Overview

URL bizzoreg.com/
IP172.67.68.203
ASNCLOUDFLARENET
Location United States
Report completed2022-09-06 08:35:59 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-06 2 c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com/sealassets/01 (...) Malware
2022-09-06 2 c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com/apg-seal.js Malware
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (52)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS api.feedad.com (1) 5296 2017-12-20 17:42:46 UTC 2022-09-06 06:18:26 UTC 216.239.36.21
mnemonic passive DNS ctrack.trafficjunky.net (1) 27301 2014-03-23 22:43:38 UTC 2022-09-06 04:58:42 UTC 66.254.114.89
mnemonic passive DNS sentry.softlabs.com (1) 0 2021-11-03 07:02:43 UTC 2022-09-06 08:33:36 UTC 172.67.71.55 Unknown ranking
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-09-06 04:42:27 UTC 143.204.55.36
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-06 05:16:49 UTC 143.204.55.110
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-06 04:40:31 UTC 34.117.237.239
mnemonic passive DNS ocsp.pki.goog (11) 175 2017-06-14 07:23:31 UTC 2022-09-05 04:38:08 UTC 142.250.74.3
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-06 04:43:30 UTC 34.208.31.97
mnemonic passive DNS ocsp.sca1b.amazontrust.com (3) 1015 2017-03-03 15:20:51 UTC 2019-03-27 04:05:54 UTC 143.204.42.88
mnemonic passive DNS eb2.3lift.com (1) 402 2014-09-24 15:03:42 UTC 2022-09-06 08:00:43 UTC 13.248.245.213
mnemonic passive DNS d2i76d1bskcqlp.cloudfront.net (151) 0 2022-03-01 15:03:20 UTC 2022-09-06 07:13:14 UTC 54.230.245.89 Unknown ranking
mnemonic passive DNS bizzoreg.com (2) 0 2021-07-30 10:10:29 UTC 2022-09-06 07:37:20 UTC 104.26.3.121 Unknown ranking
mnemonic passive DNS ocsp.entrust.net (2) 1208 2013-07-24 12:09:14 UTC 2022-09-06 04:39:51 UTC 104.110.10.32
mnemonic passive DNS www.gstatic.com (1) 0 2016-07-26 09:37:06 UTC 2022-09-06 04:41:17 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS main.exosrv.com (1) 206751 2016-11-30 11:41:20 UTC 2022-09-05 22:56:24 UTC 95.211.229.245
mnemonic passive DNS main.exoclick.com (1) 33599 2015-09-01 10:25:49 UTC 2022-09-05 16:30:05 UTC 95.211.229.247
mnemonic passive DNS track-eu.customer.io (1) 451044 2021-05-19 17:12:05 UTC 2022-09-06 07:13:14 UTC 34.120.129.162
mnemonic passive DNS tracker.growthbuddy.app (1) 153665 2020-11-30 13:00:07 UTC 2022-09-05 21:54:02 UTC 52.31.198.104
mnemonic passive DNS a.sportradarserving.com (1) 2372 2019-05-18 08:44:07 UTC 2022-09-06 04:53:25 UTC 3.121.4.177
mnemonic passive DNS my.rtmark.net (2) 9054 2017-08-22 14:11:49 UTC 2022-09-06 04:03:04 UTC 139.45.195.8
mnemonic passive DNS region1.google-analytics.com (1) 0 2022-03-17 11:26:33 UTC 2022-09-06 04:51:59 UTC 216.239.34.36 Domain (google-analytics.com) ranked at: 8401
mnemonic passive DNS x.bidswitch.net (8) 286 2017-08-28 15:21:00 UTC 2022-09-06 04:42:30 UTC 3.127.105.16
mnemonic passive DNS bizzocasino.com (68) 291590 2021-07-06 13:20:32 UTC 2022-09-06 07:13:14 UTC 104.26.8.22
mnemonic passive DNS cdn.seon.io (1) 212690 2019-10-28 00:43:56 UTC 2022-09-05 22:56:22 UTC 54.230.111.35
mnemonic passive DNS fonts.gstatic.com (1) 0 2014-08-29 13:43:22 UTC 2022-09-06 04:40:06 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS platform.bizzocasino.com (29) 0 2022-01-12 13:05:28 UTC 2022-09-06 07:13:14 UTC 104.26.8.22 Domain (bizzocasino.com) ranked at: 291590
mnemonic passive DNS track.trackingtraffo.com (2) 0 2021-12-15 22:48:04 UTC 2022-09-06 01:37:56 UTC 88.214.195.156 Unknown ranking
mnemonic passive DNS cdn.livechatinc.com (4) 6288 2012-06-22 08:37:34 UTC 2022-09-06 05:45:24 UTC 23.36.79.16
mnemonic passive DNS api.livechatinc.com (4) 5353 2013-12-20 14:27:35 UTC 2022-09-06 04:24:01 UTC 23.36.79.16
mnemonic passive DNS fonts.googleapis.com (2) 8877 2014-07-21 13:19:55 UTC 2022-09-06 05:20:18 UTC 216.58.211.10
mnemonic passive DNS assets.customer.io (1) 19446 2013-05-31 16:10:41 UTC 2022-09-06 06:37:22 UTC 54.230.111.127
mnemonic passive DNS platform.bizzocasino.com (29) 0 2022-01-12 13:05:28 UTC 2022-09-06 07:13:14 UTC 104.26.9.22 Domain (bizzocasino.com) ranked at: 291590
mnemonic passive DNS match.sharethrough.com (3) 604 2015-12-22 22:55:59 UTC 2022-09-06 04:39:58 UTC 52.29.43.144
mnemonic passive DNS bizzoreg.com (2) 0 2021-07-30 10:10:29 UTC 2022-09-06 07:37:20 UTC 104.26.2.121 Unknown ranking
mnemonic passive DNS zz.connextra.com (2) 14652 2014-03-20 17:05:16 UTC 2022-09-05 21:54:02 UTC 104.85.191.64
mnemonic passive DNS www.google-analytics.com (2) 40 2012-10-03 01:04:21 UTC 2022-09-06 06:14:56 UTC 216.239.38.178
mnemonic passive DNS secure.adnxs.com (3) 396 2012-05-22 16:37:37 UTC 2022-09-06 04:43:28 UTC 185.89.211.132
mnemonic passive DNS ocsp.digicert.com (2) 86 2012-05-21 07:02:23 UTC 2022-09-06 06:14:31 UTC 93.184.220.29
mnemonic passive DNS casino.cur.a8r.games (1) 336046 2021-05-15 15:15:03 UTC 2022-09-06 07:13:14 UTC 172.64.145.200
mnemonic passive DNS cdn.softswiss.net (47) 412286 2015-07-09 16:04:37 UTC 2022-09-05 23:05:57 UTC 104.17.113.131
mnemonic passive DNS secure.livechatinc.com (1) 6541 2012-08-20 19:27:12 UTC 2022-09-06 04:44:00 UTC 23.36.79.16
mnemonic passive DNS cdn.onesignal.com (1) 3015 2015-04-22 13:41:50 UTC 2022-09-06 05:33:24 UTC 104.18.226.52
mnemonic passive DNS ocsp.sectigo.com (5) 487 2018-12-17 11:31:55 UTC 2022-09-06 05:03:06 UTC 104.18.32.68
mnemonic passive DNS tags.feedad.com (1) 26948 2019-10-23 18:30:02 UTC 2022-09-06 06:18:26 UTC 216.239.38.21
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-06 04:01:54 UTC 34.120.237.76
mnemonic passive DNS r3.o.lencr.org (4) 344 2020-12-02 08:52:13 UTC 2022-09-05 04:38:00 UTC 23.36.77.32
mnemonic passive DNS c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com (3) 580028 2019-04-26 16:46:17 UTC 2022-09-06 07:13:14 UTC 54.230.111.97
mnemonic passive DNS www.googletagmanager.com (1) 75 2012-12-25 14:52:06 UTC 2022-09-05 04:38:34 UTC 142.250.74.72
mnemonic passive DNS main.realsrv.com (1) 91110 2019-02-11 13:11:59 UTC 2022-09-05 22:56:24 UTC 95.211.229.245
mnemonic passive DNS tsyndicate.com (1) 13042 2017-03-16 09:04:54 UTC 2022-09-06 03:20:00 UTC 162.55.130.248
mnemonic passive DNS e1.o.lencr.org (1) 6159 2021-08-20 07:36:30 UTC 2022-09-06 04:02:12 UTC 23.36.76.226
mnemonic passive DNS accounts.livechatinc.com (1) 7698 2017-07-31 05:50:56 UTC 2022-09-06 05:34:05 UTC 23.36.79.16


Recent reports on same IP/ASN/Domain/Screenshot

Last 1 reports on IP: 172.67.68.203

Date UQ / IDS / BL URL IP
2022-09-06 08:35:59 +0000
0 - 0 - 2 bizzoreg.com/ 172.67.68.203

Last 5 reports on ASN: CLOUDFLARENET

Date UQ / IDS / BL URL IP
2022-11-29 01:32:01 +0000
0 - 0 - 1 yogibo.com/?_kx=Gsjxwd5JJDLmFrbI6-Gb_KTVE495j (...) 23.227.38.32
2022-11-29 01:34:03 +0000
0 - 0 - 2 tinyurl4.ru/n686786400/ 104.21.84.153
2022-11-29 01:33:28 +0000
0 - 0 - 1 instantttpresence.com/olux/BOfA/BOfA/BOfA 172.67.159.194
2022-11-29 01:33:14 +0000
0 - 0 - 5 1npost.320212111222.xyz/ljcu81ea/ 172.67.203.194
2022-11-29 01:27:45 +0000
0 - 0 - 17 movierulzhd.top/movies/ludo-2020-hindi/ 172.67.190.197

Last 5 reports on domain: bizzoreg.com

Date UQ / IDS / BL URL IP
2022-11-26 08:59:06 +0000
0 - 0 - 2 bizzoreg.com/es/registration 104.26.2.121
2022-11-10 14:43:48 +0000
0 - 0 - 2 bizzoreg.com/cz 104.26.2.121
2022-10-15 02:38:59 +0000
0 - 0 - 2 bizzoreg.com/en_ca?btag=667527_92289C8C53FD46 (...) 104.26.2.121
2022-09-19 15:04:36 +0000
0 - 0 - 2 bizzoreg.com/tournaments/awesome-christmas-race 104.26.2.121
2022-09-13 08:07:25 +0000
0 - 0 - 1 bizzoreg.com/cz 104.26.3.121

Last 4 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-09-13 08:07:25 +0000
0 - 0 - 1 bizzoreg.com/cz 104.26.3.121
2022-09-01 01:57:12 +0000
0 - 0 - 2 bizzoreg.com/pt 104.26.2.121
2022-11-25 06:30:45 +0000
0 - 0 - 1 bizzocasino.com/ 104.26.9.22
2022-09-07 05:30:40 +0000
0 - 0 - 2 www.bizzocasino.com/ 104.26.9.22


JavaScript

Executed Scripts (47)


Executed Evals (5)

#1 JavaScript::Eval (size: 15534, repeated: 1) - SHA256: a9c1dd73fa7ed90838301c93418b2c92bf1274928fee89eb257d02e97173cae1

                                        /* Anti-spam. Want to say hello? Contact (base64) Ym90Z3VhcmQtY29udGFjdEBnb29nbGUuY29t */
(function() {
    var A = function(d) {
            return d
        },
        u = function(d, a) {
            if (!(d = (a = null, T.trustedTypes), d) || !d.createPolicy) return a;
            try {
                a = d.createPolicy("bg", {
                    createHTML: A,
                    createScript: A,
                    createScriptURL: A
                })
            } catch (v) {
                T.console && T.console.error(v.message)
            }
            return a
        },
        T = this || self;
    (0, eval)(function(d, a) {
        return (a = u()) && 1 === d.eval(a.createScript("1")) ? function(v) {
            return a.createScript(v)
        } : function(v) {
            return "" + v
        }
    }(T)(Array(7824 * Math.random() | 0).join("\n") + '(function(){var dN=function(a,d){g(293,d,((d.y7.push(d.h.slice()),d).h[293]=void 0,a))},aC=function(a,d){return d[a]<<24|d[(a|0)+1]<<16|d[(a|0)+2]<<8|d[(a|0)+3]},I=function(a){return a.j?Y(a,a.F):B(8,true,a)},vk=function(a,d,A,T,S){Q(((T=Z(d,(T=k((a&=(S=a&4,3),d)),A=k(d),T)),S&&(T=w(""+T)),a)&&Q(l(2,T.length),A,d),T),A,d)},T2=function(a,d,A,T){return(T=G[a.substring(0,3)+"_"])?T(a.substring(3),d,A):As(d,a)},Z=function(a,d){if(a=a.h[d],void 0===a)throw[z,30,d];if(a.value)return a.create();return(a.create(2*d*d+98*d+22),a).prototype},oC=function(a,d,A,T,S){if(S=a[0],S==b)d.T=25,d.B(a);else if(S==n){T=a[1];try{A=d.u||d.B(a)}catch(v){N(d,v),A=d.u}T(A)}else if(S==sE)d.B(a);else if(S==m)d.B(a);else if(S==ur){try{for(A=0;A<d.P.length;A++)try{T=d.P[A],T[0][T[1]](T[2])}catch(v){}}catch(v){}(0,a[1])((d.P=[],function(v,u){d.s(v,true,u)}),function(v){((v=!d.X.length,P)([EE],d),v)&&t(d,true,false)})}else{if(S==qv)return A=a[2],g(456,d,a[6]),g(156,d,A),d.B(a);S==EE?(d.V=[],d.h=null,d.o=[]):S==gN&&"loading"===H.document.readyState&&(d.N=function(v,u){function E(){u||(u=true,v())}H.document.addEventListener((u=false,"DOMContentLoaded"),E,W),H.addEventListener("load",E,W)})}},h=function(a,d,A,T,S,v){if(!A.i){if(d=(S=Z(A,((v=void 0,d&&d[0]===z)&&(v=d[2],a=d[1],d=void 0),154)),0==S.length&&(T=Z(A,145)>>3,S.push(a,T>>8&255,T&255),void 0!=v&&S.push(v&255)),a="",d&&(d.message&&(a+=d.message),d.stack&&(a+=":"+d.stack)),Z(A,223)),3<d){A.I=(v=(a=(a=a.slice(0,(d|0)-3),d-=(a.length|0)+3,w(a)),A.I),A);try{Q(l(2,a.length).concat(a),359,A,9)}finally{A.I=v}}g(223,A,d)}},Lm=function(a,d,A,T,S,v){if(!d.u){d.J++;try{for(v=d.D,S=void 0,T=0;--a;)try{if(A=void 0,d.j)S=Y(d,d.j);else{if(T=Z(d,293),T>=v)break;S=Z(d,(A=k((g(145,d,T),d)),A))}y(d,false,false,(S&&S.call?S(d,a):h(0,[z,21,A],d),a))}catch(u){Z(d,55)?h(22,u,d):g(55,d,u)}if(!a){if(d.vt){Lm(762072175116,(d.J--,d));return}h(0,[z,33],d)}}catch(u){try{h(22,u,d)}catch(E){N(d,E)}}d.J--}},p,$m=function(a,d,A,T,S,v,u,E){return(u=(A=[(S=Ym,-83),98,-35,80,47,9,A,-54,57,(v=d&7,16)],K)[a.v](a.ct),u[a.v]=function(q){E=(v+=6+7*d,v&=7,q)},u).concat=function(q){return((q=(E=(q=(q=T%16+1,-q*E+46*E*E-1012*E+(S()|0)*q+A[v+51&7]*T*q)+v-4508*T*E-92*T*T*E+2*T*T*q,void 0),A[q]),A)[(v+21&7)+(d&2)]=q,A)[v+(d&2)]=98,q},u},G,Bk=function(a,d,A,T){return Z(a,(g(293,(Lm(A,((T=Z(a,293),a.o)&&T<a.D?(g(293,a,a.D),dN(d,a)):g(293,a,d),a)),a),T),156))},N=function(a,d){a.u=((a.u?a.u+"~":"E:")+d.message+":"+d.stack).slice(0,2048)},P=function(a,d){d.X.splice(0,0,a)},X=function(a,d){for(d=[];a--;)d.push(255*Math.random()|0);return d},RC=function(a,d,A,T){A=(T=k(a),k)(a),Q(l(d,Z(a,T)),A,a)},k=function(a,d){if(a.j)return Y(a,a.F);return(d=B(8,true,a),d&128)&&(d^=128,a=B(2,true,a),d=(d<<2)+(a|0)),d},Vi=function(a,d,A,T){function S(){}return A=T2(a,function(v){S&&(d&&e(d),T=v,S(),S=void 0)},(T=void 0,!!d))[0],{invoke:function(v,u,E,q){function L(){T(function(R){e(function(){v(R)})},E)}if(!u)return u=A(E),v&&v(u),u;T?L():(q=S,S=function(){e((q(),L))})}}},Cm=function(a,d,A){if("object"==(A=typeof a,A))if(a){if(a instanceof Array)return"array";if(a instanceof Object)return A;if("[object Window]"==(d=Object.prototype.toString.call(a),d))return"object";if("[object Array]"==d||"number"==typeof a.length&&"undefined"!=typeof a.splice&&"undefined"!=typeof a.propertyIsEnumerable&&!a.propertyIsEnumerable("splice"))return"array";if("[object Function]"==d||"undefined"!=typeof a.call&&"undefined"!=typeof a.propertyIsEnumerable&&!a.propertyIsEnumerable("call"))return"function"}else return"null";else if("function"==A&&"undefined"==typeof a.call)return"object";return A},IC=function(a,d,A){if(3==a.length){for(A=0;3>A;A++)d[A]+=a[A];for(A=(a=[13,8,13,12,16,5,3,10,15],0);9>A;A++)d[3](d,A%3,a[A])}},g=function(a,d,A){if(293==a||145==a)d.h[a]?d.h[a].concat(A):d.h[a]=FT(A,d);else{if(d.i&&328!=a)return;171==a||359==a||50==a||154==a||294==a?d.h[a]||(d.h[a]=$m(d,78,A,a)):d.h[a]=$m(d,9,A,a)}328==a&&(d.C=B(32,false,d),d.Y=void 0)},km=function(a,d){return K[a](K.prototype,{replace:d,parent:d,splice:d,prototype:d,call:d,console:d,floor:d,stack:d,length:d,document:d,pop:d,propertyIsEnumerable:d})},As=function(a,d){return a(function(A){A(d)}),[function(){return d}]},l=function(a,d,A,T){for(T=(A=[],(a|0)-1);0<=T;T--)A[(a|0)-1-(T|0)]=d>>8*T&255;return A},Q=function(a,d,A,T,S,v){if(A.I==A)for(S=Z(A,d),359==d?(d=function(u,E,q,L,R){if(q=(R=S.length,R|0)-4>>3,S.lq!=q){E=(L=(q<<3)-4,S.lq=q,[0,0,v[1],v[2]]);try{S.DB=Z7(aC((L|0)+4,S),aC(L,S),E)}catch(V){throw V;}}S.push(S.DB[R&7]^u)},v=Z(A,294)):d=function(u){S.push(u)},T&&d(T&255),A=a.length,T=0;T<A;T++)d(a[T])},B=function(a,d,A,T,S,v,u,E,q,L,R,V,C,D){if((C=Z(A,293),C)>=A.D)throw[z,31];for(D=(v=C,L=a,S=0,A).ah.length;0<L;)q=v%8,R=v>>3,V=8-(q|0),V=V<L?V:L,T=A.o[R],d&&(E=A,E.Y!=v>>6&&(E.Y=v>>6,u=Z(E,328),E.g=Z7(E.Y,E.C,[0,0,u[1],u[2]])),T^=A.g[R&D]),v+=V,S|=(T>>8-(q|0)-(V|0)&(1<<V)-1)<<(L|0)-(V|0),L-=V;return g(293,A,(d=S,(C|0)+(a|0))),d},wN=function(a,d,A){return d.s(function(T){A=T},false,a),A},D7=function(a,d,A,T,S,v){for(v=(T=(((d=k((A=a[rN]||{},a)),A).h$=k(a),A).K=[],a.I)==a?(I(a)|0)-1:1,k(a)),S=0;S<T;S++)A.K.push(k(a));for(;T--;)A.K[T]=Z(a,A.K[T]);return A.Ih=Z(a,v),A.L=Z(a,d),A},Y=function(a,d){return(d=d.create().shift(),a).j.create().length||a.F.create().length||(a.j=void 0,a.F=void 0),d},Js=function(a,d,A,T){for(;a.X.length;){a.N=null,A=a.X.pop();try{T=oC(A,a)}catch(S){N(a,S)}if(d&&a.N){(d=a.N,d)(function(){t(a,true,true)});break}}return T},H=this||self,W={passive:true,capture:true},Z7=function(a,d,A,T,S){for(T=A[S=0,2]|0,A=A[3]|0;15>S;S++)a=a>>>8|a<<24,a+=d|0,d=d<<3|d>>>29,a^=T+823,A=A>>>8|A<<24,A+=T|0,T=T<<3|T>>>29,d^=a,A^=S+823,T^=A;return[d>>>24&255,d>>>16&255,d>>>8&255,d>>>0&255,a>>>24&255,a>>>16&255,a>>>8&255,a>>>0&255]},e=H.requestIdleCallback?function(a){requestIdleCallback(function(){a()},{timeout:4})}:H.setImmediate?function(a){setImmediate(a)}:function(a){setTimeout(a,0)},OE=function(a,d,A,T){for(T=k(d),A=0;0<a;a--)A=A<<8|I(d);g(T,d,A)},Qi=function(a,d){((d.push(a[0]<<24|a[1]<<16|a[2]<<8|a[3]),d).push(a[4]<<24|a[5]<<16|a[6]<<8|a[7]),d).push(a[8]<<24|a[9]<<16|a[10]<<8|a[11])},lr=function(a){return a},G2=function(a,d,A,T,S,v){function u(){if(a.I==a){if(a.h){var E=[qv,T,d,void 0,S,v,arguments];if(2==A)var q=t(a,!(P(E,a),1),false);else if(1==A){var L=!a.X.length;(P(E,a),L)&&t(a,false,false)}else q=oC(E,a);return q}S&&v&&S.removeEventListener(v,u,W)}}return u},xm=function(a,d,A,T,S){for(S=(T=(d.Yb=(d.ct=km((d.M5=(d.ah=(d.ra=UE,d[n]),z2),d.v),{get:function(){return this.concat()}}),K[d.v](d.ct,{value:{value:{}}})),0),[]);128>T;T++)S[T]=String.fromCharCode(T);t(d,((P((P([(g((g(27,(g(476,d,(g(294,d,(g(209,(g(175,(g(409,d,(g(233,d,(g(55,(g(215,(g(256,d,(g(282,(g(123,(g(161,(g(248,(g((g(45,d,(g(482,d,(g(354,d,(g(54,d,(g(359,(g(87,(g(154,d,(g(171,(d.SQ=(g(1,d,(g(376,(g(9,d,(g((g(223,(g(474,d,(g(353,d,(d.f0=(g(372,d,(g((g(156,(g(423,(g(414,d,(g(34,(g((g(50,(d.mL=(g(((g((d.C0=(d.V=((d.uq=((d.U=false,d).G=8001,false),d).F=void 0,d.u=void 0,d.Y=void 0,[]),d.T=(d.R=void 0,d.C=void 0,d.W=(d.y7=(d.J=0,[]),(d.h=[],d).I=(d.D=((T=window.performance||{},d).zo=0,0),d),0),d.jQ=function(v){this.I=v},d.o=[],d.H=(d.j=void 0,1),d.P=[],d.g=(d.X=[],void 0),d.N=null,25),(d.i=false,d.Z=0,T).timeOrigin||(T.timing||{}).navigationStart||0),d.S=(d.A=0,0),293),d,0),g)(145,d,0),19),d,function(v,u,E,q){if(u=v.y7.pop()){for(q=I(v);0<q;q--)E=k(v),u[E]=v.h[E];v.h=(u[223]=v.h[u[154]=v.h[154],223],u)}else g(293,v,v.D)}),0),d),[]),391),d,function(v,u,E,q){(E=(q=k(v),I(v)),u=k(v),g)(u,v,Z(v,q)>>>E)}),d),function(v,u,E,q){!y(v,false,true,u)&&(u=D7(v),E=u.L,q=u.Ih,v.I==v||E==v.jQ&&q==v)&&(g(u.h$,v,E.apply(q,u.K)),v.S=v.l())}),function(v,u,E,q,L){q=Z(v,(L=Z((E=(q=(u=k((L=k(v),E=k(v),v)),k)(v),Z(v,E)),u=Z(v,u),v.I),L),q)),0!==L&&(q=G2(v,q,1,u,L,E),L.addEventListener(E,q,W),g(372,v,[L,E,q]))})),d),function(v,u,E,q,L){(E=(u=(q=k(v),k(v)),k(v)),v).I==v&&(L=Z(v,q),E=Z(v,E),u=Z(v,u),L[u]=E,328==q&&(v.Y=void 0,2==u&&(v.C=B(32,false,v),v.Y=void 0)))}),d),{}),511),d,function(v,u,E,q,L,R,V,C,D,O,r,F){function x(J,U){for(;D<J;)R|=I(v)<<D,D+=8;return R>>=(D-=(U=R&(1<<J)-1,J),J),U}for(F=(r=(u=(E=k(v),D=R=0,x(3)|0)+1,x(5)),C=0),L=[];F<r;F++)q=x(1),L.push(q),C+=q?0:1;for(F=(V=(C=((C|0)-1).toString(2).length,[]),0);F<r;F++)L[F]||(V[F]=x(C));for(C=0;C<r;C++)L[C]&&(V[C]=k(v));for(O=[];u--;)O.push(Z(v,k(v)));g(E,v,function(J,U,M,S3,c){for(U=(S3=[],0),M=[];U<r;U++){if(!(c=V[U],L)[U]){for(;c>=M.length;)M.push(k(J));c=M[c]}S3.push(c)}(J.j=FT(O.slice(),J),J).F=FT(S3,J)})}),0)),0),function(v,u,E,q){u=k((q=k((E=k(v),v)),v)),g(u,v,Z(v,E)||Z(v,q))})),function(v){RC(v,1)})),d),2048),199),d,function(v,u,E,q,L,R,V){for(q=(V=(R=(L=nm((u=k(v),v)),E="",Z(v,189)),R).length,0);L--;)q=((q|0)+(nm(v)|0))%V,E+=S[R[q]];g(u,v,E)}),0)),d),function(v,u,E){(u=(E=k(v),k(v)),g)(u,v,""+Z(v,E))}),function(v){RC(v,4)})),0),d),[160,0,0]),[])),d),function(v,u,E,q){(u=(q=Z((E=(u=k(v),k(v)),v),E),Z(v,u)),g)(E,v,q+u)}),d),X(4)),function(v){OE(4,v)})),function(v,u,E){(E=Z((u=(E=k(v),k(v)),v),E),E=Cm(E),g)(u,v,E)})),function(){})),function(v,u,E,q){E=Z(v,(u=Z((q=(u=(E=k(v),k)(v),k)(v),v),u),E)),g(q,v,E[u])})),480),d,function(v,u,E,q,L,R){if(!y(v,true,true,u)){if(q=(R=(u=Z((q=k((u=k((R=k((E=k(v),v)),v)),v)),v),u),Z)(v,R),Z(v,q)),v=Z(v,E),"object"==Cm(v)){for(L in E=[],v)E.push(L);v=E}for(E=(u=(L=v.length,0<u?u:1),0);E<L;E+=u)R(v.slice(E,(E|0)+(u|0)),q)}}),d),function(v){vk(4,v)}),d),function(v,u,E){y(v,false,true,u)||(u=k(v),E=k(v),g(E,v,function(q){return eval(q)}(br(Z(v.I,u)))))}),d),H),d),function(v,u){v=(u=k(v),Z(v.I,u)),v[0].removeEventListener(v[1],v[2],W)}),d)),d),function(v,u,E,q,L){for(L=(q=(u=nm((E=k(v),v)),[]),0);L<u;L++)q.push(I(v));g(E,v,q)}),d),348),function(v,u,E,q,L){u=Z(v,(L=Z((L=(q=(u=k((E=k(v),v)),k(v)),k(v)),v),L),u)),q=Z(v,q),g(E,v,G2(v,q,L,u))})),function(v,u,E){0!=Z((E=Z(v,(u=k(v),E=k(v),E)),v),u)&&g(293,v,E)})),d),function(v,u,E,q){u=(q=k((E=k(v),v)),k)(v),E=Z(v,E),q=Z(v,q),g(u,v,+(E==q))}),d),function(v,u,E,q){u=Z(v,(q=(q=(u=k(v),k)(v),E=k(v),Z(v,q)),u)),g(E,v,u in q|0)}),[0,0,0])),function(v){vk(3,v)})),d),function(v,u){dN((u=Z(v,k(v)),u),v.I)}),471),d,function(v,u,E,q,L,R){y(v,false,true,u)||(R=D7(v.I),E=R.Ih,u=R.h$,q=R.L,R=R.K,L=R.length,E=0==L?new E[q]:1==L?new E[q](R[0]):2==L?new E[q](R[0],R[1]):3==L?new E[q](R[0],R[1],R[2]):4==L?new E[q](R[0],R[1],R[2],R[3]):2(),g(u,v,E))}),gN)],d),[m,A]),d),P)([ur,a],d),true),true)},Nv=function(a,d){if((d=(a=null,H.trustedTypes),!d)||!d.createPolicy)return a;try{a=d.createPolicy("bg",{createHTML:lr,createScript:lr,createScriptURL:lr})}catch(A){H.console&&H.console.error(A.message)}return a},FT=function(a,d,A){return((A=K[d.v](d.Yb),A)[d.v]=function(){return a},A).concat=function(T){a=T},A},f=function(a,d,A){A=this;try{xm(d,this,a)}catch(T){N(this,T),d(function(S){S(A.u)})}},t=function(a,d,A,T,S,v){if(a.X.length){a.uq=(a.U&&0(),a.U=true,d);try{S=a.l(),a.Z=S,a.S=S,a.R=0,v=Js(a,d),T=a.l()-a.Z,a.W+=T,T<(A?0:10)||0>=a.T--||(T=Math.floor(T),a.V.push(254>=T?T:254))}finally{a.U=false}return v}},mq=function(a,d,A,T){try{T=a[((d|0)+2)%3],a[d]=(a[d]|0)-(a[((d|0)+1)%3]|0)-(T|0)^(1==d?T<<A:T>>>A)}catch(S){throw S;}},y=function(a,d,A,T,S,v,u,E,q){if(((((u=(v=(A||a.R++,0<a.A&&a.U&&a.uq&&1>=a.J&&!a.j&&!a.N&&(!A||1<a.G-T))&&0==document.hidden,q=d?255:A?5:2,E=(d=4==a.R)||v?a.l():a.S,E)-a.S,S=u>>14,a.C)&&(a.C^=S*(u<<2)),a).I=S||a.I,a).H+=S,d)||v)a.R=0,a.S=E;if(!v||E-a.Z<a.A-q)return false;return g(293,(d=(a.G=T,Z(a,A?145:293)),a),a.D),a.X.push([sE,d,A?T+1:T]),a.N=e,true},nm=function(a,d){return d=I(a),d&128&&(d=d&127|I(a)<<7),d},w=function(a,d,A,T,S){for(S=d=(A=(a=a.replace(/\\r\\n/g,"\\n"),[]),0);S<a.length;S++)T=a.charCodeAt(S),128>T?A[d++]=T:(2048>T?A[d++]=T>>6|192:(55296==(T&64512)&&S+1<a.length&&56320==(a.charCodeAt(S+1)&64512)?(T=65536+((T&1023)<<10)+(a.charCodeAt(++S)&1023),A[d++]=T>>18|240,A[d++]=T>>12&63|128):A[d++]=T>>12|224,A[d++]=T>>6&63|128),A[d++]=T&63|128);return A},rN=String.fromCharCode(105,110,116,101,103,67,104,101,99,107,66,121,112,97,115,115),gN=(f.prototype.J$=void 0,f.prototype.ZB=void 0,[]),ur=(f.prototype.O="toString",f.prototype.vt=false,[]),sE=[],qv=[],b=[],EE=[],z={},m=[],n=[],Ym=(p=(((Qi,X,function(){})(mq),function(){})(IC),f.prototype.v="create",f.prototype),void 0),K=z.constructor;(p.l=((p.N5=function(a,d,A){return(d=((d^=d<<13,d^=d>>17,d)^d<<5)&A)||(d=1),a^d},(p.FG=function(){return Math.floor(this.W+(this.l()-this.Z))},p.s=function(a,d,A,T,S){if((A="array"===Cm(A)?A:[A],this).u)a(this.u);else try{S=!this.X.length,T=[],P([b,T,A],this),P([n,a,T],this),d&&!S||t(this,d,true)}catch(v){N(this,v),a(this.u)}},p.oh=function(a,d,A,T,S,v){for(v=[],A=0,T=0;A<a.length;A++)for(S=S<<d|a[A],T+=d;7<T;)T-=8,v.push(S>>T&255);return v},p).p0=function(){return Math.floor(this.l())},p).Bt=function(a,d,A,T,S){for(S=T=0;T<a.length;T++)S+=a.charCodeAt(T),S+=S<<10,S^=S>>6;return T=new Number((a=(S+=S<<3,S^=S>>11,S)+(S<<15)>>>0,a)&(1<<d)-1),T[0]=(a>>>d)%A,T},(window.performance||{}).now?function(){return this.C0+window.performance.now()}:function(){return+new Date}),f.prototype).B=function(a,d){return d=(a=(Ym=function(){return d==a?22:49},{}),{}),function(A,T,S,v,u,E,q,L,R,V,C,D,O,r,F){d=(D=d,a);try{if(r=A[0],r==m){E=A[1];try{for(L=(u=(q=atob(E),C=0),[]);C<q.length;C++)V=q.charCodeAt(C),255<V&&(L[u++]=V&255,V>>=8),L[u++]=V;g(328,(this.D=(this.o=L,this.o).length<<3,this),[0,0,0])}catch(x){h(17,x,this);return}Lm(8001,this)}else if(r==b)A[1].push(Z(this,359).length,Z(this,171).length,Z(this,223),Z(this,50).length),g(156,this,A[2]),this.h[143]&&Bk(this,Z(this,143),8001);else{if(r==n){this.I=(S=(R=l(2,(u=A[2],(Z(this,171).length|0)+2)),this.I),this);try{v=Z(this,154),0<v.length&&Q(l(2,v.length).concat(v),171,this,10),Q(l(1,this.H),171,this,109),Q(l(1,this[n].length),171,this),q=0,q-=(Z(this,171).length|0)+5,F=Z(this,359),q+=Z(this,9)&2047,4<F.length&&(q-=(F.length|0)+3),0<q&&Q(l(2,q).concat(X(q)),171,this,15),4<F.length&&Q(l(2,F.length).concat(F),171,this,156)}finally{this.I=S}if(((L=X(2).concat(Z(this,171)),L[1]=L[0]^6,L)[3]=L[1]^R[0],L)[4]=L[1]^R[1],T=this.XG(L))T="!"+T;else for(q=0,T="";q<L.length;q++)O=L[q][this.O](16),1==O.length&&(O="0"+O),T+=O;return Z(this,(g(223,((C=T,Z(this,359)).length=u.shift(),Z(this,171).length=u.shift(),this),u.shift()),50)).length=u.shift(),C}if(r==sE)Bk(this,A[1],A[2]);else if(r==qv)return Bk(this,A[1],8001)}}finally{d=D}}}();var UE,z2=((f.prototype.UJ=(f.prototype[ur]=[0,0,1,1,0,1,1],0),f.prototype.eQ=0,f).prototype.XG=function(a,d,A,T){if(T=window.btoa){for(d=0,A="";d<a.length;d+=8192)A+=String.fromCharCode.apply(null,a.slice(d,d+8192));a=T(A).replace(/\\+/g,"-").replace(/\\//g,"_").replace(/=/g,"")}else a=void 0;return a},/./),Pk=m.pop.bind(f.prototype[b]),br=function(a,d){return(d=Nv())&&1===a.eval(d.createScript("1"))?function(A){return d.createScript(A)}:function(A){return""+A}}(((UE=km(f.prototype.v,(z2[f.prototype.O]=Pk,{get:Pk})),f).prototype.K0=void 0,H));(40<(G=H.botguard||(H.botguard={}),G.m)||(G.m=41,G.bg=Vi,G.a=T2),G).JBK_=function(a,d,A){return A=new f(a,d),[function(T){return wN(T,A)}]};}).call(this);'));
}).call(this);
                                    

#2 JavaScript::Eval (size: 20590, repeated: 1) - SHA256: a4f9e33bde4d916be486531c74389da38e7b8a7c73a25228318ddc605be5f815

                                        (function() {
    var dN = function(a, d) {
            g(293, d, ((d.y7.push(d.h.slice()), d).h[293] = void 0, a))
        },
        aC = function(a, d) {
            return d[a] << 24 | d[(a | 0) + 1] << 16 | d[(a | 0) + 2] << 8 | d[(a | 0) + 3]
        },
        I = function(a) {
            return a.j ? Y(a, a.F) : B(8, true, a)
        },
        vk = function(a, d, A, T, S) {
            Q(((T = Z(d, (T = k((a &= (S = a & 4, 3), d)), A = k(d), T)), S && (T = w("" + T)), a) && Q(l(2, T.length), A, d), T), A, d)
        },
        T2 = function(a, d, A, T) {
            return (T = G[a.substring(0, 3) + "_"]) ? T(a.substring(3), d, A) : As(d, a)
        },
        Z = function(a, d) {
            if (a = a.h[d], void 0 === a) throw [z, 30, d];
            if (a.value) return a.create();
            return (a.create(2 * d * d + 98 * d + 22), a).prototype
        },
        oC = function(a, d, A, T, S) {
            if (S = a[0], S == b) d.T = 25, d.B(a);
            else if (S == n) {
                T = a[1];
                try {
                    A = d.u || d.B(a)
                } catch (v) {
                    N(d, v), A = d.u
                }
                T(A)
            } else if (S == sE) d.B(a);
            else if (S == m) d.B(a);
            else if (S == ur) {
                try {
                    for (A = 0; A < d.P.length; A++) try {
                        T = d.P[A], T[0][T[1]](T[2])
                    } catch (v) {}
                } catch (v) {}(0, a[1])((d.P = [], function(v, u) {
                    d.s(v, true, u)
                }), function(v) {
                    ((v = !d.X.length, P)([EE], d), v) && t(d, true, false)
                })
            } else {
                if (S == qv) return A = a[2], g(456, d, a[6]), g(156, d, A), d.B(a);
                S == EE ? (d.V = [], d.h = null, d.o = []) : S == gN && "loading" === H.document.readyState && (d.N = function(v, u) {
                    function E() {
                        u || (u = true, v())
                    }
                    H.document.addEventListener((u = false, "DOMContentLoaded"), E, W), H.addEventListener("load", E, W)
                })
            }
        },
        h = function(a, d, A, T, S, v) {
            if (!A.i) {
                if (d = (S = Z(A, ((v = void 0, d && d[0] === z) && (v = d[2], a = d[1], d = void 0), 154)), 0 == S.length && (T = Z(A, 145) >> 3, S.push(a, T >> 8 & 255, T & 255), void 0 != v && S.push(v & 255)), a = "", d && (d.message && (a += d.message), d.stack && (a += ":" + d.stack)), Z(A, 223)), 3 < d) {
                    A.I = (v = (a = (a = a.slice(0, (d | 0) - 3), d -= (a.length | 0) + 3, w(a)), A.I), A);
                    try {
                        Q(l(2, a.length).concat(a), 359, A, 9)
                    } finally {
                        A.I = v
                    }
                }
                g(223, A, d)
            }
        },
        Lm = function(a, d, A, T, S, v) {
            if (!d.u) {
                d.J++;
                try {
                    for (v = d.D, S = void 0, T = 0; --a;) try {
                        if (A = void 0, d.j) S = Y(d, d.j);
                        else {
                            if (T = Z(d, 293), T >= v) break;
                            S = Z(d, (A = k((g(145, d, T), d)), A))
                        }
                        y(d, false, false, (S && S.call ? S(d, a) : h(0, [z, 21, A], d), a))
                    } catch (u) {
                        Z(d, 55) ? h(22, u, d) : g(55, d, u)
                    }
                    if (!a) {
                        if (d.vt) {
                            Lm(762072175116, (d.J--, d));
                            return
                        }
                        h(0, [z, 33], d)
                    }
                } catch (u) {
                    try {
                        h(22, u, d)
                    } catch (E) {
                        N(d, E)
                    }
                }
                d.J--
            }
        },
        p, $m = function(a, d, A, T, S, v, u, E) {
            return (u = (A = [(S = Ym, -83), 98, -35, 80, 47, 9, A, -54, 57, (v = d & 7, 16)], K)[a.v](a.ct), u[a.v] = function(q) {
                E = (v += 6 + 7 * d, v &= 7, q)
            }, u).concat = function(q) {
                return ((q = (E = (q = (q = T % 16 + 1, -q * E + 46 * E * E - 1012 * E + (S() | 0) * q + A[v + 51 & 7] * T * q) + v - 4508 * T * E - 92 * T * T * E + 2 * T * T * q, void 0), A[q]), A)[(v + 21 & 7) + (d & 2)] = q, A)[v + (d & 2)] = 98, q
            }, u
        },
        G, Bk = function(a, d, A, T) {
            return Z(a, (g(293, (Lm(A, ((T = Z(a, 293), a.o) && T < a.D ? (g(293, a, a.D), dN(d, a)) : g(293, a, d), a)), a), T), 156))
        },
        N = function(a, d) {
            a.u = ((a.u ? a.u + "~" : "E:") + d.message + ":" + d.stack).slice(0, 2048)
        },
        P = function(a, d) {
            d.X.splice(0, 0, a)
        },
        X = function(a, d) {
            for (d = []; a--;) d.push(255 * Math.random() | 0);
            return d
        },
        RC = function(a, d, A, T) {
            A = (T = k(a), k)(a), Q(l(d, Z(a, T)), A, a)
        },
        k = function(a, d) {
            if (a.j) return Y(a, a.F);
            return (d = B(8, true, a), d & 128) && (d ^= 128, a = B(2, true, a), d = (d << 2) + (a | 0)), d
        },
        Vi = function(a, d, A, T) {
            function S() {}
            return A = T2(a, function(v) {
                S && (d && e(d), T = v, S(), S = void 0)
            }, (T = void 0, !!d))[0], {
                invoke: function(v, u, E, q) {
                    function L() {
                        T(function(R) {
                            e(function() {
                                v(R)
                            })
                        }, E)
                    }
                    if (!u) return u = A(E), v && v(u), u;
                    T ? L() : (q = S, S = function() {
                        e((q(), L))
                    })
                }
            }
        },
        Cm = function(a, d, A) {
            if ("object" == (A = typeof a, A))
                if (a) {
                    if (a instanceof Array) return "array";
                    if (a instanceof Object) return A;
                    if ("[object Window]" == (d = Object.prototype.toString.call(a), d)) return "object";
                    if ("[object Array]" == d || "number" == typeof a.length && "undefined" != typeof a.splice && "undefined" != typeof a.propertyIsEnumerable && !a.propertyIsEnumerable("splice")) return "array";
                    if ("[object Function]" == d || "undefined" != typeof a.call && "undefined" != typeof a.propertyIsEnumerable && !a.propertyIsEnumerable("call")) return "function"
                } else return "null";
            else if ("function" == A && "undefined" == typeof a.call) return "object";
            return A
        },
        IC = function(a, d, A) {
            if (3 == a.length) {
                for (A = 0; 3 > A; A++) d[A] += a[A];
                for (A = (a = [13, 8, 13, 12, 16, 5, 3, 10, 15], 0); 9 > A; A++) d[3](d, A % 3, a[A])
            }
        },
        g = function(a, d, A) {
            if (293 == a || 145 == a) d.h[a] ? d.h[a].concat(A) : d.h[a] = FT(A, d);
            else {
                if (d.i && 328 != a) return;
                171 == a || 359 == a || 50 == a || 154 == a || 294 == a ? d.h[a] || (d.h[a] = $m(d, 78, A, a)) : d.h[a] = $m(d, 9, A, a)
            }
            328 == a && (d.C = B(32, false, d), d.Y = void 0)
        },
        km = function(a, d) {
            return K[a](K.prototype, {
                replace: d,
                parent: d,
                splice: d,
                prototype: d,
                call: d,
                console: d,
                floor: d,
                stack: d,
                length: d,
                document: d,
                pop: d,
                propertyIsEnumerable: d
            })
        },
        As = function(a, d) {
            return a(function(A) {
                A(d)
            }), [function() {
                return d
            }]
        },
        l = function(a, d, A, T) {
            for (T = (A = [], (a | 0) - 1); 0 <= T; T--) A[(a | 0) - 1 - (T | 0)] = d >> 8 * T & 255;
            return A
        },
        Q = function(a, d, A, T, S, v) {
            if (A.I == A)
                for (S = Z(A, d), 359 == d ? (d = function(u, E, q, L, R) {
                        if (q = (R = S.length, R | 0) - 4 >> 3, S.lq != q) {
                            E = (L = (q << 3) - 4, S.lq = q, [0, 0, v[1], v[2]]);
                            try {
                                S.DB = Z7(aC((L | 0) + 4, S), aC(L, S), E)
                            } catch (V) {
                                throw V;
                            }
                        }
                        S.push(S.DB[R & 7] ^ u)
                    }, v = Z(A, 294)) : d = function(u) {
                        S.push(u)
                    }, T && d(T & 255), A = a.length, T = 0; T < A; T++) d(a[T])
        },
        B = function(a, d, A, T, S, v, u, E, q, L, R, V, C, D) {
            if ((C = Z(A, 293), C) >= A.D) throw [z, 31];
            for (D = (v = C, L = a, S = 0, A).ah.length; 0 < L;) q = v % 8, R = v >> 3, V = 8 - (q | 0), V = V < L ? V : L, T = A.o[R], d && (E = A, E.Y != v >> 6 && (E.Y = v >> 6, u = Z(E, 328), E.g = Z7(E.Y, E.C, [0, 0, u[1], u[2]])), T ^= A.g[R & D]), v += V, S |= (T >> 8 - (q | 0) - (V | 0) & (1 << V) - 1) << (L | 0) - (V | 0), L -= V;
            return g(293, A, (d = S, (C | 0) + (a | 0))), d
        },
        wN = function(a, d, A) {
            return d.s(function(T) {
                A = T
            }, false, a), A
        },
        D7 = function(a, d, A, T, S, v) {
            for (v = (T = (((d = k((A = a[rN] || {}, a)), A).h$ = k(a), A).K = [], a.I) == a ? (I(a) | 0) - 1 : 1, k(a)), S = 0; S < T; S++) A.K.push(k(a));
            for (; T--;) A.K[T] = Z(a, A.K[T]);
            return A.Ih = Z(a, v), A.L = Z(a, d), A
        },
        Y = function(a, d) {
            return (d = d.create().shift(), a).j.create().length || a.F.create().length || (a.j = void 0, a.F = void 0), d
        },
        Js = function(a, d, A, T) {
            for (; a.X.length;) {
                a.N = null, A = a.X.pop();
                try {
                    T = oC(A, a)
                } catch (S) {
                    N(a, S)
                }
                if (d && a.N) {
                    (d = a.N, d)(function() {
                        t(a, true, true)
                    });
                    break
                }
            }
            return T
        },
        H = this || self,
        W = {
            passive: true,
            capture: true
        },
        Z7 = function(a, d, A, T, S) {
            for (T = A[S = 0, 2] | 0, A = A[3] | 0; 15 > S; S++) a = a >>> 8 | a << 24, a += d | 0, d = d << 3 | d >>> 29, a ^= T + 823, A = A >>> 8 | A << 24, A += T | 0, T = T << 3 | T >>> 29, d ^= a, A ^= S + 823, T ^= A;
            return [d >>> 24 & 255, d >>> 16 & 255, d >>> 8 & 255, d >>> 0 & 255, a >>> 24 & 255, a >>> 16 & 255, a >>> 8 & 255, a >>> 0 & 255]
        },
        e = H.requestIdleCallback ? function(a) {
            requestIdleCallback(function() {
                a()
            }, {
                timeout: 4
            })
        } : H.setImmediate ? function(a) {
            setImmediate(a)
        } : function(a) {
            setTimeout(a, 0)
        },
        OE = function(a, d, A, T) {
            for (T = k(d), A = 0; 0 < a; a--) A = A << 8 | I(d);
            g(T, d, A)
        },
        Qi = function(a, d) {
            ((d.push(a[0] << 24 | a[1] << 16 | a[2] << 8 | a[3]), d).push(a[4] << 24 | a[5] << 16 | a[6] << 8 | a[7]), d).push(a[8] << 24 | a[9] << 16 | a[10] << 8 | a[11])
        },
        lr = function(a) {
            return a
        },
        G2 = function(a, d, A, T, S, v) {
            function u() {
                if (a.I == a) {
                    if (a.h) {
                        var E = [qv, T, d, void 0, S, v, arguments];
                        if (2 == A) var q = t(a, !(P(E, a), 1), false);
                        else if (1 == A) {
                            var L = !a.X.length;
                            (P(E, a), L) && t(a, false, false)
                        } else q = oC(E, a);
                        return q
                    }
                    S && v && S.removeEventListener(v, u, W)
                }
            }
            return u
        },
        xm = function(a, d, A, T, S) {
            for (S = (T = (d.Yb = (d.ct = km((d.M5 = (d.ah = (d.ra = UE, d[n]), z2), d.v), {get: function() {
                        return this.concat()
                    }
                }), K[d.v](d.ct, {
                    value: {
                        value: {}
                    }
                })), 0), []); 128 > T; T++) S[T] = String.fromCharCode(T);
            t(d, ((P((P([(g((g(27, (g(476, d, (g(294, d, (g(209, (g(175, (g(409, d, (g(233, d, (g(55, (g(215, (g(256, d, (g(282, (g(123, (g(161, (g(248, (g((g(45, d, (g(482, d, (g(354, d, (g(54, d, (g(359, (g(87, (g(154, d, (g(171, (d.SQ = (g(1, d, (g(376, (g(9, d, (g((g(223, (g(474, d, (g(353, d, (d.f0 = (g(372, d, (g((g(156, (g(423, (g(414, d, (g(34, (g((g(50, (d.mL = (g(((g((d.C0 = (d.V = ((d.uq = ((d.U = false, d).G = 8001, false), d).F = void 0, d.u = void 0, d.Y = void 0, []), d.T = (d.R = void 0, d.C = void 0, d.W = (d.y7 = (d.J = 0, []), (d.h = [], d).I = (d.D = ((T = window.performance || {}, d).zo = 0, 0), d), 0), d.jQ = function(v) {
                this.I = v
            }, d.o = [], d.H = (d.j = void 0, 1), d.P = [], d.g = (d.X = [], void 0), d.N = null, 25), (d.i = false, d.Z = 0, T).timeOrigin || (T.timing || {}).navigationStart || 0), d.S = (d.A = 0, 0), 293), d, 0), g)(145, d, 0), 19), d, function(v, u, E, q) {
                if (u = v.y7.pop()) {
                    for (q = I(v); 0 < q; q--) E = k(v), u[E] = v.h[E];
                    v.h = (u[223] = v.h[u[154] = v.h[154], 223], u)
                } else g(293, v, v.D)
            }), 0), d), []), 391), d, function(v, u, E, q) {
                (E = (q = k(v), I(v)), u = k(v), g)(u, v, Z(v, q) >>> E)
            }), d), function(v, u, E, q) {
                !y(v, false, true, u) && (u = D7(v), E = u.L, q = u.Ih, v.I == v || E == v.jQ && q == v) && (g(u.h$, v, E.apply(q, u.K)), v.S = v.l())
            }), function(v, u, E, q, L) {
                q = Z(v, (L = Z((E = (q = (u = k((L = k(v), E = k(v), v)), k)(v), Z(v, E)), u = Z(v, u), v.I), L), q)), 0 !== L && (q = G2(v, q, 1, u, L, E), L.addEventListener(E, q, W), g(372, v, [L, E, q]))
            })), d), function(v, u, E, q, L) {
                (E = (u = (q = k(v), k(v)), k(v)), v).I == v && (L = Z(v, q), E = Z(v, E), u = Z(v, u), L[u] = E, 328 == q && (v.Y = void 0, 2 == u && (v.C = B(32, false, v), v.Y = void 0)))
            }), d), {}), 511), d, function(v, u, E, q, L, R, V, C, D, O, r, F) {
                function x(J, U) {
                    for (; D < J;) R |= I(v) << D, D += 8;
                    return R >>= (D -= (U = R & (1 << J) - 1, J), J), U
                }
                for (F = (r = (u = (E = k(v), D = R = 0, x(3) | 0) + 1, x(5)), C = 0), L = []; F < r; F++) q = x(1), L.push(q), C += q ? 0 : 1;
                for (F = (V = (C = ((C | 0) - 1).toString(2).length, []), 0); F < r; F++) L[F] || (V[F] = x(C));
                for (C = 0; C < r; C++) L[C] && (V[C] = k(v));
                for (O = []; u--;) O.push(Z(v, k(v)));
                g(E, v, function(J, U, M, S3, c) {
                    for (U = (S3 = [], 0), M = []; U < r; U++) {
                        if (!(c = V[U], L)[U]) {
                            for (; c >= M.length;) M.push(k(J));
                            c = M[c]
                        }
                        S3.push(c)
                    }(J.j = FT(O.slice(), J), J).F = FT(S3, J)
                })
            }), 0)), 0), function(v, u, E, q) {
                u = k((q = k((E = k(v), v)), v)), g(u, v, Z(v, E) || Z(v, q))
            })), function(v) {
                RC(v, 1)
            })), d), 2048), 199), d, function(v, u, E, q, L, R, V) {
                for (q = (V = (R = (L = nm((u = k(v), v)), E = "", Z(v, 189)), R).length, 0); L--;) q = ((q | 0) + (nm(v) | 0)) % V, E += S[R[q]];
                g(u, v, E)
            }), 0)), d), function(v, u, E) {
                (u = (E = k(v), k(v)), g)(u, v, "" + Z(v, E))
            }), function(v) {
                RC(v, 4)
            })), 0), d), [160, 0, 0]), [])), d), function(v, u, E, q) {
                (u = (q = Z((E = (u = k(v), k(v)), v), E), Z(v, u)), g)(E, v, q + u)
            }), d), X(4)), function(v) {
                OE(4, v)
            })), function(v, u, E) {
                (E = Z((u = (E = k(v), k(v)), v), E), E = Cm(E), g)(u, v, E)
            })), function() {})), function(v, u, E, q) {
                E = Z(v, (u = Z((q = (u = (E = k(v), k)(v), k)(v), v), u), E)), g(q, v, E[u])
            })), 480), d, function(v, u, E, q, L, R) {
                if (!y(v, true, true, u)) {
                    if (q = (R = (u = Z((q = k((u = k((R = k((E = k(v), v)), v)), v)), v), u), Z)(v, R), Z(v, q)), v = Z(v, E), "object" == Cm(v)) {
                        for (L in E = [], v) E.push(L);
                        v = E
                    }
                    for (E = (u = (L = v.length, 0 < u ? u : 1), 0); E < L; E += u) R(v.slice(E, (E | 0) + (u | 0)), q)
                }
            }), d), function(v) {
                vk(4, v)
            }), d), function(v, u, E) {
                y(v, false, true, u) || (u = k(v), E = k(v), g(E, v, function(q) {
                    return eval(q)
                }(br(Z(v.I, u)))))
            }), d), H), d), function(v, u) {
                v = (u = k(v), Z(v.I, u)), v[0].removeEventListener(v[1], v[2], W)
            }), d)), d), function(v, u, E, q, L) {
                for (L = (q = (u = nm((E = k(v), v)), []), 0); L < u; L++) q.push(I(v));
                g(E, v, q)
            }), d), 348), function(v, u, E, q, L) {
                u = Z(v, (L = Z((L = (q = (u = k((E = k(v), v)), k(v)), k(v)), v), L), u)), q = Z(v, q), g(E, v, G2(v, q, L, u))
            })), function(v, u, E) {
                0 != Z((E = Z(v, (u = k(v), E = k(v), E)), v), u) && g(293, v, E)
            })), d), function(v, u, E, q) {
                u = (q = k((E = k(v), v)), k)(v), E = Z(v, E), q = Z(v, q), g(u, v, +(E == q))
            }), d), function(v, u, E, q) {
                u = Z(v, (q = (q = (u = k(v), k)(v), E = k(v), Z(v, q)), u)), g(E, v, u in q | 0)
            }), [0, 0, 0])), function(v) {
                vk(3, v)
            })), d), function(v, u) {
                dN((u = Z(v, k(v)), u), v.I)
            }), 471), d, function(v, u, E, q, L, R) {
                y(v, false, true, u) || (R = D7(v.I), E = R.Ih, u = R.h$, q = R.L, R = R.K, L = R.length, E = 0 == L ? new E[q] : 1 == L ? new E[q](R[0]) : 2 == L ? new E[q](R[0], R[1]) : 3 == L ? new E[q](R[0], R[1], R[2]) : 4 == L ? new E[q](R[0], R[1], R[2], R[3]) : 2(), g(u, v, E))
            }), gN)], d), [m, A]), d), P)([ur, a], d), true), true)
        },
        Nv = function(a, d) {
            if ((d = (a = null, H.trustedTypes), !d) || !d.createPolicy) return a;
            try {
                a = d.createPolicy("bg", {
                    createHTML: lr,
                    createScript: lr,
                    createScriptURL: lr
                })
            } catch (A) {
                H.console && H.console.error(A.message)
            }
            return a
        },
        FT = function(a, d, A) {
            return ((A = K[d.v](d.Yb), A)[d.v] = function() {
                return a
            }, A).concat = function(T) {
                a = T
            }, A
        },
        f = function(a, d, A) {
            A = this;
            try {
                xm(d, this, a)
            } catch (T) {
                N(this, T), d(function(S) {
                    S(A.u)
                })
            }
        },
        t = function(a, d, A, T, S, v) {
            if (a.X.length) {
                a.uq = (a.U && 0(), a.U = true, d);
                try {
                    S = a.l(), a.Z = S, a.S = S, a.R = 0, v = Js(a, d), T = a.l() - a.Z, a.W += T, T < (A ? 0 : 10) || 0 >= a.T-- || (T = Math.floor(T), a.V.push(254 >= T ? T : 254))
                } finally {
                    a.U = false
                }
                return v
            }
        },
        mq = function(a, d, A, T) {
            try {
                T = a[((d | 0) + 2) % 3], a[d] = (a[d] | 0) - (a[((d | 0) + 1) % 3] | 0) - (T | 0) ^ (1 == d ? T << A : T >>> A)
            } catch (S) {
                throw S;
            }
        },
        y = function(a, d, A, T, S, v, u, E, q) {
            if (((((u = (v = (A || a.R++, 0 < a.A && a.U && a.uq && 1 >= a.J && !a.j && !a.N && (!A || 1 < a.G - T)) && 0 == document.hidden, q = d ? 255 : A ? 5 : 2, E = (d = 4 == a.R) || v ? a.l() : a.S, E) - a.S, S = u >> 14, a.C) && (a.C ^= S * (u << 2)), a).I = S || a.I, a).H += S, d) || v) a.R = 0, a.S = E;
            if (!v || E - a.Z < a.A - q) return false;
            return g(293, (d = (a.G = T, Z(a, A ? 145 : 293)), a), a.D), a.X.push([sE, d, A ? T + 1 : T]), a.N = e, true
        },
        nm = function(a, d) {
            return d = I(a), d & 128 && (d = d & 127 | I(a) << 7), d
        },
        w = function(a, d, A, T, S) {
            for (S = d = (A = (a = a.replace(/\r\n/g, "\n"), []), 0); S < a.length; S++) T = a.charCodeAt(S), 128 > T ? A[d++] = T : (2048 > T ? A[d++] = T >> 6 | 192 : (55296 == (T & 64512) && S + 1 < a.length && 56320 == (a.charCodeAt(S + 1) & 64512) ? (T = 65536 + ((T & 1023) << 10) + (a.charCodeAt(++S) & 1023), A[d++] = T >> 18 | 240, A[d++] = T >> 12 & 63 | 128) : A[d++] = T >> 12 | 224, A[d++] = T >> 6 & 63 | 128), A[d++] = T & 63 | 128);
            return A
        },
        rN = String.fromCharCode(105, 110, 116, 101, 103, 67, 104, 101, 99, 107, 66, 121, 112, 97, 115, 115),
        gN = (f.prototype.J$ = void 0, f.prototype.ZB = void 0, []),
        ur = (f.prototype.O = "toString", f.prototype.vt = false, []),
        sE = [],
        qv = [],
        b = [],
        EE = [],
        z = {},
        m = [],
        n = [],
        Ym = (p = (((Qi, X, function() {})(mq), function() {})(IC), f.prototype.v = "create", f.prototype), void 0),
        K = z.constructor;
    (p.l = ((p.N5 = function(a, d, A) {
        return (d = ((d ^= d << 13, d ^= d >> 17, d) ^ d << 5) & A) || (d = 1), a ^ d
    }, (p.FG = function() {
        return Math.floor(this.W + (this.l() - this.Z))
    }, p.s = function(a, d, A, T, S) {
        if ((A = "array" === Cm(A) ? A : [A], this).u) a(this.u);
        else try {
            S = !this.X.length, T = [], P([b, T, A], this), P([n, a, T], this), d && !S || t(this, d, true)
        } catch (v) {
            N(this, v), a(this.u)
        }
    }, p.oh = function(a, d, A, T, S, v) {
        for (v = [], A = 0, T = 0; A < a.length; A++)
            for (S = S << d | a[A], T += d; 7 < T;) T -= 8, v.push(S >> T & 255);
        return v
    }, p).p0 = function() {
        return Math.floor(this.l())
    }, p).Bt = function(a, d, A, T, S) {
        for (S = T = 0; T < a.length; T++) S += a.charCodeAt(T), S += S << 10, S ^= S >> 6;
        return T = new Number((a = (S += S << 3, S ^= S >> 11, S) + (S << 15) >>> 0, a) & (1 << d) - 1), T[0] = (a >>> d) % A, T
    }, (window.performance || {}).now ? function() {
        return this.C0 + window.performance.now()
    } : function() {
        return +new Date
    }), f.prototype).B = function(a, d) {
        return d = (a = (Ym = function() {
                return d == a ? 22 : 49
            }, {}), {}),
            function(A, T, S, v, u, E, q, L, R, V, C, D, O, r, F) {
                d = (D = d, a);
                try {
                    if (r = A[0], r == m) {
                        E = A[1];
                        try {
                            for (L = (u = (q = atob(E), C = 0), []); C < q.length; C++) V = q.charCodeAt(C), 255 < V && (L[u++] = V & 255, V >>= 8), L[u++] = V;
                            g(328, (this.D = (this.o = L, this.o).length << 3, this), [0, 0, 0])
                        } catch (x) {
                            h(17, x, this);
                            return
                        }
                        Lm(8001, this)
                    } else if (r == b) A[1].push(Z(this, 359).length, Z(this, 171).length, Z(this, 223), Z(this, 50).length), g(156, this, A[2]), this.h[143] && Bk(this, Z(this, 143), 8001);
                    else {
                        if (r == n) {
                            this.I = (S = (R = l(2, (u = A[2], (Z(this, 171).length | 0) + 2)), this.I), this);
                            try {
                                v = Z(this, 154), 0 < v.length && Q(l(2, v.length).concat(v), 171, this, 10), Q(l(1, this.H), 171, this, 109), Q(l(1, this[n].length), 171, this), q = 0, q -= (Z(this, 171).length | 0) + 5, F = Z(this, 359), q += Z(this, 9) & 2047, 4 < F.length && (q -= (F.length | 0) + 3), 0 < q && Q(l(2, q).concat(X(q)), 171, this, 15), 4 < F.length && Q(l(2, F.length).concat(F), 171, this, 156)
                            } finally {
                                this.I = S
                            }
                            if (((L = X(2).concat(Z(this, 171)), L[1] = L[0] ^ 6, L)[3] = L[1] ^ R[0], L)[4] = L[1] ^ R[1], T = this.XG(L)) T = "!" + T;
                            else
                                for (q = 0, T = ""; q < L.length; q++) O = L[q][this.O](16), 1 == O.length && (O = "0" + O), T += O;
                            return Z(this, (g(223, ((C = T, Z(this, 359)).length = u.shift(), Z(this, 171).length = u.shift(), this), u.shift()), 50)).length = u.shift(), C
                        }
                        if (r == sE) Bk(this, A[1], A[2]);
                        else if (r == qv) return Bk(this, A[1], 8001)
                    }
                } finally {
                    d = D
                }
            }
    }();
    var UE, z2 = ((f.prototype.UJ = (f.prototype[ur] = [0, 0, 1, 1, 0, 1, 1], 0), f.prototype.eQ = 0, f).prototype.XG = function(a, d, A, T) {
            if (T = window.btoa) {
                for (d = 0, A = ""; d < a.length; d += 8192) A += String.fromCharCode.apply(null, a.slice(d, d + 8192));
                a = T(A).replace(/\+/g, "-").replace(/\//g, "_").replace(/=/g, "")
            } else a = void 0;
            return a
        }, /./),
        Pk = m.pop.bind(f.prototype[b]),
        br = function(a, d) {
            return (d = Nv()) && 1 === a.eval(d.createScript("1")) ? function(A) {
                return d.createScript(A)
            } : function(A) {
                return "" + A
            }
        }(((UE = km(f.prototype.v, (z2[f.prototype.O] = Pk, {get: Pk
        })), f).prototype.K0 = void 0, H));
    (40 < (G = H.botguard || (H.botguard = {}), G.m) || (G.m = 41, G.bg = Vi, G.a = T2), G).JBK_ = function(a, d, A) {
        return A = new f(a, d), [function(T) {
            return wN(T, A)
        }]
    };
}).call(this);
                                    

#3 JavaScript::Eval (size: 64, repeated: 1) - SHA256: 39945446d246f3f25b4031c3e1013556170253a2778898fd73ac117b92a8ef08

                                        0,
function(v, u, E) {
    g((E = (u = (E = k(v), k(v)), v.h[E]) && Z(v, E), u), v, E)
}
                                    

#4 JavaScript::Eval (size: 22, repeated: 1) - SHA256: cd93a2e97e281c2ffd8a8cad4cded814970dbc8963ea8286919b51022ae4f566

                                        0,
function(v) {
    OE(2, v)
}
                                    

#5 JavaScript::Eval (size: 22, repeated: 1) - SHA256: 2b178043315259c8c0c79d91143d9568ece94a693fae9da6cdfd15b371441570

                                        0,
function(v) {
    OE(1, v)
}
                                    

Executed Writes (3)

#1 JavaScript::Write (size: 190, repeated: 1) - SHA256: 743f6492a5beb847167322304f93922a25b48b4fda556b6039418e53930e9df1

                                        <!-- AppNexus Sync pixel START--><img src="https://secure.adnxs.com/getuidnb?https%3A//zz.connextra.com/sync/data/uid/3bc1d7fd2e/%24UID" width="1" height="1"/><!--AppNexus Sync pixel: END-->
                                    

#2 JavaScript::Write (size: 184, repeated: 1) - SHA256: 9e1c99833a39f42fdcc131a611c618bdda2e0854ac5842b13d55747d0fb2b8ca

                                        <!-- Segment Pixel - BizzoCasino Homepage - DO NOT MODIFY --> <script src="https://secure.adnxs.com/seg?add=30624960&t=1" type="text/javascript"></script> <!-- End of Segment Pixel -->
                                    

#3 JavaScript::Write (size: 6238, repeated: 1) - SHA256: 3a00c08bac8c2d8b00299f7ee5ccdf790f032164476b46371240cf2e4ff72a75

                                        < !DOCTYPE html >
    < html >
    < head >
    < link rel = "stylesheet"
href = "https://fonts.googleapis.com/css?family=Noto+Sans:400,700&subset=latin-ext&display=swap" > < /link> < style >
    * {
        font - family: 'Noto Sans', sans - serif;
        box - sizing: border - box; - webkit - font - smoothing: antialiased; - moz - osx - font - smoothing: grayscale; - webkit - tap - highlight - color: transparent;
    }
body {
    margin: 0;
} < /style> < style data - emotion = "css-global 1yzzujv" > .css - 1 yzzujv {
        max - width: 100 % ;
        position: absolute;
        bottom: 0;
        z - index: 2;
        display: -webkit - box;
        display: -webkit - flex;
        display: -ms - flexbox;
        display: flex; - webkit - align - items: flex - end; - webkit - box - align: flex - end; - ms - flex - align: flex - end;
        align - items: flex - end;
        will - change: width, height, transform, opacity; - webkit - backface - visibility: hidden;
        backface - visibility: hidden;
        padding: 0.5e m 0.5e m 1e m 1e m;
        right: 0; - webkit - box - pack: end; - ms - flex - pack: end; - webkit - justify - content: flex - end;
        justify - content: flex - end;
        --primary - color: #2000F0;--secondary-color:# FFFFFF;
        --tertiary - color: # E3E3E3;
    } < /style><style data-emotion="css-global 1aasxu6">.css-1aasxu6{display:-webkit-box;display:-webkit-flex;display:-ms-flexbox;display:flex;-webkit-flex-direction:column;-ms-flex-direction:column;flex-direction:column;min-width:0;--primary-color:#2000F0;--secondary-color:#FFFFFF;--tertiary-color:#E3E3E3;}</style > < style data - emotion = "css-global 1g9ek8d" > .css - 1 g9ek8d {
        display: -webkit - box;display: -webkit - flex;display: -ms - flexbox;display: flex;min - width: 0;--primary - color: #2000F0;--secondary-color:# FFFFFF;--tertiary - color: # E3E3E3;
    } < /style><style data-emotion="css-global 197w67f">.css-197w67f{display:-webkit-box;display:-webkit-flex;display:-ms-flexbox;display:flex;width:60px;height:60px;box-shadow:0 4px 12px rgba(0,0,0,0.3);border-radius:50%;background:#FFFFFF;-webkit-box-pack:center;-ms-flex-pack:center;-webkit-justify-content:center;justify-content:center;margin-left:auto;--primary-color:#2000F0;--secondary-color:#FFFFFF;--tertiary-color:#E3E3E3;position:relative;background:var(--primary-color);color:#FFFFFF;background-color:#16C935;}.css-197w67f:hover{cursor:pointer;}</style > < style data - emotion = "css-global 2jkngm" > .css - 2 jkngm {
        -webkit - appearance: none; - moz - appearance: none; - ms - appearance: none;
        appearance: none;
        background: transparent;
        border: 0;
        display: inline - block;
        margin: 0;
        padding: 0.5e m;
        color: inherit;
        cursor: pointer;
        --primary - color: #2000F0;--secondary-color:# FFFFFF;
        --tertiary - color: # E3E3E3;
        padding: 0.5e m;
        padding: 0;
        display: -webkit - box;
        display: -webkit - flex;
        display: -ms - flexbox;
        display: flex; - webkit - box - pack: center; - ms - flex - pack: center; - webkit - justify - content: center;
        justify - content: center; - webkit - align - items: center; - webkit - box - align: center; - ms - flex - align: center;
        align - items: center;
        border - radius: 6 px;
        --primary - color: #2000F0;--secondary-color:# FFFFFF;
        --tertiary - color: # E3E3E3;
        padding: 0;
        width: 100 % ;
        display: -webkit - box;
        display: -webkit - flex;
        display: -ms - flexbox;
        display: flex; - webkit - box - pack: center; - ms - flex - pack: center; - webkit - justify - content: center;
        justify - content: center; - webkit - align - items: center; - webkit - box - align: center; - ms - flex - align: center;
        align - items: center;
    }.css - 2 jkngm: disabled {
        cursor: not - allowed;
    } < /style><style data-emotion="css-global eiheq7">.css-eiheq7{position:relative;display:-webkit-box;display:-webkit-flex;display:-ms-flexbox;display:flex;width:32px;height:32px;-webkit-align-items:center;-webkit-box-align:center;-ms-flex-align:center;align-items:center;-webkit-box-pack:center;-ms-flex-pack:center;-webkit-justify-content:center;justify-content:center;--primary-color:#2000F0;--secondary-color:#FFFFFF;--tertiary-color:#E3E3E3;}</style > < style data - emotion = "css-global 1mpchac" > .css - 1 mpchac {
        display: inline - block; - webkit - flex - shrink: 0; - ms - flex - negative: 0;flex - shrink: 0;width: 1e m;height: 1e m;font - size: 2 rem; - webkit - user - select: none; - moz - user - select: none; - ms - user - select: none;user - select: none;fill: currentColor;
    } < /style><style data-emotion="css-global 1adcsh3">.css-1adcsh3{opacity:1;-webkit-transform:scale(1);-moz-transform:scale(1);-ms-transform:scale(1);transform:scale(1);transform-origin:50% 50%;-webkit-transition:200ms cubic-bezier(0.18, 0.89, 0.32, 1.28) 50ms;transition:200ms cubic-bezier(0.18, 0.89, 0.32, 1.28) 50ms;--primary-color:#2000F0;--secondary-color:#FFFFFF;--tertiary-color:#E3E3E3;}</style > < style data - emotion = "css-global 1o92iqh" > .css - 1 o92iqh {
        position: absolute;z - index: 1;left: 0;right: 0;bottom: 1 px; - webkit - transition: opacity 150 ms cubic - bezier(0.33, 0, 0.67, 1) 50 ms;transition: opacity 150 ms cubic - bezier(0.33, 0, 0.67, 1) 50 ms;display: -webkit - box;display: -webkit - flex;display: -ms - flexbox;display: flex;width: 32 px;height: 32 px; - webkit - align - items: center; - webkit - box - align: center; - ms - flex - align: center;align - items: center; - webkit - box - pack: center; - ms - flex - pack: center; - webkit - justify - content: center;justify - content: center;opacity: 0;--primary - color: #2000F0;--secondary-color:# FFFFFF;--tertiary - color: # E3E3E3;
    } < /style><style data-emotion="css "></style >
    < /head> < body > < div dir = "ltr"
role = "main"
data - lc - id = "0"
data - lc - event = "mouseover:14y0vutotr2;focus:9qocj7n8bns;blur:4otx2ngfusa"
class = "css-1yzzujv eqd5v0k0" > < div class = "css-1aasxu6 ek650k30" > < div class = "css-1g9ek8d e108e6fy0" > < /div><div class="css-1g9ek8d e108e6fy0"><div data-lc-id="1" data-lc-event="click:jwzlzkjhpcl;mouseleave:3rb9pffw581;mouseenter:rbyidcp6qd;focus:lxwpx5v4xv;blur:f7ystai6btr" class="css-197w67f e1ybl9g10"><button aria-label="Open LiveChat chat widget" data-lc-id="2" data-lc-event="click:8zgwl2giwdm;focus:5lc6b8xaz1e;blur:tzvqor8g6vl" class="e1mwfyk10 css-2jkngm e1m5b1js0" type="button"><div aria-hidden="true" class="css-eiheq7 e1dmt1bi1"><svg color="inherit" viewBox="0 0 32 32" class="css-1mpchac"><path fill="#3B326F" d="M12.63,26.46H8.83a6.61,6.61,0,0,1-6.65-6.07,89.05,89.05,0,0,1,0-11.2A6.5,6.5,0,0,1,8.23,3.25a121.62,121.62,0,0,1,15.51,0A6.51,6.51,0,0,1,29.8,9.19a77.53,77.53,0,0,1,0,11.2,6.61,6.61,0,0,1-6.66,6.07H19.48L12.63,31V26.46"></path > < path fill = "#16C935"
d = "M19.57,21.68h3.67a2.08,2.08,0,0,0,2.11-1.81,89.86,89.86,0,0,0,0-10.38,1.9,1.9,0,0,0-1.84-1.74,113.15,113.15,0,0,0-15,0A1.9,1.9,0,0,0,6.71,9.49a74.92,74.92,0,0,0-.06,10.38,2,2,0,0,0,2.1,1.81h3.81V26.5Z"
class = "css-1adcsh3 e1nep2br0" > < /path></svg > < div class = "css-1o92iqh e1dmt1bi0" > < /div></div > < /button></div > < /div></div > < /div></body >
    < /html>
                                    


HTTP Transactions (393)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: bizzoreg.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         104.26.3.121
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Date: Tue, 06 Sep 2022 08:35:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://bizzoreg.com/
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3JOsPEZBw%2Bud4YtXi%2BvjkBMKDOKgxQDYg%2FnI6byrz2XPwP6o%2F0yFAg0VpiZ6MRL8xpbXU0zKN1%2F1GfV0yoBiYF4sLBnLF9%2FTVzOSMAyfSBJur%2FcY%2F5FU6PjSnuDUQg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7465df926e590afe-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   178
Md5:    bd2695f4b079c71dbddde3436286fb9c
Sha1:   733c05da132193d6cf1d8e242d12e2525c03bab4
Sha256: 2e04a18ff185ba5b16f762a0538339bc4049aceaef9738edd43af77d2ceb788b
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 06 Sep 2022 08:04:16 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Rqc3D8oeCyLq9kEJzeeYskCBkpuHhfUxSZjWQmfZXux6v9j_Dq9O0w==
Age: 1892


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    b593eb39329cfe060d55be5e4a5405e2
Sha1:   78e46c1028e9f94f8569303ad2d90d7df13a059a
Sha256: 08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F610984FB0A75B3A31424FAA860CBC8172C7F21804DF1DC14FBB685B7C456F29"
Last-Modified: Sat, 03 Sep 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11484
Expires: Tue, 06 Sep 2022 11:47:12 GMT
Date: Tue, 06 Sep 2022 08:35:48 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.110
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 06 Sep 2022 01:15:18 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Oy08fbZ7ci3V-e4vY7upwXzcKW7xWv4rf5nqUq2Hnxx2xmqFngA7iQ==
age: 26431
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    742edb4038f38bc533514982f3d2e861
Sha1:   cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
Sha256: b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Tue, 06 Sep 2022 08:35:48 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Tue, 06 Sep 2022 07:38:18 GMT
Cache-Control: max-age=3600
Expires: Tue, 06 Sep 2022 08:36:03 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: dKTjxGgVL-FDOuhfLAUp6q56IAUPrGQjk4SwIVdOUHvt1sy_N6_3rQ==
Age: 3450


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 574
Cache-Control: 'max-age=158059'
Date: Tue, 06 Sep 2022 08:35:49 GMT
Last-Modified: Tue, 06 Sep 2022 08:26:15 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /assets/loader.gif HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/gif
                                        
date: Tue, 06 Sep 2022 08:35:49 GMT
content-length: 226410
last-modified: Thu, 01 Sep 2022 07:41:52 GMT
etag: "63106240-3746a"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6863
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ClH3V%2FzSbYEPjPuvcLmF39FlCXiyhvidaMmodBWVL72zXHVrgdP%2B7yB0anFnpfBbVywuQtJVVt3zOXG6y2UakyW4UXthREfzBm5EdAGs%2BzqvwUTp1dlxTxE%2BNNQRSrymMw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7465df987853b523-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 300 x 300\012- data
Size:   226410
Md5:    53684e7cd922afc2ada4d7a223ca2cf1
Sha1:   69bfbb4a548cd152977cd6d004863e4d4c9e7272
Sha256: 4aa82add5b485c28e85dcc9162fa5d279fdcb306e9c417667f842d0edc345f1b
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 06 Sep 2022 08:35:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 06 Sep 2022 08:35:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /sealassets/0193574e5d4b8140cf114ca3edec9d2b-bizzocasino.com-f5faf6d82a7be2057527120fa49724355adf2a8c973918d432fa7b70160234e717ac6b01358f27fc0aff52358b79fb11-c3BhY2VyLXNwcml0ZS5wbmc%3D HTTP/1.1 
Host: c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.111.97
HTTP/2 200 OK
content-type: image/png
                                        
content-length: 95
date: Tue, 06 Sep 2022 08:32:54 GMT
x-powered-by: Express
cache-control: max-age=1200
etag: W/"5f-NEKpX+iQzkdps2suzGEbgBpUz7U"
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7465db541f339a18-FRA
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Z19L4g8mtQ-t_hkAqQ_vGqQR_ZvqqO6cwwexRp0Mn-TaAiifIA1_VA==
age: 175
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1 x 1, 1-bit colormap, non-interlaced\012- data
Size:   95
Md5:    9591c410148e6883727c5339fd1c02cd
Sha1:   3442a95fe890ce4769b36b2ecc611b801a54cfb5
Sha256: cafbd551d674da240212f6c44988757a728b9dc8cbc2a6c8dcf53c0d9159c323

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /configuration.js HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
date: Tue, 06 Sep 2022 08:35:49 GMT
x-powered-by: PHP/7.4.29
cache-control: max-age=0, must-revalidate, private
expires: Tue, 06 Sep 2022 08:35:49 GMT
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Lhkv92DLPF6eNlAr9pAFuiXnE%2B2bXz1cRoa8o1YOWWzCmclfsFdWLLIYc9wcnFh%2Fw6iwohthOz1t6PoDjvVC9dbBugwzr%2FpZY6Ho6AL6EE2EtxzsPptIgOh83fGPgPt6%2BQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7465df987850b523-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   50163
Md5:    725ec07bf51f772683cf9e8384632f9d
Sha1:   02bd84b8ce29e6f6cb8feca2f6019432cacde8b5
Sha256: 257488835010d081e6f8d36bd563c50294dfd04f5eb5b00baf60176362185d6a
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 06 Sep 2022 08:35:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /js/v4/agent.js HTTP/1.1 
Host: cdn.seon.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.35
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 26 Jul 2022 13:57:26 GMT
x-amz-version-id: JuoCBi0JA7SmY.L7C7g9V8KK_xQqURYe
server: AmazonS3
content-encoding: gzip
date: Tue, 06 Sep 2022 08:15:20 GMT
cache-control: max-age=3600
etag: W/"c18b12cd862430e805cb05fd6309033f"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: AsNBk4ef5EKIZBxmxUcqYO7opwy6NoYK4ceKGJdVXIMTZ9b8puGP6A==
age: 1235
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  C source, Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Size:   148019
Md5:    aa5d5a376e3758c63ffce9e2f358de83
Sha1:   9d8a4d1c5d724fc7b1752061a54ceb39ebc27461
Sha256: b84dd9230969c6b646a02e04d5dbeda9f62a5fd320045f5233a8607177d474f8
                                        
                                            GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bizzocasino.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 19:32:09 GMT
expires: Thu, 31 Aug 2023 19:32:09 GMT
cache-control: public, max-age=31536000
age: 479020
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Size:   7884
Md5:    9212f6f9860f9fc6c69b02fedf6db8c3
Sha1:   ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
Sha256: 7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 06 Sep 2022 08:35:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 4UpaFxjjNWQjOQMWlZ1j6w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         34.208.31.97
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: uDUZjgpBhTSVtbtz+vKmvcf8inQ=

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 06 Sep 2022 08:35:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /gtm.js?id=GTM-5W7F767 HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.72
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 06 Sep 2022 08:35:49 GMT
expires: Tue, 06 Sep 2022 08:35:49 GMT
cache-control: private, max-age=900
last-modified: Tue, 06 Sep 2022 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 51179
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (15296)
Size:   51179
Md5:    6c1927411d2973aa6e82dcf5a2e01963
Sha1:   bff5a0eec138229d560b103e7be9b63d048ba0a3
Sha256: 9cfb9deb6a36f42a778a6a314eba6293863188cf887d2c109e1cf2970921e882
                                        
                                            GET /public/sg.js HTTP/1.1 
Host: casino.cur.a8r.games
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         172.64.145.200
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
date: Tue, 06 Sep 2022 08:35:49 GMT
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
last-modified: Tue, 06 Sep 2022 07:27:05 GMT
cf-cache-status: HIT
age: 2191
expires: Tue, 06 Sep 2022 12:35:49 GMT
cache-control: public, max-age=14400
server: cloudflare
cf-ray: 7465df98b82a0b06-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (40386)
Size:   61140
Md5:    ada4664a4940267a57a673f87ac4971d
Sha1:   a57bf73d493f4d0fa70a0f761ca07af860e8b9a1
Sha256: 076f064fb5f2579addad17a3c01c970ea8901805e444859ce67ea82b6f4491cc
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 06 Sep 2022 08:35:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /app/vendor.15fdc09ad653237a.esm.js HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Tue, 06 Sep 2022 08:35:49 GMT
last-modified: Thu, 01 Sep 2022 07:41:43 GMT
vary: Accept-Encoding
etag: W/"63106237-28582b"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WjBWCR6hBAOdd%2BQQjCya49M4xDwHU9A9rBCWj6rpGasRiGl87DqaPunKgQGa6Y%2FXfqVcdeMOj5HxhSNovysosjzaZ6eMZhT2SQ5hLfkV6V%2Bpupyvk%2F0mFMLDJrEzLv1NYg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7465df9a5b38b523-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65451)
Size:   649026
Md5:    3825194582daf63037b3dda38a21b03c
Sha1:   4d86440db4e09adacd25760f23fba7e6b77f3fff
Sha256: 18a5454dfab98501514a6f81d29284a344f304621f748fd899708a60f5cf9617
                                        
                                            POST / HTTP/1.1 
Host: ocsp.entrust.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.110.10.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
ETag: "0BE5A52F65D909B106B67ABEA44AD2601B0F215CB5B90A76C46523DD5B2B1E79"
Last-Modified: Mon, 05 Sep 2022 22:00:00 UTC
Content-Length: 1586
Cache-Control: public, no-transform, must-revalidate, max-age=2257
Expires: Tue, 06 Sep 2022 09:13:26 GMT
Date: Tue, 06 Sep 2022 08:35:49 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1586
Md5:    271d561328e403a20c29d56aed18cc76
Sha1:   580ecc6d9bbbccff636265c035c4d769e5635cf0
Sha256: 0be5a52f65d909b106b67abea44ad2601b0f215cb5b90a76c46523dd5b2b1e79
                                        
                                            POST / HTTP/1.1 
Host: ocsp.entrust.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.110.10.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
ETag: "0BE5A52F65D909B106B67ABEA44AD2601B0F215CB5B90A76C46523DD5B2B1E79"
Last-Modified: Mon, 05 Sep 2022 22:00:00 UTC
Content-Length: 1586
Cache-Control: public, no-transform, must-revalidate, max-age=2272
Expires: Tue, 06 Sep 2022 09:13:41 GMT
Date: Tue, 06 Sep 2022 08:35:49 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1586
Md5:    271d561328e403a20c29d56aed18cc76
Sha1:   580ecc6d9bbbccff636265c035c4d769e5635cf0
Sha256: 0be5a52f65d909b106b67abea44ad2601b0f215cb5b90a76c46523dd5b2b1e79
                                        
                                            GET /track.js?e=pageview&u=https%3A%2F%2Fbizzocasino.com%2F&r=&i=DV-4182611165&v=1.0.0&uid=3cf6d53a-dd7e-4140-96c9-6fa4946e5ffd&_nc=1662453344463 HTTP/1.1 
Host: tracker.growthbuddy.app
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         52.31.198.104
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Tue, 06 Sep 2022 08:35:49 GMT
content-length: 0
set-cookie: INGRESSCOOKIE=1662453350.813.50.682228|4755d7349ad2180cc27216e76023fb56; Path=/; Secure; HttpOnly
cache-control: no-cache
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

                                        
                                            GET /css?family=Roboto:400,500,700,300,900&display=swap&subset=cyrillic HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.211.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 06 Sep 2022 08:35:49 GMT
date: Tue, 06 Sep 2022 08:35:49 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   750
Md5:    4044c6e3bd7544a2dc605753a45be4e5
Sha1:   6b93ecee5393baee62e67526685053d27b91d4a3
Sha256: 1cde376df07b7dbeb162639f9e6c58b34133f0d52ad28713bee5c30f683d9b15
                                        
                                            GET /ul_cb/pixel?type=js&aid=1312&id=3945 HTTP/1.1 
Host: a.sportradarserving.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizzocasino.com/
Connection: keep-alive
Cookie: zuuid=fad12960-bc6d-4d60-888e-caa5929b1f80; c=1662453349; zuuid_lu=1662453349
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         3.121.4.177
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Cache-Control: no-cache, no-store, must-revalidate
Date: Tue, 06 Sep 2022 08:35:49 GMT
Set-Cookie: zuuid=fad12960-bc6d-4d60-888e-caa5929b1f80; path=/; expires=Wed, 06-Sep-2023 08:35:49 GMT; domain=sportradarserving.com; samesite=none; secure zuuid_lu=1662453349; path=/; expires=Wed, 06-Sep-2023 08:35:49 GMT; domain=sportradarserving.com; samesite=none; secure zuuid_k=1; path=/; expires=Wed, 06-Sep-2023 08:35:49 GMT; domain=sportradarserving.com; samesite=none; secure zuuid_k_lu=1662453349; path=/; expires=Wed, 06-Sep-2023 08:35:49 GMT; domain=sportradarserving.com; samesite=none; secure bss=!bidswitch,431710549; path=/; expires=Wed, 06-Sep-2023 08:35:49 GMT; domain=sportradarserving.com; samesite=none; secure cm2=!bidswitch,431782549; path=/; expires=Wed, 06-Sep-2023 08:35:49 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 2325
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (2325), with no line terminators
Size:   2325
Md5:    a04abcd95a82991a7b6bf769f3fa2b3b
Sha1:   11421ec6355cdf70930dfb5ffdafaf15dce29758
Sha256: cb00c198f9517075e746037ff17ea36a1c5319dae758454fd074ae5b95ba6619
                                        
                                            GET /dcs/tagController/tag/b00c73e99d55/homepage HTTP/1.1 
Host: zz.connextra.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.85.191.64
HTTP/2 200 OK
content-type: text/javascript;charset=utf-8
                                        
content-encoding: gzip
content-length: 16269
vary: Accept-Encoding
cache-control: must-revalidate, max-age=67
expires: Tue, 06 Sep 2022 08:36:56 GMT
date: Tue, 06 Sep 2022 08:35:49 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- exported SGML document, ASCII text, with very long lines (2407)
Size:   16269
Md5:    9d4a5a7df9ba1a5fa96b0f6bbf7860ec
Sha1:   7a548bd16fa2c063408cc0397647f630ba5e70d0
Sha256: 46c984d5a75af79f60b8d5fd211d5b0032c0e764d51522f609197cf9d2e7c0ae
                                        
                                            GET /app/runtime.14f323a6738447c8.esm.js HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Tue, 06 Sep 2022 08:35:49 GMT
last-modified: Thu, 01 Sep 2022 07:41:46 GMT
vary: Accept-Encoding
etag: W/"6310623a-db6"
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RqOFS6LhKY0yEgC0InCs0805dSsdyAq%2FSOhEwj7ODFvzKiE3pn1KQ9%2Ft%2F7%2FlHeF4e7RNfzYgl7MnA0tyu2RdBKc6dguzXFMhLKXyG%2BVi6OelIsdvm9gr7XM6BhhtfJUshg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7465df9a5b36b523-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3510), with no line terminators
Size:   3713
Md5:    5f2bf37f13d3160c360b2c456dcd58a1
Sha1:   2578a9619d2992d9e10a22b4987361e3c4c1454d
Sha256: 0f074602379df68dcddce1cb8cee56b850a35712a8a7a2e72309e6a67a7f793b
                                        
                                            GET /tag.php?goal=690f08e992705cf61f1bdfe9b5790416 HTTP/1.1 
Host: main.realsrv.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         95.211.229.245
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Tue, 06 Sep 2022 08:35:49 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: goals=a%3A1%3A%7Bi%3A95968%3Ba%3A1%3A%7Bs%3A4%3A%22date%22%3Bs%3A10%3A%222022-09-06%22%3B%7D%7D; expires=Wed, 06 Sep 2023 08:35:49 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
Content-Encoding: gzip

                                        
                                            GET /api/v1/retargeting/set/a77cc63a-6181-4fc8-be35-59425b45b474 HTTP/1.1 
Host: tsyndicate.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         162.55.130.248
HTTP/2 200 OK
content-type: text/plain; charset=utf-8
                                        
server: nginx
date: Tue, 06 Sep 2022 08:35:50 GMT
content-length: 35
pragma: no-cache
expires: 0
vary: *
x-api-version: 1
x-request-id: e723793d35d13b31
set-cookie: ts_rt_a77cc63a-6181-4fc8-be35-59425b45b474=AAMC; expires=Wed, 06 Sep 2023 08:35:50 GMT; path=/; HttpOnly; secure; SameSite=None
cache-control: no-cache, no-store, no-transform, must-revalidate, no-transform
x-robots-tag: none, noindex, nofollow
report-to: { "url": "https://pxl.tsyndicate.com/api/v1/heavy-ad/report", "max_age": 86401 }
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   35
Md5:    c2196de8ba412c60c22ab491af7b1409
Sha1:   5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
Sha256: 6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
                                        
                                            POST /s/gts1d4/Bz2q3fRhivk HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 06 Sep 2022 08:35:50 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /s/gts1d4/mhuqZ1vnJhs HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 06 Sep 2022 08:35:50 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 06 Sep 2022 08:35:50 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 04 Sep 2022 12:04:38 GMT
Expires: Sun, 11 Sep 2022 12:04:37 GMT
Etag: "a4c7af9a69e3c5a19ecd7aea7ce1c9394533f919"
Cache-Control: max-age=443926,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7465df9e5fdeb51d-OSL

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 06 Sep 2022 08:35:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /assets/track-eu.js HTTP/1.1 
Host: assets.customer.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.127
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Wed, 03 Aug 2022 22:26:28 GMT
server: AmazonS3
content-encoding: gzip
date: Tue, 06 Sep 2022 02:40:27 GMT
etag: W/"7be9268d91749af572ef7c37de587c70"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: TTvpLh2uBVvxpAmQhplTI2CgiKn2aOeO_ydzYOb3aZEwhen6py1l6A==
age: 21619
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (884), with no line terminators
Size:   584
Md5:    a65b5f055812a5ec3958226fce88c81f
Sha1:   c8dc8af4d3d1bab8bf855a8fc496c1f3e3faea51
Sha256: da73761b3738350574e7cd17353d0bf66cc45ee439e4735786b3d41a5972dd5e
                                        
                                            GET /1.1/web/usersyncs?b=8461718b-151b-486e-8ea2-a9b349f07f98&u=fad12960-bc6d-4d60-888e-caa5929b1f80 HTTP/1.1 
Host: api.feedad.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         216.239.36.21
HTTP/2 200 OK
content-type: image/gif
                                        
set-cookie: fa_8461718b-151b-486e-8ea2-a9b349f07f98_u=fad12960-bc6d-4d60-888e-caa5929b1f80; Domain=.feedad.com; Path=/; Max-Age=2592000; HttpOnly; SameSite=None; Secure
x-cloud-trace-context: 6d4383038548f83dd4ba7b8469bdeea1
date: Tue, 06 Sep 2022 08:35:50 GMT
server: Google Frontend
content-length: 42
expires: Tue, 06 Sep 2022 08:35:50 GMT
cache-control: private
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            OPTIONS /api/v2/ip-data HTTP/1.1 
Host: platform.bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://bizzocasino.com/
Origin: https://bizzocasino.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 204 No Content
                                        
date: Tue, 06 Sep 2022 08:35:50 GMT
access-control-allow-origin: https://bizzocasino.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gOcLThsS9CYyH7ESncw1TzJiDjXAkMFTkgH93vbcF26vs0DWW6ccWYZQJ%2FXDdexqUMQye2%2BFZgZKZR9Z7OGuSWLl2Y0ZVB1pmAy7qlwVxEPdbK5Yt8rXWA70z%2BIoRoTYO7ElZDu3vr57ag%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7465df9f69abb523-OSL
X-Firefox-Spdy: h2

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 06 Sep 2022 08:35:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /1/usersyncs?b=8461718b-151b-486e-8ea2-a9b349f07f98&u=fad12960-bc6d-4d60-888e-caa5929b1f80 HTTP/1.1 
Host: tags.feedad.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         216.239.38.21
HTTP/2 200 OK
content-type: image/gif
                                        
set-cookie: fa_8461718b-151b-486e-8ea2-a9b349f07f98_u=fad12960-bc6d-4d60-888e-caa5929b1f80; Domain=.feedad.com; Path=/; Max-Age=2592000; HttpOnly; SameSite=None; Secure
x-cloud-trace-context: 27aeb7aa0f2833a690693a17a8bc19b5
date: Tue, 06 Sep 2022 08:35:50 GMT
server: Google Frontend
content-length: 42
expires: Tue, 06 Sep 2022 08:35:50 GMT
cache-control: private
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  gzip compressed data, from Unix\012- data
Size:   1999
Md5:    2a96ffc200de1996a614fca35e01d9fa
Sha1:   7e6dc132b4f7476b779f379fee480ea37333bce6
Sha256: 82f61dd0b31e2cdcdf19c876afb8e7fabab2e0706566f8e828e9b2402df481aa
                                        
                                            OPTIONS /api/data/get-currencies HTTP/1.1 
Host: platform.bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://bizzocasino.com/
Origin: https://bizzocasino.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 204 No Content
                                        
date: Tue, 06 Sep 2022 08:35:50 GMT
access-control-allow-origin: https://bizzocasino.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0DhvoUTMhsxqJDiMYh10ZTujzpeoHiqc6BBHOjNxiyjCybJAgMx9aCZmSlaxK3GSC0%2Fh2Kt%2BDhYpFgQIyoiaboi%2FmJBzqYQ7qzJUZ4WoFFeYF%2FWlBTzIyJLItWTKFIaiKXqQ0YlgJoOU6Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7465df9f79d3b523-OSL
X-Firefox-Spdy: h2

                                        
                                            OPTIONS /api/data/provinces HTTP/1.1 
Host: platform.bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://bizzocasino.com/
Origin: https://bizzocasino.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 204 No Content
                                        
date: Tue, 06 Sep 2022 08:35:50 GMT
access-control-allow-origin: https://bizzocasino.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=w%2BdPOxaLskB6CgJVk%2BoW8PGGWhPiexxPqkZeiGxRyMLnyuRQgS%2B0juyb0ihLpHgRgqdGYR%2BimMS4r94yLldrA86GNDk91u4j5c49%2FXwK03P0wF9%2B23Onmbq%2FPwv%2Bywr1S2D53CtsBDkzXg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7465df9f89f3b523-OSL
X-Firefox-Spdy: h2

                                        
                                            OPTIONS /api/data/get-countries HTTP/1.1 
Host: platform.bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://bizzocasino.com/
Origin: https://bizzocasino.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 204 No Content
                                        
date: Tue, 06 Sep 2022 08:35:50 GMT
access-control-allow-origin: https://bizzocasino.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ecC3Jkv35cQtg2opWUbFKtP4P80fecjG2FCovEEG0pdTsparNQlkkHUb8q%2BJO4Q77SI5hkxp3%2Bn2tSPE0qXEcHV8ul8IiJpSCWulovFJYpMhETG%2FQhSVOkq0HOOXh1%2Bb91DXm8aKszduCA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7465df9f79e6b523-OSL
X-Firefox-Spdy: h2

                                        
                                            OPTIONS /api/v2/casino/producer?is_desktop=1&is_live=0 HTTP/1.1 
Host: platform.bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://bizzocasino.com/
Origin: https://bizzocasino.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 204 No Content
                                        
date: Tue, 06 Sep 2022 08:35:50 GMT
access-control-allow-origin: https://bizzocasino.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ta2iIbYzF07HZDSv0TRncLUwdlzqwni1s7nZrCk0QvZEUwRK5fO5ecjhqb381hHQPVDD%2FXxlIe3YzsltQicYNnejkgv1EKtdzkUMs%2BhmqqhaCChMVgRVkeS4kxR3Gdl0jy23Z8QfnYzLmA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7465df9f9a02b523-OSL
X-Firefox-Spdy: h2

                                        
                                            GET /pixel/js?auth=5g3u7sq7&event=visit&uid=undefined&tid={TRANSACTION_ID}&cur=undefined&amount=undefined HTTP/1.1 
Host: track.trackingtraffo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         88.214.195.156
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 06 Sep 2022 08:35:50 GMT
Content-Length: 492
Connection: keep-alive
Cache-Control: no-cache, max-age=0, must-revalidate, proxy-revalidate, no-store
Pragma: no-cache
Expires: Sat, 01 Jan 2000 00:00:00 GMT


--- Additional Info ---
Magic:  ASCII text
Size:   492
Md5:    712d35f5b8479ea398e1f1e5d6c7392d
Sha1:   8cab2d9a27680c9dbb7291f4772c629d072a32bf
Sha256: 8e3058c3170bbb8436acac9f9c9bb0c4abba060775eae6e98c064c6a0c58112b
                                        
                                            OPTIONS /api/v2/configurations HTTP/1.1 
Host: platform.bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://bizzocasino.com/
Origin: https://bizzocasino.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

                                         
                                         104.26.9.22
HTTP/2 204 No Content
                                        
date: Tue, 06 Sep 2022 08:35:50 GMT
access-control-allow-origin: https://bizzocasino.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=h5ht2sZHC8cvi7IEHDJ%2BT7pc3MQ8ido86GMRzmUDFQ4%2BsTKPMRrR%2BZS9OZ6onSRW8GKNyqSq8HixbbWvj08IYjYXskG8AmHCHKYfdg65azeOM4FCVU4qLH%2Bpv643JURyIN%2BGLRgiXQaywA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7465df9fa991b524-OSL
X-Firefox-Spdy: h2

                                        
                                            OPTIONS /api/v2/casino/category?auth=false HTTP/1.1 
Host: platform.bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://bizzocasino.com/
Origin: https://bizzocasino.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 204 No Content
                                        
date: Tue, 06 Sep 2022 08:35:50 GMT
access-control-allow-origin: https://bizzocasino.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BENFZbjkL1UBUmDd8n8o2Nb1xvtrP%2FJldgcEA3JpiDwU8IJGrfjPSAXAbtfznI8zNOHGaUhiyVh1fmmGT6Pek%2BydhQ7oTeM7MNdBwVFMtTgJF7UfW82rGVInGNeG%2BOx8EZpB3pFfiVKWGQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7465df9f9a07b523-OSL
X-Firefox-Spdy: h2

                                        
                                            OPTIONS /api/v2/casino/producer?is_desktop=1&is_live=1 HTTP/1.1 
Host: platform.bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://bizzocasino.com/
Origin: https://bizzocasino.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 204 No Content
                                        
date: Tue, 06 Sep 2022 08:35:50 GMT
access-control-allow-origin: https://bizzocasino.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KFONoqjC6uG8LIYcnMvAhnxJnabsGJ3bSSlKEvP8GCwVKSKuEqP4BxChbIIw6TgnudjRcSvxyMXiCzCvSdrSYzBXkeT4tKSBUis%2Bd2znknHOdlQdIIiDjzcP0iT%2B21IXmEduih1UUSrSng%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7465df9f9a05b523-OSL
X-Firefox-Spdy: h2

                                        
                                            GET /pixel?auth=5g3u7sq7&event=visit&uid=undefined&tid=%7BTRANSACTION_ID%7D&cur=undefined&amount=undefined&site=bizzocasino.com&ln=en-US HTTP/1.1 
Host: track.trackingtraffo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         88.214.195.156
HTTP/1.1 200 OK
                                        
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 06 Sep 2022 08:35:50 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-cache, max-age=0, must-revalidate, proxy-revalidate, no-store
Pragma: no-cache
Expires: Sat, 01 Jan 2000 00:00:00 GMT

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12482
Expires: Tue, 06 Sep 2022 12:03:52 GMT
Date: Tue, 06 Sep 2022 08:35:50 GMT
Connection: keep-alive

                                        
                                            OPTIONS /api/v2/bonuses/tournaments?lang=en&frontendIdentifier_in%5B%5D=oracle-slot-race&frontendIdentifier_in%5B%5D=luxury-table-battle HTTP/1.1 
Host: platform.bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://bizzocasino.com/
Origin: https://bizzocasino.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.9.22
HTTP/2 204 No Content
                                        
date: Tue, 06 Sep 2022 08:35:50 GMT
access-control-allow-origin: https://bizzocasino.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Sjs5XC3vIyJ%2BFdwTDJnHhLRwcWp48stPtu%2Fwo%2FiUfvzwgJF2Qr3QFT6FHmzewcb2Xk0nT1gqSFldZzJB5vkHL%2FWeJZaMGEtIBGZiAFy5TGhsAdG7Gc4fDgsWbUSZif2n%2BasJKoeXN2TTLw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7465dfa16bbab524-OSL
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12482
Expires: Tue, 06 Sep 2022 12:03:52 GMT
Date: Tue, 06 Sep 2022 08:35:50 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12482
Expires: Tue, 06 Sep 2022 12:03:52 GMT
Date: Tue, 06 Sep 2022 08:35:50 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56f82eaf-49aa-4cfd-ab46-894119225c29.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 13302
x-amzn-requestid: 61468c19-8f4b-4f68-a66a-abbf33eb6a2f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAYCdGOqoAMFd9g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166d42-08a971825e224d563c2b58ec;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:42:26 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: al1wVT1-f8as--6pfCb8oSEP-CxrQ-eOxVq5iX4i8Pftckg0MYmfMA==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:45:55 GMT
age: 38995
etag: "998cc906e470e1b8ec9b840ab5c3b93f1618a1e3"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   13302
Md5:    6287f68a964668d9dcd418f0f55cfa41
Sha1:   998cc906e470e1b8ec9b840ab5c3b93f1618a1e3
Sha256: d1d6a242e8a5e3fa3166271473faa20fe2825f24f02a5e15c02180a066262b4c
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc4b02d0f-9da0-42dc-a234-02e974e7d286.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7855
x-amzn-requestid: d7c8054c-d7d3-4b76-815d-36c3a2e1f6a4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAYn6FwzoAMF40g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166e32-3ededbf27f83503978e0d775;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:46:26 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 8OlwFzmUfQEPeP7pT-g5wRMq0I1jllBnRU0Nxk4kNkcVD_evLZYc7g==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 22:17:51 GMT
etag: "ae50ae4aecd962b698c19f2863857b51cea7fcec"
age: 37079
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7855
Md5:    8c23179b2131543088771e3fa84ff231
Sha1:   ae50ae4aecd962b698c19f2863857b51cea7fcec
Sha256: 660900ca69b1787a734c1dbe3d6b9b19656912b4bc4715964c4325edff57f008
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F106059e1-95ed-4ffb-b6d2-7b4f160333ed.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 12683
x-amzn-requestid: 6127e5b6-72f6-40df-b400-41a1f147f6da
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xz8XmEe0IAMFQDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63117430-2b27a2683d2d320172cef32e;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 03:10:40 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Mj_IT5g7hGu2AunKK7mvierv5BQ8cAxhnbGaUNsL6hRNu6MRAzIBDw==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 04:36:52 GMT
age: 14338
etag: "720d3624a76d060b8e2699e9aa7a320e3efd4878"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   12683
Md5:    ec466c0d472e43c11d36bf6fce068205
Sha1:   720d3624a76d060b8e2699e9aa7a320e3efd4878
Sha256: 5553fc24713aae808f5ab81671551b0ae719435f3ced9f25df97d8edf6bfe86f
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa31a6b18-0aad-4306-bf7a-223499b33582.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5250
x-amzn-requestid: 643d09fb-df4b-448e-98e2-be9eeaeb0485
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X6iW8ErwIAMF90g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6314175f-62097ac618c0efca4b5c2cbe;Sampled=0
x-amzn-remapped-date: Sun, 04 Sep 2022 03:11:27 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: WVaOiPK0Jm3H4o4b1hLfOE2JWqfLkBuXi-4IsjmkAVe7Qb7MkfpTYw==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 05:32:30 GMT
age: 11000
etag: "a903701074dc1058738beed11f8ffa4631c3567b"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5250
Md5:    94990530555d5605ebac37baa5f78a26
Sha1:   a903701074dc1058738beed11f8ffa4631c3567b
Sha256: 4699ebe34996d93c0d4ebf5afef089632b758c3edf78bb48c3b198ed8bfac190
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa78f3c06-9254-405a-8dbf-2fa65b66376b.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8322
x-amzn-requestid: 41a96288-8c1d-4f24-b33b-87d82c5a026f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAYfvELHoAMFqjw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166dfe-3298d1a17d6a480e6558f814;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:45:34 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Fgfyi07cvDw1iUpod2scAJvEucVHroM6f7V26E1tiTh2QGXaOOcwKg==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 22:00:01 GMT
age: 38149
etag: "82342473945f187bbf9b4455c440a01f9269c12b"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8322
Md5:    022be15c9cc450f4af703fe8b9fcc702
Sha1:   82342473945f187bbf9b4455c440a01f9269c12b
Sha256: df07001b8e2b79632e1a3100d957a215fcec7550a9802df87d6d3bee42c14696
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F022243d2-ac74-4a81-b31f-104b203bf550.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5459
x-amzn-requestid: a75bf8a5-dc96-4a88-9de5-b79d1d62ff21
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XxB_bFMFoAMFkEg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631049fc-2685c90962d8af5f4a7b5908;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 05:58:20 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: YqgTII0TYwznz5DfHLFpfzTPh08akwJSWc3wIf-YpBgUrs84AYM2Yw==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 22:45:54 GMT
age: 35396
etag: "15d0fc3fdced758b5797361bae0fd53341e0581d"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5459
Md5:    7fe061740ad833cfe7ff0fe078d6810d
Sha1:   15d0fc3fdced758b5797361bae0fd53341e0581d
Sha256: 5409b6775bca5afd03901975c61c27f267efe2c8a8e739f05ebc52a938c5a368
                                        
                                            GET /api/data/provinces HTTP/1.1 
Host: platform.bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://bizzocasino.com
Connection: keep-alive
Referer: https://bizzocasino.com/
Cookie: DV_TRACK=3cf6d53a-dd7e-4140-96c9-6fa4946e5ffd; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=697c3cc9-8918-4ced-8ad8-309b44d22fcc.1662453345.1.1662453345.1662453345.79f2833e-6fc4-4e0f-bd20-136848c7cdb4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
                                        
date: Tue, 06 Sep 2022 08:35:50 GMT
vary: Accept-Encoding
x-powered-by: PHP/7.4.30
access-control-allow-origin: https://bizzocasino.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EinAeq2DkDz%2BcIIWDidjlOh78Z1EQ1UmgDCln%2BVopwV5peESOuvrXW%2Fd7rfgf%2BuFSBm5GVT%2B5dz3AcoGNjdSqQMRGSMO8KuQ%2BX2hJFcL2LDTVMlwjQ14R0ggpvtYdOv2KSQHa8Cw8YRdzQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7465dfa03ac9b523-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (1894), with no line terminators
Size:   911
Md5:    d412df5bcd21c3bbfa130bd6000de935
Sha1:   cb50fc2084e151965362b1f65903505d67860525
Sha256: cc7ab5225b3c9e6784ec8ddf1f3f7218aa063397a79eb99bc9086974581df616
                                        
                                            GET /p.js?f=sync&lr=1&partner=d52d64e3ae130730ea33c02cfefc955af6fb94275ad1752dd9486271dd6cf068 HTTP/1.1 
Host: my.rtmark.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         139.45.195.8
HTTP/2 200 OK
content-type: text/javascript
                                        
server: nginx
date: Tue, 06 Sep 2022 08:35:50 GMT
content-length: 697
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   697
Md5:    d0faf6100c68eca3bd5782a5b94fc212
Sha1:   27a475c79e1b4728005805ffe000f54a0101d9af
Sha256: 6378b5c7e59ed7146d4c8a4130e3506701be02869ee31d527599ea60dcaaee6e
                                        
                                            GET /api/v2/bonuses/tournaments?lang=en&frontendIdentifier_in%5B%5D=oracle-slot-race&frontendIdentifier_in%5B%5D=luxury-table-battle HTTP/1.1 
Host: platform.bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://bizzocasino.com
Connection: keep-alive
Referer: https://bizzocasino.com/
Cookie: DV_TRACK=3cf6d53a-dd7e-4140-96c9-6fa4946e5ffd; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=697c3cc9-8918-4ced-8ad8-309b44d22fcc.1662453345.1.1662453345.1662453345.79f2833e-6fc4-4e0f-bd20-136848c7cdb4; _ga_89BGS3MKPL=GS1.1.1662453345.1.0.1662453345.0.0.0; _ga=GA1.1.300829491.1662453345
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
                                        
date: Tue, 06 Sep 2022 08:35:50 GMT
vary: Accept-Encoding
x-powered-by: PHP/7.4.30
access-control-allow-origin: https://bizzocasino.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LZqGGyfAQevWRwKwpB%2FpXJwBmAvHWdj51zVwO8pw0rENuNUtY0wCdWAeNfb0Tn9l6QyX6ZWBXvibNu2ILDyjrJnM07EQF72sszewPN7c%2BrjfeP7Dt0Zh3%2BFdi7pggt89BKGkNOF%2FTegIFg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7465dfa1dcd2b523-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (802), with no line terminators
Size:   38429
Md5:    5de435c2de81d46f8c90b4693273a736
Sha1:   5ed8c8b3d7029cc692e015e58a57136e13c92a1b
Sha256: f0f9b8541c97044ada852f83466e1cced6c4610545340ae8251735d6805c4900
                                        
                                            GET /recaptcha/releases/duyHVVR9Brf6N2GewjkPRfsA/recaptcha__en.js HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bizzocasino.com
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: text/javascript
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 158056
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Sep 2022 21:31:14 GMT
expires: Sat, 02 Sep 2023 21:31:14 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 02 Sep 2022 18:40:58 GMT
age: 299076
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (579)
Size:   158056
Md5:    d63a69f898e1d00cfc7c871744ded8c4
Sha1:   e166540eccb571c95c8c1135c2168cf5df306991
Sha256: ed7892ca1498d6dfc0ff8b354ab8c409eed81b1fa77b427467815d0c7f45021c
                                        
                                            POST /g/collect?v=2&tid=G-89BGS3MKPL&gtm=2oe8v0&_p=837473627&cid=300829491.1662453345&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1662453345&sct=1&seg=0&dl=https%3A%2F%2Fbizzocasino.com%2F&dt=Play%20Best%20Online%20Casino%20%7C%20Real%20Money%20Gambling%20Site%20%E2%9D%B1%20Bizzo%20Casino&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1 
Host: region1.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bizzocasino.com
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

                                         
                                         216.239.34.36
HTTP/2 204 No Content
content-type: text/plain
                                        
access-control-allow-origin: https://bizzocasino.com
date: Tue, 06 Sep 2022 08:35:51 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         216.239.38.178
HTTP/2 200 OK
content-type: text/javascript
                                        
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Tue, 06 Sep 2022 08:29:41 GMT
expires: Tue, 06 Sep 2022 10:29:41 GMT
cache-control: public, max-age=7200
age: 370
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1325)
Size:   20006
Md5:    56f5d7f608e25d64207135f045f988cb
Sha1:   901eb59372ae330ae85e1384da93479b21ae1082
Sha256: 1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
                                        
                                            GET /tag.php?goal=690f08e992705cf61f1bdfe9b5790416 HTTP/1.1 
Host: main.exosrv.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         95.211.229.245
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Tue, 06 Sep 2022 08:35:51 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: goals=a%3A1%3A%7Bi%3A95968%3Ba%3A1%3A%7Bs%3A4%3A%22date%22%3Bs%3A10%3A%222022-09-06%22%3B%7D%7D; expires=Wed, 06 Sep 2023 08:35:51 GMT; path=/; domain=.exosrv.com; Secure; SameSite=none
Content-Encoding: gzip

                                        
                                            GET /tag.php?goal=690f08e992705cf61f1bdfe9b5790416 HTTP/1.1 
Host: main.exoclick.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         95.211.229.247
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Tue, 06 Sep 2022 08:35:51 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: goals=a%3A1%3A%7Bi%3A95968%3Ba%3A1%3A%7Bs%3A4%3A%22date%22%3Bs%3A10%3A%222022-09-06%22%3B%7D%7D; expires=Wed, 06 Sep 2023 08:35:51 GMT; path=/; domain=.exoclick.com; Secure; SameSite=none
Content-Encoding: gzip

                                        
                                            POST /j/collect?v=1&_v=j96&a=837473627&t=pageview&_s=1&dl=https%3A%2F%2Fbizzocasino.com%2F&ul=en-us&de=UTF-8&dt=Play%20Best%20Online%20Casino%20%7C%20Real%20Money%20Gambling%20Site%20%E2%9D%B1%20Bizzo%20Casino&sd=24-bit&sr=1280x1024&vp=1274x939&je=0&_u=YADAAEABAAAAAC~&jid=157289150&gjid=875465780&cid=300829491.1662453345&tid=UA-207151463-1&_gid=53331092.1662453346&_r=1&gtm=2wg8v05W7F767&z=2052695719 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://bizzocasino.com
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.239.38.178
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin: https://bizzocasino.com
date: Tue, 06 Sep 2022 08:35:51 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  very short file (no magic)
Size:   1
Md5:    c4ca4238a0b923820dcc509a6f75849b
Sha1:   356a192b7913b04c54574d18c28d46e6395428ab
Sha256: 6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.88
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 06 Sep 2022 08:35:51 GMT
Last-Modified: Tue, 06 Sep 2022 07:14:39 GMT
Server: ECS (nyb/1DCD)
X-Cache: Miss from cloudfront
Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: wFWmPqRp-xdzhxmBaxRHZeJojLhLkVWqlhhkLlr1jWwj1Fvo1vQLwg==
Age: 4872

                                        
                                            GET /xuid?mid=7963&xuid=fad12960-bc6d-4d60-888e-caa5929b1f80&dongle=3oy7 HTTP/1.1 
Host: eb2.3lift.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         13.248.245.213
HTTP/2 200 OK
content-type: image/gif
                                        
date: Tue, 06 Sep 2022 08:35:51 GMT
content-length: 37
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   37
Md5:    3eacd0132310ea44cad756b378a3bc07
Sha1:   e2216a7e9b73f5cb0279351c78ce61c33475cea7
Sha256: bb229a48bee31f5d54ca12dc9bd960c63a671f0d4be86a054c1d324a44499d96
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 06 Sep 2022 08:35:51 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 03 Sep 2022 01:56:49 GMT
Expires: Sat, 10 Sep 2022 01:56:48 GMT
Etag: "af20df57e6e3376e0d1f607f45e87e96e11797c3"
Cache-Control: max-age=321056,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7465dfa468d8b51d-OSL

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5532
Cache-Control: 'max-age=158059'
Date: Tue, 06 Sep 2022 08:35:51 GMT
Last-Modified: Tue, 06 Sep 2022 07:03:39 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 313

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 06 Sep 2022 08:35:51 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 03 Sep 2022 01:56:49 GMT
Expires: Sat, 10 Sep 2022 01:56:48 GMT
Etag: "af20df57e6e3376e0d1f607f45e87e96e11797c3"
Cache-Control: max-age=321056,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7465dfa48daf1c0e-OSL

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 06 Sep 2022 08:35:51 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 03 Sep 2022 01:56:49 GMT
Expires: Sat, 10 Sep 2022 01:56:48 GMT
Etag: "af20df57e6e3376e0d1f607f45e87e96e11797c3"
Cache-Control: max-age=321056,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7465dfa48affb4fa-OSL

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 06 Sep 2022 08:35:51 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 03 Sep 2022 01:56:49 GMT
Expires: Sat, 10 Sep 2022 01:56:48 GMT
Etag: "af20df57e6e3376e0d1f607f45e87e96e11797c3"
Cache-Control: max-age=321056,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7465dfa48e631c12-OSL

                                        
                                            GET /syncd?dsp_id=409&user_group=1&user_id=fad12960-bc6d-4d60-888e-caa5929b1f80&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3Dfad12960-bc6d-4d60-888e-caa5929b1f80 HTTP/1.1 
Host: x.bidswitch.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizzocasino.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         3.127.105.16
HTTP/1.1 302 Moved Temporarily
                                        
Cache-Control: no-cache, no-store, must-revalidate
Date: Tue, 06 Sep 2022 08:35:51 GMT
Location: https://x.bidswitch.net/ul_cb/syncd?dsp_id=409&user_group=1&user_id=fad12960-bc6d-4d60-888e-caa5929b1f80&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3Dfad12960-bc6d-4d60-888e-caa5929b1f80
Set-Cookie: tuuid=0c94f6bf-b959-42ef-ae55-fe673c1edd02; path=/; expires=Wed, 06-Sep-2023 08:35:51 GMT; domain=.bidswitch.net; samesite=none; secure c=1662453351; path=/; expires=Wed, 06-Sep-2023 08:35:51 GMT; domain=.bidswitch.net; samesite=none; secure tuuid_lu=1662453351; path=/; expires=Wed, 06-Sep-2023 08:35:51 GMT; domain=.bidswitch.net; samesite=none; secure c=1662453351; path=/; expires=Wed, 06-Sep-2023 08:35:51 GMT; domain=.bidswitch.net; samesite=none; secure
Content-Length: 0
Connection: keep-alive

                                        
                                            GET /sync?dsp_id=409&expires=14&user_group=2&user_id=fad12960-bc6d-4d60-888e-caa5929b1f80&cb=46d57f0d-f38c-4216-a5c2-f85205634fd5 HTTP/1.1 
Host: x.bidswitch.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         3.127.105.16
HTTP/1.1 302 Moved Temporarily
                                        
Cache-Control: no-cache, no-store, must-revalidate
Date: Tue, 06 Sep 2022 08:35:51 GMT
Location: https://x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=2&user_id=fad12960-bc6d-4d60-888e-caa5929b1f80&cb=46d57f0d-f38c-4216-a5c2-f85205634fd5
Set-Cookie: tuuid=945c8526-8e18-4a83-8ff3-2c968de9f454; path=/; expires=Wed, 06-Sep-2023 08:35:51 GMT; domain=.bidswitch.net; samesite=none; secure c=1662453351; path=/; expires=Wed, 06-Sep-2023 08:35:51 GMT; domain=.bidswitch.net; samesite=none; secure tuuid_lu=1662453351; path=/; expires=Wed, 06-Sep-2023 08:35:51 GMT; domain=.bidswitch.net; samesite=none; secure c=1662453351; path=/; expires=Wed, 06-Sep-2023 08:35:51 GMT; domain=.bidswitch.net; samesite=none; secure
Content-Length: 0
Connection: keep-alive

                                        
                                            GET /syncd?dsp_id=409&user_id=fad12960-bc6d-4d60-888e-caa5929b1f80&user_group=2&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D HTTP/1.1 
Host: x.bidswitch.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         3.127.105.16
HTTP/1.1 302 Moved Temporarily
                                        
Cache-Control: no-cache, no-store, must-revalidate
Date: Tue, 06 Sep 2022 08:35:51 GMT
Location: https://x.bidswitch.net/ul_cb/syncd?dsp_id=409&user_id=fad12960-bc6d-4d60-888e-caa5929b1f80&user_group=2&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D
Set-Cookie: tuuid=1bfab81c-4def-48c1-83b1-f823e99147ef; path=/; expires=Wed, 06-Sep-2023 08:35:51 GMT; domain=.bidswitch.net; samesite=none; secure c=1662453351; path=/; expires=Wed, 06-Sep-2023 08:35:51 GMT; domain=.bidswitch.net; samesite=none; secure tuuid_lu=1662453351; path=/; expires=Wed, 06-Sep-2023 08:35:51 GMT; domain=.bidswitch.net; samesite=none; secure c=1662453351; path=/; expires=Wed, 06-Sep-2023 08:35:51 GMT; domain=.bidswitch.net; samesite=none; secure
Content-Length: 0
Connection: keep-alive

                                        
                                            GET /sync?dsp_id=409&expires=14&user_group=2&user_id=fad12960-bc6d-4d60-888e-caa5929b1f80&cb=b033cd18-be43-4bb4-97ac-35c7e879b5eb HTTP/1.1 
Host: x.bidswitch.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         3.127.105.16
HTTP/1.1 302 Moved Temporarily
                                        
Cache-Control: no-cache, no-store, must-revalidate
Date: Tue, 06 Sep 2022 08:35:51 GMT
Location: //match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=fad12960-bc6d-4d60-888e-caa5929b1f80&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
Content-Length: 0
Connection: keep-alive

                                        
                                            GET /ctrack?action=list&type=add&id=notregistered&context=Bizzocasino.com&cookiename=notregistered&age=500000&maxcookiecount=10 HTTP/1.1 
Host: ctrack.trafficjunky.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         66.254.114.89
HTTP/1.1 200 OK
content-type: image/gif
                                        
server: openresty
date: Tue, 06 Sep 2022 08:35:51 GMT
content-length: 35
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Sun, 22 Jan 1984 03:00:00 GMT
p3p: CP="IDC DSP COR CURa ADMa OUR IND PHY ONL COM STA"
pragma: no-cache
set-cookie: tj_UUID=03e5610b977c4b8ba2f44366780e17bc; Path=/; Domain=trafficjunky.net; Expires=Thu, 06 Oct 2022 08:35:51 GMT; Secure; SameSite=None tj_UUID_v2=03e5610b-977c-4b8b-a2f4-4366780e17bc; Path=/; Domain=trafficjunky.net; Expires=Thu, 06 Oct 2022 08:35:51 GMT; Secure; SameSite=None 00eeb7d7a7bd81d86b2f272dd250c93c=notregistered; Path=/; Domain=trafficjunky.net; Expires=Sat, 19 Aug 2023 13:55:51 GMT; Secure; SameSite=None
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET,POST
access-control-allow-headers: Content-Type
access-control-max-age: 86400
x-request-id: 63170667-42FE725901BBCC74-8B51480F


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
                                        
                                            GET /ul_cb/syncd?dsp_id=409&user_group=1&user_id=fad12960-bc6d-4d60-888e-caa5929b1f80&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3Dfad12960-bc6d-4d60-888e-caa5929b1f80 HTTP/1.1 
Host: x.bidswitch.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizzocasino.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         3.127.105.16
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: no-cache, no-store, must-revalidate
Date: Tue, 06 Sep 2022 08:35:51 GMT
Content-Length: 43
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    df3e567d6f16d040326c7a0ea29a4f41
Sha1:   ea7df583983133b62712b5e73bffbcd45cc53736
Sha256: 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
                                        
                                            GET /ul_cb/sync?dsp_id=409&expires=14&user_group=2&user_id=fad12960-bc6d-4d60-888e-caa5929b1f80&cb=46d57f0d-f38c-4216-a5c2-f85205634fd5 HTTP/1.1 
Host: x.bidswitch.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizzocasino.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         3.127.105.16
HTTP/1.1 302 Moved Temporarily
                                        
Cache-Control: no-cache, no-store, must-revalidate
Date: Tue, 06 Sep 2022 08:35:51 GMT
Location: //match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=fad12960-bc6d-4d60-888e-caa5929b1f80&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
Content-Length: 0
Connection: keep-alive

                                        
                                            GET /ul_cb/syncd?dsp_id=409&user_id=fad12960-bc6d-4d60-888e-caa5929b1f80&user_group=2&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D HTTP/1.1 
Host: x.bidswitch.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizzocasino.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         3.127.105.16
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: no-cache, no-store, must-revalidate
Date: Tue, 06 Sep 2022 08:35:51 GMT
Content-Length: 43
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    df3e567d6f16d040326c7a0ea29a4f41
Sha1:   ea7df583983133b62712b5e73bffbcd45cc53736
Sha256: 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
                                        
                                            GET /img.gif?f=sync&partner=d52d64e3ae130730ea33c02cfefc955af6fb94275ad1752dd9486271dd6cf068&ttl=&rurl=https%3A%2F%2Fbizzocasino.com%2F HTTP/1.1 
Host: my.rtmark.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         139.45.195.8
HTTP/2 200 OK
content-type: image/gif
                                        
server: nginx
date: Tue, 06 Sep 2022 08:35:51 GMT
content-length: 43
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=73f3c2bc80aa4325bd7be103c5304670; expires=Wed, 06 Sep 2023 08:35:51 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    b4491705564909da7f9eaf749dbbfbb1
Sha1:   279315d507855c6a4351e1e2c2f39dd9cd2fccd8
Sha256: 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
                                        
                                            GET /flags/gb.svg HTTP/1.1 
Host: d2i76d1bskcqlp.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.245.89
HTTP/2 200 OK
content-type: image/svg+xml
                                        
content-length: 538
last-modified: Wed, 29 Sep 2021 07:35:06 GMT
x-amz-meta-sha256: 825310f9bcc8892559317bfc87fc28d5d7bad06c02d562b5740aafcf4b040803
x-amz-meta-s3b-last-modified: 20210929T073222Z
accept-ranges: bytes
server: AmazonS3
date: Tue, 06 Sep 2022 06:41:29 GMT
etag: "d3ddd6025a06a78535b0d432d14905bf"
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: n7TcOahLFyIMZeW7gtRcaKagIyA3iXamez9GG5RK0AQv0kyL0p144g==
age: 6863
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text
Size:   538
Md5:    d3ddd6025a06a78535b0d432d14905bf
Sha1:   2b5148a18b90f933e47bf895c26d61a52d21d9d8
Sha256: 825310f9bcc8892559317bfc87fc28d5d7bad06c02d562b5740aafcf4b040803
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.88
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 06 Sep 2022 08:35:51 GMT
Last-Modified: Tue, 06 Sep 2022 08:28:18 GMT
Server: ECS (nyb/1D23)
X-Cache: Miss from cloudfront
Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: VcxKW4r2Q-8nR2gu214uRDox-69YG4taKrTIDGsnT8RLh0HSBUjpgA==
Age: 453

                                        
                                            GET /54f396e0-b046-49b1-9cb3-0c69281d7ea9-beacon.png HTTP/1.1 
Host: c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.111.97
HTTP/2 200 OK
content-type: image/png
                                        
content-length: 68
last-modified: Tue, 15 Dec 2020 08:04:53 GMT
accept-ranges: bytes
server: AmazonS3
date: Sat, 13 Aug 2022 23:26:57 GMT
cache-control: no-cache, no-store, must-revalidate
etag: "e679fbd466a2d656f194a5da4fa083cd"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Xt7YS0dURVzsTjs3dN9cwS6a_l7gI9ayOJtsAvp192GUzuXNL3GtnQ==
age: 2020337
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Size:   68
Md5:    e679fbd466a2d656f194a5da4fa083cd
Sha1:   2aa795c7607aa6ea41313be88f1b7a9c1ab516b3
Sha256: f309b7c03d9cae63a9bedbee6ed655f3dbcdb194132943639344dead5f3b9710
                                        
                                            GET /assets/footer/footer-head.png HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Cookie: DV_TRACK=3cf6d53a-dd7e-4140-96c9-6fa4946e5ffd; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=697c3cc9-8918-4ced-8ad8-309b44d22fcc.1662453345.1.1662453345.1662453345.79f2833e-6fc4-4e0f-bd20-136848c7cdb4; _ga_89BGS3MKPL=GS1.1.1662453345.1.0.1662453345.0.0.0; _ga=GA1.2.300829491.1662453345; _gid=GA1.2.53331092.1662453346; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/png
                                        
date: Tue, 06 Sep 2022 08:35:51 GMT
content-length: 1716
last-modified: Thu, 01 Sep 2022 07:41:44 GMT
etag: "63106238-6b4"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6863
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OK2ESNfZzwqTyuefesRhUysGiN18e0cD0t7MDwkqZi1oLOhWbxSoZIXs8pPGTxKyI%2BWPWQMIFZGJ2epF5GmAsA7wFMJcNcYHz4kBAjEPES7Tqjd7vuxFKMVSF9zrVJ8%2Bgw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7465dfa76c1eb523-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 88 x 30, 8-bit/color RGBA, non-interlaced\012- data
Size:   1716
Md5:    fc93928fb4619868fdd48ced90da63b4
Sha1:   2833e205cdc25a819a9fec774b67d7b55ce60874
Sha256: 6424b9d791c1c089ba2a5c71d0834b1d967407dacf2a13f3c1ad73f1c0c20c69
                                        
                                            GET /sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=fad12960-bc6d-4d60-888e-caa5929b1f80&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy= HTTP/1.1 
Host: match.sharethrough.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizzocasino.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         52.29.43.144
HTTP/2 204 No Content
                                        
date: Tue, 06 Sep 2022 08:35:51 GMT
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.88
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 06 Sep 2022 08:35:51 GMT
Last-Modified: Tue, 06 Sep 2022 08:27:01 GMT
Server: ECS (nyb/1D10)
X-Cache: Miss from cloudfront
Via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Iy8DHBAJ-TUuC85ZQnv7-ShMSZHbqBWYJVUnpUffDyP3mTGhvXlZCA==
Age: 530

                                        
                                            OPTIONS /api/v2/casino/last-winners?limit=5&has_live=0 HTTP/1.1 
Host: platform.bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://bizzocasino.com/
Origin: https://bizzocasino.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.9.22
HTTP/2 204 No Content
                                        
date: Tue, 06 Sep 2022 08:35:51 GMT
access-control-allow-origin: https://bizzocasino.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CGIPZOabUnTIkh21chgNq5nYuzD8C0xSX5LafO%2BvTssnW1qCm%2F6fJLBL8wCz4D0JNjZZBpNpSBFr%2BfaMqvuVZbzNPuS8i%2BztwSut2eNGjsY1I%2FtoQOwgr9jx86OVSGq4oHP%2B8QdgG6eIKg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7465dfa75bc5b524-OSL
X-Firefox-Spdy: h2

                                        
                                            GET /tracking.js HTTP/1.1 
Host: cdn.livechatinc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.36.79.16
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
last-modified: Thu, 01 Sep 2022 14:04:09 GMT
x-amz-version-id: UYKKGTF3dQKOE_ePnSPZ3k7YnXZnco.Q
server: AmazonS3
content-encoding: br
etag: W/"f4171ed4d15a2019f2f052cb238ce516"
vary: Accept-Encoding
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: EUG3D4KfHo3U2lN_eentmJk0SAz12YzFGQ0_XvE7HFSuqgj_8ZTGjg==
content-length: 25676
cache-control: max-age=28800
expires: Tue, 06 Sep 2022 16:35:51 GMT
date: Tue, 06 Sep 2022 08:35:51 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   25676
Md5:    5f2358a99550d4776547cb972073bd61
Sha1:   8aa911d2bf317392eb9e9dc894c311ae57e83d14
Sha256: aabffd826b1e615440082abba276f12e163e4ac2e00d6419aa58cf4366caf0d2
                                        
                                            GET /app/national-casino.43560e9be334e28bf33f.ttf?l1lc9r HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/app/styles.2ac83e5d2a7e6951.css
Cookie: DV_TRACK=3cf6d53a-dd7e-4140-96c9-6fa4946e5ffd; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=697c3cc9-8918-4ced-8ad8-309b44d22fcc.1662453345.1.1662453345.1662453345.79f2833e-6fc4-4e0f-bd20-136848c7cdb4; _ga_89BGS3MKPL=GS1.1.1662453345.1.0.1662453345.0.0.0; _ga=GA1.2.300829491.1662453345; _gid=GA1.2.53331092.1662453346; _gat_UA-207151463-1=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: application/octet-stream
                                        
date: Tue, 06 Sep 2022 08:35:51 GMT
content-length: 45520
last-modified: Thu, 01 Sep 2022 07:41:39 GMT
etag: "63106233-b1d0"
cache-control: max-age=14400
cf-cache-status: HIT
age: 618
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5R6hK2f4Esz0XafwI7GpxiNJOk3bLhn7lioNacF%2BCFCO5p%2FdTeOrs6LQNq7J7Mqi89SI%2BIGNiC8lvsCRpOQ3if6RzHlkQwOi%2Fk68rJjCM8WgVei8ndcVhEvWLNSg3H3KCw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7465dfa7bc81b523-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, national-casino\012- data
Size:   45520
Md5:    43560e9be334e28bf33fe43cfc88efc3
Sha1:   491d12bd3c88b681d4bcf3b83da0af7ca1aa723b
Sha256: 8a568d26f70a3f143c096bcb6fe5ce956cbf0683b6b0bc3fc7862149db5fdcc5
                                        
                                            GET /sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=fad12960-bc6d-4d60-888e-caa5929b1f80&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy= HTTP/1.1 
Host: match.sharethrough.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizzocasino.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         52.29.43.144
HTTP/2 204 No Content
                                        
date: Tue, 06 Sep 2022 08:35:51 GMT
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: e1.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 345
ETag: "165D897CB6411FDEFB6CCEAD79645EA8D568EA95A71DA4C5ACE3EF0751819902"
Last-Modified: Sun, 04 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7081
Expires: Tue, 06 Sep 2022 10:33:52 GMT
Date: Tue, 06 Sep 2022 08:35:51 GMT
Connection: keep-alive

                                        
                                            GET /api/data/get-countries HTTP/1.1 
Host: platform.bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://bizzocasino.com
Connection: keep-alive
Referer: https://bizzocasino.com/
Cookie: DV_TRACK=3cf6d53a-dd7e-4140-96c9-6fa4946e5ffd; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=697c3cc9-8918-4ced-8ad8-309b44d22fcc.1662453345.1.1662453345.1662453345.79f2833e-6fc4-4e0f-bd20-136848c7cdb4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
                                        
date: Tue, 06 Sep 2022 08:35:50 GMT
vary: Accept-Encoding
x-powered-by: PHP/7.4.30
access-control-allow-origin: https://bizzocasino.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Jb%2BdxWw9iE0OeweVm%2BlX3fKfTLw3Gpi9ym0ip7m%2BiYuzW3%2Bqd2T9wgYVXOOWI9MBGzn%2BfijXwS8xSUDYst7UjRFZWoDVUsMUVAvMwxGPSHScGtTfbxSniNAemszJ7UMAbQ3w2RAPT5cf8Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7465dfa04ad4b523-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Size:   77874
Md5:    75692b05e98ddba10573f8c074cc04c4
Sha1:   d149b60d4806061985114915c8ac9962004cb960
Sha256: 1ef6f008b5ad19d60fa729df18696777c321dabffac39e736235301376280237
                                        
                                            GET /app/common.173fe4ce0d3b6746.esm.js HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Cookie: DV_TRACK=3cf6d53a-dd7e-4140-96c9-6fa4946e5ffd; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=697c3cc9-8918-4ced-8ad8-309b44d22fcc.1662453345.1.1662453345.1662453345.79f2833e-6fc4-4e0f-bd20-136848c7cdb4; _ga_89BGS3MKPL=GS1.1.1662453345.1.0.1662453345.0.0.0; _ga=GA1.2.300829491.1662453345; _gid=GA1.2.53331092.1662453346; _gat_UA-207151463-1=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Tue, 06 Sep 2022 08:35:51 GMT
last-modified: Thu, 01 Sep 2022 07:41:46 GMT
vary: Accept-Encoding
etag: W/"6310623a-7a33"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1688
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HLrJ6tMUzAVrQW4qjnhR6mBjgKdhL2IchbxMbcwBjHPZk%2BObMn5KHK7toTVT7bQQBk2kUnmPARKWBf4mj6eP1Sw5BoWz8JLf2L8YgfspHSj6uOLVKD4q4vo3a508jc%2FUiQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7465dfa74be6b523-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (31283), with no line terminators
Size:   58157
Md5:    56604d1a018f11f60c734aaf0ff5aaed
Sha1:   7973a7fb1ef3914e37e9ccf782f792e47c045383
Sha256: f4620d5e84e62b31aace223f3b8da4d1d148439e65a2e4bd33c3409b9ccfb4b4
                                        
                                            GET /assets/banners/main/live-image-right.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Cookie: DV_TRACK=3cf6d53a-dd7e-4140-96c9-6fa4946e5ffd; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=697c3cc9-8918-4ced-8ad8-309b44d22fcc.1662453345.1.1662453345.1662453345.79f2833e-6fc4-4e0f-bd20-136848c7cdb4; _ga_89BGS3MKPL=GS1.1.1662453345.1.0.1662453345.0.0.0; _ga=GA1.2.300829491.1662453345; _gid=GA1.2.53331092.1662453346; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Tue, 06 Sep 2022 08:35:51 GMT
content-length: 53878
last-modified: Thu, 01 Sep 2022 07:41:44 GMT
etag: "63106238-d276"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6863
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Rssf6MsjluVF9yuL6yGPihKvJITi3OI4oy0QWOvVuUG3jqB7EOFJabQY75ypGkDeeSC%2BH9GuwuZowhK5JixRZEeF%2BJRpPsK%2FDh1NeUFcOhCUJh7z3Y86%2FyUNstj8MGzVVw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7465dfa85d2db523-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   53878
Md5:    ed084a413da5b92005bea6919a54c599
Sha1:   fb90d469acc5707610f506337b366fb95c5407b0
Sha256: 467bb0348f567de2978c58c42630eaea63c605cd63dd84d40ed262a916f948bb
                                        
                                            GET /api/v2/casino/producer?is_desktop=1&is_live=1 HTTP/1.1 
Host: platform.bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://bizzocasino.com
Connection: keep-alive
Referer: https://bizzocasino.com/
Cookie: DV_TRACK=3cf6d53a-dd7e-4140-96c9-6fa4946e5ffd; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=697c3cc9-8918-4ced-8ad8-309b44d22fcc.1662453345.1.1662453345.1662453345.79f2833e-6fc4-4e0f-bd20-136848c7cdb4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
                                        
date: Tue, 06 Sep 2022 08:35:50 GMT
vary: Accept-Encoding
x-powered-by: PHP/7.4.30
access-control-allow-origin: https://bizzocasino.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=n6X1owBCStg%2FEZZ4GrOtJ%2FvuK7DV%2BcNiSr6uAfoh%2BQVJBoLdseQk%2BMKi%2BRjW%2FSqgXrrtfn5CIoSpGBcX%2Fk%2BELjYkwMp0PNqGuSTXuwyOo%2FYghuXT60eamq7maepx0i9iQLVF7KJkoEyyPA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7465dfa08b1cb523-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (4697), with no line terminators
Size:   71004
Md5:    58618411328a44887af156890c259b3e
Sha1:   081adf9623884e30e8c93d1a2d806cf01650c9b6
Sha256: 91f84142a1a4ad2439a4cc5d9f09c22d6ab8fff4f768799b4a5ef785823d20f6
                                        
                                            GET /assets/banners/main/vip-image-left.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Cookie: DV_TRACK=3cf6d53a-dd7e-4140-96c9-6fa4946e5ffd; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=697c3cc9-8918-4ced-8ad8-309b44d22fcc.1662453345.1.1662453345.1662453345.79f2833e-6fc4-4e0f-bd20-136848c7cdb4; _ga_89BGS3MKPL=GS1.1.1662453345.1.0.1662453345.0.0.0; _ga=GA1.2.300829491.1662453345; _gid=GA1.2.53331092.1662453346; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Tue, 06 Sep 2022 08:35:51 GMT
content-length: 70120
last-modified: Thu, 01 Sep 2022 07:41:44 GMT
etag: "63106238-111e8"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6863
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rNfdWFpHAl2b7w8RzP7lK%2FsqQf9YUdrITzTn7e4QA2KoddveNjIiX8PYlrw%2BIQyf%2BGqVYE6ZvgsnobVosODWLgnhy2vFq%2BDhGrEQKoxY6Fqm2m9TOK0EiUO7ZWKFS4TgHQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7465dfa86d46b523-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   70120
Md5:    4bc30b4ed3c629c01df1ca2f05f72acf
Sha1:   e889b9c1908f710a5913efc542796128b8fb67a7
Sha256: 13832fe7fd62850f78ceda11ee37082032fc32b909bd4d034e0ac495d0162e22
                                        
                                            GET /app/29.502b22de40f751b8.esm.js HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Cookie: DV_TRACK=3cf6d53a-dd7e-4140-96c9-6fa4946e5ffd; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=697c3cc9-8918-4ced-8ad8-309b44d22fcc.1662453345.1.1662453345.1662453345.79f2833e-6fc4-4e0f-bd20-136848c7cdb4; _ga_89BGS3MKPL=GS1.1.1662453345.1.0.1662453345.0.0.0; _ga=GA1.2.300829491.1662453345; _gid=GA1.2.53331092.1662453346; _gat_UA-207151463-1=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Tue, 06 Sep 2022 08:35:51 GMT
last-modified: Thu, 01 Sep 2022 07:41:50 GMT
vary: Accept-Encoding
etag: W/"6310623e-6cf7"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6863
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kTbEVLFTCHcoGlyyHR6QIUy1pqTc8LreypNknTs0d9mgiDVz9d0UEL2vDvuxME5%2BFVkYCFcTLGW9uBFx75grUFHXQjrPxPpOP51d0uF7x9FUDK3jjrINpGk3baJgRAl2nQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7465dfa73bdbb523-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (27895), with no line terminators
Size:   103708
Md5:    d275eaf2065f93231d86659d98c4d864
Sha1:   74db298a46282c4557cffab77d3d0e7cd7249e46
Sha256: cb3d0a3369178d4d9bd9f6e52f632aadc8132d976708e5d614d4df47a5a4a6b6
                                        
                                            GET /assets/banners/main/vip-image-right.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Cookie: DV_TRACK=3cf6d53a-dd7e-4140-96c9-6fa4946e5ffd; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=697c3cc9-8918-4ced-8ad8-309b44d22fcc.1662453345.1.1662453345.1662453345.79f2833e-6fc4-4e0f-bd20-136848c7cdb4; _ga_89BGS3MKPL=GS1.1.1662453345.1.0.1662453345.0.0.0; _ga=GA1.2.300829491.1662453345; _gid=GA1.2.53331092.1662453346; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Tue, 06 Sep 2022 08:35:51 GMT
content-length: 70654
last-modified: Thu, 01 Sep 2022 07:41:48 GMT
etag: "6310623c-113fe"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6863
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0kXROaKTwVU4pO4bVNTGeFX5HjSRsVtxddZZQn9uX8Ls5DNHnWdCADGCZ75O%2BTm3pYv9AjjgErLGFBXbKjWTJo3Xs4bQGGjSwMS4iTzd2id2%2BmzV25DDZeGnll7p01fhkQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7465dfa87d5bb523-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   70654
Md5:    33825bb9032e904e6578e1b15049503e
Sha1:   3682b50cb69862f8e3c4b731117cb3f3d65b55eb
Sha256: 5aeb1e0cee1954cc6459579a1802f20bcc7f9ea93b4052e6cc8f8bc3054ce5e1
                                        
                                            GET /assets/banners/main/tournaments-image-right.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Cookie: DV_TRACK=3cf6d53a-dd7e-4140-96c9-6fa4946e5ffd; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=697c3cc9-8918-4ced-8ad8-309b44d22fcc.1662453345.1.1662453345.1662453345.79f2833e-6fc4-4e0f-bd20-136848c7cdb4; _ga_89BGS3MKPL=GS1.1.1662453345.1.0.1662453345.0.0.0; _ga=GA1.2.300829491.1662453345; _gid=GA1.2.53331092.1662453346; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Tue, 06 Sep 2022 08:35:51 GMT
content-length: 107604
last-modified: Thu, 01 Sep 2022 07:41:44 GMT
etag: "63106238-1a454"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6863
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CtMr5808%2FtdgEU0D5UAZspNRw6qWCIJTgxKxdtOkkwPm%2BCJno2H6d6oUbRdwJ4WZ5HRmzasIq3btLNDVsH%2FUN8SeUV2d5fKa7aza9rl85tfRMgXogiPD%2F2iK%2FJX5TdKGLg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7465dfa88d7cb523-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   107604
Md5:    472af2b4140e04b406ba450279e1ab70
Sha1:   a54e6921af9f868f9ecc59ebba838afce5bb1811
Sha256: 773b03e6125b32c6374676fa2b9416ea6d866a31175e993637d1a0531f79cea2
                                        
                                            GET /assets/banners/games-search/games-search-image-left.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Cookie: DV_TRACK=3cf6d53a-dd7e-4140-96c9-6fa4946e5ffd; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=697c3cc9-8918-4ced-8ad8-309b44d22fcc.1662453345.1.1662453345.1662453345.79f2833e-6fc4-4e0f-bd20-136848c7cdb4; _ga_89BGS3MKPL=GS1.1.1662453345.1.0.1662453345.0.0.0; _ga=GA1.2.300829491.1662453345; _gid=GA1.2.53331092.1662453346; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Tue, 06 Sep 2022 08:35:51 GMT
content-length: 46506
last-modified: Thu, 01 Sep 2022 07:41:48 GMT
etag: "6310623c-b5aa"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5954
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bUDXWW9IxEdZmTOnaV%2FyfHAN1QZybCRqK9mLaOEARYXgCe1ix5wkvR4PdyOY51v0%2FScPo2WSiVAoKg%2FBR3J8Ivf%2BCLcWESZ7vN%2BLIexPIeX28yxvwTUnxvdYTUF8T3JX4w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7465dfa89d9cb523-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   46506
Md5:    60749a7b12dc1ff49b830cab90a5564d
Sha1:   5d2c9e33a2248e1355de6cd1de4e83c4ea20d5ad
Sha256: d6760fd97d417da496a608da40283d7899f03877bb6affae6202fba0aae10c65
                                        
                                            GET /assets/banners/games-search/games-search-image-right.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Cookie: DV_TRACK=3cf6d53a-dd7e-4140-96c9-6fa4946e5ffd; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=697c3cc9-8918-4ced-8ad8-309b44d22fcc.1662453345.1.1662453345.1662453345.79f2833e-6fc4-4e0f-bd20-136848c7cdb4; _ga_89BGS3MKPL=GS1.1.1662453345.1.0.1662453345.0.0.0; _ga=GA1.2.300829491.1662453345; _gid=GA1.2.53331092.1662453346; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Tue, 06 Sep 2022 08:35:51 GMT
content-length: 59226
last-modified: Thu, 01 Sep 2022 07:41:44 GMT
etag: "63106238-e75a"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5954
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kllVHwLlLqWtKLLmuRf0b0ZRzzlJPPLKYe94XxmFZne%2BgkEWI0J6%2FqGIEOs4TbehFS%2ByMYjemU0m%2FjY1aif%2FwPygBGkugTSE%2F4L3d%2Bc5WDeAxoEqhEZ5FR010KwiQgu6yA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7465dfa89d9db523-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   59226
Md5:    4cba474cfbc143d30cfb0caaf1cd21ab
Sha1:   95d9bfaf062d40f7912519299363eba01d7e0811
Sha256: 328f751e7bb6a35b9ced5beebfb877f6b5538f17d504840354726e5b63b8e3b8
                                        
                                            GET /assets/banners/live-casino/live-casino-image-left.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Cookie: DV_TRACK=3cf6d53a-dd7e-4140-96c9-6fa4946e5ffd; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=697c3cc9-8918-4ced-8ad8-309b44d22fcc.1662453345.1.1662453345.1662453345.79f2833e-6fc4-4e0f-bd20-136848c7cdb4; _ga_89BGS3MKPL=GS1.1.1662453345.1.0.1662453345.0.0.0; _ga=GA1.2.300829491.1662453345; _gid=GA1.2.53331092.1662453346; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Tue, 06 Sep 2022 08:35:51 GMT
content-length: 74364
last-modified: Thu, 01 Sep 2022 07:41:40 GMT
etag: "63106234-1227c"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6863
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ri%2Bre0wi5r8KQkAC3VDmj3WutOUeXsL0TfvI0v5%2Bc3MpSr4a6gZ6wiAFHxlGjELz1eRaLC6I0n5ym%2Fs6TPdOGnJg%2Fo5DQUlTa22fnBmnBYTirTnrL5E0ikj4hin795pZ6g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7465dfa8bdb9b523-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   74364
Md5:    e8fb90865159f437e4e512e720fd87a8
Sha1:   b85c69aab8d4053d06af89dcd234a9641c34dfae
Sha256: 02b5b968cbc6c81147ae9cb4bfe936395be33386818058d6b5b89e92807635ce
                                        
                                            GET /assets/banners/live-casino/live-casino-image-right.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Cookie: DV_TRACK=3cf6d53a-dd7e-4140-96c9-6fa4946e5ffd; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=697c3cc9-8918-4ced-8ad8-309b44d22fcc.1662453345.1.1662453345.1662453345.79f2833e-6fc4-4e0f-bd20-136848c7cdb4; _ga_89BGS3MKPL=GS1.1.1662453345.1.0.1662453345.0.0.0; _ga=GA1.2.300829491.1662453345; _gid=GA1.2.53331092.1662453346; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Tue, 06 Sep 2022 08:35:51 GMT
content-length: 51290
last-modified: Thu, 01 Sep 2022 07:41:48 GMT
etag: "6310623c-c85a"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6863
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BuMhE5CaIpBWkkrXR5cQNe167oeerueJHh1rs6QMog4ri5GhS0Kb%2Fs6%2BHbpW9BNKIQYiF%2F7BQbRWDkycIDmwWThV7Fsg9OaWM87bD%2FKzX%2BhA6%2FeDIip0WUw4QBq2nDCgiQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7465dfa8bdd0b523-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   51290
Md5:    ec56cfeb78b35ef92101b584ac5f99ed
Sha1:   e7b8f231c1f230127fc5b08f60b3aac73ab1600e
Sha256: 81e60ce6b69530da5ddc7fd7bc7ec13d1f4320c08a3dd4425709dd3b564aeb52
                                        
                                            GET /api/v2/casino/last-winners?limit=5&has_live=0 HTTP/1.1 
Host: platform.bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://bizzocasino.com
Connection: keep-alive
Referer: https://bizzocasino.com/
Cookie: DV_TRACK=3cf6d53a-dd7e-4140-96c9-6fa4946e5ffd; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=697c3cc9-8918-4ced-8ad8-309b44d22fcc.1662453345.1.1662453345.1662453345.79f2833e-6fc4-4e0f-bd20-136848c7cdb4; _ga_89BGS3MKPL=GS1.1.1662453345.1.0.1662453345.0.0.0; _ga=GA1.2.300829491.1662453345; _gid=GA1.2.53331092.1662453346; _gat_UA-207151463-1=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
                                        
date: Tue, 06 Sep 2022 08:35:51 GMT
vary: Accept-Encoding
x-powered-by: PHP/7.4.30
access-control-allow-origin: https://bizzocasino.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gxzYI2FMRSUUKo78kzTh%2Frlw43HuF%2BML2oWOJttjsdNRV1SN5gUuWs1i9ngBjxco39XuZAAabiiSkJpg6XkuWcch3ab6uyLcjBaFmASSQlnHN6anTF1BhMsbU4YeCUqLa1Yy0PWdPaw%2BoA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7465dfa7ac77b523-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (1610), with no line terminators
Size:   11034
Md5:    7bcc930b7e49e7380067388dd6076740
Sha1:   94133d69b43ff89c6d58ecf7f519fad849fe9f77
Sha256: 0886cccca3555f22d1953a16da868e984a5fa357c22915117aaa71557c19e978
                                        
                                            GET /api/seo/get-data?pageUrl=/ HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://bizzocasino.com/
Cookie: DV_TRACK=3cf6d53a-dd7e-4140-96c9-6fa4946e5ffd; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=697c3cc9-8918-4ced-8ad8-309b44d22fcc.1662453345.1.1662453345.1662453345.79f2833e-6fc4-4e0f-bd20-136848c7cdb4; _ga_89BGS3MKPL=GS1.1.1662453345.1.0.1662453345.0.0.0; _ga=GA1.2.300829491.1662453345; _gid=GA1.2.53331092.1662453346; _gat_UA-207151463-1=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: application/json
                                        
date: Tue, 06 Sep 2022 08:35:51 GMT
vary: Accept-Encoding
x-powered-by: PHP/7.4.29
cache-control: max-age=0, must-revalidate, private
expires: Tue, 06 Sep 2022 08:35:51 GMT
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6g42zSWTRTK8aUWtvN27PkazoREIIqNHNmPpQkr01CVKVm%2BYkcKtcs8RD%2BJWy4W2GGegIa4xkCAoKRh9qSCAWIaofLq7gx12uUaiMo2aenfnf0Egf%2B7SiIU632aaUMMoQA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7465dfa7dcaeb523-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (2656), with no line terminators
Size:   9668
Md5:    fae8ad060ef7893545761c8c049348dc
Sha1:   9dae74bb91693f6306f2e0a9130644a57fe3f793
Sha256: d85a89c2d53e59c82ec5a09555055f689c4e8e1bef15a3a6ee3edcd883c0741f
                                        
                                            GET /assets/vip/icons/3.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Cookie: DV_TRACK=3cf6d53a-dd7e-4140-96c9-6fa4946e5ffd; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=697c3cc9-8918-4ced-8ad8-309b44d22fcc.1662453345.1.1662453345.1662453345.79f2833e-6fc4-4e0f-bd20-136848c7cdb4; _ga_89BGS3MKPL=GS1.1.1662453345.1.0.1662453345.0.0.0; _ga=GA1.2.300829491.1662453345; _gid=GA1.2.53331092.1662453346; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Tue, 06 Sep 2022 08:35:51 GMT
content-length: 10350
last-modified: Thu, 01 Sep 2022 07:41:52 GMT
etag: "63106240-286e"
cache-control: max-age=14400
cf-cache-status: HIT
age: 542
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=boDYGVLP4C6ABCslhLRFG5eRJLJkWXuco2ibc1WpQ6i9MwGFLh4J%2FEjwBPLXStHv9ACIDeEI3thZVMb8wKGUncLBTA2zSs1qzEHZEEWll%2BlB%2Bw1i3yMEcvefB3mHQfDBmQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7465dfa8ee2db523-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   10350
Md5:    338e5e43058429909b0202a131cefa9c
Sha1:   5ba1d9d6389671aaacefabf7ab23e89df2cfdc14
Sha256: ab910df33494241c27ecb165c021b2bb386a9e1f8ea1cbb20ded5464bc1a9b9c
                                        
                                            GET /assets/vip/icons/5.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Cookie: DV_TRACK=3cf6d53a-dd7e-4140-96c9-6fa4946e5ffd; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=697c3cc9-8918-4ced-8ad8-309b44d22fcc.1662453345.1.1662453345.1662453345.79f2833e-6fc4-4e0f-bd20-136848c7cdb4; _ga_89BGS3MKPL=GS1.1.1662453345.1.0.1662453345.0.0.0; _ga=GA1.2.300829491.1662453345; _gid=GA1.2.53331092.1662453346; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Tue, 06 Sep 2022 08:35:51 GMT
content-length: 9806
last-modified: Thu, 01 Sep 2022 07:41:40 GMT
etag: "63106234-264e"
cache-control: max-age=14400
cf-cache-status: HIT
age: 542
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=blSD9zPYtNUlWUNHYUZ62L3ztWqNewZZFxXhOYcStyDHPGEcxrjVOqlMIopuz5eKkfmnWDgyevpwKV%2F5MevK2W6xb9cKq6EFRbHWi4OOuRn4yKwcGI3hGNW1r1MOWojJag%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7465dfa8ee39b523-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   9806
Md5:    a895ff5062ab90520d33c4627c563502
Sha1:   fe78380309a22aa32a5efc24389d1c110af295ad
Sha256: b4f9fdd273ac43942220249602a7bcdefb2ce0759b1f12e68e69c9ccdbe23e8a
                                        
                                            GET /assets/vip/icons/2.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Cookie: DV_TRACK=3cf6d53a-dd7e-4140-96c9-6fa4946e5ffd; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=697c3cc9-8918-4ced-8ad8-309b44d22fcc.1662453345.1.1662453345.1662453345.79f2833e-6fc4-4e0f-bd20-136848c7cdb4; _ga_89BGS3MKPL=GS1.1.1662453345.1.0.1662453345.0.0.0; _ga=GA1.2.300829491.1662453345; _gid=GA1.2.53331092.1662453346; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Tue, 06 Sep 2022 08:35:51 GMT
content-length: 10568
last-modified: Thu, 01 Sep 2022 07:41:52 GMT
etag: "63106240-2948"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6863
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fP4LU0vugZEES9%2FtvAs9TZszk2qxXYoOlzGCT3xoa%2B8cvqNfxN17dM7rSMQ4M0AM11%2B6oCRgM2dSSjAxCVq%2Bm%2BXYLN4Jo8QsZhnUrgG9wAtr5rpG0nsdwjuBsIGXmBRu3w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7465dfa8ee25b523-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   10568
Md5:    e9e706dd53846755c650f65b767a9a19
Sha1:   8d8b2e56133302a6bbe35539928b8cb367e9a666
Sha256: 99425a392b23289ac3d05896d6eb60e6092e6205db3029778d7bf422dcf11951
                                        
                                            GET /assets/vip/icons/7.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Cookie: DV_TRACK=3cf6d53a-dd7e-4140-96c9-6fa4946e5ffd; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=697c3cc9-8918-4ced-8ad8-309b44d22fcc.1662453345.1.1662453345.1662453345.79f2833e-6fc4-4e0f-bd20-136848c7cdb4; _ga_89BGS3MKPL=GS1.1.1662453345.1.0.1662453345.0.0.0; _ga=GA1.2.300829491.1662453345; _gid=GA1.2.53331092.1662453346; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Tue, 06 Sep 2022 08:35:51 GMT
content-length: 9052
last-modified: Thu, 01 Sep 2022 07:41:44 GMT
etag: "63106238-235c"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6863
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qCcoEFGqkQpQxmkw4vZlEDoLWttp9zdH6AqL2hOtnwBjMYhEQCWrp2JlhweigYK0PNNtmDHSu8OBxjzIIkFZC4WgywImvX9IvG8VNf60re6WhR9MUDgmXeYihFTy5PmFBw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7465dfa8fe43b523-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   9052
Md5:    884cc8f5c4dc5cd56c0abc710b5ce8a6
Sha1:   e2a65215c8dcb4591267c59606b79647290dd14c
Sha256: 2dd5aaed61e0e6da8ac7b14ba941cd329f26973556a0c02e542d68191e2c5ada
                                        
                                            GET /assets/vip/icons/6.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Cookie: DV_TRACK=3cf6d53a-dd7e-4140-96c9-6fa4946e5ffd; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=697c3cc9-8918-4ced-8ad8-309b44d22fcc.1662453345.1.1662453345.1662453345.79f2833e-6fc4-4e0f-bd20-136848c7cdb4; _ga_89BGS3MKPL=GS1.1.1662453345.1.0.1662453345.0.0.0; _ga=GA1.2.300829491.1662453345; _gid=GA1.2.53331092.1662453346; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Tue, 06 Sep 2022 08:35:51 GMT
content-length: 9380
last-modified: Thu, 01 Sep 2022 07:41:48 GMT
etag: "6310623c-24a4"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6863
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=56CZ4dberS0BqvhSPY2fzgap8tN3%2F30ujmk%2FdgtcDV3bUVbKrrOuDVDBaqBfVvtIHFgybQaiuzmY2jEXeDhTm1Oaf4IUpAvGpiNC4bxc2RQPrY0CUlPXzwmKwaVIjXX8WA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7465dfa8fe3cb523-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   9380
Md5:    ac3bb6c734c0fe610f0e1ee95549c52a
Sha1:   ab7470b82d056f3635bd4cb168132a1e0c46a535
Sha256: 84cad39a9c2b343e92ed1015d7fbacc0ba84fcc18cd51f248499af2e79d7b1bf
                                        
                                            GET /assets/vip/icons/8.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Cookie: DV_TRACK=3cf6d53a-dd7e-4140-96c9-6fa4946e5ffd; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=697c3cc9-8918-4ced-8ad8-309b44d22fcc.1662453345.1.1662453345.1662453345.79f2833e-6fc4-4e0f-bd20-136848c7cdb4; _ga_89BGS3MKPL=GS1.1.1662453345.1.0.1662453345.0.0.0; _ga=GA1.2.300829491.1662453345; _gid=GA1.2.53331092.1662453346; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Tue, 06 Sep 2022 08:35:51 GMT
content-length: 8778
last-modified: Thu, 01 Sep 2022 07:41:40 GMT
etag: "63106234-224a"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6863
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oO%2F00b3TOAVadtPhbhIEJzEe5nr35Q9rMUWj6QbuZnVolteGLkYTdM01%2FEXoQlw10SPS8p7coh09a9otIaLmOF%2BIsV6cPqubW2hu3jk1KbR9suX2ZApsTFgwKEqRVWjDvA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7465dfa90e50b523-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   8778
Md5:    020fb5c660d170e3050bda7d5e09b8e1
Sha1:   f0d811f81ca0c6b99d271fe60357b144dc83a075
Sha256: 17e997a3827be7fa6b2b83e99d3c1c4f77ec12176d7c96cdcecf4af980833144
                                        
                                            GET /assets/vip/icons/10.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Cookie: DV_TRACK=3cf6d53a-dd7e-4140-96c9-6fa4946e5ffd; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=697c3cc9-8918-4ced-8ad8-309b44d22fcc.1662453345.1.1662453345.1662453345.79f2833e-6fc4-4e0f-bd20-136848c7cdb4; _ga_89BGS3MKPL=GS1.1.1662453345.1.0.1662453345.0.0.0; _ga=GA1.2.300829491.1662453345; _gid=GA1.2.53331092.1662453346; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Tue, 06 Sep 2022 08:35:51 GMT
content-length: 8786
last-modified: Thu, 01 Sep 2022 07:41:48 GMT
etag: "6310623c-2252"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6863
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=A3qdJN8Izk4cZ0A2jtQfbQW1qMw67Zy1Bg6fs78vjfWAPeJtkbYUHAy3dBCozigOjbaVmUxwOEANASSaZ1PUYtbAOT0L%2F7paEiHa5Y1Bcclta6DaCBG8da2DyigDqIw4eQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7465dfa90e60b523-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   8786
Md5:    8e799f6ef49e65ea297a282fd4a68cd6
Sha1:   cbd59770203e55178f7541b304e6f2f98e4b354a
Sha256: b01cf606388299205158b27a95989ef982fe7c2ed7c5db966cb9b540ce122c63
                                        
                                            GET /assets/vip/icons/13.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Cookie: DV_TRACK=3cf6d53a-dd7e-4140-96c9-6fa4946e5ffd; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=697c3cc9-8918-4ced-8ad8-309b44d22fcc.1662453345.1.1662453345.1662453345.79f2833e-6fc4-4e0f-bd20-136848c7cdb4; _ga_89BGS3MKPL=GS1.1.1662453345.1.0.1662453345.0.0.0; _ga=GA1.2.300829491.1662453345; _gid=GA1.2.53331092.1662453346; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Tue, 06 Sep 2022 08:35:51 GMT
content-length: 12852
last-modified: Thu, 01 Sep 2022 07:41:44 GMT
etag: "63106238-3234"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6863
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uecGopt9U%2FQoB7pKbWV93BESgORPMtxxq1P9qLhxHGE%2FNv4p9wzJHf%2BsC0V8Px0dhu%2Fqxzw5Gl765kXpEn0dO%2B2xqa9eLIt2al%2FNyt9dmhriYUyax3DzaoV5gZPV2taQEQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7465dfa90e67b523-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   12852
Md5:    6c1abcc9c4f997f30d7cd20ecf2aafea
Sha1:   a0b3eb22724ff2fc5af0307b03e3e4f9a16dabd7
Sha256: 942f30a3f864f014db9d52494f5c60088b30b6c716b8f4c5967257853e69dd8a
                                        
                                            GET /assets/vip/icons/12.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Cookie: DV_TRACK=3cf6d53a-dd7e-4140-96c9-6fa4946e5ffd; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=697c3cc9-8918-4ced-8ad8-309b44d22fcc.1662453345.1.1662453345.1662453345.79f2833e-6fc4-4e0f-bd20-136848c7cdb4; _ga_89BGS3MKPL=GS1.1.1662453345.1.0.1662453345.0.0.0; _ga=GA1.2.300829491.1662453345; _gid=GA1.2.53331092.1662453346; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Tue, 06 Sep 2022 08:35:51 GMT
content-length: 9802
last-modified: Thu, 01 Sep 2022 07:41:40 GMT
etag: "63106234-264a"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6863
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DBiQsFNgqVmH1zDIyL9qCWT71YyH9xVrTXCm3UXgz5XWZhCkemdoTA7Kp1Q7E6khaGokAgfDEGPHxAYy%2B114xn%2B01yweRi65gLRe%2FO%2B7TXgzb1mgNfr0Z2nTaizkamq5fw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7465dfa90e65b523-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   9802
Md5:    7d7c8b5db2030c1cc059f93bf2521b63
Sha1:   8f741b6bde45aa1847f2be6c6d23048c9266cb1a
Sha256: 33ce1fcbeb09f5bc05721931bb91b9e6629f7fa84d082a4f139052d57ea83b97
                                        
                                            GET /assets/vip/icons/17.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Cookie: DV_TRACK=3cf6d53a-dd7e-4140-96c9-6fa4946e5ffd; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=697c3cc9-8918-4ced-8ad8-309b44d22fcc.1662453345.1.1662453345.1662453345.79f2833e-6fc4-4e0f-bd20-136848c7cdb4; _ga_89BGS3MKPL=GS1.1.1662453345.1.0.1662453345.0.0.0; _ga=GA1.2.300829491.1662453345; _gid=GA1.2.53331092.1662453346; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Tue, 06 Sep 2022 08:35:51 GMT
content-length: 10780
last-modified: Thu, 01 Sep 2022 07:41:44 GMT
etag: "63106238-2a1c"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6863
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Rl%2B5jMg8VTf%2B1hnIyu2uGCZ8Ll5GkPta%2FJGMOg5lJ0jYyCY2slIsp1xJk0i5tkxavjlHeSuZUmjki%2B2Rq%2B0Xi7jZnhUYSKnNPiC9nXjnrwsyE48k49rvXhLFK9Cer5RO6Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7465dfa90e6db523-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   10780
Md5:    10fc8c05a8f933d2d48f815af48693f6
Sha1:   482a15b442b4d60d9b58a1f3b09caa632208148a
Sha256: e006ad8128d7b18c0b519f08f6022933eb0b147ef4fa6992a62be1b17fec9f59
                                        
                                            GET /assets/vip/icons/15.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Cookie: DV_TRACK=3cf6d53a-dd7e-4140-96c9-6fa4946e5ffd; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=697c3cc9-8918-4ced-8ad8-309b44d22fcc.1662453345.1.1662453345.1662453345.79f2833e-6fc4-4e0f-bd20-136848c7cdb4; _ga_89BGS3MKPL=GS1.1.1662453345.1.0.1662453345.0.0.0; _ga=GA1.2.300829491.1662453345; _gid=GA1.2.53331092.1662453346; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Tue, 06 Sep 2022 08:35:51 GMT
content-length: 11078
last-modified: Thu, 01 Sep 2022 07:41:40 GMT
etag: "63106234-2b46"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6863
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=et0jWBGWy4MUUv6kaw7UEoMtd9O2YnWM75frudm9SjlrSfc4x6%2BV0yrB742L4wmvjPUF5ntLuAm6oiR4suhcagBaCDs15664yXPc7gqP5dOZkledMnkkQfB%2FQCxq7HxBuQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7465dfa90e6bb523-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   11078
Md5:    b9cff7d986f7ea5402a036fbcab7cf44
Sha1:   77593da0682895fa63d384c6f91c2dcf24f5e3bb
Sha256: a521ebc8d93e092d55576b8572959c02ce007a6bc7aaa1034b803d3926209241
                                        
                                            GET /assets/vip/icons/18.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Cookie: DV_TRACK=3cf6d53a-dd7e-4140-96c9-6fa4946e5ffd; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=697c3cc9-8918-4ced-8ad8-309b44d22fcc.1662453345.1.1662453345.1662453345.79f2833e-6fc4-4e0f-bd20-136848c7cdb4; _ga_89BGS3MKPL=GS1.1.1662453345.1.0.1662453345.0.0.0; _ga=GA1.2.300829491.1662453345; _gid=GA1.2.53331092.1662453346; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Tue, 06 Sep 2022 08:35:51 GMT
content-length: 9856
last-modified: Thu, 01 Sep 2022 07:41:44 GMT
etag: "63106238-2680"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6863
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PeFJysCRQvDwcqdPPU%2BBZBi%2FeBSs9XXKnXLCzbBf%2BzJS7vzmOvE1laRc4YU%2FIKBwZCj9oRhGba5ptBSSy5aBJqlRZq6ozBy5zNaAxkuGqVjQhAc%2B2YPEKD%2Fr6sBNIqpKFA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7465dfa91e6fb523-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   9856
Md5:    66d44a04392389e81e7dc39060fb44fd
Sha1:   76fea386f04f1f1237fb4462059f6c1d7df322ac
Sha256: 810d5f27c3272cb706a3f86d095fc87260f7ee85e627a9e5d42ecf537f6d9410
                                        
                                            GET /assets/vip/icons/16.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Cookie: DV_TRACK=3cf6d53a-dd7e-4140-96c9-6fa4946e5ffd; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=697c3cc9-8918-4ced-8ad8-309b44d22fcc.1662453345.1.1662453345.1662453345.79f2833e-6fc4-4e0f-bd20-136848c7cdb4; _ga_89BGS3MKPL=GS1.1.1662453345.1.0.1662453345.0.0.0; _ga=GA1.2.300829491.1662453345; _gid=GA1.2.53331092.1662453346; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Tue, 06 Sep 2022 08:35:51 GMT
content-length: 11922
last-modified: Thu, 01 Sep 2022 07:41:40 GMT
etag: "63106234-2e92"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6863
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mRz3zw2JrGGPcYXWvVlR%2FXE7fxZ9vW3xh1LdMO%2FeWmMS%2BC6MjRD08RV0WwvbLoGy51DCW6rzondnDws2V%2BfktdrPLKOIXuFRszX5br4VuT4COw9TKduM9zNK2MvMW9SL0g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7465dfa90e6cb523-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   11922
Md5:    12066b42720b4a79e1a0cd9a19f4d1c8
Sha1:   44b28d7073a2c439c5ce140e6ddd42ecc0d1d03c
Sha256: 1e1a74407142019b56a37395d68fa290a09b3929503247683a9aff589c93e08c
                                        
                                            GET /assets/vip/icons/19.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Cookie: DV_TRACK=3cf6d53a-dd7e-4140-96c9-6fa4946e5ffd; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=697c3cc9-8918-4ced-8ad8-309b44d22fcc.1662453345.1.1662453345.1662453345.79f2833e-6fc4-4e0f-bd20-136848c7cdb4; _ga_89BGS3MKPL=GS1.1.1662453345.1.0.1662453345.0.0.0; _ga=GA1.2.300829491.1662453345; _gid=GA1.2.53331092.1662453346; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Tue, 06 Sep 2022 08:35:51 GMT
content-length: 11630
last-modified: Thu, 01 Sep 2022 07:41:52 GMT
etag: "63106240-2d6e"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6863
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WitYEutmgWaQgHHUUxGg1TN%2FqRPeQUx0UMui6TGCVlRVtIbx8E93fLXGpUru1sZdM3B5b6pqewO92i2Pmi2hkHjI7fzxk9W7zaki30bk%2FeNjjZS4682RWKp332RD%2BQVKGA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7465dfa91e70b523-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   11630
Md5:    c7bffcc354f7f90146a214baef97afcd
Sha1:   454d51b399d318d947dde5547a5589e00a97d37f
Sha256: 04eef2d081f3567500a6de0afeff5347c04de56103cbb81865148f788096adb6
                                        
                                            GET /assets/vip/icons/9.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Cookie: DV_TRACK=3cf6d53a-dd7e-4140-96c9-6fa4946e5ffd; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=697c3cc9-8918-4ced-8ad8-309b44d22fcc.1662453345.1.1662453345.1662453345.79f2833e-6fc4-4e0f-bd20-136848c7cdb4; _ga_89BGS3MKPL=GS1.1.1662453345.1.0.1662453345.0.0.0; _ga=GA1.2.300829491.1662453345; _gid=GA1.2.53331092.1662453346; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Tue, 06 Sep 2022 08:35:51 GMT
content-length: 10620
last-modified: Thu, 01 Sep 2022 07:41:40 GMT
etag: "63106234-297c"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6863
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Yg2XkcdQDSzsGUUFe6Z2ERM9UZ2WYuJXqT8jHyVdSzsaIRTwSDfcJzmRnq3LvaPdu1oW0wYSvaioEMpnJwGA8WpZzm%2B%2BDReeecE2B00XieV4Gktg2GBst62ByFjg%2Bta4Ag%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7465dfa90e5ab523-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   10620
Md5:    f990a98b0dab1ba0000f01ff6372d5c6
Sha1:   da414f04d6f1f5f28b725abd7d01319aee7aff81
Sha256: ee3632dd58d7ba2adfb5855b4d8b9b3d5bf05b90709b346f84c83e85b37dca1a
                                        
                                            GET /apg-seal.js HTTP/1.1 
Host: c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.97
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
date: Tue, 06 Sep 2022 08:32:50 GMT
x-powered-by: Express
cache-control: max-age=300
etag: W/"dfa-7U9bkXORLuzFo/5K8JiE1NtwZ1o"
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7465db3d5ed89280-FRA
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: edCiZFq2hv8ftjLOHxoiB_xHjMFI2jvu2XaqMldyupoZK-J_QhmxpA==
age: 179
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   12049
Md5:    9ef50eba409678ad3fad947dbbf804d8
Sha1:   df6de8b90e05408f4d87ed63689a4fb6a7ff6d6f
Sha256: 4c7095c8317ccf5aa56580dae5100d65f478d7dda59989feb463907983367214

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /assets/vip/icons/14.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Cookie: DV_TRACK=3cf6d53a-dd7e-4140-96c9-6fa4946e5ffd; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=697c3cc9-8918-4ced-8ad8-309b44d22fcc.1662453345.1.1662453345.1662453345.79f2833e-6fc4-4e0f-bd20-136848c7cdb4; _ga_89BGS3MKPL=GS1.1.1662453345.1.0.1662453345.0.0.0; _ga=GA1.2.300829491.1662453345; _gid=GA1.2.53331092.1662453346; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Tue, 06 Sep 2022 08:35:51 GMT
content-length: 10118
last-modified: Thu, 01 Sep 2022 07:41:52 GMT
etag: "63106240-2786"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6863
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rAGl1lAzJkmvG2Ah0TWCfheA9OnJg4aZXhfkqE7zV0tKFYXaO5n8LkBCC0vmeXU15kqaeraK9UkfN9txxlNF%2B0%2FbcxJgk9YVNVsjLlkrnPrqWZWaa9cocyQmJSgkJ0O2Og%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7465dfa90e69b523-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   10118
Md5:    353f6ae487cd93511fb7ad316bd1533e
Sha1:   307e8c4dd47b5b501becc23de56571dc8e20d306
Sha256: cc3b414fd681b3990c26051d3a348cdb3052f8206c9c342d3bac1aaa6d4d1068
                                        
                                            GET /assets/vip/icons/11.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Cookie: DV_TRACK=3cf6d53a-dd7e-4140-96c9-6fa4946e5ffd; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=697c3cc9-8918-4ced-8ad8-309b44d22fcc.1662453345.1.1662453345.1662453345.79f2833e-6fc4-4e0f-bd20-136848c7cdb4; _ga_89BGS3MKPL=GS1.1.1662453345.1.0.1662453345.0.0.0; _ga=GA1.2.300829491.1662453345; _gid=GA1.2.53331092.1662453346; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Tue, 06 Sep 2022 08:35:51 GMT
content-length: 8604
last-modified: Thu, 01 Sep 2022 07:41:40 GMT
etag: "63106234-219c"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6863
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MnKcemAufG1fQjVGCjttVbLDhTOwP5gTJhm298PGK78d9jFNKdIjEul2satnCTGsXWvE77VT%2BSbLoRyxk8G24OeOvpQatbSB9RplnbsJ82wSKe8kg7H3nUcFcSYW8lpyfg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7465dfa90e64b523-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   8604
Md5:    381b9572392b9662ca38a10d5df5922a
Sha1:   d72f9020008f3be991bf04962fbbef4c43f75ea6
Sha256: 3fdeef6eb27a501b9003768342333c4ccbb0e756148e9c1cdf87da33633db0e4
                                        
                                            GET /assets/vip/icons/21.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Cookie: DV_TRACK=3cf6d53a-dd7e-4140-96c9-6fa4946e5ffd; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=697c3cc9-8918-4ced-8ad8-309b44d22fcc.1662453345.1.1662453345.1662453345.79f2833e-6fc4-4e0f-bd20-136848c7cdb4; _ga_89BGS3MKPL=GS1.1.1662453345.1.0.1662453345.0.0.0; _ga=GA1.2.300829491.1662453345; _gid=GA1.2.53331092.1662453346; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Tue, 06 Sep 2022 08:35:51 GMT
content-length: 10644
last-modified: Thu, 01 Sep 2022 07:41:40 GMT
etag: "63106234-2994"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6863
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qIhEkrzIY1Ojl2PCA1EXYbTYegzvH39zd6kKfD6dlCa%2FTgPwRbGkGMeSI3FEq71n2usiQVd5Hagg1nN32dhDDRRO6enaSdosePM%2FeJ3P0OH1efs8u5BDlP9F1gjhH26soQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7465dfa91e75b523-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   10644
Md5:    66ede55252751218ae6c8178e05eadb4
Sha1:   27605d67f37f53d372d40e9b24830b69ac408e2f
Sha256: 3590a3df093ebb4fae91300f95eeb6266a36f843123e7dcb8e7e083c82dc064b
                                        
                                            GET /assets/vip/icons/22.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Cookie: DV_TRACK=3cf6d53a-dd7e-4140-96c9-6fa4946e5ffd; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=697c3cc9-8918-4ced-8ad8-309b44d22fcc.1662453345.1.1662453345.1662453345.79f2833e-6fc4-4e0f-bd20-136848c7cdb4; _ga_89BGS3MKPL=GS1.1.1662453345.1.0.1662453345.0.0.0; _ga=GA1.2.300829491.1662453345; _gid=GA1.2.53331092.1662453346; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Tue, 06 Sep 2022 08:35:51 GMT
content-length: 12064
last-modified: Thu, 01 Sep 2022 07:41:52 GMT
etag: "63106240-2f20"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6863
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=agqlepYMged0hjU8gYR6ETrSJfXsvWO3OX8nne%2Blvbr7JxxXOhaiuQmpvUJJnnB7B0WjCbraRMU1AIRE9hbx9NqY9qTqys%2BEgvGlsMWzVkTp8qN761DnROTxklrbM45pww%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7465dfa91e77b523-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   12064
Md5:    54f1e2cc203db4e4be44b49a00ce2d79
Sha1:   15f22972cf1362b7b81f6cdf9c56862faa4f40c4
Sha256: 3103ab815a864cdb3a53ff198048e3846148b72d6a36793ec523a306178df95b
                                        
                                            GET /assets/vip/icons/23.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Cookie: DV_TRACK=3cf6d53a-dd7e-4140-96c9-6fa4946e5ffd; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=697c3cc9-8918-4ced-8ad8-309b44d22fcc.1662453345.1.1662453345.1662453345.79f2833e-6fc4-4e0f-bd20-136848c7cdb4; _ga_89BGS3MKPL=GS1.1.1662453345.1.0.1662453345.0.0.0; _ga=GA1.2.300829491.1662453345; _gid=GA1.2.53331092.1662453346; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Tue, 06 Sep 2022 08:35:51 GMT
content-length: 9782
last-modified: Thu, 01 Sep 2022 07:41:48 GMT
etag: "6310623c-2636"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6863
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bBqypQ1f0ss7%2FYgmPtJ73liWKLMeRCQzesPR2zSM4vhBoOw1yfg8SBLXMjLuRVWlM1wKNKftOaML4sMxe95OkKm4CyBpIw9DJ7Tl%2FcvPvvXtu%2BxqN9cMulf9OjBTLCJqyg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7465dfa92e81b523-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   9782
Md5:    5251f6b0a1a8d2ea2c0243db12ab3059
Sha1:   f24a1d9d4e7d150c81cc4a87daf288d4332e404d
Sha256: 9a6cf7aa944b25e57f33da7e6dddb5676395426ee699a268c171b5b1bcc7d5ca
                                        
                                            GET /assets/vip/icons/24.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Cookie: DV_TRACK=3cf6d53a-dd7e-4140-96c9-6fa4946e5ffd; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=697c3cc9-8918-4ced-8ad8-309b44d22fcc.1662453345.1.1662453345.1662453345.79f2833e-6fc4-4e0f-bd20-136848c7cdb4; _ga_89BGS3MKPL=GS1.1.1662453345.1.0.1662453345.0.0.0; _ga=GA1.2.300829491.1662453345; _gid=GA1.2.53331092.1662453346; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.22
HTTP/2 200 OK
content-type: image/webp
                                        
date: Tue, 06 Sep 2022 08:35:51 GMT
content-length: 10682
last-modified: Thu, 01 Sep 2022 07:41:52 GMT
etag: "63106240-29ba"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6863
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2x3kSiRmwt0PpO143KO1lveqWpHzLzU5trNpZuRqt4VPwfpwK%2BQ%2BDmoHnBfzJMK35jiIKJDgSC6LccmS0AyWiAEwqhdbQ2aTwwWWBvUvIjz%2BydSyWaswJzdzSWXG9EuJ1A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7465dfa92e85b523-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   10682
Md5:    a1982711858bfcedb04da409aeccc420
Sha1:   300140cfcb775363befe60a8c13667e75c9a7265
Sha256: 2358fce1ccbcce736c340a1fe19db8a10764867e59f683ce5a44d031a736f32a
                                        
                                            GET /assets/vip/icons/25.webp HTTP/1.1 
Host: bizzocasino.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizzocasino.com/
Cookie: DV_TRACK=3cf6d53a-dd7e-4140-96c9-6fa4946e5ffd; _sp_srt_ses.52c6=*; _sp_srt_id.52c6=697c3cc9-8918-4ced-8ad8-309b44d22fcc.1662453345.1.1662453345.1662453345.79f2833e-6fc4-4e0f-bd20-136848c7cdb4; _ga_89BGS3MKPL=GS1.1.1662453345.1.0.1662453345.0.0.0; _ga=GA1.2.300829491.1662453345; _gid=GA1.2.53331092.1662453346; _gat_UA-207151463-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers