v2/ip-data
204 No Content 0 B URL HTTP/2 platform.20bet.com/api/v2/ip-data
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v2/ip-data HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 04:54:27 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7940cef7e8dc2d8f-ARN
X-Firefox-Spdy: h2
platform.20bet.com/api/market-group-sorting/get-all-ordered
204 No Content 0 B URL HTTP/2 platform.20bet.com/api/market-group-sorting/get-all-ordered
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/market-group-sorting/get-all-ordered HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 04:54:27 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7940cef7e8db2d8f-ARN
X-Firefox-Spdy: h2
platform.20bet.com/api/data/provinces
204 No Content 0 B URL HTTP/2 platform.20bet.com/api/data/provinces
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/data/provinces HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 04:54:27 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7940cef7f8ee2d8f-ARN
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js?render=6LeYXFIiAAAAAEinEF15OsBYNq5UXwmor7zuYO0g
200 OK 582 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6LeYXFIiAAAAAEinEF15OsBYNq5UXwmor7zuYO0g
IP
File type ASCII text, with very long lines (884), with no line terminators
Hash ba7bb8d0f4a363974a8f8a7918525f56
21578c80622cfa09dd55675c574827248e185f71
4494386bc89af9d8806675ff70d4cc53281aeeb01b9f841f3174b98da5f76076
GET /recaptcha/api.js?render=6LeYXFIiAAAAAEinEF15OsBYNq5UXwmor7zuYO0g HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Sat, 04 Feb 2023 04:54:27 GMT
date: Sat, 04 Feb 2023 04:54:27 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 582
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
platform.20bet.com/api/sport/list/-1/0/es
200 OK 5.5 kB URL HTTP/2 platform.20bet.com/api/sport/list/-1/0/es
IP
File type JSON data\012- , ASCII text, with very long lines (22787), with no line terminators
Hash 5036384f38081037c4741c2c02d6cd28
1d685d232b1901e71d8bbfe0f22a5a757b6509a5
de9d4d86eea0b58a3dbf51a9d4498873019d2f09a2530fb45a1ce3c6f129657b
GET /api/sport/list/-1/0/es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:27 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7940cef869382d8f-ARN
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/match-statuses/get-all/es
200 OK 79 kB URL HTTP/2 platform.20bet.com/api/match-statuses/get-all/es
IP
File type JSON data\012- , ASCII text, with very long lines (6725), with no line terminators
Hash 8702f96530a265b0ca2846a30013c782
c52ae4e608cabe6933242ba6b9c59310b3bcb3ba
1ceacce84fc2e56c6ec1a7b6c6b28812a75571824a46d9e543685a0c78bedad7
GET /api/match-statuses/get-all/es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:27 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7940cef8592a2d8f-ARN
content-encoding: br
X-Firefox-Spdy: h2
vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html
200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash 112fdf47cdb80b9ce3d033ed09717460
3898efa86cbf1b64dc41a90a110ed5afd6f2ae13
3bfb2e882091d872eece2eee40084183a5fcb0a7ed98c1b004850751260a4cbb
GET /box-e031119f9e9e307a08fa610f85dbfb52.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1034
date: Fri, 03 Feb 2023 13:10:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "112fdf47cdb80b9ce3d033ed09717460"
last-modified: Fri, 03 Feb 2023 13:09:45 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: PmsRUjvsxwsy-yYOO0GrQ2XVreoHwP7v70V91GC3gyiIJ14RWjE_cw==
age: 56662
X-Firefox-Spdy: h2
zz.connextra.com/dcs/tagController/tag/d3ea3fb1f9d4/homepage
200 OK 18 kB URL HTTP/2 zz.connextra.com/dcs/tagController/tag/d3ea3fb1f9d4/homepage
IP
Hash 06348187ea55f2312a4c61fbf1f8d44a
c2cad3e6b8e5a83bef099799b70d533e1565e255
ddbbbde72223c23266b8159957bf3060e36aad9651160fae938e494ad0031311
GET /dcs/tagController/tag/d3ea3fb1f9d4/homepage HTTP/1.1
Host: zz.connextra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript;charset=utf-8
content-length: 16263
server: istio-envoy
content-encoding: gzip
x-envoy-upstream-service-time: 3
cache-control: must-revalidate, max-age=200
expires: Sat, 04 Feb 2023 04:57:48 GMT
date: Sat, 04 Feb 2023 04:54:28 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
platform.20bet.com/api/market-descriptions/get-all-markets/es
200 OK 28 kB URL HTTP/2 platform.20bet.com/api/market-descriptions/get-all-markets/es
IP
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash e2e05cd31f1c8951de094c6c5e94feaf
d475795d281bd7bc23132ece1d992ac9a3d29171
83fc8f107616f835e00d72877676d5ae45a93ef8303695ef3a647c4dcdfa10b7
GET /api/market-descriptions/get-all-markets/es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:28 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7940cef859252d8f-ARN
content-encoding: br
X-Firefox-Spdy: h2
ocsp.godaddy.com/
200 OK 2.2 kB IP
File type gzip compressed data, max compression\012- data
Hash d08f39c0631775e38a11e2c337d105f8
b1ee853145768459b5fe179d89ff799be9d822fe
2d68211d0653b03caa681699b3abd4475f081d8c4b317d4c3ef52561965f1dce
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sat, 04 Feb 2023 04:54:27 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 03 Feb 2023 20:50:51 GMT
Expires: Sat, 04 Feb 2023 20:50:51 GMT
ETag: "22cc501c91ee339aa59aaa7c3c19215d08affd37"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
sc-events-sdk.sharechat.com/web-sdk.js
200 OK 12 kB URL HTTP/2 sc-events-sdk.sharechat.com/web-sdk.js
IP
File type gzip compressed data, max compression\012- data
Hash 741e21afd30d924146a7ad5b8cf66bd1
acf971702d8caf7851778afba978963650c8154c
7eb834ac13f2430165e2e8ebbb8669df8e17b20bbef3fff085caea5592a08dfe
GET /web-sdk.js HTTP/1.1
Host: sc-events-sdk.sharechat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdv48OvmYqQ09T75dUVwgd9mYg-ftGGpe71WOIVu5CjaulLvliTTwi0McC937K4omo5to4R11pAvhu3RgAf_f9c4sA
vary: X-Goog-Allowed-Resources
x-goog-generation: 1667891067679001
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 11862
x-goog-hash: crc32c=ZVy9+A==, md5=WQvwAiEg0WEMukS6AuEoEA==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 11862
server: UploadServer
date: Sat, 04 Feb 2023 04:26:20 GMT
expires: Sat, 04 Feb 2023 05:26:20 GMT
cache-control: public, max-age=3600
age: 1688
last-modified: Tue, 08 Nov 2022 07:04:27 GMT
etag: "590bf0022120d1610cba44ba02e12810"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
20bet.com/custom-assets/logo.webp
200 OK 14 kB URL HTTP/2 20bet.com/custom-assets/logo.webp
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 38810a32194964dbdbf543e2a93e6a8c
e6c250ae7a2dd04c3473b6c03880c59960cabd74
7e7b70fbac7c9bd957367ddf9e51c883b7705307315a74899e94e04b0f1d6cd3
GET /custom-assets/logo.webp HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/cl?btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
Cookie: btag=668128_85D59F2CB78B41D0BA08DD275FBF1499; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:28 GMT
content-type: image/webp
content-length: 13882
cf-ray: 7940cefabeab95e5-ARN
accept-ranges: bytes
age: 5937
cache-control: public, max-age=14400
last-modified: Sat, 04 Feb 2023 03:15:31 GMT
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers: Content-Length,Content-Range
server: cloudflare
X-Firefox-Spdy: h2
ocsp.r2m02.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP
Hash 286fec8dd1fb2eb26a3e5624ac2e16bd
544c43b8d97924d026739b4e070242d1373d5851
3f7bce81c8d9e09d54d936f5ee946f6439ae58bdf132e9073f8856a7ef097c1a
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 04 Feb 2023 04:54:28 GMT
Etag: "63dcc63d-1d7"
Last-Modified: Sat, 04 Feb 2023 03:21:47 GMT
Server: ECS (nyb/1D08)
X-Cache: Miss from cloudfront
Via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 6k6zDsoCUKOOWXEaturj1zgWQKP1brWQ-39tn_rdNNadH16ytIa-aQ==
Age: 5561
ocsp.r2m02.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP
Hash 286fec8dd1fb2eb26a3e5624ac2e16bd
544c43b8d97924d026739b4e070242d1373d5851
3f7bce81c8d9e09d54d936f5ee946f6439ae58bdf132e9073f8856a7ef097c1a
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 04 Feb 2023 04:54:28 GMT
Last-Modified: Sat, 04 Feb 2023 04:08:44 GMT
Server: ECS (dcb/7FA3)
X-Cache: Miss from cloudfront
Via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ClA1pF3QiOHckaeQP-T7Jrl8o49wfS9TUWWIqg3LtV_PC5VfyHb71g==
Age: 2744
ocsp.godaddy.com/
200 OK 1.8 kB IP
Hash cca744485b3aa7a1ffdd32e694f1dd1d
22cc501c91ee339aa59aaa7c3c19215d08affd37
cf0bda7a018b4419ad18d3c2e3d88bbc61101efec345c29290155e738d7a759b
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sat, 04 Feb 2023 04:54:28 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 03 Feb 2023 20:50:51 GMT
Expires: Sat, 04 Feb 2023 20:50:51 GMT
ETag: "22cc501c91ee339aa59aaa7c3c19215d08affd37"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.r2m02.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP
Hash 286fec8dd1fb2eb26a3e5624ac2e16bd
544c43b8d97924d026739b4e070242d1373d5851
3f7bce81c8d9e09d54d936f5ee946f6439ae58bdf132e9073f8856a7ef097c1a
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 04 Feb 2023 04:54:28 GMT
Last-Modified: Sat, 04 Feb 2023 04:04:38 GMT
Server: ECS (dcb/7F7F)
X-Cache: Miss from cloudfront
Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Q-2zyNxaVdurMcz2JzN34omWDYwBvkXFOJ75OCZlWYLJSAHiQuk9Kg==
Age: 2990
platform.20bet.com/api/v3/casino/game?dev_id=popular&per_page=6&has_live=0&perPage=6
204 No Content 0 B URL HTTP/2 platform.20bet.com/api/v3/casino/game?dev_id=popular&per_page=6&has_live=0&perPage=6
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v3/casino/game?dev_id=popular&per_page=6&has_live=0&perPage=6 HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 04:54:28 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7940cefb5a532d8f-ARN
X-Firefox-Spdy: h2
ocsp.r2m02.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP
Hash 286fec8dd1fb2eb26a3e5624ac2e16bd
544c43b8d97924d026739b4e070242d1373d5851
3f7bce81c8d9e09d54d936f5ee946f6439ae58bdf132e9073f8856a7ef097c1a
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=105044
Date: Sat, 04 Feb 2023 04:54:28 GMT
Etag: "63dcc63d-1d7"
Expires: Sun, 05 Feb 2023 10:05:12 GMT
Last-Modified: Fri, 03 Feb 2023 08:30:53 GMT
Server: ECS (dcb/7FA4)
X-Cache: Miss from cloudfront
Via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Lyy8qCl2nEYnSz1Yi92yAL7rV0UPj3EIn4kUf-NQo14o3tvNhtrKSA==
Age: 5659
ocsp.r2m02.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP
Hash 286fec8dd1fb2eb26a3e5624ac2e16bd
544c43b8d97924d026739b4e070242d1373d5851
3f7bce81c8d9e09d54d936f5ee946f6439ae58bdf132e9073f8856a7ef097c1a
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 04 Feb 2023 04:54:28 GMT
Last-Modified: Sat, 04 Feb 2023 04:08:44 GMT
Server: ECS (dcb/7EED)
X-Cache: Miss from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ObZbpEwZytaxOyAnxR9iuvd3jY3NsQ-bH21SDKea5aI6UsKF3yZxiQ==
Age: 2744
secure.adnxs.com/bounce?%2Fseg%3Fadd%3D32401244%26t%3D1
200 OK 0 B URL HTTP/1.1 secure.adnxs.com/bounce?%2Fseg%3Fadd%3D32401244%26t%3D1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fseg%3Fadd%3D32401244%26t%3D1 HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20bet.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Sat, 04 Feb 2023 04:54:28 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: d478b603-573a-4827-90a6-eb8d9c1bd8e3
Set-Cookie: anj=dTM7k!M4/8CxrEQF']wIg2H`cot(P/!@wnf-Te9(>wL5L!!'?9$_v)/; SameSite=None; Path=/; Max-Age=7776000; Expires=Fri, 05-May-2023 04:54:28 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 946.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
ocsp.sectigo.com/
200 OK 471 B IP
Hash 8c58b4605f69f0696f0ce526895aa840
e98344d0c586015876b6b8235aecebb745151a70
a14fc3b65d0e0bae2643b5270844eaae645f4663c68c8af1b1ee2899f1a4613f
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 04:54:28 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 06:28:17 GMT
Expires: Wed, 08 Feb 2023 06:28:16 GMT
Etag: "e98344d0c586015876b6b8235aecebb745151a70"
Cache-Control: max-age=350627,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7940cefc49710afe-OSL
centrifugo.20bet.com/connection/websocket
101 Switching Protocols 0 B URL HTTP/1.1 centrifugo.20bet.com/connection/websocket
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /connection/websocket HTTP/1.1
Host: centrifugo.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://20bet.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: nkOOPFo1SvqUgOksaXle8w==
Connection: keep-alive, Upgrade
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Sat, 04 Feb 2023 04:54:28 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: rbsW7jcqLM89UbTz3enk5XlBfH8=
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7940cefbbf25b521-OSL
games-cms.shapegamesbw.com/query
200 OK 0 B URL HTTP/2 games-cms.shapegamesbw.com/query
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /query HTTP/1.1
Host: games-cms.shapegamesbw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://betwarrior.bet/
Origin: https://betwarrior.bet
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:28 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: Content-Type
access-control-allow-methods: POST
access-control-allow-origin: https://betwarrior.bet
vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Firefox-Spdy: h2
platform.20bet.com/api/v3/menu/line/es?period=0
204 No Content 0 B URL HTTP/2 platform.20bet.com/api/v3/menu/line/es?period=0
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v3/menu/line/es?period=0 HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 04:54:28 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7940cefccaeb2d8f-ARN
X-Firefox-Spdy: h2
platform.20bet.com/api/v3/menu/line/es?period=5
204 No Content 0 B URL HTTP/2 platform.20bet.com/api/v3/menu/line/es?period=5
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v3/menu/line/es?period=5 HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 04:54:28 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7940cefccaed2d8f-ARN
X-Firefox-Spdy: h2
platform.20bet.com/api/v3/menu/live/es
204 No Content 0 B URL HTTP/2 platform.20bet.com/api/v3/menu/live/es
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v3/menu/live/es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 04:54:28 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7940cefcdaf32d8f-ARN
X-Firefox-Spdy: h2
platform.20bet.com/api/popular/line-menu/es
204 No Content 0 B URL HTTP/2 platform.20bet.com/api/popular/line-menu/es
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/popular/line-menu/es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 04:54:28 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7940cefcdaf42d8f-ARN
X-Firefox-Spdy: h2
platform.20bet.com/api/v4/coupon/get?system=1&lang=es
204 No Content 0 B URL HTTP/2 platform.20bet.com/api/v4/coupon/get?system=1&lang=es
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v4/coupon/get?system=1&lang=es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 04:54:28 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7940cefcdaf62d8f-ARN
X-Firefox-Spdy: h2
platform.20bet.com/api/user/is-auth
204 No Content 0 B URL HTTP/2 platform.20bet.com/api/user/is-auth
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/user/is-auth HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 04:54:28 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7940cefcfb082d8f-ARN
X-Firefox-Spdy: h2
platform.20bet.com/api/event/list?isTop_eq=1&oddsExists_eq=1&competitor2Id_neq=&competitor1Id_neq=&main=1&status_in%5B%5D=0&limit=15&relations%5B%5D=league&relations%5B%5D=odds&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=players&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=es
204 No Content 0 B URL HTTP/2 platform.20bet.com/api/event/list?isTop_eq=1&oddsExists_eq=1&competitor2Id_neq=&competitor1Id_neq=&main=1&status_in%5B%5D=0&limit=15&relations%5B%5D=league&relations%5B%5D=odds&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=players&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=es
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/event/list?isTop_eq=1&oddsExists_eq=1&competitor2Id_neq=&competitor1Id_neq=&main=1&status_in%5B%5D=0&limit=15&relations%5B%5D=league&relations%5B%5D=odds&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=players&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 04:54:28 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7940cefceb062d8f-ARN
X-Firefox-Spdy: h2
auth.shapegamesbw.com/api/session?type=web-betwarrior&version=0.7
200 OK 0 B URL HTTP/2 auth.shapegamesbw.com/api/session?type=web-betwarrior&version=0.7
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/session?type=web-betwarrior&version=0.7 HTTP/1.1
Host: auth.shapegamesbw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: country,x-app-platform,x-app-version
Referer: https://betwarrior.bet/
Origin: https://betwarrior.bet
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:28 GMT
content-length: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
access-control-allow-origin: https://betwarrior.bet
vary: Origin
access-control-allow-methods: GET,HEAD,POST
access-control-allow-headers: country, x-app-platform, x-app-version
access-control-allow-credentials: true
access-control-max-age: 1800
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.39.0/assets/otCommonStyles.css
200 OK 114 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.39.0/assets/otCommonStyles.css
IP
Size 114 kB (113671 bytes)
Hash 1127cde68dc9e8ee08b1317a3bdd7ea3
810ac4fedbdce7b8cefc9ec4a9053aea81eca374
dd0e1ef019a8158dca891cd0f989bf3c9030089b5a6cd5b143d6e614dee1991a
GET /scripttemplates/6.39.0/assets/otCommonStyles.css HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://in.betsson.com/
Origin: https://in.betsson.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:23 GMT
content-type: text/css
content-md5: B55i3ZY9miZIaUrwjufy0w==
last-modified: Fri, 26 Aug 2022 16:31:09 GMT
x-ms-request-id: 0b4a44af-901e-00d0-1978-b96444000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 74010
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7940cedfbf5bb503-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
20bet.com/app/5098.27c66aa495a483d6.esm.js
200 OK 380 B URL HTTP/2 20bet.com/app/5098.27c66aa495a483d6.esm.js
IP
File type ASCII text, with very long lines (570), with no line terminators
Hash 967701d9b2d6eda6c8d7b21751f5de81
855cb421b3ddeb438035b15e43916b7e5a798772
cfef730c7e963a7634335e8b0e89618cac540a98228bd129d753ebc8b0b80a07
GET /app/5098.27c66aa495a483d6.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/cl?btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
Cookie: btag=668128_85D59F2CB78B41D0BA08DD275FBF1499; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:28 GMT
content-type: application/javascript
cf-ray: 7940cefc4f5795e5-ARN
etag: W/"63dcff68-23a"
last-modified: Fri, 03 Feb 2023 12:34:48 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/5238.c643742b8f51fd51.esm.js
200 OK 113 kB URL HTTP/2 20bet.com/app/5238.c643742b8f51fd51.esm.js
IP
File type ASCII text, with very long lines (12260), with no line terminators
Size 113 kB (113375 bytes)
Hash 1879d9a7c999392a90fc4cc2e84bd46d
4a5af743efa0aff2bf23c2261ec1d17b8c275ee3
4091db341339438a2aacaee9d315f8421bdfa01281b6a109264ec2655e4b04e8
GET /app/5238.c643742b8f51fd51.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/cl?btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
Cookie: btag=668128_85D59F2CB78B41D0BA08DD275FBF1499; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:28 GMT
content-type: application/javascript
cf-ray: 7940cefafed495e5-ARN
etag: W/"63dcff6e-2fe4"
last-modified: Fri, 03 Feb 2023 12:34:54 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
track.trackingtraffo.com/pixel/js?auth=v3eu8spg&event=visit
200 OK 422 B URL HTTP/1.1 track.trackingtraffo.com/pixel/js?auth=v3eu8spg&event=visit
IP
Hash a84da22ba993cb90a87bbc7196a83564
284dae1447b59756ec476d581d6aad1ddd3218c3
98b0ce9e2f8df8f89c2adf5bcc0cf0eaf3b43c8b7fb26418f8a72179f4e6a440
GET /pixel/js?auth=v3eu8spg&event=visit HTTP/1.1
Host: track.trackingtraffo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 04 Feb 2023 04:54:28 GMT
Content-Type: text/javascript
Content-Length: 422
Connection: keep-alive
Cache-Control: no-cache, max-age=0, must-revalidate, proxy-revalidate, no-store
Pragma: no-cache
Expires: Sat, 01 Jan 2000 00:00:00 GMT
cdn.livechatinc.com/tracking.js
200 OK 26 kB URL HTTP/2 cdn.livechatinc.com/tracking.js
IP
ASN #20940 Akamai International B.V.
Hash ad168b14a5b7efd5137559bade93ad14
7ba3e2c551fdf2879a757fbfcf5f42590269d010
3a4a1053c09137d9d25d118699d7389e019da7a9597b95a7504311b87111909c
GET /tracking.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Wed, 25 Jan 2023 08:47:12 GMT
x-amz-version-id: iNzmqDcn1iRKaLiTk37THrDgz9osPO8C
server: AmazonS3
content-encoding: br
etag: W/"29e075294399875f6fd4bdaa0f4a20e4"
vary: Accept-Encoding
x-amz-cf-pop: AMS54-C1
x-amz-cf-id: qzl-0Ag5XGkDv_kWLbnI4JJvQy7icD_Dvire8pnIpy79iQNET2NH5w==
content-length: 26103
cache-control: max-age=28800
expires: Sat, 04 Feb 2023 12:54:28 GMT
date: Sat, 04 Feb 2023 04:54:28 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
X-Firefox-Spdy: h2
track.trackingtraffo.com/pixel?auth=v3eu8spg&event=visit&site=20bet.com&ln=en-US
200 OK 0 B URL HTTP/1.1 track.trackingtraffo.com/pixel?auth=v3eu8spg&event=visit&site=20bet.com&ln=en-US
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel?auth=v3eu8spg&event=visit&site=20bet.com&ln=en-US HTTP/1.1
Host: track.trackingtraffo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 04 Feb 2023 04:54:28 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-cache, max-age=0, must-revalidate, proxy-revalidate, no-store
Pragma: no-cache
Expires: Sat, 01 Jan 2000 00:00:00 GMT
platform.20bet.com/api/event/list?sportId_eq=1&limit=10&competitor2Id_neq=&competitor1Id_neq=&oddsExists_eq=1&main=1&status_in%5B%5D=2&status_in%5B%5D=1&relations%5B%5D=odds&relations%5B%5D=withMarketsCount&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=broadcasts&relations%5B%5D=statistics&relations%5B%5D=additionalInfo&relations%5B%5D=tips&lang=es
204 No Content 0 B URL HTTP/2 platform.20bet.com/api/event/list?sportId_eq=1&limit=10&competitor2Id_neq=&competitor1Id_neq=&oddsExists_eq=1&main=1&status_in%5B%5D=2&status_in%5B%5D=1&relations%5B%5D=odds&relations%5B%5D=withMarketsCount&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=broadcasts&relations%5B%5D=statistics&relations%5B%5D=additionalInfo&relations%5B%5D=tips&lang=es
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/event/list?sportId_eq=1&limit=10&competitor2Id_neq=&competitor1Id_neq=&oddsExists_eq=1&main=1&status_in%5B%5D=2&status_in%5B%5D=1&relations%5B%5D=odds&relations%5B%5D=withMarketsCount&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=broadcasts&relations%5B%5D=statistics&relations%5B%5D=additionalInfo&relations%5B%5D=tips&lang=es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 04:54:28 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7940cefe6bb82d8f-ARN
X-Firefox-Spdy: h2
platform.20bet.com/api/event/list?isTopLive_eq=1&competitor2Id_neq=&competitor1Id_neq=&status_in%5B%5D=2&status_in%5B%5D=1&oddsExists_eq=1&main=1&limit=15&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=players&relations%5B%5D=sportCategories&relations%5B%5D=broadcasts&relations%5B%5D=statistics&relations%5B%5D=additionalInfo&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=es
200 OK 33 kB URL HTTP/2 platform.20bet.com/api/event/list?isTopLive_eq=1&competitor2Id_neq=&competitor1Id_neq=&status_in%5B%5D=2&status_in%5B%5D=1&oddsExists_eq=1&main=1&limit=15&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=players&relations%5B%5D=sportCategories&relations%5B%5D=broadcasts&relations%5B%5D=statistics&relations%5B%5D=additionalInfo&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=es
IP
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 1431d4ac0e4cef8e9a68f34bec386aaf
f64b98cf7039383955d92f45ca0d7e1aca5a93e9
7ddbfaac11a14e0177882729d3561d52b4f11fa8c08a2406fa4008feb5d41d2e
GET /api/event/list?isTopLive_eq=1&competitor2Id_neq=&competitor1Id_neq=&status_in%5B%5D=2&status_in%5B%5D=1&oddsExists_eq=1&main=1&limit=15&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=players&relations%5B%5D=sportCategories&relations%5B%5D=broadcasts&relations%5B%5D=statistics&relations%5B%5D=additionalInfo&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:28 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7940cefd4b412d8f-ARN
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/popular/line-menu/es
200 OK 1.4 kB URL HTTP/2 platform.20bet.com/api/popular/line-menu/es
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 1fe40976af902387285e160ee0a2c7d2
4cfe90e28779266def56d0f4b30d8e0e10121b2f
d6601242b9a328a4cc685a831a1ea2fe42a3641c309ab38f98c8a4988d34b3cc
GET /api/popular/line-menu/es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:28 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7940cefd1b222d8f-ARN
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/8522.093b2b3cd6f2d1e6.esm.js
200 OK 1.3 kB URL HTTP/2 20bet.com/app/8522.093b2b3cd6f2d1e6.esm.js
IP
File type ASCII text, with very long lines (2374), with no line terminators
Hash a02fa3496af495688a07822514abc1f5
2ef06458242ae6175ffc3218ad4ee0e952cc74fe
2fd1fa4c3f6ec41375f55cbbdfc1c9389bbdf7a282064466784281b9083cfadd
GET /app/8522.093b2b3cd6f2d1e6.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/cl?btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
Cookie: btag=668128_85D59F2CB78B41D0BA08DD275FBF1499; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:28 GMT
content-type: application/javascript
cf-ray: 7940cefb0edd95e5-ARN
etag: W/"63dcff7f-946"
last-modified: Fri, 03 Feb 2023 12:35:11 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
apis.sharechat.com/self-serve-service/v1/external/selfServe/sdk/SG3eKxKT7W/get
200 OK 337 B URL HTTP/2 apis.sharechat.com/self-serve-service/v1/external/selfServe/sdk/SG3eKxKT7W/get
IP
Hash 30c8ce2ee3069d155bd561b8e39f5f08
671e1eb64aacf24c746e0bad395f27a27248bcb4
0a626de6696bf73d7c2f2b588cdf21f3511cd134bf4b1fdff162a02a71256e72
GET /self-serve-service/v1/external/selfServe/sdk/SG3eKxKT7W/get HTTP/1.1
Host: apis.sharechat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:29 GMT
content-type: application/json;charset=utf-8
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: https://20bet.com
vary: Origin
etag: W/"1f-6dkZ0odeH7r21LA6dRUG6G17Ebs"
via: 1.1 google
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=.wVgJ6j82hH0LMFDaFpf6J6tLW1gPJBiiI7r4wq_JiI-1675486469-0-Aag7/utkabbuOFXhhv01WudQuWImfTtj69MVImZLdYj87/P6K2LNOrQ+rZKHadr+svV6Wv7Kmk3Lqq4m5A50Bms=; path=/; expires=Sat, 04-Feb-23 05:24:29 GMT; domain=.sharechat.com; HttpOnly; Secure; SameSite=None
_cfuvid=iCrvqxMPHPPNwMfpBIzqUh..9JH7gyhaZWiCncSY3_g-1675486469014-0-604800000; path=/; domain=.sharechat.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7940cefcbd4c0b02-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 280 B IP
Hash ab6878ea69e809266e1665e763564e34
6126044dadb58279b5e59519c40939801df2867d
42b55196204376bdfef6e3aaf1d6f6d8f4f3e9efbfd21c7dab0461844e10aaab
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3938
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 04:54:29 GMT
Etag: "63dc5f7e-117"
Last-Modified: Sat, 04 Feb 2023 03:48:51 GMT
Server: ECS (amb/6B8A)
X-Cache: HIT
Content-Length: 280
platform.20bet.com/api/v3/casino/game?dev_id=popular&per_page=6&has_live=0&perPage=6
200 OK 12 kB URL HTTP/2 platform.20bet.com/api/v3/casino/game?dev_id=popular&per_page=6&has_live=0&perPage=6
IP
File type JSON data\012- , ASCII text, with very long lines (5258), with no line terminators
Hash 770ab3daa4a163ddef10738bd05d6ae7
4b78f7426fc34d0d6feb6a14881bc07ce7ca9b6c
4297bbe6aea1e26b6b913456596bf5e2b86be1b9fd5c84a2336a532d058a440c
GET /api/v3/casino/game?dev_id=popular&per_page=6&has_live=0&perPage=6 HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:28 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7940cefb9a6d2d8f-ARN
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/sport/2.svg
200 OK 17 kB URL HTTP/2 20bet.com/assets/sport/2.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1588)
Hash b3090bac38f24c58409236b1505bb0e8
1ed28c1523ee6507533a818e1677c0c29439dc1d
713a3b37ab533e48cc5285ba6ac58503d1f2f9bf5b52c2b19264298a666339a6
GET /assets/sport/2.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/cl?btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
Cookie: btag=668128_85D59F2CB78B41D0BA08DD275FBF1499; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:28 GMT
content-type: image/svg+xml
cf-ray: 7940cefdf80b95e5-ARN
etag: W/"63dd0051-f18"
last-modified: Fri, 03 Feb 2023 12:38:41 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/v4/coupon/get?system=1&lang=es
200 OK 18 kB URL HTTP/2 platform.20bet.com/api/v4/coupon/get?system=1&lang=es
IP
File type JSON data\012- , ASCII text, with very long lines (336), with no line terminators
Hash ac25805e37eeae420061c1e0fb501f84
4ac5de430c45aa1773d1ab230ec00f3064fc2178
bfa9b8a95ac382d6e37e12a2cd2a4ac98b621f8ef5b6a9a605f2b6cc6b4119b4
GET /api/v4/coupon/get?system=1&lang=es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:28 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
set-cookie: sid=caa5b30a7464ec2cc91c90ab956669b8; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7940cefd1b242d8f-ARN
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/v3/menu/live/es
200 OK 19 kB URL HTTP/2 platform.20bet.com/api/v3/menu/live/es
IP
File type JSON data\012- , ASCII text, with very long lines (13184), with no line terminators
Hash 139116ed1e8e5d30c20bc59176234e1e
2d044abcff227e21d36ad4bb8633f8c958790878
384a914b0e5206976893735a0f9a8c96bc089404277d78c15045dbb17279f93f
GET /api/v3/menu/live/es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:28 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7940cefd1b212d8f-ARN
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/api/seo/get-data?pageUrl=/cl
200 OK 27 kB URL HTTP/2 20bet.com/api/seo/get-data?pageUrl=/cl
IP
File type JSON data\012- , ASCII text, with very long lines (3399), with no line terminators
Hash 99fd2072cfa4a3813ce3bcd6f666cd43
984207f58bd76536afc9105910d167737d0c110f
6327f8e73eaa48748f279551d391ff99bd272342aaab3aecea1ea60d9952078b
GET /api/seo/get-data?pageUrl=/cl HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://20bet.com/cl?btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
Cookie: btag=668128_85D59F2CB78B41D0BA08DD275FBF1499; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:28 GMT
content-type: application/json
cf-ray: 7940cefc0f3c95e5-ARN
cache-control: max-age=0, must-revalidate, private
expires: Sat, 04 Feb 2023 04:54:28 GMT
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers: Content-Length,Content-Range
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/2786.7bb20f7c68bb8324.esm.js
200 OK 15 kB URL HTTP/2 20bet.com/app/2786.7bb20f7c68bb8324.esm.js
IP
File type ASCII text, with very long lines (3343), with no line terminators
Hash ac50ea98cdc4709279abafafc01e17e0
68e0ff359586d4ccceda0436d3d6d1d4b1df5d71
e77d3f0d1d986df7adc4e58162cd169452a0b0e41322e65097f72939021e458b
GET /app/2786.7bb20f7c68bb8324.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/cl?btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
Cookie: btag=668128_85D59F2CB78B41D0BA08DD275FBF1499; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:28 GMT
content-type: application/javascript
cf-ray: 7940cefb0ed995e5-ARN
etag: W/"63dcff85-d0f"
last-modified: Fri, 03 Feb 2023 12:35:17 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/2343.88bb85338fd2e975.esm.js
200 OK 17 kB URL HTTP/2 20bet.com/app/2343.88bb85338fd2e975.esm.js
IP
File type ASCII text, with very long lines (1221), with no line terminators
Hash a22cf54aaddda7df3fe3c36a9b83c08f
c2e7afc3dd78fb1c1437983be1f1d242933493db
734ef498b1e70e4798baed27c5d13c1070ee9024d62d6fb446a78fb7e4b2e2d8
GET /app/2343.88bb85338fd2e975.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/cl?btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
Cookie: btag=668128_85D59F2CB78B41D0BA08DD275FBF1499; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:28 GMT
content-type: application/javascript
cf-ray: 7940cefafed695e5-ARN
etag: W/"63dcff7f-4c5"
last-modified: Fri, 03 Feb 2023 12:35:11 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/2775.71943518a4ff78b7.esm.js
200 OK 2.2 kB URL HTTP/2 20bet.com/app/2775.71943518a4ff78b7.esm.js
IP
File type ASCII text, with very long lines (3429), with no line terminators
Hash 0386ec9ba8938995fe14b346d0913316
6f4f4ffe0d1d54a59db85a39536d10cbab77f1e6
4af67be6abf9ea9358c348213d0b228b99b76a2637dc77b24e2fb8165b316f4d
GET /app/2775.71943518a4ff78b7.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/cl?btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
Cookie: btag=668128_85D59F2CB78B41D0BA08DD275FBF1499; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:28 GMT
content-type: application/javascript
cf-ray: 7940cefb0edb95e5-ARN
etag: W/"63dcff74-d65"
last-modified: Fri, 03 Feb 2023 12:35:00 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/event/list?sportId_eq=1&period=5&limit=10&competitor2Id_neq=&competitor1Id_neq=&oddsExists_eq=1&status_in%5B%5D=0&main=1&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=tips&relations%5B%5D=sportCategories&relations%5B%5D=withMarketsCount&lang=es
204 No Content 0 B URL HTTP/2 platform.20bet.com/api/event/list?sportId_eq=1&period=5&limit=10&competitor2Id_neq=&competitor1Id_neq=&oddsExists_eq=1&status_in%5B%5D=0&main=1&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=tips&relations%5B%5D=sportCategories&relations%5B%5D=withMarketsCount&lang=es
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/event/list?sportId_eq=1&period=5&limit=10&competitor2Id_neq=&competitor1Id_neq=&oddsExists_eq=1&status_in%5B%5D=0&main=1&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=tips&relations%5B%5D=sportCategories&relations%5B%5D=withMarketsCount&lang=es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 04:54:29 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7940cf002c632d8f-ARN
X-Firefox-Spdy: h2
platform.20bet.com/api/event/list?sportId_eq=1&limit=10&competitor2Id_neq=&competitor1Id_neq=&oddsExists_eq=1&main=1&status_in%5B%5D=2&status_in%5B%5D=1&relations%5B%5D=odds&relations%5B%5D=withMarketsCount&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=broadcasts&relations%5B%5D=statistics&relations%5B%5D=additionalInfo&relations%5B%5D=tips&lang=es
200 OK 8.7 kB URL HTTP/2 platform.20bet.com/api/event/list?sportId_eq=1&limit=10&competitor2Id_neq=&competitor1Id_neq=&oddsExists_eq=1&main=1&status_in%5B%5D=2&status_in%5B%5D=1&relations%5B%5D=odds&relations%5B%5D=withMarketsCount&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=broadcasts&relations%5B%5D=statistics&relations%5B%5D=additionalInfo&relations%5B%5D=tips&lang=es
IP
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash f94e70587571d0da37e2c8cad594558c
707d59d15f0bb077ca4c1b0593baa0f2296ecfff
fe47d16dd3dd54a9b8b4c516648d0140ca7be61c8480eb817b8f848f3f50306b
GET /api/event/list?sportId_eq=1&limit=10&competitor2Id_neq=&competitor1Id_neq=&oddsExists_eq=1&main=1&status_in%5B%5D=2&status_in%5B%5D=1&relations%5B%5D=odds&relations%5B%5D=withMarketsCount&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=broadcasts&relations%5B%5D=statistics&relations%5B%5D=additionalInfo&relations%5B%5D=tips&lang=es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:29 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7940cefeabd12d8f-ARN
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/teams/ts_blue.webp
200 OK 1.9 kB URL HTTP/2 20bet.com/assets/teams/ts_blue.webp
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 4a16a0521346d6dabf88bf7132859d6e
e178f71c9c08047283e900db04d43b45a67fc3e2
3991d5a7a14c1effd84c0e1ff845f415cfa955bff6d62fe860f94a0b6a408847
GET /assets/teams/ts_blue.webp HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/cl?btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
Cookie: btag=668128_85D59F2CB78B41D0BA08DD275FBF1499; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:29 GMT
content-type: image/webp
content-length: 1850
cf-ray: 7940ceffe8e995e5-ARN
accept-ranges: bytes
etag: "63dd0041-73a"
last-modified: Fri, 03 Feb 2023 12:38:25 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
X-Firefox-Spdy: h2
20bet.com/assets/teams/ts_marine.webp
200 OK 1.8 kB URL HTTP/2 20bet.com/assets/teams/ts_marine.webp
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 882fbd4b39d2952ec83b9374fe78c99c
6fbc81d65a61d52fc6f2a5ca80dfb88ea8dc5950
b7e516ccbae412d1e889792a5d2a182844570ff8e4d954658c305a6d1d11708e
GET /assets/teams/ts_marine.webp HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/cl?btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
Cookie: btag=668128_85D59F2CB78B41D0BA08DD275FBF1499; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:29 GMT
content-type: image/webp
content-length: 1754
cf-ray: 7940cf00390a95e5-ARN
accept-ranges: bytes
etag: "63dd0032-6da"
last-modified: Fri, 03 Feb 2023 12:38:10 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
X-Firefox-Spdy: h2
platform.20bet.com/api/event/list?isTop_eq=1&oddsExists_eq=1&competitor2Id_neq=&competitor1Id_neq=&main=1&status_in%5B%5D=0&limit=15&relations%5B%5D=league&relations%5B%5D=odds&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=players&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=es
200 OK 88 kB URL HTTP/2 platform.20bet.com/api/event/list?isTop_eq=1&oddsExists_eq=1&competitor2Id_neq=&competitor1Id_neq=&main=1&status_in%5B%5D=0&limit=15&relations%5B%5D=league&relations%5B%5D=odds&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=players&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=es
IP
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 6755c7d222bd4ded0697b632d87d7ff2
e24c381585d7da781890f2ac0a134437040ebe01
6c6a955207ad359114e12d1be181569af210f374c4f15e573af6528ce595273c
GET /api/event/list?isTop_eq=1&oddsExists_eq=1&competitor2Id_neq=&competitor1Id_neq=&main=1&status_in%5B%5D=0&limit=15&relations%5B%5D=league&relations%5B%5D=odds&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=players&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:29 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7940cefd3b352d8f-ARN
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/sport/7.svg
200 OK 2.9 kB URL HTTP/2 20bet.com/assets/sport/7.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash c8572b1cb48beac01898d05648768cf6
bb0887c33f85a802f52619d7f4a5fca197f56562
43f09e22343d27b6187f9944fe690793d0c1857aaf5eba99332df380d66f6024
GET /assets/sport/7.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/cl?btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
Cookie: btag=668128_85D59F2CB78B41D0BA08DD275FBF1499; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:28 GMT
content-type: image/svg+xml
cf-ray: 7940cefe081295e5-ARN
etag: W/"63dd002a-a48"
last-modified: Fri, 03 Feb 2023 12:38:02 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/teams/ts_black.webp
200 OK 1.5 kB URL HTTP/2 20bet.com/assets/teams/ts_black.webp
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 8f33cbd14dfbd92c2033cfcfe9acbe05
888e8820b7610d71f87d221fcd380b5437a8ced7
094dbedfcdd666cc62e645d3f50190392f3ba4ee1ea122f63c0f9881980db462
GET /assets/teams/ts_black.webp HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/cl?btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
Cookie: btag=668128_85D59F2CB78B41D0BA08DD275FBF1499; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:29 GMT
content-type: image/webp
content-length: 1490
cf-ray: 7940cf01799f95e5-ARN
accept-ranges: bytes
etag: "63dd0049-5d2"
last-modified: Fri, 03 Feb 2023 12:38:33 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
X-Firefox-Spdy: h2
s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/logos/w/logo-w-white.svg
200 OK 853 B URL HTTP/1.1 s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/logos/w/logo-w-white.svg
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 31bc95d00f4db19ea86e2f561816aa52
35a7192a0a6c191a61ee6061009bb89c40d491c3
fe65fc716044479880c5d1cbf640dc4eca4bb5260426621a8f21b537121809f9
GET /static-content.betwarrior.bet/Product/logos/w/logo-w-white.svg HTTP/1.1
Host: s3.sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://betwarrior.bet/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: m0NgSX2A+hPq8d/W6TweAl0rnsLpCCSLAyQc0N9vJiNt8txdMUghuOEAGi5KxIP8dN+6Q5fihro=
x-amz-request-id: QNJYJ93XQE0KM6X8
Date: Sat, 04 Feb 2023 04:54:30 GMT
Last-Modified: Fri, 12 Feb 2021 18:16:05 GMT
ETag: "31bc95d00f4db19ea86e2f561816aa52"
x-amz-meta-sha256: fe65fc716044479880c5d1cbf640dc4eca4bb5260426621a8f21b537121809f9
x-amz-meta-s3b-last-modified: 20210204T184029Z
Accept-Ranges: bytes
Content-Type: image/svg+xml
Server: AmazonS3
Content-Length: 853
20bet.com/app/8459.ac653e03c2d7c942.esm.js
200 OK 1.9 kB URL HTTP/2 20bet.com/app/8459.ac653e03c2d7c942.esm.js
IP
File type ASCII text, with very long lines (3244), with no line terminators
Hash 52f3aa16ca919f7c233c7a7a2795fbab
2c2e940373e51b9a1f4bc7131e73eb01df0811f7
1c5af2e4a88bc5bdfe134afe9f135d6d5d57e247b4354ca622c6afd890cbf34d
GET /app/8459.ac653e03c2d7c942.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/cl?btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
Cookie: btag=668128_85D59F2CB78B41D0BA08DD275FBF1499; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:28 GMT
content-type: application/javascript
cf-ray: 7940cefb0ed795e5-ARN
etag: W/"63dcff85-cac"
last-modified: Fri, 03 Feb 2023 12:35:17 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
api.livechatinc.com/v3.3/customer/action/get_localization?license_id=9054575&version=ff93808ef52c6dd040640c4853b854bd_21716f53f53807807abed6ecf43750c1&language=en&group_id=24&jsonp=__lc_localization
200 OK 3.8 kB URL HTTP/2 api.livechatinc.com/v3.3/customer/action/get_localization?license_id=9054575&version=ff93808ef52c6dd040640c4853b854bd_21716f53f53807807abed6ecf43750c1&language=en&group_id=24&jsonp=__lc_localization
IP
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (10873), with no line terminators
Hash d79ca272d883316ea37d4520152b9c17
21b73f4c86e8f92be5fb242719ed8b94a88ff01f
382fdf62da78f74a1cefa2383c87b0a4e3071a56534969e0f1d204d1f544e399
GET /v3.3/customer/action/get_localization?license_id=9054575&version=ff93808ef52c6dd040640c4853b854bd_21716f53f53807807abed6ecf43750c1&language=en&group_id=24&jsonp=__lc_localization HTTP/1.1
Host: api.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
content-type: application/javascript; charset=UTF-8
legacy: 2023-06-30
vary: Accept-Encoding
cache-control: public, max-age=501
expires: Sat, 04 Feb 2023 05:02:50 GMT
date: Sat, 04 Feb 2023 04:54:29 GMT
content-length: 3786
X-Firefox-Spdy: h2
platform.20bet.com/api/v3/menu/line/es?period=5
200 OK 29 kB URL HTTP/2 platform.20bet.com/api/v3/menu/line/es?period=5
IP
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash ca5d226d9d640cecb1921b976e0c9a34
16c0f3599b1f13d4b565aa5f613f244c2f180e6f
40953d4abfa7b2854dba6734ea980f8295e769911058807bd592f6b3ff91af86
GET /api/v3/menu/line/es?period=5 HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:28 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7940cefd1b1d2d8f-ARN
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/633.544404564094be98.esm.js
200 OK 3.5 kB URL HTTP/2 20bet.com/app/633.544404564094be98.esm.js
IP
File type ASCII text, with very long lines (3399), with no line terminators
Hash 7e0d0630ff15ebeee2a585a2af0a3a25
6da3a40ca25b1099ae53263b33ceca2fa01a5d34
2cdf8e64d4c26f09d8493f19cc3910118f8c8bd06f2825b8291258eac6fc48f4
GET /app/633.544404564094be98.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/cl?btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
Cookie: btag=668128_85D59F2CB78B41D0BA08DD275FBF1499; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:29 GMT
content-type: application/javascript
cf-ray: 7940cf00290395e5-ARN
etag: W/"63dcff7a-d47"
last-modified: Fri, 03 Feb 2023 12:35:06 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/sport/30.svg
200 OK 2.7 kB URL HTTP/2 20bet.com/assets/sport/30.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (529)
Hash 3f9a639812a34e716464a7cf32da6d4b
90a1ad96d57d513e959e2959d9005cc69a1717c7
8b9adc9610a278a839dad2a2eef67f133c7d60188c31388983ed287e5ea48c0d
GET /assets/sport/30.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/cl?btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
Cookie: btag=668128_85D59F2CB78B41D0BA08DD275FBF1499; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:29 GMT
content-type: image/svg+xml
cf-ray: 7940ceffa8d295e5-ARN
etag: W/"63dd0041-8f6"
last-modified: Fri, 03 Feb 2023 12:38:25 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/teams/ts_orange.webp
200 OK 1.8 kB URL HTTP/2 20bet.com/assets/teams/ts_orange.webp
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 32e11fd76428d0c44b39ccd5c64970c9
b8b8183f26fa5c48db5eb7e05c42b185f00ba477
dc018beb28f16fe554e24fa460988b2ba4db6ad775738cf776e60651c7ae4b2e
GET /assets/teams/ts_orange.webp HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/cl?btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
Cookie: btag=668128_85D59F2CB78B41D0BA08DD275FBF1499; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:29 GMT
content-type: image/webp
content-length: 1848
cf-ray: 7940cf0209d795e5-ARN
accept-ranges: bytes
etag: "63dd002a-738"
last-modified: Fri, 03 Feb 2023 12:38:02 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
X-Firefox-Spdy: h2
20bet.com/assets/teams/ts_violet.webp
200 OK 1.8 kB URL HTTP/2 20bet.com/assets/teams/ts_violet.webp
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 92e785acdccdf89f19bfd50482c4e3df
75a20811acaaa3c57471b3f7f52f51fde6393135
2aff640591d767aa939617569ecf985d0037822da06b0ce777e7c0469fc62f0b
GET /assets/teams/ts_violet.webp HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/cl?btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
Cookie: btag=668128_85D59F2CB78B41D0BA08DD275FBF1499; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:29 GMT
content-type: image/webp
content-length: 1800
cf-ray: 7940cf0219e195e5-ARN
accept-ranges: bytes
etag: "63dd0049-708"
last-modified: Fri, 03 Feb 2023 12:38:33 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
X-Firefox-Spdy: h2
secure.livechatinc.com/customer/action/open_chat?license_id=9054575&group=24&embedded=1&widget_version=3&unique_groups=0
200 OK 2.6 kB URL HTTP/2 secure.livechatinc.com/customer/action/open_chat?license_id=9054575&group=24&embedded=1&widget_version=3&unique_groups=0
IP
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (8824), with no line terminators
Hash e73532c0c660a631b8b058705ce26d21
ac886227ce8d418692c8496201f8bc76709b1a63
0ee4d5761027247228422c7b57c6727e95d065c52b4f68501694f1a41754ac03
GET /customer/action/open_chat?license_id=9054575&group=24&embedded=1&widget_version=3&unique_groups=0 HTTP/1.1
Host: secure.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
content-type: text/html; charset=utf-8
vary: Accept-Encoding
date: Sat, 04 Feb 2023 04:54:29 GMT
content-length: 2557
X-Firefox-Spdy: h2
cdn.livechatinc.com/widget/static/js/0.d619df13.chunk.js
200 OK 15 kB URL HTTP/2 cdn.livechatinc.com/widget/static/js/0.d619df13.chunk.js
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (47599), with no line terminators
Hash aa354a30c2b34b7c6ca4afb13c39442c
4e033c71e891ad3d60d7437c6e674c601260c66d
f4ffa5e37b87bda31ba0d2c7b64fe9939011588c3233c527799262be7169cf95
GET /widget/static/js/0.d619df13.chunk.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 11 Jan 2023 08:35:01 GMT
x-amz-version-id: fr6Gz9d8KXQbrJuaQVT4sDUpSqjnuR9Q
server: AmazonS3
content-encoding: br
etag: W/"10a3d7ac1ed37325d3341c379ee0de69"
vary: Accept-Encoding
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: DcjWrJ5J0UZqsGb4T2ZIU7t__E1ADvqdBmzVXTCZLmhoDUvGkFZlRA==
content-length: 14999
cache-control: max-age=31536000
expires: Sun, 04 Feb 2024 04:54:29 GMT
date: Sat, 04 Feb 2023 04:54:29 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
X-Firefox-Spdy: h2
cdn.livechatinc.com/widget/static/js/1.242d30c5.chunk.js
200 OK 66 kB URL HTTP/2 cdn.livechatinc.com/widget/static/js/1.242d30c5.chunk.js
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65462)
Hash 837574e727c7477fb1aafaae2ee0f000
4302eeddb91b30897a9f1192197f2bca4f8c8673
1379e2d7c0609f498b00423d0e61eff1f32fca81763b7b5a24120d55a5abfc66
GET /widget/static/js/1.242d30c5.chunk.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 16 Jan 2023 07:45:14 GMT
x-amz-version-id: Px6texczRRdv2H_bvm87pAIOH7z7Z.qa
server: AmazonS3
content-encoding: br
etag: W/"6cc6a8d0a347434070e1ae1406714b63"
vary: Accept-Encoding
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: wE4tvds8I8rdMvWK8ZjfXt0uA449t3dgMbRjzjYyX0onl7EVVeKJuw==
content-length: 66393
cache-control: max-age=31536000
expires: Sun, 04 Feb 2024 04:54:29 GMT
date: Sat, 04 Feb 2023 04:54:29 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
X-Firefox-Spdy: h2
20bet.com/assets/sport/14.svg
200 OK 1.9 kB URL HTTP/2 20bet.com/assets/sport/14.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (374)
Hash 5426af23d9ab645c437c94543e562068
904645e12f6ccc7ae6cfde1fc754d3ac0a277b40
6fff3d04cfd346ab64b25a93bb756cefc5f7bf3c4d4766a98d9954eacf714820
GET /assets/sport/14.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/cl?btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
Cookie: btag=668128_85D59F2CB78B41D0BA08DD275FBF1499; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:28 GMT
content-type: image/svg+xml
cf-ray: 7940cefe081895e5-ARN
etag: W/"63dd0049-cd6"
last-modified: Fri, 03 Feb 2023 12:38:33 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/sport/1056.svg
200 OK 6.9 kB URL HTTP/2 20bet.com/assets/sport/1056.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (356)
Hash 66a110bd2563a90e0077bcfcc171c0c4
79566a13ee959d139acbb04957f03f5c28eb23df
c84b77a84358003836150e9f70b9731795c3fa2442aa911364da01cc3cd4a1ab
GET /assets/sport/1056.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/cl?btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
Cookie: btag=668128_85D59F2CB78B41D0BA08DD275FBF1499; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:28 GMT
content-type: image/svg+xml
cf-ray: 7940cefe081b95e5-ARN
etag: W/"63dd002a-2ca"
last-modified: Fri, 03 Feb 2023 12:38:02 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/5027.dbcd8bbd67958df7.esm.js
200 OK 5.1 kB URL HTTP/2 20bet.com/app/5027.dbcd8bbd67958df7.esm.js
IP
File type ASCII text, with no line terminators
Hash 569dae5c65fac2c7746d011ff662af51
e31efa0b5e7fd88585989980fe26e90d65449237
3a64825cfe7c3af98fc13fee5b4c97721c6becac061f2137ce7594a0a4c9fa28
GET /app/5027.dbcd8bbd67958df7.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/cl?btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
Cookie: btag=668128_85D59F2CB78B41D0BA08DD275FBF1499; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:28 GMT
content-type: application/javascript
cf-ray: 7940cefaceba95e5-ARN
etag: W/"63dcff7f-ef"
last-modified: Fri, 03 Feb 2023 12:35:11 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/advert.gif
200 OK 43 B URL HTTP/2 mc.yandex.ru/metrika/advert.gif
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Sat, 04 Feb 2023 04:54:29 GMT
access-control-allow-origin: *
etag: "63c93a4b-2b"
expires: Sat, 04 Feb 2023 05:54:29 GMT
accept-ranges: bytes
last-modified: Thu, 19 Jan 2023 15:40:43 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
dwmu1hf7ovvid.cloudfront.net/logos/payments/mastercard.webp
200 OK 2.4 kB URL HTTP/2 dwmu1hf7ovvid.cloudfront.net/logos/payments/mastercard.webp
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 9819535f317a470cbe091587c3419fbe
9b5b6c30ca2c5190847498f23b144ff39c74b9d4
12bc46c585e9aaa0d800549310c3038384bb5158eccd4439d2b6223703192fa9
GET /logos/payments/mastercard.webp HTTP/1.1
Host: dwmu1hf7ovvid.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 2386
date: Sat, 04 Feb 2023 03:02:20 GMT
last-modified: Fri, 25 Feb 2022 07:48:25 GMT
etag: "9819535f317a470cbe091587c3419fbe"
x-amz-version-id: u7PXjQfxDKbNI6fOoUgizj8N9fNa7yWT
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: MeknYeRHFWxKzaNUJlhnCL6LXR790m1yz9jJbb2AtZYCk2AMKbN7Zw==
age: 6730
X-Firefox-Spdy: h2
dwmu1hf7ovvid.cloudfront.net/logos/payments/skrill.webp
200 OK 4.4 kB URL HTTP/2 dwmu1hf7ovvid.cloudfront.net/logos/payments/skrill.webp
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 9a9c594671049f82d376caa8bc23f08c
8f9a2a1eae30ff8353280e0cb0574f800dddde97
42fa953d063490d13059e1d11b64d0b50fc4c879cec56fac8cda4b83d2bea6a8
GET /logos/payments/skrill.webp HTTP/1.1
Host: dwmu1hf7ovvid.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 4360
date: Sat, 04 Feb 2023 03:02:20 GMT
last-modified: Fri, 25 Feb 2022 07:48:25 GMT
etag: "9a9c594671049f82d376caa8bc23f08c"
x-amz-version-id: v6EFlnbny3NLqAwMTVhEYyU3slRzfjts
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: qyt5ngTUf-P9IkTFin8Z5YcPyyEjUCCO9ECiGctscdJY6JzgN-Wqvg==
age: 6730
X-Firefox-Spdy: h2
dwmu1hf7ovvid.cloudfront.net/logos/payments/neteller.webp
200 OK 5.3 kB URL HTTP/2 dwmu1hf7ovvid.cloudfront.net/logos/payments/neteller.webp
IP
File type gzip compressed data, max compression\012- data
Hash 7b898490af828fc097aeaa68e145ca60
8adfdac57d4c3c4e69d2456d4949ad926d787b55
4260a2fa9d09f21d2c86ab6f5822403a3efae149e0005dcbb02bb897795f9f58
GET /logos/payments/neteller.webp HTTP/1.1
Host: dwmu1hf7ovvid.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 4862
last-modified: Fri, 25 Feb 2022 07:48:25 GMT
x-amz-version-id: 8RbaJ7MP7LV79qt8v0kp8zh9BB1BW52T
accept-ranges: bytes
server: AmazonS3
date: Sat, 04 Feb 2023 02:56:36 GMT
etag: "47bb0df8a3ee01f51ed82850b4c55391"
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: YiJ6HK0BdwqxBS3gT4DUNB7Zrlxh7_ZR_J6hPkAoyyCSTB8fHH_iSw==
age: 7074
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/tag.js
200 OK 77 kB URL HTTP/2 mc.yandex.ru/metrika/tag.js
IP
File type Unicode text, UTF-8 (with BOM) text, with very long lines (724)
Hash 51ca39abb3b199a921505e2da9bf8828
6b8b70d0fc24ecbe9a2540d93fcd1e87f13961b2
58a89107fbee7e0e92ff46ef8fa68256d6ebe2c61cd81b6c84c9fbfc1b8d9eb7
GET /metrika/tag.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 77012
date: Sat, 04 Feb 2023 04:54:29 GMT
access-control-allow-origin: *
etag: "63c93a4b-12cd4"
expires: Sat, 04 Feb 2023 05:54:29 GMT
last-modified: Thu, 19 Jan 2023 15:40:43 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: application/javascript
content-encoding: br
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
20bet.com/app/9114.2d954ca350db845b.esm.js
200 OK 10 kB URL HTTP/2 20bet.com/app/9114.2d954ca350db845b.esm.js
IP
File type ASCII text, with very long lines (1192), with no line terminators
Hash 66447e59558111621b29335f21a09170
bf4d1543066dbdd1b1193347d4097985d9844503
947714411f869f3f61d8f5675141326c721a00af2f80ed64b416576f2ac5acef
GET /app/9114.2d954ca350db845b.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/cl?btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
Cookie: btag=668128_85D59F2CB78B41D0BA08DD275FBF1499; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:28 GMT
content-type: application/javascript
cf-ray: 7940cefb4efc95e5-ARN
etag: W/"63dcff7a-4a8"
last-modified: Fri, 03 Feb 2023 12:35:06 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
dwmu1hf7ovvid.cloudfront.net/logos/payments/interac.webp
200 OK 2.0 kB URL HTTP/2 dwmu1hf7ovvid.cloudfront.net/logos/payments/interac.webp
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash cdab7fb995b7866403558f335543bda7
7e6664ba967fd7b2e4d974fdb935a34e05227c45
c995f3a08c8df5b312ca12754a9faf36a9ee44ace812217fcf71414ec89a707f
GET /logos/payments/interac.webp HTTP/1.1
Host: dwmu1hf7ovvid.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 1950
date: Sat, 04 Feb 2023 03:02:20 GMT
last-modified: Fri, 25 Feb 2022 07:48:25 GMT
etag: "cdab7fb995b7866403558f335543bda7"
x-amz-version-id: IsVRXTBPMjrUqDJ0FxzCocQI4PQQyK0X
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 1LluY2KV1LJCAnJWq9Nm7SR5IaBS3EDG-RTKMz1cHqTxodd5YyBkBA==
age: 6730
X-Firefox-Spdy: h2
global-content-api.shapegamesbw.com/api/newsletters
200 OK 0 B URL HTTP/2 global-content-api.shapegamesbw.com/api/newsletters
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/newsletters HTTP/1.1
Host: global-content-api.shapegamesbw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: authorization,country,localization,x-app-platform,x-app-version,x-browser-type
Referer: https://betwarrior.bet/
Origin: https://betwarrior.bet
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:29 GMT
content-length: 0
vary: Origin
access-control-allow-origin: https://betwarrior.bet
access-control-allow-credentials: true
access-control-allow-methods: DELETE, OPTIONS, PATCH, PUT
access-control-allow-headers: Content-Type, authorization, country, localization, x-app-platform, x-app-version, x-browser-type
access-control-max-age: 86400
X-Firefox-Spdy: h2
20bet.com/assets/sport/1122.svg
200 OK 2.3 kB URL HTTP/2 20bet.com/assets/sport/1122.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (767)
Hash e4b272ff8fae5eb85d1ec9abe76ca3c5
e436f878e7e7e63b01a3054d7fc67823413e2b2d
2bb9ae003d371350c13e8e9fba220c4b7f1ad4e653f23bf961d263fdc281b272
GET /assets/sport/1122.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/cl?btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
Cookie: btag=668128_85D59F2CB78B41D0BA08DD275FBF1499; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:29 GMT
content-type: image/svg+xml
cf-ray: 7940ceff88b995e5-ARN
etag: W/"63dd0039-168c"
last-modified: Fri, 03 Feb 2023 12:38:17 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
script.hotjar.com/modules.bca0d1c28285412bb689.js
200 OK 68 kB URL HTTP/2 script.hotjar.com/modules.bca0d1c28285412bb689.js
IP
File type Unicode text, UTF-8 text, with very long lines (49086)
Hash e923aa360dc485b9df86355bd040c998
03c46dbd41e9d4bdf8a9e4bfbaba3f7f2e9280ec
9c7575553c5b81f9b905dbb27c8116b175b69e7472aa6597f8cace1c6434d676
GET /modules.bca0d1c28285412bb689.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 67924
date: Fri, 03 Feb 2023 13:10:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "e923aa360dc485b9df86355bd040c998"
last-modified: Fri, 03 Feb 2023 13:09:45 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: zH2cqK_HJaqIzYBBMsFWEt8kvp-L0dDaUDfgCDY7_4Azk4_0yGJk_Q==
age: 56663
X-Firefox-Spdy: h2
dwmu1hf7ovvid.cloudfront.net/logos/payments/ecopayz.webp
200 OK 11 kB URL HTTP/2 dwmu1hf7ovvid.cloudfront.net/logos/payments/ecopayz.webp
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 655fa02c6cfd48264806295ab9c2f3dc
c4abba9520932ed352a85b34fd59a3a6978cfd22
29bd5b67b49f82e8b22afb6502cce95d9972f580406ed3cabc58498e762831fe
GET /logos/payments/ecopayz.webp HTTP/1.1
Host: dwmu1hf7ovvid.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 11298
date: Sat, 04 Feb 2023 03:02:20 GMT
last-modified: Fri, 25 Feb 2022 07:48:25 GMT
etag: "655fa02c6cfd48264806295ab9c2f3dc"
x-amz-version-id: bdHaBf_POQvEHZxa2qXczjd2tqXiAluR
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: qTCn-OmuyM-pU4hY0eqJKlx-j53vRTfeSvLX3nfi0KtgedMOeaq0Fw==
age: 6730
X-Firefox-Spdy: h2
sportsbook-api.shapegamesbw.com/api/navigations/top_level
200 OK 18 B URL HTTP/2 sportsbook-api.shapegamesbw.com/api/navigations/top_level
IP
File type ASCII text, with no line terminators
Hash cc7fd95a87ea3721ce1853bf3c4dd75e
7f687f7881adf0fc407378d375a61b8f198c0912
0f06a4c8d34690d4e42c81f232a5bdfe9fcbde8a54b5ccd0609a313e90da0879
OPTIONS /api/navigations/top_level HTTP/1.1
Host: sportsbook-api.shapegamesbw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: authorization,country,localization,x-app-platform
Referer: https://betwarrior.bet/
Origin: https://betwarrior.bet
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:29 GMT
content-type: text/plain
content-length: 18
access-control-allow-origin: https://betwarrior.bet
vary: Origin
access-control-allow-credentials: true
access-control-max-age: 1800
access-control-allow-methods: OPTIONS,GET,HEAD
access-control-allow-headers: authorization,country,localization,x-app-platform
allow: HEAD,GET,OPTIONS
X-Firefox-Spdy: h2
20bet.com/app/9320.d7618dd1fd8f0311.esm.js
200 OK 3.1 kB URL HTTP/2 20bet.com/app/9320.d7618dd1fd8f0311.esm.js
IP
File type ASCII text, with very long lines (4208), with no line terminators
Hash 1df55deec43f8c7b10c04b02df4b4ef8
f71b82ccc14aa9b96d54f93043098880a6376f2c
b524cef43af73cd21ad60815dc1538e200fbc814418c4ade3e5ebfe70e0f6eaa
GET /app/9320.d7618dd1fd8f0311.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/cl?btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
Cookie: btag=668128_85D59F2CB78B41D0BA08DD275FBF1499; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:28 GMT
content-type: application/javascript
cf-ray: 7940cefb0ee095e5-ARN
etag: W/"63dcff85-1070"
last-modified: Fri, 03 Feb 2023 12:35:17 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash c7dca3f19d5f72804a6f1ac9e6729611
834490db5b5178a798814491bd4641a6b9ebeca4
c2985b7c81f97d919acd684eba9dc67893c9468d95d0d56524874b8951e5f791
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4003
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 04:54:29 GMT
Last-Modified: Sat, 04 Feb 2023 03:47:46 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 471 B IP
Hash d3e050cf67675c3c19014a74517e3747
9931fd6a416e220e15ef5eccad6d0cb12edf3995
8411e23b7bfeba91b6252f15de6ed18b8cff1f752af0efc4f5429b54fccb0da4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5643
Cache-Control: max-age=102888
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 04:54:29 GMT
Etag: "63dcbde2-1d7"
Expires: Sun, 05 Feb 2023 09:29:17 GMT
Last-Modified: Fri, 03 Feb 2023 07:55:14 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
20bet.com/app/5093.d02f7cc67d7d8427.esm.js
200 OK 22 kB URL HTTP/2 20bet.com/app/5093.d02f7cc67d7d8427.esm.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 569d4cac68b6cffb399fab04e3a7f775
f4472f490bc0d9e1e11829167b412e308c823165
5c6c40ddcfe98f1871d37884d18c7423167675f3da96e8f7da40aa7ddd815444
GET /app/5093.d02f7cc67d7d8427.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/cl?btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
Cookie: btag=668128_85D59F2CB78B41D0BA08DD275FBF1499; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:28 GMT
content-type: application/javascript
cf-ray: 7940cefabeb095e5-ARN
etag: W/"63dcff85-1c4fd"
last-modified: Fri, 03 Feb 2023 12:35:17 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/1549.cf9c18bc5ec878d1.esm.js
200 OK 12 kB URL HTTP/2 20bet.com/app/1549.cf9c18bc5ec878d1.esm.js
IP
File type ASCII text, with very long lines (588), with no line terminators
Hash 0fe0843c2bb1b3548aebb1ef5109adf7
d2c92c2e9e03f648ed25c8e0d87602017ab7759f
e108eca4150a54bd08a21252464089fbea06590ed9640e760c3a5529bf1c0b85
GET /app/1549.cf9c18bc5ec878d1.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/cl?btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
Cookie: btag=668128_85D59F2CB78B41D0BA08DD275FBF1499; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:28 GMT
content-type: application/javascript
cf-ray: 7940cefabeaf95e5-ARN
etag: W/"63dcff68-24c"
last-modified: Fri, 03 Feb 2023 12:34:48 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 314 B IP
Hash 92c45dc245a9155becc352af0714ce07
b9c4f04eea4517780fc3dcb3a43a76365de858eb
ba3430b98de428559eee21ac69a1d85748dc6b383ca5a088baa2bba8f3ebe6d4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3508
Cache-Control: max-age=124518
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 04:54:29 GMT
Etag: "63dd1ab7-13a"
Expires: Sun, 05 Feb 2023 15:29:47 GMT
Last-Modified: Fri, 03 Feb 2023 14:31:19 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 314
ocsp.sectigo.com/
200 OK 471 B IP
Hash bbd90245f244e76d9f45706b1fb5ae58
1e15a0d03d74175f976310f2db334050485ed546
03fda0816cd373e36f33630fc50b4fb5e5852fb1f2c65175b98437386c436dd4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 04:54:29 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 01:56:49 GMT
Expires: Sat, 11 Feb 2023 01:56:48 GMT
Etag: "1e15a0d03d74175f976310f2db334050485ed546"
Cache-Control: max-age=593538,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7940cf04db310afe-OSL
a.exoclick.com/tag_gen.js
200 OK 515 B URL HTTP/1.1 a.exoclick.com/tag_gen.js
IP
File type ASCII text, with very long lines (1030), with no line terminators
Hash 628e0302068ade64b5f411f39d5ce7e5
ff1a609269f34bad5ae67ed1678df3f7b905d018
c583ceaeae2e9a05e25c27b61520710f16b8b98ca7f9087a75ae90a040b8bc3f
GET /tag_gen.js HTTP/1.1
Host: a.exoclick.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 04:54:29 GMT
Connection: Keep-Alive
Content-Encoding: gzip
Content-Length: 515
Content-Type: application/javascript
Accept-Ranges: bytes
Cache-Control: max-age=10800
Server: nginx
etag: W/"a56c0470b9aa925085e51a6271a"
X-HW: 1675486469.dop021.sk1.t,1675486469.cds067.sk1.shn,1675486469.dop021.sk1.t,1675486469.cds251.sk1.c
Access-Control-Allow-Origin: *, *
auth.shapegamesbw.com/api/session?type=web-betwarrior&version=0.7
200 OK 166 kB URL HTTP/2 auth.shapegamesbw.com/api/session?type=web-betwarrior&version=0.7
IP
Size 166 kB (166313 bytes)
Hash e8195aaa751437e9929fc096c649b457
e5f159179e9faf17a6175c9d874ba38cd5a1cbb8
8b2342a4359360c9efc55bc7720612a20d6a356f68e84a6122665cc64475a831
GET /api/session?type=web-betwarrior&version=0.7 HTTP/1.1
Host: auth.shapegamesbw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: *
Accept-Encoding: gzip, deflate, br
Referer: https://betwarrior.bet/
country: no
x-app-platform: web-betwarrior
x-app-version: 0.7
Origin: https://betwarrior.bet
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:28 GMT
content-type: application/json;charset=UTF-8
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
access-control-allow-origin: https://betwarrior.bet
vary: Origin
access-control-allow-credentials: true
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP
File type ASCII text, with very long lines (64348)
Hash dd1f85cc598419df61e254e53f9ec1ef
f86c0ee563f5b7a01e1d40b566f2bc184a32380f
c06f52b233c835b03292f39cb847507a03bb971066bf91341b58a580244398c0
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
origin-agent-cluster: ?0
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: 2dUG7o9LLZchgq3HG+lMaYXC5I35aegr9lBVGSlSCr580tPTkFDTotbi8ACcRhbpjM8i9S9861E9w9kq1PnnOg==
priority: u=3,i
content-length: 27843
x-fb-trip-id: 1679558926
date: Sat, 04 Feb 2023 04:54:29 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
20bet.com/assets/sport/1051.svg
200 OK 2.4 kB URL HTTP/2 20bet.com/assets/sport/1051.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2179)
Hash d9d1b67905853184293229418a26d602
e7ec8f9992c173e1f53a7e068a88041516453047
fd5605705d3659b67a47a84dd9ebacc4678e170eedefeef9896de1641e32930f
GET /assets/sport/1051.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/cl?btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
Cookie: btag=668128_85D59F2CB78B41D0BA08DD275FBF1499; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:29 GMT
content-type: image/svg+xml
cf-ray: 7940ceffa8d495e5-ARN
etag: W/"63dd0039-1682"
last-modified: Fri, 03 Feb 2023 12:38:17 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
ctrack.trafficjunky.net/ctrack?action=list&type=add&id=notregistered&context=20bet.com&cookiename=notregistered&age=262800&maxcookiecount=10
200 OK 35 B URL HTTP/1.1 ctrack.trafficjunky.net/ctrack?action=list&type=add&id=notregistered&context=20bet.com&cookiename=notregistered&age=262800&maxcookiecount=10
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /ctrack?action=list&type=add&id=notregistered&context=20bet.com&cookiename=notregistered&age=262800&maxcookiecount=10 HTTP/1.1
Host: ctrack.trafficjunky.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
server: openresty
date: Sat, 04 Feb 2023 04:54:30 GMT
content-type: image/gif
content-length: 35
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Sun, 22 Jan 1984 03:00:00 GMT
p3p: CP="IDC DSP COR CURa ADMa OUR IND PHY ONL COM STA"
pragma: no-cache
set-cookie: tj_UUID=631cd2ee2b4f4cf89a98c513c08d9583; Path=/; Domain=trafficjunky.net; Expires=Mon, 06 Mar 2023 04:54:30 GMT; Secure; SameSite=None
tj_UUID_v2=631cd2ee-2b4f-4cf8-9a98-c513c08d9583; Path=/; Domain=trafficjunky.net; Expires=Mon, 06 Mar 2023 04:54:30 GMT; Secure; SameSite=None
1918bc62c1a6d87456120b5ac922270e=notregistered; Path=/; Domain=trafficjunky.net; Expires=Sat, 05 Aug 2023 16:54:30 GMT; Secure; SameSite=None
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET,POST
access-control-allow-headers: Content-Type
access-control-max-age: 86400
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
x-request-id: 63DDE505-42FE725901BB2249-11402434
ocsp.sectigo.com/
200 OK 471 B IP
Hash bbd90245f244e76d9f45706b1fb5ae58
1e15a0d03d74175f976310f2db334050485ed546
03fda0816cd373e36f33630fc50b4fb5e5852fb1f2c65175b98437386c436dd4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 04:54:29 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 01:56:49 GMT
Expires: Sat, 11 Feb 2023 01:56:48 GMT
Etag: "1e15a0d03d74175f976310f2db334050485ed546"
Cache-Control: max-age=593538,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7940cf052d721c06-OSL
ocsp.digicert.com/
200 OK 471 B IP
Hash d3e050cf67675c3c19014a74517e3747
9931fd6a416e220e15ef5eccad6d0cb12edf3995
8411e23b7bfeba91b6252f15de6ed18b8cff1f752af0efc4f5429b54fccb0da4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6272
Cache-Control: max-age=103517
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 04:54:29 GMT
Etag: "63dcbde2-1d7"
Expires: Sun, 05 Feb 2023 09:39:46 GMT
Last-Modified: Fri, 03 Feb 2023 07:55:14 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
x.bidswitch.net/sync?dsp_id=409&expires=14&user_group=2&user_id=830857d8-935c-40f0-bb8a-2c7358250470&cb=61cd8b47-c813-44dc-977a-3e3f5cdce578
302 Found 0 B URL HTTP/2 x.bidswitch.net/sync?dsp_id=409&expires=14&user_group=2&user_id=830857d8-935c-40f0-bb8a-2c7358250470&cb=61cd8b47-c813-44dc-977a-3e3f5cdce578
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?dsp_id=409&expires=14&user_group=2&user_id=830857d8-935c-40f0-bb8a-2c7358250470&cb=61cd8b47-c813-44dc-977a-3e3f5cdce578 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 04 Feb 2023 04:54:29 GMT
content-length: 0
location: https://x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=2&user_id=830857d8-935c-40f0-bb8a-2c7358250470&cb=61cd8b47-c813-44dc-977a-3e3f5cdce578
cache-control: no-cache, no-store, must-revalidate
set-cookie: tuuid=91ea4f21-d257-46e5-bfdd-aff3f02aa8cf; path=/; expires=Sun, 04-Feb-2024 04:54:29 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675486469; path=/; expires=Sun, 04-Feb-2024 04:54:29 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1675486469; path=/; expires=Sun, 04-Feb-2024 04:54:29 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675486469; path=/; expires=Sun, 04-Feb-2024 04:54:29 GMT; domain=.bidswitch.net; samesite=none; secure
X-Firefox-Spdy: h2
main.exdynsrv.com/tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2
200 OK 20 B URL HTTP/1.1 main.exdynsrv.com/tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2
IP
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2 HTTP/1.1
Host: main.exdynsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 04:54:30 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: goals=a%3A1%3A%7Bi%3A93090%3Ba%3A1%3A%7Bs%3A4%3A%22date%22%3Bs%3A10%3A%222023-02-03%22%3B%7D%7D; expires=Sun, 04 Feb 2024 04:54:30 GMT; path=/; domain=.exdynsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
global-content-api.shapegamesbw.com/api/newsletters
200 OK 2 B URL HTTP/2 global-content-api.shapegamesbw.com/api/newsletters
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash d751713988987e9331980363e24189ce
97d170e1550eee4afc0af065b78cda302a97674c
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
GET /api/newsletters HTTP/1.1
Host: global-content-api.shapegamesbw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: *
Accept-Encoding: gzip, deflate, br
Referer: https://betwarrior.bet/
authorization: Bearer eyJhbGciOiJSUzI1NiJ9.eyJhcHAiOiJiZXR3YXJyaW9yIiwiYXVkIjoibW9iaWxlIiwic3ViIjoiYXBpIiwiZXhwIjoxNjc1NDkzNjY4LCJ2ZXJzaW9uIjoiMC43IiwiaWF0IjoxNjc1NDg2NDY4LCJwbGF0Zm9ybSI6IndlYiJ9.BbZb95V_5j80nFZP-oGU8wg6AfLnmDpvIspUnFT-2wW4ZJ2HOPLTqXwIVznNMQI2tbDYDUT4JhNyL0BThCBWN-kvybWePSqVrr0lv334o4-syG1LUBHzMuyo4Oy_dzC1kCq59Lv4i87rH4mIuzKGkCpJOqv1AcTcrIehmyhd7lilt-PWvH3jiaUT7epYTLlwr1mFtGDHfkUgpNfsXNVaD8Yu2GrKUJxECnQHkT-9BO0aVxVBN3hvsGvr9LWgLBOxtAJ1e27TIaLCabiRwn8YybSUpQygaxNlNyr-Vp7qUeX_vKNXWnJ5bQuyNc7myCUvT3OOGelKJ_e-UOhW6o7Zxw
country: no
localization: en-GB
x-app-platform: web-betwarrior
x-app-version: 0.7
x-browser-type: DESKTOP
Origin: https://betwarrior.bet
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:30 GMT
content-type: application/json
content-length: 2
vary: Origin
access-control-allow-origin: https://betwarrior.bet
access-control-allow-credentials: true
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62f8fa6a-620a-4d0c-aec7-0863ae11b871.jpeg
200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62f8fa6a-620a-4d0c-aec7-0863ae11b871.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 83ac46e378ad452aeb212d709ab70232
7514ed93fd2f256e5aad386fdd0ebc723785291b
e199498691268526a6ecfe58abb88ced8661272cd7ad8270811c84fb15dbb547
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62f8fa6a-620a-4d0c-aec7-0863ae11b871.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 14221
x-amzn-requestid: a74ee3d4-6163-4dec-ab62-97279cf52282
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyEC3ERhIAMFh1A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8078-3e5d4b3d39919497215866df;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:45:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 3TIbnpwYk9CIeoXeW4T-ouwV7X1y-LgKV7wB4XJwFKSKx248jIJyBQ==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:08:39 GMT
age: 24351
etag: "7514ed93fd2f256e5aad386fdd0ebc723785291b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
main.realsrv.com/tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2
200 OK 20 B URL HTTP/1.1 main.realsrv.com/tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2
IP
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2 HTTP/1.1
Host: main.realsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 04:54:30 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: goals=a%3A1%3A%7Bi%3A93090%3Ba%3A1%3A%7Bs%3A4%3A%22date%22%3Bs%3A10%3A%222023-02-03%22%3B%7D%7D; expires=Sun, 04 Feb 2024 04:54:30 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
20bet.com/app/3048.9609a2d0804371c8.esm.js
200 OK 2.1 kB URL HTTP/2 20bet.com/app/3048.9609a2d0804371c8.esm.js
IP
Hash 46cdad132f3af411f83d20c0feb661e3
ad84bcca19857984959a55e6341c8eaf3345d0d9
dbe58a1257e91ecf7aacda5e88546c6ad1b5169db5f39750a27f31baadbe2454
GET /app/3048.9609a2d0804371c8.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/cl?btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
Cookie: btag=668128_85D59F2CB78B41D0BA08DD275FBF1499; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:28 GMT
content-type: application/javascript
cf-ray: 7940cefb1ee895e5-ARN
etag: W/"63dcff7f-7ca"
last-modified: Fri, 03 Feb 2023 12:35:11 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash bbd90245f244e76d9f45706b1fb5ae58
1e15a0d03d74175f976310f2db334050485ed546
03fda0816cd373e36f33630fc50b4fb5e5852fb1f2c65175b98437386c436dd4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 04:54:30 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 01:56:49 GMT
Expires: Sat, 11 Feb 2023 01:56:48 GMT
Etag: "1e15a0d03d74175f976310f2db334050485ed546"
Cache-Control: max-age=593537,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7940cf051b3d0afe-OSL
platform.20bet.com/api/market-descriptions/get-all-outcomes/es
200 OK 14 kB URL HTTP/2 platform.20bet.com/api/market-descriptions/get-all-outcomes/es
IP
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 711a766aac775b8e95fa0026fcf0056d
3311a73e6d1e8439ee9fc3504cacea8b3886fd58
47d7286c5cb21ab0240ef39f901664b7d89e78a3a85fca341bd6ca32bd4f0d7c
GET /api/market-descriptions/get-all-outcomes/es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:28 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7940cef8b9542d8f-ARN
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/event/list?sportId_eq=1&period=5&limit=10&competitor2Id_neq=&competitor1Id_neq=&oddsExists_eq=1&status_in%5B%5D=0&main=1&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=tips&relations%5B%5D=sportCategories&relations%5B%5D=withMarketsCount&lang=es
200 OK 42 kB URL HTTP/2 platform.20bet.com/api/event/list?sportId_eq=1&period=5&limit=10&competitor2Id_neq=&competitor1Id_neq=&oddsExists_eq=1&status_in%5B%5D=0&main=1&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=tips&relations%5B%5D=sportCategories&relations%5B%5D=withMarketsCount&lang=es
IP
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash bbe765f012dc11c14afdb3293d5160d0
fab96956e86bbda129e906ab10cf25f3fcd161eb
e8fabaccca2d53bb1d42eff51f244a54b8dc55463a18e65b77a0ab3cec77bfc2
GET /api/event/list?sportId_eq=1&period=5&limit=10&competitor2Id_neq=&competitor1Id_neq=&oddsExists_eq=1&status_in%5B%5D=0&main=1&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=tips&relations%5B%5D=sportCategories&relations%5B%5D=withMarketsCount&lang=es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:29 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7940cf006c832d8f-ARN
content-encoding: br
X-Firefox-Spdy: h2
x.bidswitch.net/sync?dsp_id=409&expires=14&user_group=2&user_id=830857d8-935c-40f0-bb8a-2c7358250470&cb=06fa66f3-491a-45f9-8ab6-deb20f5e4a6d
302 Found 0 B URL HTTP/2 x.bidswitch.net/sync?dsp_id=409&expires=14&user_group=2&user_id=830857d8-935c-40f0-bb8a-2c7358250470&cb=06fa66f3-491a-45f9-8ab6-deb20f5e4a6d
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?dsp_id=409&expires=14&user_group=2&user_id=830857d8-935c-40f0-bb8a-2c7358250470&cb=06fa66f3-491a-45f9-8ab6-deb20f5e4a6d HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 04 Feb 2023 04:54:30 GMT
content-length: 0
cache-control: no-cache, no-store, must-revalidate
location: //match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=830857d8-935c-40f0-bb8a-2c7358250470&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
X-Firefox-Spdy: h2
sportsbook-api.shapegamesbw.com/api/navigations/top_level
200 OK 516 B URL HTTP/2 sportsbook-api.shapegamesbw.com/api/navigations/top_level
IP
File type JSON data\012- , ASCII text, with very long lines (2902), with no line terminators
Hash a8fb0feebe0f1d425ef82efefe4fb9c9
9b796db45c399ef2a09944f263059198f063f03c
154e46f46a685734e5af100190288ccd427f3335034fa6fc4560ce6f5a808d67
GET /api/navigations/top_level HTTP/1.1
Host: sportsbook-api.shapegamesbw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://betwarrior.bet/
Authorization: Bearer eyJhbGciOiJSUzI1NiJ9.eyJhcHAiOiJiZXR3YXJyaW9yIiwiYXVkIjoibW9iaWxlIiwic3ViIjoiYXBpIiwiZXhwIjoxNjc1NDkzNjY4LCJ2ZXJzaW9uIjoiMC43IiwiaWF0IjoxNjc1NDg2NDY4LCJwbGF0Zm9ybSI6IndlYiJ9.BbZb95V_5j80nFZP-oGU8wg6AfLnmDpvIspUnFT-2wW4ZJ2HOPLTqXwIVznNMQI2tbDYDUT4JhNyL0BThCBWN-kvybWePSqVrr0lv334o4-syG1LUBHzMuyo4Oy_dzC1kCq59Lv4i87rH4mIuzKGkCpJOqv1AcTcrIehmyhd7lilt-PWvH3jiaUT7epYTLlwr1mFtGDHfkUgpNfsXNVaD8Yu2GrKUJxECnQHkT-9BO0aVxVBN3hvsGvr9LWgLBOxtAJ1e27TIaLCabiRwn8YybSUpQygaxNlNyr-Vp7qUeX_vKNXWnJ5bQuyNc7myCUvT3OOGelKJ_e-UOhW6o7Zxw
Localization: en-GB
Country: no
X-App-Platform: web-betwarrior
Origin: https://betwarrior.bet
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:30 GMT
content-type: application/json
content-length: 516
access-control-allow-origin: https://betwarrior.bet
access-control-allow-credentials: true
access-control-expose-headers: *,Authorization
x-next-polling-in: 300
x-cache: MISS
cache-control: max-age=600
vary: Origin, Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
20bet.com/assets/sport/16.svg
200 OK 6.6 kB URL HTTP/2 20bet.com/assets/sport/16.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3136)
Hash 9808179aa8ac04686aae7a13a6d1d09e
62888cb2f89faee1fb7c888ee5e863b49a52229a
7078b9839dc3b0a3b1991b2c7c28254a570ba0346cd8a85a8bf03695ec7149f7
GET /assets/sport/16.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/cl?btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
Cookie: btag=668128_85D59F2CB78B41D0BA08DD275FBF1499; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:29 GMT
content-type: image/svg+xml
cf-ray: 7940ceffa8cb95e5-ARN
etag: W/"63dd0032-3c17"
last-modified: Fri, 03 Feb 2023 12:38:10 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
games-cms.shapegamesbw.com/query
200 OK 39 kB URL HTTP/2 games-cms.shapegamesbw.com/query
IP
Hash 3caca8aadc80e382806813ada2ed97bb
db9f66b1862872602af11e2a9c1552f2fce5f2fb
6e1486d5b2dc509517860f3dd7c265a11cdb278a047a5bfc12f5fcaca17695de
POST /query HTTP/1.1
Host: games-cms.shapegamesbw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://betwarrior.bet/
Content-Type: application/json
Origin: https://betwarrior.bet
Content-Length: 520
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:29 GMT
content-type: application/json
access-control-allow-credentials: true
access-control-allow-origin: https://betwarrior.bet
content-encoding: gzip
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
20bet.com/app/6558.e6b8ac88ffb7637f.esm.js
200 OK 423 B URL HTTP/2 20bet.com/app/6558.e6b8ac88ffb7637f.esm.js
IP
File type ASCII text, with very long lines (673), with no line terminators
Hash 503ed190e169d69f70694cee6ac79102
206eee432402c1fed64e9603a2e68c04e512e4d7
eb97efeaed7c527bd8df285d5bf3e4353a6c6c8bc9024fc64ef11f3b9ed51a4b
GET /app/6558.e6b8ac88ffb7637f.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/cl?btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
Cookie: btag=668128_85D59F2CB78B41D0BA08DD275FBF1499; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:29 GMT
content-type: application/javascript
cf-ray: 7940cf00290895e5-ARN
etag: W/"63dcff74-2a1"
last-modified: Fri, 03 Feb 2023 12:35:00 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
main.exosrv.com/tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2
200 OK 20 B URL HTTP/1.1 main.exosrv.com/tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2
IP
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2 HTTP/1.1
Host: main.exosrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 04:54:30 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: goals=a%3A1%3A%7Bi%3A93090%3Ba%3A1%3A%7Bs%3A4%3A%22date%22%3Bs%3A10%3A%222023-02-03%22%3B%7D%7D; expires=Sun, 04 Feb 2024 04:54:30 GMT; path=/; domain=.exosrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
main.exoclick.com/tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2
200 OK 20 B URL HTTP/1.1 main.exoclick.com/tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2
IP
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2 HTTP/1.1
Host: main.exoclick.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 04:54:30 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: goals=a%3A1%3A%7Bi%3A93090%3Ba%3A1%3A%7Bs%3A4%3A%22date%22%3Bs%3A10%3A%222023-02-03%22%3B%7D%7D; expires=Sun, 04 Feb 2024 04:54:30 GMT; path=/; domain=.exoclick.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
dsp-trk.eskimi.com/tracking/cssession?tst&id=22441
304 Not Modified 0 B URL HTTP/2 dsp-trk.eskimi.com/tracking/cssession?tst&id=22441
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tracking/cssession?tst&id=22441 HTTP/1.1
Host: dsp-trk.eskimi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 304 Not Modified
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
date: Sat, 04 Feb 2023 04:54:29 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
platform.20bet.com/api/tournaments/bet-tournament/get-active?fields%5B%5D=tournaments&fields%5B%5D=leaderboards&fields%5B%5D=authorizedUsers
200 OK 0 B URL HTTP/2 platform.20bet.com/api/tournaments/bet-tournament/get-active?fields%5B%5D=tournaments&fields%5B%5D=leaderboards&fields%5B%5D=authorizedUsers
IP
GET /api/tournaments/bet-tournament/get-active?fields%5B%5D=tournaments&fields%5B%5D=leaderboards&fields%5B%5D=authorizedUsers HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:28 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7940cef869342d8f-ARN
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/v2/configurations
200 OK 0 B URL HTTP/2 platform.20bet.com/api/v2/configurations
IP
GET /api/v2/configurations HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:28 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7940cef869392d8f-ARN
content-encoding: br
X-Firefox-Spdy: h2
d1wfowvne3d4em.cloudfront.net/flags/au.svg
200 OK 0 B URL HTTP/2 d1wfowvne3d4em.cloudfront.net/flags/au.svg
IP
GET /flags/au.svg HTTP/1.1
Host: d1wfowvne3d4em.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Thu, 05 Jan 2023 15:45:57 GMT
server: AmazonS3
content-encoding: br
date: Fri, 03 Feb 2023 23:00:26 GMT
etag: W/"503a3a980ccbc651a8acc57b6f6d2dab"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: KA3NsNVi34n12V31bC-l6TCXBuQmnX0YCP5t2bpYqAvhGGhrvcSj6w==
age: 21244
X-Firefox-Spdy: h2
d1wfowvne3d4em.cloudfront.net/flags/us.svg
200 OK 0 B URL HTTP/2 d1wfowvne3d4em.cloudfront.net/flags/us.svg
IP
GET /flags/us.svg HTTP/1.1
Host: d1wfowvne3d4em.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Thu, 05 Jan 2023 15:46:07 GMT
server: AmazonS3
content-encoding: br
date: Sat, 04 Feb 2023 04:54:30 GMT
etag: W/"ae65659236a7e348402799477237e6fa"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: lCKgxdHEXMBLdvaoJqGhNN8FxOfWK8SZa9qAhaeDHYIVDTVKQV2aNw==
X-Firefox-Spdy: h2
20bet.com/app/common.68e049bd60bde3ea.css
200 OK 0 B URL HTTP/2 20bet.com/app/common.68e049bd60bde3ea.css
IP
GET /app/common.68e049bd60bde3ea.css HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/cl?btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
Cookie: btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:26 GMT
content-type: text/css
cf-ray: 7940cef1db2195e5-ARN
etag: W/"63dcff74-d68"
last-modified: Fri, 03 Feb 2023 12:35:00 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/6485.c5e5798c269cfd52.esm.js
200 OK 0 B URL HTTP/2 20bet.com/app/6485.c5e5798c269cfd52.esm.js
IP
GET /app/6485.c5e5798c269cfd52.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/cl?btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
Cookie: btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:26 GMT
content-type: application/javascript
cf-ray: 7940cef1db2395e5-ARN
etag: W/"63dcff68-30e"
last-modified: Fri, 03 Feb 2023 12:34:48 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/sport/12.svg
200 OK 0 B URL HTTP/2 20bet.com/assets/sport/12.svg
IP
GET /assets/sport/12.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/cl?btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
Cookie: btag=668128_85D59F2CB78B41D0BA08DD275FBF1499; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:29 GMT
content-type: image/svg+xml
cf-ray: 7940ceffa8c995e5-ARN
etag: W/"63dd0049-c74"
last-modified: Fri, 03 Feb 2023 12:38:33 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
b-partner.xyz/ad702947f
302 Found 0 B IP
GET /ad702947f HTTP/1.1
Host: b-partner.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 04 Feb 2023 04:54:22 GMT
content-type: text/html; charset=utf-8
location: https://bitslot.io/?stag=148527_63dde4fef4a4f54db0ba8d24&tracking_link=http%3A%2F%2Fb-partner.xyz%2Fad702947f
set-cookie: 73d3f1ba062585bce51f=63dde4fef4a4f54db0ba8d24; Expires=Mon, 06 Mar 2023 04:54:22 GMT
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
referrer-policy: strict-origin-when-cross-origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5dlrN6foE2xcy9bOTOPHcde%2BtjUkbnBcHw2j0Xro7Ex96kQzpo5bjQdquAj7PD03HMzy4Ys8FzOxy9NBLo9kmWIdSREjhv7i1xhBvXXV0Eu3Th0dK85e6gOyirwrAepl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7940ced4bb720b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
platform.20bet.com/api/v2/ip-data
200 OK 0 B URL HTTP/2 platform.20bet.com/api/v2/ip-data
IP
GET /api/v2/ip-data HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:28 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7940cef8c9572d8f-ARN
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/2096.c1ad3bd039c852b6.esm.js
200 OK 0 B URL HTTP/2 20bet.com/app/2096.c1ad3bd039c852b6.esm.js
IP
GET /app/2096.c1ad3bd039c852b6.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/cl?btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
Cookie: btag=668128_85D59F2CB78B41D0BA08DD275FBF1499; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:28 GMT
content-type: application/javascript
cf-ray: 7940cefb0ede95e5-ARN
etag: W/"63dcff85-12ce"
last-modified: Fri, 03 Feb 2023 12:35:17 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/9117.59a1f36812423e88.esm.js
200 OK 0 B URL HTTP/2 20bet.com/app/9117.59a1f36812423e88.esm.js
IP
GET /app/9117.59a1f36812423e88.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/cl?btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
Cookie: btag=668128_85D59F2CB78B41D0BA08DD275FBF1499; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:28 GMT
content-type: application/javascript
cf-ray: 7940cefb0ee495e5-ARN
etag: W/"63dcff6e-7ce"
last-modified: Fri, 03 Feb 2023 12:34:54 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/4031.b91f4417cd75a26b.esm.js
200 OK 0 B URL HTTP/2 20bet.com/app/4031.b91f4417cd75a26b.esm.js
IP
GET /app/4031.b91f4417cd75a26b.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/cl?btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
Cookie: btag=668128_85D59F2CB78B41D0BA08DD275FBF1499; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:28 GMT
content-type: application/javascript
cf-ray: 7940cefb1eea95e5-ARN
etag: W/"63dcff7a-4d5"
last-modified: Fri, 03 Feb 2023 12:35:06 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/status
200 OK 0 B URL HTTP/2 platform.20bet.com/api/status
IP
GET /api/status HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:27 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7940cef869352d8f-ARN
content-encoding: br
X-Firefox-Spdy: h2
betwarrior.bet/region_not_supported?register&btag=655952_21BD135492B14C7588C5257752483980
301 Moved Permanently 0 B URL HTTP/2 betwarrior.bet/region_not_supported?register&btag=655952_21BD135492B14C7588C5257752483980
IP
GET /region_not_supported?register&btag=655952_21BD135492B14C7588C5257752483980 HTTP/1.1
Host: betwarrior.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a9277%2c%22BID%22%3a3038%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675486462418)%5c%2f%22%2c%22CookieTag%22%3a%2230389277451240919C202324454%22%7d%5d
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Sat, 04 Feb 2023 04:54:24 GMT
location: /region_not_supported
cf-ray: 7940cedd6ef9b505-OSL
cf-cache-status: DYNAMIC
x-powered-by: Express
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cookielaw.org/logos/static/poweredBy_ot_logo.svg
200 OK 0 B URL HTTP/2 cdn.cookielaw.org/logos/static/poweredBy_ot_logo.svg
IP
GET /logos/static/poweredBy_ot_logo.svg HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://in.betsson.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:24 GMT
content-type: image/svg+xml
content-md5: LpuayL42jB78xRllx0vkOw==
last-modified: Thu, 02 Feb 2023 13:33:38 GMT
x-ms-request-id: 37e5f1ab-101e-00ca-7f5b-374b2b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 24342
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7940cee018840b51-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
20bet.com/app/8416.089b97ec0fb7c863.esm.js
200 OK 0 B URL HTTP/2 20bet.com/app/8416.089b97ec0fb7c863.esm.js
IP
GET /app/8416.089b97ec0fb7c863.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/cl?btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
Cookie: btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:26 GMT
content-type: application/javascript
cf-ray: 7940cef1db2695e5-ARN
etag: W/"63dcff6e-2da"
last-modified: Fri, 03 Feb 2023 12:34:54 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/data/provinces
200 OK 0 B URL HTTP/2 platform.20bet.com/api/data/provinces
IP
GET /api/data/provinces HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:28 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7940cef8c95b2d8f-ARN
content-encoding: br
X-Firefox-Spdy: h2
casino.cur.a8r.games/public/sg.js
200 OK 0 B URL HTTP/2 casino.cur.a8r.games/public/sg.js
IP
GET /public/sg.js HTTP/1.1
Host: casino.cur.a8r.games
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:25 GMT
content-type: text/javascript; charset=utf-8
strict-transport-security: max-age=15724800; includeSubDomains
last-modified: Sat, 04 Feb 2023 03:15:15 GMT
cf-cache-status: HIT
age: 5573
expires: Sat, 04 Feb 2023 08:54:25 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
server: cloudflare
cf-ray: 7940cee988e2b51d-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.livechatinc.com/widget/static/js/iframe.73879adc.chunk.js
200 OK 0 B URL HTTP/2 cdn.livechatinc.com/widget/static/js/iframe.73879adc.chunk.js
IP
ASN #20940 Akamai International B.V.
GET /widget/static/js/iframe.73879adc.chunk.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 25 Jan 2023 08:47:14 GMT
x-amz-version-id: DWqeOBaonG9oWcxGU0ZIpqeLsqrYCT6x
server: AmazonS3
content-encoding: gzip
etag: W/"90cad0f1a20bbe0c7b70af650ab7491a"
vary: Accept-Encoding
x-amz-cf-pop: AMS54-C1
x-amz-cf-id: _moYFAh9CU_TCG1Yzj16TH06fqZO-0j2iiv2chXN-6-X-3i1nCAlEQ==
content-length: 228662
cache-control: max-age=31536000
expires: Sun, 04 Feb 2024 04:54:29 GMT
date: Sat, 04 Feb 2023 04:54:29 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
X-Firefox-Spdy: h2
platform.20bet.com/api/v2/data/rates
200 OK 0 B URL HTTP/2 platform.20bet.com/api/v2/data/rates
IP
GET /api/v2/data/rates HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:28 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7940cef869372d8f-ARN
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/market-group-sorting/get-all-ordered
200 OK 0 B URL HTTP/2 platform.20bet.com/api/market-group-sorting/get-all-ordered
IP
GET /api/market-group-sorting/get-all-ordered HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:28 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7940cef8c9582d8f-ARN
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/1969.7394f3f65ee00bbc.esm.js
200 OK 0 B URL HTTP/2 20bet.com/app/1969.7394f3f65ee00bbc.esm.js
IP
GET /app/1969.7394f3f65ee00bbc.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/cl?btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
Cookie: btag=668128_85D59F2CB78B41D0BA08DD275FBF1499; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:28 GMT
content-type: application/javascript
cf-ray: 7940cefb4efd95e5-ARN
etag: W/"63dcff68-29b"
last-modified: Fri, 03 Feb 2023 12:34:48 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/8319.7ec039d8049267af.esm.js
200 OK 0 B URL HTTP/2 20bet.com/app/8319.7ec039d8049267af.esm.js
IP
GET /app/8319.7ec039d8049267af.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/cl?btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
Cookie: btag=668128_85D59F2CB78B41D0BA08DD275FBF1499; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:28 GMT
content-type: application/javascript
cf-ray: 7940cefb0edf95e5-ARN
etag: W/"63dcff7f-25f6"
last-modified: Fri, 03 Feb 2023 12:35:11 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/sport/11.svg
200 OK 0 B URL HTTP/2 20bet.com/assets/sport/11.svg
IP
GET /assets/sport/11.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/cl?btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
Cookie: btag=668128_85D59F2CB78B41D0BA08DD275FBF1499; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:29 GMT
content-type: image/svg+xml
cf-ray: 7940ceff98c295e5-ARN
etag: W/"63dd0051-bc0"
last-modified: Fri, 03 Feb 2023 12:38:41 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/data/get-currencies
200 OK 0 B URL HTTP/2 platform.20bet.com/api/data/get-currencies
IP
GET /api/data/get-currencies HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:27 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7940cef869332d8f-ARN
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/8181.9395c357a6a56a0c.esm.js
200 OK 0 B URL HTTP/2 20bet.com/app/8181.9395c357a6a56a0c.esm.js
IP
GET /app/8181.9395c357a6a56a0c.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/cl?btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
Cookie: btag=668128_85D59F2CB78B41D0BA08DD275FBF1499; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:29 GMT
content-type: application/javascript
cf-ray: 7940cf00390e95e5-ARN
etag: W/"63dcff68-1da"
last-modified: Fri, 03 Feb 2023 12:34:48 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
record.betsson.com/_artCMRK1bjYG09GbH17OiWNd7ZgqdRLk/8/
301 Moved Permanently 0 B URL HTTP/2 record.betsson.com/_artCMRK1bjYG09GbH17OiWNd7ZgqdRLk/8/
IP
GET /_artCMRK1bjYG09GbH17OiWNd7ZgqdRLk/8/ HTTP/1.1
Host: record.betsson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Sat, 04 Feb 2023 04:54:22 GMT
content-type: text/html; charset=utf-8
location: https://in.betsson.com/cl-bono-de-bienvenida-sb/cl?from=Em9dnW8M7MgXKa-T0ntvbmNd7ZgqdRLk-AP0846390900&affcode=AP0846390900&utm_medium=MA_Affiliates&utm_source=10687405
cache-control: private, no-cache, must-revalidate, Cache-Control: no-cache
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *
pragma: no-cache
x-powered-by: ZBan
cf-cache-status: BYPASS
set-cookie: VID1=KiwzQFAtUzRTLFNAUC1QYGAKYAo%3D; expires=Sun, 04-Feb-2024 04:54:22 GMT; Max-Age=31536000; path=/; secure; HttpOnly; SameSite=None
ZBan=Em9dnW8M7MgXKa-T0ntvbmNd7ZgqdRLk; expires=Sun, 04-Feb-2024 04:54:22 GMT; Max-Age=31536000; path=/; domain=.betsson.com; secure; HttpOnly; SameSite=None
PartnerId=Em9dnW8M7MgXKa-T0ntvbmNd7ZgqdRLk-Z2lnX2NwaF9wb3A%3D; expires=Mon, 06-Mar-2023 04:54:22 GMT; Max-Age=2592000; path=/; SameSite=Lax
marketingproduct=Sportsbook; expires=Mon, 06-Mar-2023 04:54:22 GMT; Max-Age=2592000; path=/; domain=.betsson.com; SameSite=Lax
vary: Accept-Encoding
server: cloudflare
cf-ray: 7940ced53b270b55-OSL
X-Firefox-Spdy: h2
megapari.com/registration/?tag=d_2032927m_25437c_
308 Permanent Redirect 0 B URL HTTP/2 megapari.com/registration/?tag=d_2032927m_25437c_
IP
ASN #202492 Silverhill Group Holding Ltd
GET /registration/?tag=d_2032927m_25437c_ HTTP/1.1
Host: megapari.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 308 Permanent Redirect
server: nginx
date: Sat, 04 Feb 2023 04:54:22 GMT
content-type: text/html; charset=utf-8
location: https://megapari.com/registration?tag=d_2032927m_25437c_
x-frame-options: SAMEORIGIN
set-cookie: SESSION=7c527d10936f775b791bd0f54d8fee91; path=/; secure; HttpOnly; SameSite=Lax
ua=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
_glhf=1675504238; expires=Sat, 04-Feb-2023 05:54:22 GMT; Max-Age=3600; path=/
dnb=1; path=/; httponly; samesite=lax
auid=U5PMxWPd5P6PFxygA76CAg==; path=/; secure; httponly; samesite=lax
x-reason: 1079,1021
cache-control: no-cache, private
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
es.888casino.com/exclusive-mob/spinson.htm?utm_campaign=100138643_1853545_nodescription&utm_content=100138643&utm_medium=casap&utm_source=aff
200 OK 0 B URL HTTP/2 es.888casino.com/exclusive-mob/spinson.htm?utm_campaign=100138643_1853545_nodescription&utm_content=100138643&utm_medium=casap&utm_source=aff
IP
GET /exclusive-mob/spinson.htm?utm_campaign=100138643_1853545_nodescription&utm_content=100138643&utm_medium=casap&utm_source=aff HTTP/1.1
Host: es.888casino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: 888TempQueryCookie=sr%3D1853545; 888Cookie=isftd%3Dfalse%26isreal%3Dfalse%26lang%3Des%26OSR%3D1853545%26RefType%3DNoReferrer%26TestData%3D%7B%22mm_id%22%3A%2245577%22%2C%22orig-lp%22%3A%22https%3A%2F%2Fes.888casino.com%2Fexclusive-mob%2Fspinson.htm%22%2C%22referrer%22%3A%22NULL%22%2C%22utm_campaign%22%3A%22100138643_1853545_nodescription%22%2C%22utm_content%22%3A%22100138643%22%2C%22utm_medium%22%3A%22casap%22%2C%22utm_source%22%3A%22aff%22%7D; 888TempContext=testdata%3D%7B%22mm_id%22%3A%2245577%22%2C%22orig-lp%22%3A%22https%3A%2F%2Fes.888casino.com%2Fexclusive-mob%2Fspinson.htm%22%2C%22referrer%22%3A%22NULL%22%2C%22utm_campaign%22%3A%22100138643_1853545_nodescription%22%2C%22utm_content%22%3A%22100138643%22%2C%22utm_medium%22%3A%22casap%22%2C%22utm_source%22%3A%22aff%22%7D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
date: Sat, 04 Feb 2023 04:54:23 GMT
p3p: CP="Read our privacy policy at http://www.888.com/security-and-privacy/privacy-policy.htm"
content-security-policy: frame-ancestors 'self' *.genesazrak.com *.888casinoarabic.net *.arabiccasino888.com *.casinoarabic888.com *.casinoarabic-888.com *.888-casinoarabic.com *.888casino-arabic.com http://wrapper.safe-installation.com/ https://wrapper.safe-installation.com/ http://localhost:* https://localhost:* *.bingosys.net *.secured-igaming-usa.com *.888.pt *.sisportsbook.com *.888poker.de *.888slots.de *.safe-iplay.com *.safe-installation.com *.payoutscentral.com *.triple8holdem.com *.888.com *.secured-qa.com *.secured-registration.com *.secureutils.com *.images4us.com *.onlinepersonalmessages.com *.888sport.com *.888sport.es *.888sport.it *.888sport.dk *.888sport.ro *.888sport.se *.888sport.us *.888sport.de *.777.com *.personalinfoonline.com *.888.de *.888casino.com *.888poker.com *.888casino.dk *.888poker.dk *.888.de *.888casino.ro *.888poker.ro *.888casino.se *.888poker.se *.888casino.es *.888poker.es *.888casino.it *.888poker.it *.888casino.us *.888poker.us *.888ladies.com *.888.pt cmsp *.harrahscasino.com *.wsop.com *.delawarepark.com *.doverdowns.com *.harringtongamingonline.com *.secured-igaming-services.com *.secured-igaming-usa.com *.igaming-services.com *.888.ca *.888casino.ca *.888poker.ca *.888sport.ca *.888.nl *.888casino.nl *.888poker.nl *.888sport.nl *.ar-888-casino.com *.888casino-ar.com *.ar888-casino.com *.arab888-casino.com *.casinoelarab-888.com *.alarab-888casino.com *.casinoalarab-888.com *.888casino-alarab.com *.888casino-arabian.com *.arabian-888casino.com *.888-casino-arabian.com *.888-casino-alarab.com *.ballysdover.com *.888casino-uae.com *.playat888-games.com *.888casino-game.com *.online-arabic-casino.net *.tripleeight.live *.playat888online.com *.888games-uae.com *.triple-eight-games.com *.play-casino-now.com *.888slots-uae.com *.888-uae.com *.mrgreen.de *.mrgreen.se *.mrgreen.com *.mrgreen.dk
x-wcs-correlation-id: 8g0cRtmSd-V6emdjufGQhrY0JxW3okwW4DkQKQ2PaLcPDfSqk0KfhQ==
srv: 44305334
set-cookie: 888TempQueryCookie=; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=888casino.com; path=/; secure; samesite=none; httponly
888TempContext=; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=888casino.com; path=/; secure; samesite=none; httponly
888Cookie=isftd%3Dfalse%26isreal%3Dfalse%26lang%3Des%26OSR%3D1853545%26RefType%3DNoReferrer%26TestData%3D%7B%22mm_id%22%3A%2245577%22%2C%22orig-lp%22%3A%22https%3A%2F%2Fes.888casino.com%2Fexclusive-mob%2Fspinson.htm%22%2C%22referrer%22%3A%22NULL%22%2C%22utm_campaign%22%3A%22100138643_1853545_nodescription%22%2C%22utm_content%22%3A%22100138643%22%2C%22utm_medium%22%3A%22casap%22%2C%22utm_source%22%3A%22aff%22%7D; max-age=604800; domain=888casino.com; path=/; secure; samesite=none; httponly
apigw-requestid: fzC31gLQDoEEMNA=
content-encoding: br
vary: Accept-Encoding,User-Agent,Cookie
x-cache: Miss from cloudfront
via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 8g0cRtmSd-V6emdjufGQhrY0JxW3okwW4DkQKQ2PaLcPDfSqk0KfhQ==
X-Firefox-Spdy: h2
dsp-ap.eskimi.com/v2/gtr?id=22441&url=https%3A%2F%2F20bet.com%2Fcl%3Fbtag%3D668128_85D59F2CB78B41D0BA08DD275FBF1499&t=1675486504437
200 OK 0 B URL HTTP/2 dsp-ap.eskimi.com/v2/gtr?id=22441&url=https%3A%2F%2F20bet.com%2Fcl%3Fbtag%3D668128_85D59F2CB78B41D0BA08DD275FBF1499&t=1675486504437
IP
GET /v2/gtr?id=22441&url=https%3A%2F%2F20bet.com%2Fcl%3Fbtag%3D668128_85D59F2CB78B41D0BA08DD275FBF1499&t=1675486504437 HTTP/1.1
Host: dsp-ap.eskimi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
set-cookie: __eConsent=1; Expires=Mon, 06 Mar 2023 04:54:30 GMT; Max-Age=2592000; Domain=.eskimi.com; Path=/; Secure; SameSite=None
__eDId=9e2b52f3-c9e6-46ff-9d9a-7b6fef37ea5c; Expires=Mon, 06 Mar 2023 04:54:30 GMT; Max-Age=2592000; Domain=.eskimi.com; Path=/; Secure; SameSite=None
__eP=1; Expires=Sat, 18 Feb 2023 04:54:30 GMT; Max-Age=1209600; Domain=.eskimi.com; Path=/; Secure; SameSite=None
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
cache-control: no-cache
date: Sat, 04 Feb 2023 04:54:30 GMT
content-type: application/json
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
20bet.com/app/2929.f8f5c8474525d5d8.esm.js
200 OK 0 B URL HTTP/2 20bet.com/app/2929.f8f5c8474525d5d8.esm.js
IP
GET /app/2929.f8f5c8474525d5d8.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/cl?btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
Cookie: btag=668128_85D59F2CB78B41D0BA08DD275FBF1499; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:28 GMT
content-type: application/javascript
cf-ray: 7940cefb0ee295e5-ARN
etag: W/"63dcff6e-e6f"
last-modified: Fri, 03 Feb 2023 12:34:54 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/5051.bc8a43a20e262efb.esm.js
200 OK 0 B URL HTTP/2 20bet.com/app/5051.bc8a43a20e262efb.esm.js
IP
GET /app/5051.bc8a43a20e262efb.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/cl?btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
Cookie: btag=668128_85D59F2CB78B41D0BA08DD275FBF1499; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:28 GMT
content-type: application/javascript
cf-ray: 7940cefb4efe95e5-ARN
etag: W/"63dcff68-c1d"
last-modified: Fri, 03 Feb 2023 12:34:48 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/sport/4.svg
200 OK 0 B URL HTTP/2 20bet.com/assets/sport/4.svg
IP
GET /assets/sport/4.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/cl?btag=668128_85D59F2CB78B41D0BA08DD275FBF1499
Cookie: btag=668128_85D59F2CB78B41D0BA08DD275FBF1499; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:28 GMT
content-type: image/svg+xml
cf-ray: 7940cefe081095e5-ARN
etag: W/"63dd0032-15d5"
last-modified: Fri, 03 Feb 2023 12:38:10 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/data/get-countries
200 OK 0 B URL HTTP/2 platform.20bet.com/api/data/get-countries
IP
GET /api/data/get-countries HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=721206a9-051d-4655-b643-93c292eace44.1675486501.1.1675486501.1675486501.06bbbfe9-ee8a-4d87-9919-ce49b1bc5a91
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:54:28 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7940cef8b9522d8f-ARN
content-encoding: br
X-Firefox-Spdy: h2
172.67.146.68
88.214.195.156
95.211.229.247
23.33.119.27
161.35.78.172
83.147.204.197
104.21.94.12
54.74.8.139
54.233.102.123
87.250.251.119
157.240.205.11
217.147.127.42
188.114.97.1