www.betika.com/en-ke/jackpots
301 Moved Permanently 0 B URL HTTP/1.1 www.betika.com/en-ke/jackpots
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /en-ke/jackpots HTTP/1.1
Host: www.betika.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 31 Jan 2023 06:43:25 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Tue, 31 Jan 2023 07:43:25 GMT
Location: https://www.betika.com/en-ke/jackpots
Set-Cookie: __cf_bm=qllCi3AYMovI9ddKojBxxU3odaYcIg9c6vFbl.mHzw0-1675147405-0-AbUPRfR+jw191FQ0qdaviP3HrtOtyw6iuaIO2yg1u2PXTIiQ7OIprWqty7FqBKfmPLGPIUce1+AbW9XbHd8Gp6s=; path=/; expires=Tue, 31-Jan-23 07:13:25 GMT; domain=.betika.com; HttpOnly; SameSite=None
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79207913d8a2b509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 5eb7c9bc996a0ff420e58af45526f053
8c2614832b8efe1c9da0bbd465d6f3f172d95a9e
c085cf277dd0429fe15e4a4bce5595636e9f2204d5a8e77220f8bf88adf4068f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C085CF277DD0429FE15E4A4BCE5595636E9F2204D5A8E77220F8BF88ADF4068F"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16884
Expires: Tue, 31 Jan 2023 11:24:49 GMT
Date: Tue, 31 Jan 2023 06:43:25 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 3eb88dea4fe00db1182370e72683c3ab
ca520abf1e91bfd2aef40c6a1270a911071e8922
d8083ee567c7b3023111dc30f32c94237df7db30d4d2daaea0a569e8a3069ad7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D8083EE567C7B3023111DC30F32C94237DF7DB30D4D2DAAEA0A569E8A3069AD7"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2425
Expires: Tue, 31 Jan 2023 07:23:50 GMT
Date: Tue, 31 Jan 2023 06:43:25 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 31 Jan 2023 06:43:17 GMT
content-type: application/json
age: 8
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 09ee4b0fe6cf4ca5ed31b24452338d00
7e62b6e20f0d4737f4a8d94f9818a0883027839e
56da08e18a408d7313de4e598984a251a0ecf85bbba98b421be9aebeb98835af
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "56DA08E18A408D7313DE4E598984A251A0ECF85BBBA98B421BE9AEBEB98835AF"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8190
Expires: Tue, 31 Jan 2023 08:59:55 GMT
Date: Tue, 31 Jan 2023 06:43:25 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: q65SHMB8/QCgyZWTWqynyWnZn7I8MDUqxjROihlHlrvFUuo3Fq7YrSe6JarRF6H6O2hsL5sQmAI=
x-amz-request-id: CZYFVNMDYDV0C7DY
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 31 Jan 2023 05:51:03 GMT
age: 3142
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 280 B IP
Hash f754ae6a902709152ea9185fc4ea26f4
aa2ed8a8d2e24dfe65164f73f4ce97c4cc47079a
23b178f8b95c127ee6bd773d3b0e3d1df7f291f0f795f04f9f5d3895b6e43146
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5705
Cache-Control: max-age=106858
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:43:25 GMT
Etag: "63d7a0ae-118"
Expires: Wed, 01 Feb 2023 12:24:23 GMT
Last-Modified: Mon, 30 Jan 2023 10:49:18 GMT
Server: ECS (amb/6BC6)
X-Cache: HIT
Content-Length: 280
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 06:43:25 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 280 B IP
Hash f754ae6a902709152ea9185fc4ea26f4
aa2ed8a8d2e24dfe65164f73f4ce97c4cc47079a
23b178f8b95c127ee6bd773d3b0e3d1df7f291f0f795f04f9f5d3895b6e43146
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5705
Cache-Control: max-age=106858
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:43:25 GMT
Etag: "63d7a0ae-118"
Expires: Wed, 01 Feb 2023 12:24:23 GMT
Last-Modified: Mon, 30 Jan 2023 10:49:18 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 280
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 3f2c85562e9ba99c5429f8248b92d71f
480715d9c8ac3436910ab660a4961c156ea15009
9ae46004558c3700bacd5e535e6cd01daa0dc61136a01ca7882aee95c9f8bc5a
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=159865
Date: Tue, 31 Jan 2023 06:43:26 GMT
Etag: "63d885c8-1d7"
Expires: Thu, 02 Feb 2023 03:07:51 GMT
Last-Modified: Tue, 31 Jan 2023 03:06:48 GMT
Server: ECS (dcb/7F3A)
X-Cache: Miss from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: OzcQTyimamTN3rkjd5Rwxop4nNo0zOOolUkC-MDSfYRXh_NMt_ip1A==
Age: 64
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 3f2c85562e9ba99c5429f8248b92d71f
480715d9c8ac3436910ab660a4961c156ea15009
9ae46004558c3700bacd5e535e6cd01daa0dc61136a01ca7882aee95c9f8bc5a
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 31 Jan 2023 06:43:26 GMT
Last-Modified: Tue, 31 Jan 2023 06:16:25 GMT
Server: ECS (dcb/7EA6)
X-Cache: Miss from cloudfront
Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: TZ91oW3dmsMX5tF5JTQvjxJ3vuoB7dUMUVVHPBb4zn-QkdTGwSORRg==
Age: 1621
cdn.snapodds.com/sdk/v1/snapodds-sdk.css
200 OK 642 B URL HTTP/2 cdn.snapodds.com/sdk/v1/snapodds-sdk.css
IP
File type ASCII text, with very long lines (641)
Hash 40590ae01cbf0494167c0b05f7fefe61
6d9b4a9d869a98dad44a8000964b8996a44437fa
4f4a5547887a13693409974580ee062844a377d29fc48c64bc0171221f4fb003
GET /sdk/v1/snapodds-sdk.css HTTP/1.1
Host: cdn.snapodds.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
content-length: 642
last-modified: Fri, 11 Nov 2022 11:43:09 GMT
accept-ranges: bytes
server: AmazonS3
date: Tue, 31 Jan 2023 06:43:26 GMT
etag: "40590ae01cbf0494167c0b05f7fefe61"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9vLlX3JBLHfPvHGOEwsVnDkjWi3fPVTtHimsdUfERDaYz7EmgVScXw==
age: 1929
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 31 Jan 2023 06:41:42 GMT
age: 104
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 22b9916fc1fafc9bdc9bb37f9eac8a9a
86f640e134a741a0f906a8e3a0f5c6659dd0e394
a29ee843c8a39551a1507cc6ad949ad509e33aaae8b72c58ac4884bad8b0b38e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E"
Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6425
Expires: Tue, 31 Jan 2023 08:30:31 GMT
Date: Tue, 31 Jan 2023 06:43:26 GMT
Connection: keep-alive
www.betika.com/en-ke/jackpots
200 OK 1.8 kB URL HTTP/2 www.betika.com/en-ke/jackpots
IP
Hash a4d5f51283b43634f1a63bc3bffd8353
869c1adcac8839f533b3df95560f829ed4d22635
ae345103419e6bc7c5e6439b51f2c84cb916ab1411cf58a6d6c4a1ecb8200591
GET /en-ke/jackpots HTTP/1.1
Host: www.betika.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Tue, 31 Jan 2023 06:43:25 GMT
content-type: text/html
vary: Accept-Encoding
last-modified: Thu, 05 Jan 2023 12:34:39 GMT
etag: W/"63b6c3df-1094"
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache, no-transform
is-lite: 0
is-mobile: 0
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=tTvfDgWh7TkwyRxLNER_0KyPFCVwfb7kQDaLvxiu8Z0-1675147405-0-AcJQs+iTxb04sTVaoPueh5dIfN1x272bBQJ4i2iBzIc7GOZnD5+PqnCZjd9vdGMkpvP04lKBX+ThKO/1S48MYbc=; path=/; expires=Tue, 31-Jan-23 07:13:25 GMT; domain=.betika.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 792079161804b503-OSL
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Inter:wght@300;500;700&display=swap
200 OK 1.1 kB URL HTTP/2 fonts.googleapis.com/css2?family=Inter:wght@300;500;700&display=swap
IP
Hash e1782be1c81c1fdde1f2729148e0b5a2
6e1991e3cad896358211535fa27ae131cba46652
7be8b9eb6159d05c70afb184cee279e357207f387b0b692fb67f4dd81c1968df
GET /css2?family=Inter:wght@300;500;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 31 Jan 2023 06:43:26 GMT
date: Tue, 31 Jan 2023 06:43:26 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash d81f874741beb45c89de8bb5c6de438e
a251ab903e654953631d84721479bbae55aa5cdf
ec28dafa2a54818028d4dfe99218d9e4b507f3bd7efaabfba630d85f24d4d75d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:43:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
api.betika.com/v1/offers
204 No Content 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /v1/offers HTTP/1.1
Host: api.betika.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.betika.com/
Origin: https://www.betika.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Tue, 31 Jan 2023 06:43:26 GMT
content-type: text/plain charset=UTF-8
content-length: 0
access-control-allow-origin: *
access-control-allow-credentials: true
origin: https://www.betika.com
access-control-allow-methods: GET, POST, OPTIONS, PUT
access-control-allow-headers: DNT,X-Cookie,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-max-age: 60
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: DYNAMIC
set-cookie: GCLB=CMOu6ZKzx87pqAE; path=/; HttpOnly
__cf_bm=zHHIxLwfuDaA_PtrrCW_lLhRm4HXdjU..WtDtkU_J_E-1675147406-0-AQkhHZv0e0oaBnChfiwQkG7H8QP593juKg9Zo5/XbQ6Qbx11SY8HoVrlFgi0MgIMTJuXN812a3FxBuSVp5WNu0I=; path=/; expires=Tue, 31-Jan-23 07:13:26 GMT; domain=.betika.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7920791b8b920b51-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 785c90528f12560bb6b84d3a7f47c4f9
16827089e249cf133c266145b6454a84f2d944dc
c75010735bee2c9755aa96ea32f3201b692e56fc7fd3da517299d8ec2875d2d0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:43:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-MMCFTLN
200 OK 93 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-MMCFTLN
IP
File type ASCII text, with very long lines (36225)
Hash 9096cc60fd163bafda67f5925bfab937
2ce95968ebfbdc1d63f744afceca6b76531e0efb
51d3e17c1cfbf57a6a72fb379069c1f7412686b948d9f486477e5eb7bf9ed518
GET /gtm.js?id=GTM-MMCFTLN HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 31 Jan 2023 06:43:26 GMT
expires: Tue, 31 Jan 2023 06:43:26 GMT
cache-control: private, max-age=900
last-modified: Tue, 31 Jan 2023 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 93027
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash f075625a67cefc01c034a3c732ec8023
c3ef563fbf1cf30f75fc931f82426a0f859ccb6d
75ce941806680157fcca91d6074496cbbc7cdcf6da28fa35384273bf9a76d588
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:43:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
userinfo.betika.com/
304 Not Modified 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: userinfo.betika.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.betika.com
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
If-None-Match: W/"45-g7WkYTBRKxDOyx9Gqg1XBQnDAiM"
TE: trailers
HTTP/2 304 Not Modified
date: Tue, 31 Jan 2023 06:43:26 GMT
x-powered-by: Express
access-control-allow-origin: https://www.betika.com
vary: Origin
etag: W/"45-g7WkYTBRKxDOyx9Gqg1XBQnDAiM"
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=Q.Oo3yHFyVTWCb8QkFZ.r.oqId7fuczLJ54eBcxjxCI-1675147406-0-AR+cDiwt0eTUQXxHJZC3mo90/0SjBObtPojVRCIDQgV86Eq3DBdM3oS2lhBJ9CPkYuMqclmMXLGo6fayHAh1sx0=; path=/; expires=Tue, 31-Jan-23 07:13:26 GMT; domain=.betika.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7920791c1c020b51-OSL
X-Firefox-Spdy: h2
fonts.gstatic.com/s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
200 OK 38 kB URL HTTP/2 fonts.gstatic.com/s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 37924, version 1.0\012- data
Hash e08be6d5d433944f7ad52902e4d24db5
e2600c1d60d12d397b3ee44411a021231d71e974
450f3ba4e47ee174bd9692b396f264b907d37d2528f53911760f3d0edb785f7e
GET /s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.betika.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 37924
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Jan 2023 09:44:08 GMT
expires: Sun, 28 Jan 2024 09:44:08 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 20:54:46 GMT
content-type: font/woff2
age: 248358
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash d81f874741beb45c89de8bb5c6de438e
a251ab903e654953631d84721479bbae55aa5cdf
ec28dafa2a54818028d4dfe99218d9e4b507f3bd7efaabfba630d85f24d4d75d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:43:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 785c90528f12560bb6b84d3a7f47c4f9
16827089e249cf133c266145b6454a84f2d944dc
c75010735bee2c9755aa96ea32f3201b692e56fc7fd3da517299d8ec2875d2d0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:43:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: LIggiOyr5VmY763k0kXfjQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: /CppgQZLzjjWSJWkyTRfDRGS8NQ=
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash f075625a67cefc01c034a3c732ec8023
c3ef563fbf1cf30f75fc931f82426a0f859ccb6d
75ce941806680157fcca91d6074496cbbc7cdcf6da28fa35384273bf9a76d588
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:43:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
collection.decibelinsight.net/i/13950/332996/di.js
200 OK 1 B URL HTTP/2 collection.decibelinsight.net/i/13950/332996/di.js
IP
File type very short file (no magic)
Hash 7215ee9c7d9dc229d2921a40e899ec5f
b858cb282617fb0956d960215c8e84d1ccf909c6
36a9e7f1c95b82ffb99743e0c5c4ce95d83c9a430aac59f84ef3cbfab6145068
GET /i/13950/332996/di.js HTTP/1.1
Host: collection.decibelinsight.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 06:43:27 GMT
content-type: text/javascript; charset=utf-8
content-length: 1
cache-control: private, max-age=2592000
timing-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, X-HTTP-Method-Override
access-control-allow-credentials: true
vary: Origin
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
i.l-dsp.inmobicdn.net/helix-cors/custom/js/idspPixel/v6/min.pixel.js
200 OK 912 B URL HTTP/1.1 i.l-dsp.inmobicdn.net/helix-cors/custom/js/idspPixel/v6/min.pixel.js
IP
File type ASCII text, with very long lines (1990), with no line terminators
Hash a7ada2b8e0dbfef0f008b018202f2b4b
1a76368d7722facf87dae81bfeca15aa4dfd2cec
7166433b43cffca72048dbf842fb9851df51e9cb0c7b3ddbe8e9cc49d2c4417c
GET /helix-cors/custom/js/idspPixel/v6/min.pixel.js HTTP/1.1
Host: i.l-dsp.inmobicdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 06:43:27 GMT
Connection: Keep-Alive
ETag: "1645768385"
Cache-Control: max-age=5935
Content-Encoding: gzip
Content-Length: 912
Content-Type: application/x-javascript
Last-Modified: Fri, 25 Feb 2022 05:53:05 GMT
Accept-Ranges: bytes
X-HW: 1675147407.dop210.sk1.t,1675147407.cds244.sk1.shn,1675147407.dop210.sk1.t,1675147407.cds255.sk1.c
Access-Control-Allow-Origin: *
tm.ads.sportradar.com/dist/tag-manager.js?id=STM-AAAAKA
200 OK 37 kB URL HTTP/2 tm.ads.sportradar.com/dist/tag-manager.js?id=STM-AAAAKA
IP
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (62274)
Hash d0b134eb720635df239824acc4bae20b
03f7fcb0298911588ea8b3727a699db333caa910
4dbb77fbe24778cc23172d4f0e59ea18c077e459fa30c3811010e45fc6239f7f
GET /dist/tag-manager.js?id=STM-AAAAKA HTTP/1.1
Host: tm.ads.sportradar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
apigw-requestid: fmBp_jnhDoEEMng=
vary: Accept-Encoding
content-encoding: gzip
content-length: 37271
date: Tue, 31 Jan 2023 06:43:27 GMT
cache-control: max-age=900, public
x-n: S
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 33e403367d183257be0f03f28da923d2
a586e4052008741f8f535e7bd12a94bde81b264e
82ce104749546e6a6f76a8ddf19b67795784c06256581c13f499e80e4f713131
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:43:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 763996bcb6172d1c9f7d140e7496bbae
e70386c70bbfed0acdcb2697d1fd59c25f0f00df
6d8a9815d556cc10c801760c29bb33e0676e0b436ee682d3aa345efe63b54aa4
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=171977
Date: Tue, 31 Jan 2023 06:43:27 GMT
Etag: "63d8ad12-1d7"
Expires: Thu, 02 Feb 2023 06:29:44 GMT
Last-Modified: Tue, 31 Jan 2023 05:54:26 GMT
Server: ECS (dcb/7F84)
X-Cache: Miss from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: O7pAIwSQ7uHYpPGW3Um40Ca9KrYzZRt4fIyv2v8vxhwQqJjQZQ4Z2A==
Age: 2118
11816973.fls.doubleclick.net/activityi;src=11816973;type=allpa0;cat=ke-al0;u3=[page_URL];dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=4056348941670.0317?
200 OK 280 B URL HTTP/2 11816973.fls.doubleclick.net/activityi;src=11816973;type=allpa0;cat=ke-al0;u3=[page_URL];dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=4056348941670.0317?
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (533), with no line terminators
Hash bd1b4f8e466b6784a1d41639af15dac6
e47ba87be8d91c970977f067a4258f96b0e480fd
2904b580b8e3d4225b89bcc72a44c035d24bdafb8d2005f76e73991b0212f96d
GET /activityi;src=11816973;type=allpa0;cat=ke-al0;u3=[page_URL];dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=4056348941670.0317? HTTP/1.1
Host: 11816973.fls.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.betika.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 31 Jan 2023 06:43:27 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 280
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 31-Jan-2023 06:58:27 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
sc-static.net/scevent.min.js
200 OK 13 kB URL HTTP/2 sc-static.net/scevent.min.js
IP
File type ASCII text, with very long lines (30923), with no line terminators
Hash 957d65dfa972893511879b4d2abce54b
a0106f59c171c72c527a88cc3b06263af186a5c4
24cae1a14856e2642826fe9d960b0e61ae60fa45a778ec61f2b7d862dc3af603
GET /scevent.min.js HTTP/1.1
Host: sc-static.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 13270
server: CloudFront
date: Tue, 31 Jan 2023 06:43:27 GMT
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Content-Type
cache-control: private, s-maxage=0, max-age=600
set-cookie: X-AB=0d6e407936704bd380072f5891d28b0e;max-age=86400;expires=Wed, 01 Feb 2023 05:50:09 GMT;Path=/scevent.min.js; Secure; SameSite=None
x-cache: LambdaGeneratedResponse from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: bH1Wt_nVutKE0xeDbPIyFELvw2lh7ImO-sJR7g8KhAnAgcFMKin3-g==
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ec8550f4b43db06e9e196a70ef2ce1f5
b34b36cf63f49944e3c4b8ecb82dd96fd4ef9c6b
782dd89bfa37dab1ff8c46e0b0ed86430a7982ce68839d2d8126c4b3eab56948
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "782DD89BFA37DAB1FF8C46E0B0ED86430A7982CE68839D2D8126C4B3EAB56948"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7838
Expires: Tue, 31 Jan 2023 08:54:05 GMT
Date: Tue, 31 Jan 2023 06:43:27 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 33e403367d183257be0f03f28da923d2
a586e4052008741f8f535e7bd12a94bde81b264e
82ce104749546e6a6f76a8ddf19b67795784c06256581c13f499e80e4f713131
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:43:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 277 B IP
Hash bb49657ab5c9975abe6234ee359fb129
73ef31d1253b13eb74a8b36e5d8cacfed79b1d55
fa71175a52e60628b437a2fa2d0062e7ccdc378d08365f1ca40d1177b54e97a9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5736
Cache-Control: max-age=158011
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:43:27 GMT
Etag: "63d86862-115"
Expires: Thu, 02 Feb 2023 02:36:58 GMT
Last-Modified: Tue, 31 Jan 2023 01:01:22 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 277
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 0a1364b729c95d384e213c1683ae2f16
e3fc5cada16447cfffca6426c66f87e9236d4d2a
b3309e0a4e67b5419664a223a3b3915ad8810c2c7ee58fba10c24f02a4aa8449
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=161539
Date: Tue, 31 Jan 2023 06:43:27 GMT
Etag: "63d882e6-1d7"
Expires: Thu, 02 Feb 2023 03:35:46 GMT
Last-Modified: Tue, 31 Jan 2023 02:54:30 GMT
Server: ECS (dcb/7ECA)
X-Cache: Miss from cloudfront
Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: zc9TyUJKyMOPf0wEI7tLdQcDJrNrWG-BQeRGXkBxUtcN1wb9BZoEKQ==
Age: 2476
cdn.brand-display.com/sv/js/fingerprint2.min.js
200 OK 29 kB URL HTTP/2 cdn.brand-display.com/sv/js/fingerprint2.min.js
IP
File type Unicode text, UTF-8 text, with very long lines (29412), with no line terminators
Hash 3b1a8d0a55f588f5675fa2ecd2abc5c2
8bb5b8bf92e3a5748ef570fa2555fd96c39a4cb8
ba50544bc52682e3884d79402fa65bbc8149866ff097223c48d9da54bb02e280
GET /sv/js/fingerprint2.min.js HTTP/1.1
Host: cdn.brand-display.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 29420
date: Mon, 30 Jan 2023 10:02:38 GMT
last-modified: Fri, 10 Apr 2020 12:22:17 GMT
etag: "3b1a8d0a55f588f5675fa2ecd2abc5c2"
x-amz-version-id: FMv4TnIx_EkiUylzRiS37tBQkjLZO1jg
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: VHdR-z4Legvv92LEVdin-gbVp5bwGG8MrAwyiGzU6bw_XWuop2A5pg==
age: 74450
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 94ff12cf926ef93df2f290efcca22f98
f8afd7282f24c87833557e05e6d2c5b6615662ba
16bef0ec785147ebaf7614145187179dbb441ae00b6c701e427635cfb6f2893b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1873
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:43:27 GMT
Last-Modified: Tue, 31 Jan 2023 06:12:14 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
tracker.ads.sportradar.com/dist/tracker.js
200 OK 12 kB URL HTTP/2 tracker.ads.sportradar.com/dist/tracker.js
IP
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (34755)
Hash b34b13d85152f71b7fd15289c78c0583
0bb20191b022bbd0e75f2bbce7f6332886079c2c
7a3fc57394ecc6745eb6e18745aa1e5e5d05cb2237c4d0d754ab43d33863a84c
GET /dist/tracker.js HTTP/1.1
Host: tracker.ads.sportradar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 20 Jan 2021 14:51:32 GMT
accept-ranges: bytes
server: AmazonS3
etag: "5ff82a1c468a89919e9437d33e0402cb"
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: m89cXti9Bk6MVqLyFpHHgN4cE4OYdvRi7Q_K0-EjdmN-St6Bu-wpfA==
vary: Accept-Encoding
content-encoding: gzip
date: Tue, 31 Jan 2023 06:43:27 GMT
content-length: 11553
cache-control: max-age=900, public
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 94ff12cf926ef93df2f290efcca22f98
f8afd7282f24c87833557e05e6d2c5b6615662ba
16bef0ec785147ebaf7614145187179dbb441ae00b6c701e427635cfb6f2893b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1873
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:43:27 GMT
Last-Modified: Tue, 31 Jan 2023 06:12:14 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash a5ff07b9b81cdf319f4a57d8d6dbbd6d
736ae15d0ed2068580d35a7cff8b33c0ec87af52
24406eda914ef8f78e1f60d6b54237ea6311f2fdf54b2b63647d84b397b41de0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:43:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 471 B IP
Hash 94ff12cf926ef93df2f290efcca22f98
f8afd7282f24c87833557e05e6d2c5b6615662ba
16bef0ec785147ebaf7614145187179dbb441ae00b6c701e427635cfb6f2893b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1873
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:43:27 GMT
Last-Modified: Tue, 31 Jan 2023 06:12:14 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
static.zdassets.com/ekr/snippet.js?key=c965e869-3df2-4315-a1c1-b285661d3002
200 OK 6.2 kB URL HTTP/2 static.zdassets.com/ekr/snippet.js?key=c965e869-3df2-4315-a1c1-b285661d3002
IP
File type ASCII text, with very long lines (23416), with no line terminators
Hash 2adcf6c05fc0cb4ff1ac639ea4609bea
88523abd448ea9f0415d00ad1562b61615a13a66
5f951dbba0a282a996e74db4ad9eeb964f6501b6016dc707ee43d20cc9d8f0a4
GET /ekr/snippet.js?key=c965e869-3df2-4315-a1c1-b285661d3002 HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 06:43:27 GMT
content-type: application/javascript
x-amz-id-2: VYKORFZEK8ncQjbBiiAK6oiTYdRdkzwPfaxRM/jinB20cI8N0LqXAF6x6uRMZJVhRKA1YH5Ltb2qBhbqYLdq5g==
x-amz-request-id: EBZ4ZRD66V3TGNXR
x-amz-replication-status: COMPLETED
last-modified: Thu, 28 Jul 2022 23:44:02 GMT
etag: W/"5cae6ce528dce0c327b2bcbaad459fdb"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600, s-maxage=60
x-amz-version-id: TCAqq4sghBBBAAXd3MLZ8Fy8XIds..vO
cf-cache-status: HIT
age: 34
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=256%2FuZFcIap8XUZmL1VuHdn79WFyjR5iUisjgc5tE2ptWvcugJe9ttk%2BZY2k0KyI60TiNsWtE0E8fQ57EoG6PtkNLzbuzYXJAsJMneuqEEmbcL62PueEJtXbjLUWR%2BuJBd1HwOE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7920791f6d7db517-OSL
content-encoding: br
X-Firefox-Spdy: h2
adservice.google.com/ddm/fls/i/src=11816973;type=allpa0;cat=ke-al0;u3=[page_URL];dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=4056348941670.0317;~oref=https://www.betika.com/
200 OK 282 B URL HTTP/2 adservice.google.com/ddm/fls/i/src=11816973;type=allpa0;cat=ke-al0;u3=[page_URL];dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=4056348941670.0317;~oref=https://www.betika.com/
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (532), with no line terminators
Hash c052e2723154ce33d80a9dea100834ee
9453df92a73ede648a4a7d8e6e48193925b514f7
fac05dc1a4c69ab7c914d78ffadec3371c7c68584b2d5072f9242a14bc2da951
GET /ddm/fls/i/src=11816973;type=allpa0;cat=ke-al0;u3=[page_URL];dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=4056348941670.0317;~oref=https://www.betika.com/ HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11816973.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 31 Jan 2023 06:43:27 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 282
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
tr.snapchat.com/p?pid=912b13bb-50b2-4dd0-88b0-81f12ac5cc48&ev=PAGE_VIEW&intg=gtm&pl=https%3A%2F%2Fwww.betika.com%2Fen-ke%2Fjackpots&bt=1d53c387&if=false&m_dcl=1365&m_fcps=1506&m_pi=1340&m_pl=0&m_pv=v2&m_rd=2022&m_sl=2018&rf=&trackId=4e9011bb-5358-4d88-af2c-628f00600834&ts=1675147422889&u_c1=c038cb86-dec1-458c-8e04-ff2660a590db&u_sclid=5abd0424-6b7c-4693-8d74-37e4ac77b91f&u_scsid=10ff31cd-6f17-43c0-aa8b-be29bdda9707&v=2.0.0
200 OK 68 B URL HTTP/2 tr.snapchat.com/p?pid=912b13bb-50b2-4dd0-88b0-81f12ac5cc48&ev=PAGE_VIEW&intg=gtm&pl=https%3A%2F%2Fwww.betika.com%2Fen-ke%2Fjackpots&bt=1d53c387&if=false&m_dcl=1365&m_fcps=1506&m_pi=1340&m_pl=0&m_pv=v2&m_rd=2022&m_sl=2018&rf=&trackId=4e9011bb-5358-4d88-af2c-628f00600834&ts=1675147422889&u_c1=c038cb86-dec1-458c-8e04-ff2660a590db&u_sclid=5abd0424-6b7c-4693-8d74-37e4ac77b91f&u_scsid=10ff31cd-6f17-43c0-aa8b-be29bdda9707&v=2.0.0
IP
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash c4a2b870062c2bb98c500bc1526c0498
528666ccdb12997358077bc8fcdbfb6b825c7788
2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11
GET /p?pid=912b13bb-50b2-4dd0-88b0-81f12ac5cc48&ev=PAGE_VIEW&intg=gtm&pl=https%3A%2F%2Fwww.betika.com%2Fen-ke%2Fjackpots&bt=1d53c387&if=false&m_dcl=1365&m_fcps=1506&m_pi=1340&m_pl=0&m_pv=v2&m_rd=2022&m_sl=2018&rf=&trackId=4e9011bb-5358-4d88-af2c-628f00600834&ts=1675147422889&u_c1=c038cb86-dec1-458c-8e04-ff2660a590db&u_sclid=5abd0424-6b7c-4693-8d74-37e4ac77b91f&u_scsid=10ff31cd-6f17-43c0-aa8b-be29bdda9707&v=2.0.0 HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 06:43:27 GMT
access-control-allow-origin: *
cache-control: no-cache, no-transform
set-cookie: sc_at=v2|H4sIAAAAAAAAAAXBgQ3AMAgDsIuQyEQa3oGhXsHxtesrARy7jbbgkWUx7cZfRE+Gzy6OiFC41h//UK6+MgAAAA==;SameSite=None;Version=1;Comment=;Domain=.snapchat.com;Path=/;Max-Age=33696000;Secure
content-type: image/png
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 68
x-envoy-upstream-service-time: 0
server: API Gateway
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tracker.ads.sportradar.com/dist//sp-2.14.0.js
200 OK 30 kB URL HTTP/2 tracker.ads.sportradar.com/dist//sp-2.14.0.js
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (64903)
Hash 44f237857b8d03f32b53fe551e83c95a
91536fe6c60d947d29dfcb5f04d09b752b5ccf03
a5e10dc2f3c729300afe8fe24aa430f57d91fdefa8112c0b35dd424ba612caa7
GET /dist//sp-2.14.0.js HTTP/1.1
Host: tracker.ads.sportradar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 20 Jan 2021 14:51:32 GMT
accept-ranges: bytes
server: AmazonS3
etag: "8dba669b94e3865c9205ef8fd15ee4d1"
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: xJ-DYriVdXw-4ZVCR4HXZNWc4YaiF7UoyL2M4IvktgYNnmmjOcfmwA==
vary: Accept-Encoding
content-encoding: gzip
date: Tue, 31 Jan 2023 06:43:27 GMT
content-length: 30370
cache-control: max-age=900, public
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 94ff12cf926ef93df2f290efcca22f98
f8afd7282f24c87833557e05e6d2c5b6615662ba
16bef0ec785147ebaf7614145187179dbb441ae00b6c701e427635cfb6f2893b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1873
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:43:27 GMT
Last-Modified: Tue, 31 Jan 2023 06:12:14 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash a5ff07b9b81cdf319f4a57d8d6dbbd6d
736ae15d0ed2068580d35a7cff8b33c0ec87af52
24406eda914ef8f78e1f60d6b54237ea6311f2fdf54b2b63647d84b397b41de0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:43:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash c64bdddb12c8260927c9070033903022
355afc8095d2f65a51e9f11e752874271c8ac467
9e6445b5c5743905dff94de9f376a60505b15c53c9402b5f26c796ff53c5f2a8
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=131564
Date: Tue, 31 Jan 2023 06:43:27 GMT
Etag: "63d7fecc-1d7"
Expires: Wed, 01 Feb 2023 19:16:11 GMT
Last-Modified: Mon, 30 Jan 2023 17:30:52 GMT
Server: ECS (dcb/7FA8)
X-Cache: Miss from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Peog_GW39SSRTRUpFmSMm4b5nbUpjuuvLsNZqlktLAS_B9J9wMjd4w==
Age: 6319
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 73d6f94eec5f7bf78dc11951011af215
2d7941713a82a83c174bf782b618a6f86a8ab2d7
9de1920abadb3501bcf9f787608807f13a266efea69f12fc811bc7cac14a3552
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:43:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/ddm/fls/i/src=11816973;type=allpa0;cat=ke-al0;u3=[page_URL];dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=4056348941670.0317;~oref=https://www.betika.com/
200 OK 85 B URL HTTP/2 adservice.google.no/ddm/fls/i/src=11816973;type=allpa0;cat=ke-al0;u3=[page_URL];dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=4056348941670.0317;~oref=https://www.betika.com/
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 4a3b3637744caa4a0b08fabbd76cc830
755e5626762ecf38f55012da892a227bf50f15f1
6a12009f3d99f10dd5acb27389beefed79eddd7fa55ddcc591baf92861d51bfb
GET /ddm/fls/i/src=11816973;type=allpa0;cat=ke-al0;u3=[page_URL];dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=4056348941670.0317;~oref=https://www.betika.com/ HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 31 Jan 2023 06:43:27 GMT
expires: Tue, 31 Jan 2023 06:43:27 GMT
cache-control: private, max-age=0
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 85
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 121bba53a6d67b505a43327a9b8a09cd
37e3f623f25a7b538300fb194bbe42d6a76b9b5b
37f113a8f5018a184e2a2f82017add1d00d5aefaf3baa5db917e7bfee4ffdf22
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=159836
Date: Tue, 31 Jan 2023 06:43:27 GMT
Etag: "63d88467-1d7"
Expires: Thu, 02 Feb 2023 03:07:23 GMT
Last-Modified: Tue, 31 Jan 2023 03:00:55 GMT
Server: ECS (dcb/7EC7)
X-Cache: Miss from cloudfront
Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: WhV134gAKlqbOT-pbaNVh79vW69dpZQvJy_pfg9MxImMWOYMM20Q2w==
Age: 388
ob.cheqzone.com/clicktrue_invocation.js?id=13122
200 OK 32 kB URL HTTP/2 ob.cheqzone.com/clicktrue_invocation.js?id=13122
IP
File type Unicode text, UTF-8 text, with very long lines (65530), with no line terminators
Hash 985ec7f23107be62b8760ce97e9a4e57
36799a46053b97b2c3971e06397e5893815aab98
553a8f9274f70376863e99f3392af1538ef34894951acdbb4805a75a19661d4c
GET /clicktrue_invocation.js?id=13122 HTTP/1.1
Host: ob.cheqzone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 31876
content-encoding: gzip
server: Caddy
date: Tue, 31 Jan 2023 05:34:20 GMT
cache-control: max-age=43200
expires: Tue, 31 Jan 2023 14:02:27 GMT
etag: "1570d-oHOaE1WIWmXsaTqz9siAostYQMM"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZtdZi7jiu0SNkvKoFrBPueWIbzdGnvvCqFQcvOusjI3ktMFF83OOsA==
age: 16860
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 73d6f94eec5f7bf78dc11951011af215
2d7941713a82a83c174bf782b618a6f86a8ab2d7
9de1920abadb3501bcf9f787608807f13a266efea69f12fc811bc7cac14a3552
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:43:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.brand-display.com/tr/knx64763/a2383d8198d84a89960a57545fcc7ba73eaeb820.js?v1=%%CONTENT_IDS%%&v2=%%CONTENT_CATEGORY%%&v3=%%CONTENT_NAME%%&v4=%%NUM_ITEMS%%&v5=%%SEARCH_STRING%%&v6=%%VALUE%%&v7=%%CURRENCY%%&v8=%%STATUS%%&_t=1675147422554
200 OK 8.7 kB URL HTTP/2 cdn.brand-display.com/tr/knx64763/a2383d8198d84a89960a57545fcc7ba73eaeb820.js?v1=%%CONTENT_IDS%%&v2=%%CONTENT_CATEGORY%%&v3=%%CONTENT_NAME%%&v4=%%NUM_ITEMS%%&v5=%%SEARCH_STRING%%&v6=%%VALUE%%&v7=%%CURRENCY%%&v8=%%STATUS%%&_t=1675147422554
IP
Hash 9b9f14d49866dce2eeb7d7fa944ddf25
8a9514693ce30c70759d656ce8366c0636c39b5d
f980cccffe44463f350ba744f1322f6a0356c5258f7f1ae3435dab39d498c268
GET /tr/knx64763/a2383d8198d84a89960a57545fcc7ba73eaeb820.js?v1=%%CONTENT_IDS%%&v2=%%CONTENT_CATEGORY%%&v3=%%CONTENT_NAME%%&v4=%%NUM_ITEMS%%&v5=%%SEARCH_STRING%%&v6=%%VALUE%%&v7=%%CURRENCY%%&v8=%%STATUS%%&_t=1675147422554 HTTP/1.1
Host: cdn.brand-display.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript
last-modified: Fri, 13 Aug 2021 13:26:47 GMT
x-amz-version-id: pKZOykPTwUpcwP6yf7_X1Nq9qE6_hWlu
server: AmazonS3
content-encoding: gzip
date: Tue, 31 Jan 2023 05:34:19 GMT
cache-control: no-cache, must-revalidate, proxy-revalidate, public, max-age=0
etag: W/"40ed61ffa5c6d787dbbb0f2b4c03d3e7"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: AX5zYU46S--iuYRRkYV2uVDY7tVcERmZ_60C6z7zYYKjge_7T9OSZg==
age: 6239
X-Firefox-Spdy: h2
cdn-ie.transmartx.com/js/hippo.t.mini.js
200 OK 13 kB URL HTTP/2 cdn-ie.transmartx.com/js/hippo.t.mini.js
IP
Hash 2ebaef7e44da021507d6ca66bdcbbb0d
95817536dec3807758b0b27203057ceb13c076f4
2cb1c8d73cbe5aa3291be93f55ec792620d58b3ac607fbb36a8f031c9e9d9d63
GET /js/hippo.t.mini.js HTTP/1.1
Host: cdn-ie.transmartx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 01 Dec 2021 06:46:26 GMT
server: AmazonS3
content-encoding: gzip
date: Tue, 31 Jan 2023 06:43:27 GMT
etag: W/"cf7fc28d5197be4a019759869ff6342a"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: RIPYKaSsj_XlxZVkOnpUDoQSHp6wjesh1umoSmf8d0uu-5RPnbiS1Q==
age: 13235
X-Firefox-Spdy: h2
a.sportradarserving.com/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
302 Moved Temporarily 0 B URL HTTP/1.1 a.sportradarserving.com/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId= HTTP/1.1
Host: a.sportradarserving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Tue, 31 Jan 2023 06:43:27 GMT
Location: https://a.sportradarserving.com/ul_cb/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
Set-Cookie: zuuid=680a364a-1e70-4e35-a375-2f097c2a9a08; path=/; expires=Wed, 31-Jan-2024 06:43:27 GMT; domain=sportradarserving.com; samesite=none; secure
c=1675147407; path=/; expires=Wed, 31-Jan-2024 06:43:27 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1675147407; path=/; expires=Wed, 31-Jan-2024 06:43:27 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 0
Connection: keep-alive
a.sportradarserving.com/pixel?type=js&aid=1240&id=3150
302 Moved Temporarily 0 B URL HTTP/1.1 a.sportradarserving.com/pixel?type=js&aid=1240&id=3150
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel?type=js&aid=1240&id=3150 HTTP/1.1
Host: a.sportradarserving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Tue, 31 Jan 2023 06:43:27 GMT
Location: https://a.sportradarserving.com/ul_cb/pixel?type=js&aid=1240&id=3150
Set-Cookie: zuuid=1ea3831e-7623-4fc9-be4f-93b7480afd6a; path=/; expires=Wed, 31-Jan-2024 06:43:27 GMT; domain=sportradarserving.com; samesite=none; secure
c=1675147407; path=/; expires=Wed, 31-Jan-2024 06:43:27 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1675147407; path=/; expires=Wed, 31-Jan-2024 06:43:27 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 0
Connection: keep-alive
a.sportradarserving.com/ul_cb/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
302 Moved Temporarily 0 B URL HTTP/1.1 a.sportradarserving.com/ul_cb/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ul_cb/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId= HTTP/1.1
Host: a.sportradarserving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.betika.com/
Connection: keep-alive
Cookie: zuuid=1ea3831e-7623-4fc9-be4f-93b7480afd6a; c=1675147407; zuuid_lu=1675147407
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Tue, 31 Jan 2023 06:43:27 GMT
Location: https://x.bidswitch.net/syncd?dsp_id=409&user_group=1&user_id=1ea3831e-7623-4fc9-be4f-93b7480afd6a&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3D1ea3831e-7623-4fc9-be4f-93b7480afd6a
Set-Cookie: zuuid=1ea3831e-7623-4fc9-be4f-93b7480afd6a; path=/; expires=Wed, 31-Jan-2024 06:43:27 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1675147407; path=/; expires=Wed, 31-Jan-2024 06:43:27 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k=1; path=/; expires=Wed, 31-Jan-2024 06:43:27 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k_lu=1675147407; path=/; expires=Wed, 31-Jan-2024 06:43:27 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 0
Connection: keep-alive
a.sportradarserving.com/ul_cb/pixel?type=js&aid=1240&id=3150
200 OK 1.5 kB URL HTTP/1.1 a.sportradarserving.com/ul_cb/pixel?type=js&aid=1240&id=3150
IP
File type ASCII text, with very long lines (1527), with no line terminators
Hash 3baa8bfd6eef9befa21b7f6b837e1e20
7810cee22f8bb62fa9f491c969437f7894e3da06
ca3e54b5b9ec92b43350c367eb9edf365e429b5da303232a985ede6c76c365e1
GET /ul_cb/pixel?type=js&aid=1240&id=3150 HTTP/1.1
Host: a.sportradarserving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.betika.com/
Connection: keep-alive
Cookie: zuuid=1ea3831e-7623-4fc9-be4f-93b7480afd6a; c=1675147407; zuuid_lu=1675147407
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store, must-revalidate
Content-Type: text/javascript; charset=UTF-8
Date: Tue, 31 Jan 2023 06:43:27 GMT
Set-Cookie: zuuid=1ea3831e-7623-4fc9-be4f-93b7480afd6a; path=/; expires=Wed, 31-Jan-2024 06:43:27 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1675147407; path=/; expires=Wed, 31-Jan-2024 06:43:27 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k=1; path=/; expires=Wed, 31-Jan-2024 06:43:27 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k_lu=1675147407; path=/; expires=Wed, 31-Jan-2024 06:43:27 GMT; domain=sportradarserving.com; samesite=none; secure
bss=!bidswitch,444404607; path=/; expires=Wed, 31-Jan-2024 06:43:27 GMT; domain=sportradarserving.com; samesite=none; secure
cm4=!bidswitch,444476607; path=/; expires=Wed, 31-Jan-2024 06:43:27 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 1527
Connection: keep-alive
ocsp.sectigo.com/
200 OK 281 B IP
Hash 639583b0bde484d1211f289a98bb8c38
4fed684d66880116ead3ec25cccb0379b35242d2
1bf8a3ccb1477f8df3596083278be0417cdef3bdf2557fece5ebf21d9b12cd71
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 06:43:27 GMT
Content-Type: application/ocsp-response
Content-Length: 281
Connection: keep-alive
Last-Modified: Mon, 30 Jan 2023 07:15:21 GMT
Expires: Mon, 06 Feb 2023 07:15:20 GMT
Etag: "4fed684d66880116ead3ec25cccb0379b35242d2"
Cache-Control: max-age=519712,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79207921c8910b31-OSL
trk.elephantmob.com/a/tk/s
200 OK 0 B URL HTTP/2 trk.elephantmob.com/a/tk/s
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /a/tk/s HTTP/1.1
Host: trk.elephantmob.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.betika.com/
Origin: https://www.betika.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 06:43:27 GMT
content-length: 0
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: *
access-control-allow-methods: POST
access-control-allow-headers: content-type
X-Firefox-Spdy: h2
trk.elephantmob.com/a/tk/s
200 OK 0 B URL HTTP/2 trk.elephantmob.com/a/tk/s
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /a/tk/s HTTP/1.1
Host: trk.elephantmob.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=UTF-8
Content-Length: 502
Origin: https://www.betika.com
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 06:43:27 GMT
content-length: 0
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: *
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17042
Expires: Tue, 31 Jan 2023 11:27:30 GMT
Date: Tue, 31 Jan 2023 06:43:28 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17042
Expires: Tue, 31 Jan 2023 11:27:30 GMT
Date: Tue, 31 Jan 2023 06:43:28 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17042
Expires: Tue, 31 Jan 2023 11:27:30 GMT
Date: Tue, 31 Jan 2023 06:43:28 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17042
Expires: Tue, 31 Jan 2023 11:27:30 GMT
Date: Tue, 31 Jan 2023 06:43:28 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17042
Expires: Tue, 31 Jan 2023 11:27:30 GMT
Date: Tue, 31 Jan 2023 06:43:28 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3366ef4f8733cb9c89a5c88f63a0a441
7da46843b6d885f38a4759a08e6c899906ab7b97
7114397ee5c251cc5cb46f3433c2cc17ff68a08e0872e227671198e9b61eba0a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9600
x-amzn-requestid: 48094e1a-d550-4a91-b87c-4a08505f7cce
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVsWcFN7IAMF2pg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d2275c-5ced593a7e2126c9494563df;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:10:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: v9Wphg34UGE5kkZ9RKBcphcpPuCn54oVyepzTW5rZ3J9nkL9J501PA==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 22:03:23 GMT
age: 31205
etag: "7da46843b6d885f38a4759a08e6c899906ab7b97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b003bbe-42d9-4014-8fbe-ddff072cc8b4.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b003bbe-42d9-4014-8fbe-ddff072cc8b4.jpeg
IP
Hash 0241050a62a513b37d8cd6f1ae6a68b0
7a588f03e9473c3749951606ea127b0c152713ab
5224408af5f35aa7826c2eff3a95424f90d0493787ccc3ede2771089e288fb35
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b003bbe-42d9-4014-8fbe-ddff072cc8b4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5903
x-amzn-requestid: f6fca787-17c1-4edd-9ab0-a00e2fccc7a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fboufGeSoAMF-1g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d487f6-58be6bdc5e3e767e1ea47b86;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 02:27:02 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ZKuBcZgC6yolu1QcaXZKAIIDynG3Zywq1d7sWI8Jlq3ULwlr6XlhWQ==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 13:04:11 GMT
age: 63557
etag: "7ccefd66211d249ae5266c3b6ae3375a19e5cb6d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5965fef2-c5a7-4a82-bcdc-41aebc355aff.jpeg
200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5965fef2-c5a7-4a82-bcdc-41aebc355aff.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 83d9e98a4575077e7400343c7f2038d2
6ac3ca84e97fa35afff9045f35d45499c0b34a23
da6d6d90a5ea8f5a864f3739591693b5f4b9793f2c4bb971486572f6bf2e940c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5965fef2-c5a7-4a82-bcdc-41aebc355aff.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7334
x-amzn-requestid: e62c149b-ca5f-4d0c-8d2d-e8bb2a7f9d8e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fbvSzH2soAMFiYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d49278-1214fc750a312e46527b2fd7;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 03:11:52 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: DHpGf24wNNYDg2RxvPCY6S011xYLiXzP1pP7O-kPNKnnP50CihUfDQ==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 03:28:52 GMT
age: 11676
etag: "6ac3ca84e97fa35afff9045f35d45499c0b34a23"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1925abe-5fa6-440b-8e23-d92b1e3bf273.jpeg
200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1925abe-5fa6-440b-8e23-d92b1e3bf273.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 63486f2a937aa8fd013fc2c2d1b32f2d
e8868de34c2f79348c1edad764259eb70bebd7a6
fa6e5ce374031c0df3b3f2d6de823cf1fe08fdaf9957a0722770867cfdec0ed1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1925abe-5fa6-440b-8e23-d92b1e3bf273.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13639
x-amzn-requestid: 8131c878-620a-4972-ba8f-1456859acae2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fYcJSF0SIAMFe1g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d340a1-18c7280940d508c440c0182c;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 03:10:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: mXlQ5A2PHadECkKglPquN9x68ubYk8s2to-_JjCgEQe7axfJo6K8Jw==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 07:53:36 GMT
age: 82192
etag: "e8868de34c2f79348c1edad764259eb70bebd7a6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/web-widget-framework-59b8a859ce8a473d961c.js
200 OK 55 kB URL HTTP/2 static.zdassets.com/web_widget/latest/web-widget-framework-59b8a859ce8a473d961c.js
IP
File type Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
Hash a645db13d9d08e82a2c8fe2ec56b534b
6936820e86473f054e5d9220f4722053362c52f7
736563f2674ac4cbc179c78f3b1952aecc94d673085c3701a0e3625c9961bb3f
GET /web_widget/latest/web-widget-framework-59b8a859ce8a473d961c.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 06:43:27 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: eqi5IJQsZltOEPYX18LZfa9yHAtGFvEXQO7zmTiGIn0VvD4F0CwBVgdFmBuHSbbKdhbjAWDPQGE=
x-amz-request-id: JT3WC3ZCPKE9H3EG
x-amz-replication-status: COMPLETED
last-modified: Tue, 24 Jan 2023 07:03:21 GMT
etag: W/"6337d08bfec6eec8c5e9f218e1ca6471"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Wed, 24 Jan 2024 07:03:19 GMT
x-amz-version-id: .eV5Z5rLMQLzZziY1JqjOEi.7xRQkb6M
cf-cache-status: HIT
age: 371434
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dGrVO37%2Fiwy06ZlMBjPm70lA8Px0fg0uJlFSW4HJHiH9kvqeP1TW7bdg%2FxmPJO8QylWziVJjJLPiTXxv8HMUBxtPgb9Xk6KMh5ywjblfX4XzwoqVWDudMSlnIqdeXhrypjuUrMw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 79207923c9ceb517-OSL
content-encoding: br
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffea501ff-acf4-4b37-aa0a-baf417cf3694.jpeg
200 OK 40 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffea501ff-acf4-4b37-aa0a-baf417cf3694.jpeg
IP
File type 68K BCS executable\012- data
Hash 9d7e24d81d169a88f40144310e016a59
8a8e50f38e5cad19b72d35f3b6e82086fcf3c045
27f4cbd35a726c0859cd08fdaff8b3c957bec4e38c70604ce44d85d327bbb486
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffea501ff-acf4-4b37-aa0a-baf417cf3694.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5394
x-amzn-requestid: 16d876fb-0afd-4b5d-b19e-1029506fd6f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fIgq2E4CIAMFiFA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cce178-1f08dc2105b6e182677004e7;Sampled=0
x-amzn-remapped-date: Sun, 22 Jan 2023 07:10:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: FoTKdVc567GRCEDn8JoMOs4-enQPpdvFhPafmSRsgCFZC78q8ba5pA==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 12:51:52 GMT
age: 64296
etag: "c9856a488e82bc330881377528bf2e53274ef5f3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
obs.cheqzone.com/ct?id=13122&url=https%3A%2F%2Fwww.betika.com%2Fen-ke%2Fjackpots&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1675147423264&hl=1&op=0&ag=1317291471&rand=230591761816052510197119261000191690295582911287167797975295157705125092907&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%3D&dep=0&pre=0&sdd=%7B%7D&cri=UAWwJ7s5jN&pto=2399&ver=50&gac=596498150.1675147423&mei=&ap=&duid=1.1675147423.rBbkF7AUFr0SVH1U&suid=1.1675147423.CoQFRnhBl3RGmDEh&tuid=1.1675147423.IZ7Y1ADKFkT8uQpW&fbc=->m=WyJjdXN0b20ubmF2aWdhdGlvbiJd&it=100%2C2095%2C206&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0
200 OK 930 B URL HTTP/2 obs.cheqzone.com/ct?id=13122&url=https%3A%2F%2Fwww.betika.com%2Fen-ke%2Fjackpots&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1675147423264&hl=1&op=0&ag=1317291471&rand=230591761816052510197119261000191690295582911287167797975295157705125092907&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%3D&dep=0&pre=0&sdd=%7B%7D&cri=UAWwJ7s5jN&pto=2399&ver=50&gac=596498150.1675147423&mei=&ap=&duid=1.1675147423.rBbkF7AUFr0SVH1U&suid=1.1675147423.CoQFRnhBl3RGmDEh&tuid=1.1675147423.IZ7Y1ADKFkT8uQpW&fbc=->m=WyJjdXN0b20ubmF2aWdhdGlvbiJd&it=100%2C2095%2C206&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0
IP
File type ASCII text, with very long lines (2658), with no line terminators
Hash a3c9d963610ad2e7535692dc6635b8db
7799d4461fe0d06ec6c53dcf44f1343675bb4dce
39903adb45a9f7e86542a96ac69c2fb146635e4e4fce383ba4d16971b5e43ccf
GET /ct?id=13122&url=https%3A%2F%2Fwww.betika.com%2Fen-ke%2Fjackpots&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1675147423264&hl=1&op=0&ag=1317291471&rand=230591761816052510197119261000191690295582911287167797975295157705125092907&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%3D&dep=0&pre=0&sdd=%7B%7D&cri=UAWwJ7s5jN&pto=2399&ver=50&gac=596498150.1675147423&mei=&ap=&duid=1.1675147423.rBbkF7AUFr0SVH1U&suid=1.1675147423.CoQFRnhBl3RGmDEh&tuid=1.1675147423.IZ7Y1ADKFkT8uQpW&fbc=->m=WyJjdXN0b20ubmF2aWdhdGlvbiJd&it=100%2C2095%2C206&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0 HTTP/1.1
Host: obs.cheqzone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
content-type: text/javascript
date: Tue, 31 Jan 2023 06:43:28 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
set-cookie: cg_uuid=06e31478461189da5d632114a52364c4; Max-Age=29030400; Path=/; Expires=Tue, 02 Jan 2024 06:43:28 GMT; HttpOnly; Secure; SameSite=None
content-length: 930
X-Firefox-Spdy: h2
region1.analytics.google.com/g/collect?v=2&tid=G-R8GRWELHBE>m=2oe1p0&_p=1168804951&_gaz=1&tt=valid_user&cid=596498150.1675147423&ul=en-us&sr=1280x1024&ir=1&uaW=1&_eu=EA&_s=1&sid=1675147423&sct=1&seg=0&dl=https%3A%2F%2Fwww.betika.com%2Fen-ke%2Fjackpots&dt=Betika%20%7C%20Best%20Online%20Sports%20Betting%20in%20Kenya&en=page_view&_fv=1&_nsi=1&_ss=1&ep.gtm_id=GTM-58TMPLK&ep.is_cpc=false
204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-R8GRWELHBE>m=2oe1p0&_p=1168804951&_gaz=1&tt=valid_user&cid=596498150.1675147423&ul=en-us&sr=1280x1024&ir=1&uaW=1&_eu=EA&_s=1&sid=1675147423&sct=1&seg=0&dl=https%3A%2F%2Fwww.betika.com%2Fen-ke%2Fjackpots&dt=Betika%20%7C%20Best%20Online%20Sports%20Betting%20in%20Kenya&en=page_view&_fv=1&_nsi=1&_ss=1&ep.gtm_id=GTM-58TMPLK&ep.is_cpc=false
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-R8GRWELHBE>m=2oe1p0&_p=1168804951&_gaz=1&tt=valid_user&cid=596498150.1675147423&ul=en-us&sr=1280x1024&ir=1&uaW=1&_eu=EA&_s=1&sid=1675147423&sct=1&seg=0&dl=https%3A%2F%2Fwww.betika.com%2Fen-ke%2Fjackpots&dt=Betika%20%7C%20Best%20Online%20Sports%20Betting%20in%20Kenya&en=page_view&_fv=1&_nsi=1&_ss=1&ep.gtm_id=GTM-58TMPLK&ep.is_cpc=false HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.betika.com
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.betika.com
date: Tue, 31 Jan 2023 06:43:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 69ffc0a3f7ca2b025a6b99f9c38889be
1b436bda66cd246a1024f8c3d8e91e3aeef31eaa
9aaaf6c2a570c6a73a623f4fdfb0e1dfd5f16f086ae5d9c8d5b2403b0d016e4f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:43:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
obs.cheqzone.com/tracker/tc_imp.gif?e=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&cri=UAWwJ7s5jN&ts=470&cb=1675147423734
200 OK 43 B URL HTTP/2 obs.cheqzone.com/tracker/tc_imp.gif?e=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&cri=UAWwJ7s5jN&ts=470&cb=1675147423734
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash db04c7b378cb2db912c3ba8a5a774ee3
dee34bd86c3484d31002182aa2b7caa4699126b8
98b3d9d20e032f90aca49e9b116225d539ff6fbdb7e42c3c363f63896ac03d2a
GET /tracker/tc_imp.gif?e=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&cri=UAWwJ7s5jN&ts=470&cb=1675147423734 HTTP/1.1
Host: obs.cheqzone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.betika.com/
Cookie: cg_uuid=06e31478461189da5d632114a52364c4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
date: Tue, 31 Jan 2023 06:43:28 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
content-length: 43
X-Firefox-Spdy: h2
stats.g.doubleclick.net/g/collect?v=2&tid=G-R8GRWELHBE&cid=596498150.1675147423>m=2oe1p0&aip=1
204 No Content 0 B URL HTTP/2 stats.g.doubleclick.net/g/collect?v=2&tid=G-R8GRWELHBE&cid=596498150.1675147423>m=2oe1p0&aip=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-R8GRWELHBE&cid=596498150.1675147423>m=2oe1p0&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.betika.com
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.betika.com
date: Tue, 31 Jan 2023 06:43:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
advertiser.inmobiapis.com/tpce/v1/events/pixel?impId=&advId=112fe6524a474478a2f1266368ac7d8c&bUrl=https%3A%2F%2Fwww.betika.com%2Fen-ke%2Fjackpots&ckId=f4775843-99e0-47a2-af2d-13a4ddc866f0&eventTime=1675147422835
200 OK 517 B URL HTTP/2 advertiser.inmobiapis.com/tpce/v1/events/pixel?impId=&advId=112fe6524a474478a2f1266368ac7d8c&bUrl=https%3A%2F%2Fwww.betika.com%2Fen-ke%2Fjackpots&ckId=f4775843-99e0-47a2-af2d-13a4ddc866f0&eventTime=1675147422835
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash a43ad0eceaa905388f09c941dc75425c
15849aab994d69d56304e84ed831e72ac304c496
1e39e21f7789f20d0fdb8814c66d4f6a20bf9874237436685954a4ea4d775699
GET /tpce/v1/events/pixel?impId=&advId=112fe6524a474478a2f1266368ac7d8c&bUrl=https%3A%2F%2Fwww.betika.com%2Fen-ke%2Fjackpots&ckId=f4775843-99e0-47a2-af2d-13a4ddc866f0&eventTime=1675147422835 HTTP/1.1
Host: advertiser.inmobiapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 06:43:27 GMT
content-type: application/json
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-origin: *
access-control-allow-credentials: true
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Tue, 31 Jan 2023 05:46:59 GMT
expires: Tue, 31 Jan 2023 07:46:59 GMT
cache-control: public, max-age=7200
age: 3389
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 69ffc0a3f7ca2b025a6b99f9c38889be
1b436bda66cd246a1024f8c3d8e91e3aeef31eaa
9aaaf6c2a570c6a73a623f4fdfb0e1dfd5f16f086ae5d9c8d5b2403b0d016e4f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:43:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 471 B IP
Hash 4fa4e3a6c0ea0d843f6f77af6a290fca
965944af181e8d47677e5b428e8a3233c942cf99
801765bb2eb7f84e39a58691c4798b32ccd9e6ed22e924754d26277f4f2e0b11
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3955
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:43:28 GMT
Last-Modified: Tue, 31 Jan 2023 05:37:33 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
www.google-analytics.com/gtm/optimize.js?id=GTM-MSWJTXV
200 OK 46 kB URL HTTP/2 www.google-analytics.com/gtm/optimize.js?id=GTM-MSWJTXV
IP
File type ASCII text, with very long lines (1759)
Hash 7e86c62a502b89196aa7ce2cf6c370aa
766949d5883db778212685578f19871fe6dc0da5
495e712646dcfe207677e253ea2a2c3f462f79a351d1f011f5571959c26d7c68
GET /gtm/optimize.js?id=GTM-MSWJTXV HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 31 Jan 2023 06:43:28 GMT
expires: Tue, 31 Jan 2023 06:43:28 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 45642
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-R8GRWELHBE&cid=596498150.1675147423>m=2oe1p0&aip=1&z=896720089
200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-R8GRWELHBE&cid=596498150.1675147423>m=2oe1p0&aip=1&z=896720089
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-R8GRWELHBE&cid=596498150.1675147423>m=2oe1p0&aip=1&z=896720089 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 31 Jan 2023 06:43:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash bd382a4b9853f0886f48d16d0c20bf32
46f74d99218a47be129b955696e0a29e11c8ee0c
074b769abd0369ad6ffe1014a96e837cae7e168ed8ca9c6a700f05c43b2a68e5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=134251
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:43:28 GMT
Etag: "63d821fb-117"
Expires: Wed, 01 Feb 2023 20:00:59 GMT
Last-Modified: Mon, 30 Jan 2023 20:00:59 GMT
Server: nginx
Content-Length: 279
connect.facebook.net/en_US/fbevents.js
200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP
File type ASCII text, with very long lines (64348)
Hash dd1f85cc598419df61e254e53f9ec1ef
f86c0ee563f5b7a01e1d40b566f2bc184a32380f
c06f52b233c835b03292f39cb847507a03bb971066bf91341b58a580244398c0
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: ux+Tt1RiQQQYD0TOjPnqPELGZZxnR9Nukb3lMT3OR/cORvnm4I0/AmgGQ3/Ogg8pCtA1HGRiTjFw7sz3/HOb6Q==
priority: u=3,i
content-length: 27843
x-fb-trip-id: 1679558926
date: Tue, 31 Jan 2023 06:43:28 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.google-analytics.com/j/collect?v=1&_v=j99&a=1168804951&t=screenview&_s=1&cd=grand-jackpot&dl=https%3A%2F%2Fwww.betika.com%2Fen-ke%2Fjackpots&ul=en-us&de=UTF-8&dt=Betika%20%7C%20Best%20Online%20Sports%20Betting%20in%20Kenya&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&an=MOBILE_WEB&av=3.0.0&_u=YADAAEAjQAAAACAAI~&jid=607419902&gjid=603901761&cid=596498150.1675147423&tid=UA-77069362-1&_gid=377708422.1675147424&_r=1&_slc=1&z=665439037
200 OK 4 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j99&a=1168804951&t=screenview&_s=1&cd=grand-jackpot&dl=https%3A%2F%2Fwww.betika.com%2Fen-ke%2Fjackpots&ul=en-us&de=UTF-8&dt=Betika%20%7C%20Best%20Online%20Sports%20Betting%20in%20Kenya&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&an=MOBILE_WEB&av=3.0.0&_u=YADAAEAjQAAAACAAI~&jid=607419902&gjid=603901761&cid=596498150.1675147423&tid=UA-77069362-1&_gid=377708422.1675147424&_r=1&_slc=1&z=665439037
IP
File type ASCII text, with no line terminators
Hash 9e92e190700c1af4539b40c2171320a9
209bcdb79e6067b51091ce8586d4b977f25b67d8
aec60bc104db041b1512185839f18f52986df7e569e5445f740dd60f763fbca8
POST /j/collect?v=1&_v=j99&a=1168804951&t=screenview&_s=1&cd=grand-jackpot&dl=https%3A%2F%2Fwww.betika.com%2Fen-ke%2Fjackpots&ul=en-us&de=UTF-8&dt=Betika%20%7C%20Best%20Online%20Sports%20Betting%20in%20Kenya&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&an=MOBILE_WEB&av=3.0.0&_u=YADAAEAjQAAAACAAI~&jid=607419902&gjid=603901761&cid=596498150.1675147423&tid=UA-77069362-1&_gid=377708422.1675147424&_r=1&_slc=1&z=665439037 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.betika.com
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.betika.com
date: Tue, 31 Jan 2023 06:43:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash 5c00a6b71849e1f63887d38333830003
274723ffd4a062e1997a213ceeeab8a56ac83141
5e15ea6950fd4aa51af37519ac391c2c95cfd74ded6ac6e35432ccf68c70cb23
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 06:43:28 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 28 Jan 2023 01:56:49 GMT
Expires: Sat, 04 Feb 2023 01:56:48 GMT
Etag: "274723ffd4a062e1997a213ceeeab8a56ac83141"
Cache-Control: max-age=327799,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79207926a9f0b509-OSL
ocsp.digicert.com/
200 OK 471 B IP
Hash 4fa4e3a6c0ea0d843f6f77af6a290fca
965944af181e8d47677e5b428e8a3233c942cf99
801765bb2eb7f84e39a58691c4798b32ccd9e6ed22e924754d26277f4f2e0b11
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3955
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:43:28 GMT
Last-Modified: Tue, 31 Jan 2023 05:37:33 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
x.bidswitch.net/syncd?dsp_id=409&user_group=1&user_id=1ea3831e-7623-4fc9-be4f-93b7480afd6a&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3D1ea3831e-7623-4fc9-be4f-93b7480afd6a
302 Found 0 B URL HTTP/2 x.bidswitch.net/syncd?dsp_id=409&user_group=1&user_id=1ea3831e-7623-4fc9-be4f-93b7480afd6a&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3D1ea3831e-7623-4fc9-be4f-93b7480afd6a
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /syncd?dsp_id=409&user_group=1&user_id=1ea3831e-7623-4fc9-be4f-93b7480afd6a&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3D1ea3831e-7623-4fc9-be4f-93b7480afd6a HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.betika.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Tue, 31 Jan 2023 06:43:28 GMT
content-length: 0
location: https://x.bidswitch.net/ul_cb/syncd?dsp_id=409&user_group=1&user_id=1ea3831e-7623-4fc9-be4f-93b7480afd6a&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3D1ea3831e-7623-4fc9-be4f-93b7480afd6a
cache-control: no-cache, no-store, must-revalidate
set-cookie: tuuid=1cba604e-a270-470f-bc2a-1f2330217122; path=/; expires=Wed, 31-Jan-2024 06:43:28 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675147408; path=/; expires=Wed, 31-Jan-2024 06:43:28 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1675147408; path=/; expires=Wed, 31-Jan-2024 06:43:28 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675147408; path=/; expires=Wed, 31-Jan-2024 06:43:28 GMT; domain=.bidswitch.net; samesite=none; secure
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash 5c00a6b71849e1f63887d38333830003
274723ffd4a062e1997a213ceeeab8a56ac83141
5e15ea6950fd4aa51af37519ac391c2c95cfd74ded6ac6e35432ccf68c70cb23
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 06:43:28 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 28 Jan 2023 01:56:49 GMT
Expires: Sat, 04 Feb 2023 01:56:48 GMT
Etag: "274723ffd4a062e1997a213ceeeab8a56ac83141"
Cache-Control: max-age=327799,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792079264bb80b31-OSL
dsp-trk.eskimi.com/tracking/cssession?tst&id=25605
304 Not Modified 0 B URL HTTP/2 dsp-trk.eskimi.com/tracking/cssession?tst&id=25605
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tracking/cssession?tst&id=25605 HTTP/1.1
Host: dsp-trk.eskimi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.betika.com
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 304 Not Modified
access-control-allow-origin: https://www.betika.com
access-control-allow-credentials: true
date: Tue, 31 Jan 2023 06:43:27 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
x.bidswitch.net/syncd?dsp_id=409&user_id=1ea3831e-7623-4fc9-be4f-93b7480afd6a&user_group=3&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D
302 Found 0 B URL HTTP/2 x.bidswitch.net/syncd?dsp_id=409&user_id=1ea3831e-7623-4fc9-be4f-93b7480afd6a&user_group=3&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /syncd?dsp_id=409&user_id=1ea3831e-7623-4fc9-be4f-93b7480afd6a&user_group=3&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Tue, 31 Jan 2023 06:43:28 GMT
content-length: 0
location: https://x.bidswitch.net/ul_cb/syncd?dsp_id=409&user_id=1ea3831e-7623-4fc9-be4f-93b7480afd6a&user_group=3&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D
cache-control: no-cache, no-store, must-revalidate
set-cookie: tuuid=2fae9628-83ab-4c02-a38b-4eef4d9f2ac1; path=/; expires=Wed, 31-Jan-2024 06:43:28 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675147408; path=/; expires=Wed, 31-Jan-2024 06:43:28 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1675147408; path=/; expires=Wed, 31-Jan-2024 06:43:28 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675147408; path=/; expires=Wed, 31-Jan-2024 06:43:28 GMT; domain=.bidswitch.net; samesite=none; secure
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 2827b615fd8bc2ef8814f3b41f3c4e48
c070854fcea702dd84e2173ae050211730f7f74e
29ad23cfc0a11fa0a4a039a5e13f063365f077cb1e667eef90e50b75ebba3d9b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4281
Cache-Control: max-age=96767
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:43:28 GMT
Etag: "63d77ed6-1d7"
Expires: Wed, 01 Feb 2023 09:36:15 GMT
Last-Modified: Mon, 30 Jan 2023 08:24:54 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 471 B IP
Hash 2827b615fd8bc2ef8814f3b41f3c4e48
c070854fcea702dd84e2173ae050211730f7f74e
29ad23cfc0a11fa0a4a039a5e13f063365f077cb1e667eef90e50b75ebba3d9b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4085
Cache-Control: max-age=96571
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:43:28 GMT
Etag: "63d77ed6-1d7"
Expires: Wed, 01 Feb 2023 09:32:59 GMT
Last-Modified: Mon, 30 Jan 2023 08:24:54 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
x.bidswitch.net/ul_cb/syncd?dsp_id=409&user_group=1&user_id=1ea3831e-7623-4fc9-be4f-93b7480afd6a&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3D1ea3831e-7623-4fc9-be4f-93b7480afd6a
200 OK 43 B URL HTTP/2 x.bidswitch.net/ul_cb/syncd?dsp_id=409&user_group=1&user_id=1ea3831e-7623-4fc9-be4f-93b7480afd6a&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3D1ea3831e-7623-4fc9-be4f-93b7480afd6a
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/syncd?dsp_id=409&user_group=1&user_id=1ea3831e-7623-4fc9-be4f-93b7480afd6a&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3D1ea3831e-7623-4fc9-be4f-93b7480afd6a HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.betika.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 06:43:28 GMT
content-type: image/gif
content-length: 43
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
script.hotjar.com/modules.4b160a4831adaf5337e6.js
200 OK 68 kB URL HTTP/2 script.hotjar.com/modules.4b160a4831adaf5337e6.js
IP
File type Unicode text, UTF-8 text, with very long lines (48602)
Hash 3315b6999637291711ab85ba678211fa
d1bba723aa49e6276dfdb0f1313a9bf0b64be153
b3bd4f702044ae91c9227ce2d5c8411d3fec3abb82c9c1b7a9b69d2011c520e5
GET /modules.4b160a4831adaf5337e6.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 68316
date: Mon, 30 Jan 2023 16:06:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "3315b6999637291711ab85ba678211fa"
last-modified: Mon, 30 Jan 2023 16:05:37 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: FSQJO7XiI_DKO7UJZYzrynGSV2DKVx_R31DCFwpGVZ7xsN2Qd671cQ==
age: 52642
X-Firefox-Spdy: h2
x.bidswitch.net/ul_cb/syncd?dsp_id=409&user_id=1ea3831e-7623-4fc9-be4f-93b7480afd6a&user_group=3&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D
200 OK 43 B URL HTTP/2 x.bidswitch.net/ul_cb/syncd?dsp_id=409&user_id=1ea3831e-7623-4fc9-be4f-93b7480afd6a&user_group=3&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/syncd?dsp_id=409&user_id=1ea3831e-7623-4fc9-be4f-93b7480afd6a&user_group=3&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.betika.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 06:43:28 GMT
content-type: image/gif
content-length: 43
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
vars.hotjar.com/box-2722367854ce9702c28ea74c51e2a23f.html
200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-2722367854ce9702c28ea74c51e2a23f.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash 8665e233ef6caaf010ca89793f27b6f8
5c593fa5f33e55b3081308b43e6e801b56c047f7
435a3ca7c1c49cbfac193647d056e46217e5c3f9c65c354974ad7acdfb8925ac
GET /box-2722367854ce9702c28ea74c51e2a23f.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.betika.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1035
date: Mon, 30 Jan 2023 16:06:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "8665e233ef6caaf010ca89793f27b6f8"
last-modified: Mon, 30 Jan 2023 16:05:37 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: hvHHhCmCQZviQmSzf6Uyb-xk9LTRl5nT22yeoWwzYT50Qxy-IPdq1w==
age: 52642
X-Firefox-Spdy: h2
cdn.brand-display.com/tr/tag/cfix.html?key=a2383d8198d84a89960a57545fcc7ba73eaeb820
200 OK 915 B URL HTTP/2 cdn.brand-display.com/tr/tag/cfix.html?key=a2383d8198d84a89960a57545fcc7ba73eaeb820
IP
Hash c97c3c122f1de5668c795cd3ff30ffd7
0087df1bf78d9e2500132d09f8586a60731d0bf1
ec72776fedf45e248ec63e0eb3814658b0fb759473bd96a3d43e55da2aace500
GET /tr/tag/cfix.html?key=a2383d8198d84a89960a57545fcc7ba73eaeb820 HTTP/1.1
Host: cdn.brand-display.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.betika.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
last-modified: Mon, 18 Mar 2019 15:45:52 GMT
x-amz-version-id: wdA6oWpnBvGweZ2olIlUbqk0DcpmZdej
server: AmazonS3
content-encoding: gzip
date: Mon, 30 Jan 2023 08:22:09 GMT
cache-control: no-cache, must-revalidate, proxy-revalidate, public, max-age=0
etag: W/"073b35c69744014f5d2406710e188e97"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: pqCIgPMyOHJTNDqinUOWiCEZodxEqwfo6Bigdr_KPA_ZaY5jpGP6pQ==
age: 80486
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash 5c00a6b71849e1f63887d38333830003
274723ffd4a062e1997a213ceeeab8a56ac83141
5e15ea6950fd4aa51af37519ac391c2c95cfd74ded6ac6e35432ccf68c70cb23
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 06:43:28 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 28 Jan 2023 01:56:49 GMT
Expires: Sat, 04 Feb 2023 01:56:48 GMT
Etag: "274723ffd4a062e1997a213ceeeab8a56ac83141"
Cache-Control: max-age=327799,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79207926afc21c0a-OSL
ocsp.sectigo.com/
200 OK 471 B IP
Hash 5c00a6b71849e1f63887d38333830003
274723ffd4a062e1997a213ceeeab8a56ac83141
5e15ea6950fd4aa51af37519ac391c2c95cfd74ded6ac6e35432ccf68c70cb23
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 06:43:29 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 28 Jan 2023 01:56:49 GMT
Expires: Sat, 04 Feb 2023 01:56:48 GMT
Etag: "274723ffd4a062e1997a213ceeeab8a56ac83141"
Cache-Control: max-age=327799,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792079268fffb503-OSL
x.bidswitch.net/sync?dsp_id=409&expires=14&user_group=3&user_id=1ea3831e-7623-4fc9-be4f-93b7480afd6a&cb=7521c457-e075-4303-a776-b50f2e66d75a
302 Found 0 B URL HTTP/2 x.bidswitch.net/sync?dsp_id=409&expires=14&user_group=3&user_id=1ea3831e-7623-4fc9-be4f-93b7480afd6a&cb=7521c457-e075-4303-a776-b50f2e66d75a
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?dsp_id=409&expires=14&user_group=3&user_id=1ea3831e-7623-4fc9-be4f-93b7480afd6a&cb=7521c457-e075-4303-a776-b50f2e66d75a HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Tue, 31 Jan 2023 06:43:29 GMT
content-length: 0
location: https://x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=3&user_id=1ea3831e-7623-4fc9-be4f-93b7480afd6a&cb=7521c457-e075-4303-a776-b50f2e66d75a
cache-control: no-cache, no-store, must-revalidate
set-cookie: tuuid=2c374923-41cb-45f6-bb84-f8ed4a9279c1; path=/; expires=Wed, 31-Jan-2024 06:43:29 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675147409; path=/; expires=Wed, 31-Jan-2024 06:43:29 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1675147409; path=/; expires=Wed, 31-Jan-2024 06:43:29 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675147409; path=/; expires=Wed, 31-Jan-2024 06:43:29 GMT; domain=.bidswitch.net; samesite=none; secure
X-Firefox-Spdy: h2
x.bidswitch.net/sync?dsp_id=409&expires=14&user_group=3&user_id=1ea3831e-7623-4fc9-be4f-93b7480afd6a&cb=8410c58d-bc03-4b59-82d7-5e4dcf51b7c2
302 Found 0 B URL HTTP/2 x.bidswitch.net/sync?dsp_id=409&expires=14&user_group=3&user_id=1ea3831e-7623-4fc9-be4f-93b7480afd6a&cb=8410c58d-bc03-4b59-82d7-5e4dcf51b7c2
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?dsp_id=409&expires=14&user_group=3&user_id=1ea3831e-7623-4fc9-be4f-93b7480afd6a&cb=8410c58d-bc03-4b59-82d7-5e4dcf51b7c2 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Tue, 31 Jan 2023 06:43:29 GMT
content-length: 0
cache-control: no-cache, no-store, must-revalidate
location: //match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=1ea3831e-7623-4fc9-be4f-93b7480afd6a&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/classic/web-widget-classic-3789e01.js
200 OK 198 kB URL HTTP/2 static.zdassets.com/web_widget/latest/classic/web-widget-classic-3789e01.js
IP
File type ASCII text, with very long lines (13518), with no line terminators
Size 198 kB (197946 bytes)
Hash 5972cd4b72c8ac7dbc3838e18278547a
59c9addbc7844d65050382c25eb4ac49ccf30252
f4c7263b95ff4219db7b30ed310fca2af0c19c0ba7c281ec51d62a7de2aac1a9
GET /web_widget/latest/classic/web-widget-classic-3789e01.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 06:43:28 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: eLswCNR3+snNcmV5ZA7Ixw7RaFFn72sxVkOTwb5i9yiZY1h6sRTeKvt92DowGYacQvMhKNBkx/g=
x-amz-request-id: JT3Y1BVRACV79AY6
x-amz-replication-status: COMPLETED
last-modified: Tue, 24 Jan 2023 07:06:01 GMT
etag: W/"d1e5f0b356064ff6680a59d127c5d617"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Wed, 24 Jan 2024 07:06:00 GMT
x-amz-version-id: m2N7HE7DqdZwJoIBBUB1awf6lJoYOXK8
cf-cache-status: HIT
age: 371434
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Nf3Ig9y8lvk9wZdycjWR6vMCmdRgyU0jVS7C5gxsoIL0HkK18Jutl7iSbAuwZhlJ6caZonNh4ZKesMMqNGAHFowIEi7NsOU4YJAc862lYVAk%2BYO%2Be2kYifCrb8HkE3PYK458%2F3M%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 792079292f45b517-OSL
content-encoding: br
X-Firefox-Spdy: h2
x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=3&user_id=1ea3831e-7623-4fc9-be4f-93b7480afd6a&cb=7521c457-e075-4303-a776-b50f2e66d75a
302 Found 0 B URL HTTP/2 x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=3&user_id=1ea3831e-7623-4fc9-be4f-93b7480afd6a&cb=7521c457-e075-4303-a776-b50f2e66d75a
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ul_cb/sync?dsp_id=409&expires=14&user_group=3&user_id=1ea3831e-7623-4fc9-be4f-93b7480afd6a&cb=7521c457-e075-4303-a776-b50f2e66d75a HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.betika.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Tue, 31 Jan 2023 06:43:29 GMT
content-length: 0
cache-control: no-cache, no-store, must-revalidate
location: //match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=1ea3831e-7623-4fc9-be4f-93b7480afd6a&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 2ac1bcdceabf1fc4e07017906aa8a815
ba00b737325fc50b35af8d851ced0fe13d1cba22
c6c54f5dbbfc40b454b9c67a7972827f500d83b10a1594f7cb56c69158278c08
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:43:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 111 kB IP
File type gzip compressed data, from Unix\012- data
Size 111 kB (110829 bytes)
Hash b4f975baf289ad20e0416145f19099e6
b9f44bdec3c30f44c2e31619cb7fe198ef445416
eb45c83b684bb2a77d1c3ef83612d6a0f107eeaf161385b1a03d748668242f4a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:43:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 2ac1bcdceabf1fc4e07017906aa8a815
ba00b737325fc50b35af8d851ced0fe13d1cba22
c6c54f5dbbfc40b454b9c67a7972827f500d83b10a1594f7cb56c69158278c08
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:43:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-77069362-1&cid=596498150.1675147423&jid=607419902&_u=YADAAEAiQAAAACAAI~&z=966868759
200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-77069362-1&cid=596498150.1675147423&jid=607419902&_u=YADAAEAiQAAAACAAI~&z=966868759
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-77069362-1&cid=596498150.1675147423&jid=607419902&_u=YADAAEAiQAAAACAAI~&z=966868759 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 31 Jan 2023 06:43:29 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/classic/web-widget-5324-3789e01.js
200 OK 111 kB URL HTTP/2 static.zdassets.com/web_widget/latest/classic/web-widget-5324-3789e01.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Size 111 kB (110805 bytes)
Hash 1df2e8a0146bdf71ebe581fa3fe5402e
e64fd18c5dd2fc4c4bd327599fc92a9e289b261c
2d381326573dbf24671e88c8cc7d716a8ba0ae08af92ca805fbfba21a49738d0
GET /web_widget/latest/classic/web-widget-5324-3789e01.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 06:43:28 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: 5iEbvRNjpo2HmT4W8W8hFe7XYYzerZGVBZIzH0czqdD7jh+Yk56/4A4Nv4FXTOQ5ijvn38d10mg=
x-amz-request-id: NQRPZ93Y070WT5KM
x-amz-replication-status: COMPLETED
last-modified: Tue, 24 Jan 2023 07:06:01 GMT
etag: W/"a0d9b904197466a0a807d792b0b139b6"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Wed, 24 Jan 2024 07:06:00 GMT
x-amz-version-id: wdUhzTP_PBU4zLulSlUyuH.2qRiLFsd2
cf-cache-status: HIT
age: 371434
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IOzXiIEBIjedbcNO7ItVfrh7MENi%2F1VOd%2FvnQF0uqHOvkFtJjthhjiUnaPoMK6XrGHyom9nyXX9uZ3ZS6dQIMxNqFl7Jc%2Bux%2BNDrzEeEL7B81weTeJobabm7mMvxtSZI%2Fq8RAbA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 792079295f59b517-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-77069362-10&cid=596498150.1675147423&jid=151341678&_u=aCDAAEAjQAAAAGgEK~&z=1265744483
200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-77069362-10&cid=596498150.1675147423&jid=151341678&_u=aCDAAEAjQAAAAGgEK~&z=1265744483
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-77069362-10&cid=596498150.1675147423&jid=151341678&_u=aCDAAEAjQAAAAGgEK~&z=1265744483 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 31 Jan 2023 06:43:29 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash 5c00a6b71849e1f63887d38333830003
274723ffd4a062e1997a213ceeeab8a56ac83141
5e15ea6950fd4aa51af37519ac391c2c95cfd74ded6ac6e35432ccf68c70cb23
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 06:43:29 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 28 Jan 2023 01:56:49 GMT
Expires: Sat, 04 Feb 2023 01:56:48 GMT
Etag: "274723ffd4a062e1997a213ceeeab8a56ac83141"
Cache-Control: max-age=327799,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7920792668bbb500-OSL
x.bidswitch.net/sync?dsp_id=409&expires=14&user_group=3&user_id=1ea3831e-7623-4fc9-be4f-93b7480afd6a&cb=3bce3c90-ded2-4f0b-9348-ab645c9110ac
302 Found 0 B URL HTTP/2 x.bidswitch.net/sync?dsp_id=409&expires=14&user_group=3&user_id=1ea3831e-7623-4fc9-be4f-93b7480afd6a&cb=3bce3c90-ded2-4f0b-9348-ab645c9110ac
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?dsp_id=409&expires=14&user_group=3&user_id=1ea3831e-7623-4fc9-be4f-93b7480afd6a&cb=3bce3c90-ded2-4f0b-9348-ab645c9110ac HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Tue, 31 Jan 2023 06:43:29 GMT
content-length: 0
cache-control: no-cache, no-store, must-revalidate
location: //match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=1ea3831e-7623-4fc9-be4f-93b7480afd6a&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=592647138431351&ev=PageView&dl=https%3A%2F%2Fwww.betika.com%2Fen-ke%2Fjackpots&rl=&if=false&ts=1675147424772&sw=1280&sh=1024&v=2.9.95&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=29&fbp=fb.1.1675147424771.1046345669&it=1675147424074&coo=false&tm=1&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=592647138431351&ev=PageView&dl=https%3A%2F%2Fwww.betika.com%2Fen-ke%2Fjackpots&rl=&if=false&ts=1675147424772&sw=1280&sh=1024&v=2.9.95&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=29&fbp=fb.1.1675147424771.1046345669&it=1675147424074&coo=false&tm=1&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=592647138431351&ev=PageView&dl=https%3A%2F%2Fwww.betika.com%2Fen-ke%2Fjackpots&rl=&if=false&ts=1675147424772&sw=1280&sh=1024&v=2.9.95&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=29&fbp=fb.1.1675147424771.1046345669&it=1675147424074&coo=false&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Tue, 31 Jan 2023 06:43:29 GMT
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 12a91cf6d013116e7ca14cdcdd98a130
c1006b31bcbaafcd3472b651b83ba634b1f78d21
0d970a8e1ed536729e1a082c7938cc564f3091857b4859a2681097b6b4e45c2a
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=148800
Date: Tue, 31 Jan 2023 06:43:29 GMT
Etag: "63d8425f-1d7"
Expires: Thu, 02 Feb 2023 00:03:29 GMT
Last-Modified: Mon, 30 Jan 2023 22:19:11 GMT
Server: ECS (bsa/EB22)
X-Cache: Miss from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: LKXjgFStbnv6VYDOLF7-R9PuAWh2ZbE1DZTdTB7niRNxMY0PGjliFw==
Age: 6258
obs.cheqzone.com/mon
200 OK 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mon HTTP/1.1
Host: obs.cheqzone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1387
Origin: https://www.betika.com
Connection: keep-alive
Referer: https://www.betika.com/
Cookie: cg_uuid=06e31478461189da5d632114a52364c4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://www.betika.com
content-type: application/json
date: Tue, 31 Jan 2023 06:43:29 GMT
content-length: 0
X-Firefox-Spdy: h2
obs.cheqzone.com/mon
200 OK 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mon HTTP/1.1
Host: obs.cheqzone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1382
Origin: https://www.betika.com
Connection: keep-alive
Referer: https://www.betika.com/
Cookie: cg_uuid=06e31478461189da5d632114a52364c4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://www.betika.com
content-type: application/json
date: Tue, 31 Jan 2023 06:43:29 GMT
content-length: 0
X-Firefox-Spdy: h2
status.geotrust.com/
200 OK 471 B IP
Hash cef2d854d1015f784affa648b77db2c5
b9549115cc62b3f9b6c59aa6e5dfca2f736757aa
85f9a4dc37605fe341092a4802222b270af96558d8dee6d073b28b62a28d85e1
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3166
Cache-Control: max-age=112962
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:43:29 GMT
Etag: "63d7c275-1d7"
Expires: Wed, 01 Feb 2023 14:06:11 GMT
Last-Modified: Mon, 30 Jan 2023 13:13:25 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
status.geotrust.com/
200 OK 471 B IP
Hash cef2d854d1015f784affa648b77db2c5
b9549115cc62b3f9b6c59aa6e5dfca2f736757aa
85f9a4dc37605fe341092a4802222b270af96558d8dee6d073b28b62a28d85e1
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4967
Cache-Control: max-age=114762
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:43:29 GMT
Etag: "63d7c275-1d7"
Expires: Wed, 01 Feb 2023 14:36:11 GMT
Last-Modified: Mon, 30 Jan 2023 13:13:25 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
status.geotrust.com/
200 OK 471 B IP
Hash cef2d854d1015f784affa648b77db2c5
b9549115cc62b3f9b6c59aa6e5dfca2f736757aa
85f9a4dc37605fe341092a4802222b270af96558d8dee6d073b28b62a28d85e1
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2947
Cache-Control: max-age=112743
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:43:29 GMT
Etag: "63d7c275-1d7"
Expires: Wed, 01 Feb 2023 14:02:32 GMT
Last-Modified: Mon, 30 Jan 2023 13:13:25 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
status.geotrust.com/
200 OK 471 B IP
Hash cef2d854d1015f784affa648b77db2c5
b9549115cc62b3f9b6c59aa6e5dfca2f736757aa
85f9a4dc37605fe341092a4802222b270af96558d8dee6d073b28b62a28d85e1
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2947
Cache-Control: max-age=112743
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:43:29 GMT
Etag: "63d7c275-1d7"
Expires: Wed, 01 Feb 2023 14:02:32 GMT
Last-Modified: Mon, 30 Jan 2023 13:13:25 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 7b79a7bc908595175fd9d671dd1a3728
2ea901d1bac5dbe8eb771db3908aae5a6d49799b
cadb9664626d379cdc046693a5bfc4d0e264cf86ba6d73332f98309f30615e38
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=172150
Date: Tue, 31 Jan 2023 06:43:29 GMT
Etag: "63d8a086-1d7"
Expires: Thu, 02 Feb 2023 06:32:39 GMT
Last-Modified: Tue, 31 Jan 2023 05:00:54 GMT
Server: ECS (nyb/1D1F)
X-Cache: Miss from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: H47aXuxk_KcuLkJn-myFtulxWiidVwewHH_ZP0BAS9faqKEtyT2_og==
Age: 5505
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 7b79a7bc908595175fd9d671dd1a3728
2ea901d1bac5dbe8eb771db3908aae5a6d49799b
cadb9664626d379cdc046693a5bfc4d0e264cf86ba6d73332f98309f30615e38
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 31 Jan 2023 06:43:29 GMT
Last-Modified: Tue, 31 Jan 2023 05:12:04 GMT
Server: ECS (nyb/1D35)
X-Cache: Miss from cloudfront
Via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: sD2nPyICXKilrnXaRFY7R1fMrupH-tjY32kN88ny-szBQmwmt4thfQ==
Age: 5485
dmp.brand-display.com/cm/api/liveramp?_t={CACHEBUSTER}&bf=fb85e3b9a15dbc020fa5183aab1988e4
302 Found 103 B URL HTTP/2 dmp.brand-display.com/cm/api/liveramp?_t={CACHEBUSTER}&bf=fb85e3b9a15dbc020fa5183aab1988e4
IP
File type HTML document, ASCII text
Hash bfe577d7918c1d4aa893a5de28dec3ad
84312c11524fd7775be2a1c7523b1e582c964611
8dd06163353c534ef9cd1042673fc9c66a074db9add5acd1ec39e2adf70d2318
GET /cm/api/liveramp?_t={CACHEBUSTER}&bf=fb85e3b9a15dbc020fa5183aab1988e4 HTTP/1.1
Host: dmp.brand-display.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx/1.22.1
date: Tue, 31 Jan 2023 06:43:29 GMT
content-type: text/html; charset=utf-8
content-length: 103
access-control-allow-origin: *
cache-control: max-age=3600
location: https://idsync.rlcdn.com/708804.gif?partner_uid=fb85e3b9a15dbc020fa5183aab1988e4
p3p: CP='This is not a P3P policy!'
set-cookie: _knxq_=fb85e3b9a15dbc020fa5183aab1988e4.1675147409.0.1675147409.1675147409; Path=/; Domain=brand-display.com; Max-Age=63072000; Secure; SameSite=None
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
dmp.brand-display.com/cm/api/index?cm_callback_url=%2F%2Fdsum-sec.casalemedia.com%2Frum&cm_dsp_id=191&bf=fb85e3b9a15dbc020fa5183aab1988e4
302 Found 151 B URL HTTP/2 dmp.brand-display.com/cm/api/index?cm_callback_url=%2F%2Fdsum-sec.casalemedia.com%2Frum&cm_dsp_id=191&bf=fb85e3b9a15dbc020fa5183aab1988e4
IP
File type HTML document, ASCII text
Hash 4e2aaca9e92fb1a8a72f2fdd29c6de77
f142491ff25bcd3d4eca0c72150e071e6a0a0e0c
d6424d569cc486ad9158d024642e371e9f81e7715ff60d8fb63d4779fee82f85
GET /cm/api/index?cm_callback_url=%2F%2Fdsum-sec.casalemedia.com%2Frum&cm_dsp_id=191&bf=fb85e3b9a15dbc020fa5183aab1988e4 HTTP/1.1
Host: dmp.brand-display.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx/1.22.1
date: Tue, 31 Jan 2023 06:43:29 GMT
content-type: text/html; charset=utf-8
content-length: 151
access-control-allow-origin: *
cache-control: max-age=3600
location: https://dsum-sec.casalemedia.com/rum?cm_dsp_id=191&expiration=63072000&external_user_id=fb85e3b9a15dbc020fa5183aab1988e4
p3p: CP='This is not a P3P policy!'
set-cookie: _knxq_=fb85e3b9a15dbc020fa5183aab1988e4.1675147409.0.1675147409.1675147409; Path=/; Domain=brand-display.com; Max-Age=63072000; Secure; SameSite=None
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 8305608a859148dbc97a70c730d5b9f0
10dcb97f45c395e84a61dc926613a0229d870e36
ab441e9e25c52be34a37ca1368474bde07470255a2d539245089cbf5a9d6128f
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 31 Jan 2023 06:43:29 GMT
Last-Modified: Tue, 31 Jan 2023 05:11:41 GMT
Server: ECS (bsa/EB1B)
X-Cache: Miss from cloudfront
Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: IPgjG5XHVpxKA__-0Sj1NemF8iZFSVsByIBexHIwVIHuWhAVqXEXvw==
Age: 5508
dmp.brand-display.com/cm/api/pulsepoint?_t=1675147424947&bf=fb85e3b9a15dbc020fa5183aab1988e4
302 Found 119 B URL HTTP/2 dmp.brand-display.com/cm/api/pulsepoint?_t=1675147424947&bf=fb85e3b9a15dbc020fa5183aab1988e4
IP
File type HTML document, ASCII text
Hash 306d9a4480b126878bdc4103f1267b7e
df127e4514b956527f090bd8a8f2ffa0f0e1fd8b
05f636b1b25dcabfc74779424ddeb7e103921af60463b2596fc24f69515e4dae
GET /cm/api/pulsepoint?_t=1675147424947&bf=fb85e3b9a15dbc020fa5183aab1988e4 HTTP/1.1
Host: dmp.brand-display.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx/1.22.1
date: Tue, 31 Jan 2023 06:43:29 GMT
content-type: text/html; charset=utf-8
content-length: 119
access-control-allow-origin: *
cache-control: max-age=3600
location: https://bh.contextweb.com/bh/rtset?do=add&pid=562385&ev=fb85e3b9a15dbc020fa5183aab1988e4
p3p: CP='This is not a P3P policy!'
set-cookie: _knxq_=fb85e3b9a15dbc020fa5183aab1988e4.1675147409.0.1675147409.1675147409; Path=/; Domain=brand-display.com; Max-Age=63072000; Secure; SameSite=None
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
dmp.brand-display.com/cm/api/smaato?bf=fb85e3b9a15dbc020fa5183aab1988e4
200 OK 0 B URL HTTP/2 dmp.brand-display.com/cm/api/smaato?bf=fb85e3b9a15dbc020fa5183aab1988e4
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/api/smaato?bf=fb85e3b9a15dbc020fa5183aab1988e4 HTTP/1.1
Host: dmp.brand-display.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.22.1
date: Tue, 31 Jan 2023 06:43:29 GMT
content-type: image/gif
content-length: 0
cache-control: max-age=3600
pragma: no-cache
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
dmp.brand-display.com/cm/api/appnexus?_t=1675147424943&bf=fb85e3b9a15dbc020fa5183aab1988e4
302 Found 103 B URL HTTP/2 dmp.brand-display.com/cm/api/appnexus?_t=1675147424943&bf=fb85e3b9a15dbc020fa5183aab1988e4
IP
File type HTML document, ASCII text
Hash 0c5ce8d034e24188411ee20d96373621
8c38fa1a60309d3dee25951bf776713b35c3587f
8bc9cdf234355b94143de28c5f45d645509947a0b4542dd4771e6698f6d00d04
GET /cm/api/appnexus?_t=1675147424943&bf=fb85e3b9a15dbc020fa5183aab1988e4 HTTP/1.1
Host: dmp.brand-display.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx/1.22.1
date: Tue, 31 Jan 2023 06:43:29 GMT
content-type: text/html; charset=utf-8
content-length: 103
access-control-allow-origin: *
cache-control: max-age=3600
location: https://ib.adnxs.com/setuid?entity=442&code=fb85e3b9a15dbc020fa5183aab1988e4
p3p: CP='This is not a P3P policy!'
set-cookie: _knxq_=fb85e3b9a15dbc020fa5183aab1988e4.1675147409.0.1675147409.1675147409; Path=/; Domain=brand-display.com; Max-Age=63072000; Secure; SameSite=None
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
dmp.brand-display.com/cm/api/taboola?_t=1675147424942&bf=fb85e3b9a15dbc020fa5183aab1988e4
302 Found 118 B URL HTTP/2 dmp.brand-display.com/cm/api/taboola?_t=1675147424942&bf=fb85e3b9a15dbc020fa5183aab1988e4
IP
File type HTML document, ASCII text
Hash 9210f3b70494cc7c2371dd0ae427e855
eed6037179b310223842b89889ab97c6f57bb8b1
2d4351b9b47cf3f8eb3230cfb954758312c9eb992d35ac5ef707a2aea97253e2
GET /cm/api/taboola?_t=1675147424942&bf=fb85e3b9a15dbc020fa5183aab1988e4 HTTP/1.1
Host: dmp.brand-display.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx/1.22.1
date: Tue, 31 Jan 2023 06:43:29 GMT
content-type: text/html; charset=utf-8
content-length: 118
access-control-allow-origin: *
cache-control: max-age=3600
location: https://sync.taboola.com/sg/knorex-network/1/rtb-h/?taboola_hm=fb85e3b9a15dbc020fa5183aab1988e4
p3p: CP='This is not a P3P policy!'
set-cookie: _knxq_=fb85e3b9a15dbc020fa5183aab1988e4.1675147409.0.1675147409.1675147409; Path=/; Domain=brand-display.com; Max-Age=63072000; Secure; SameSite=None
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
dmp.brand-display.com/cm/api/roqad?_t=1675147424945&bf=fb85e3b9a15dbc020fa5183aab1988e4
200 OK 0 B URL HTTP/2 dmp.brand-display.com/cm/api/roqad?_t=1675147424945&bf=fb85e3b9a15dbc020fa5183aab1988e4
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/api/roqad?_t=1675147424945&bf=fb85e3b9a15dbc020fa5183aab1988e4 HTTP/1.1
Host: dmp.brand-display.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.22.1
date: Tue, 31 Jan 2023 06:43:29 GMT
content-type: image/gif
content-length: 0
cache-control: max-age=3600
pragma: no-cache
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
dmp.brand-display.com/cm/api/tapad?_t=1675147424944&bf=fb85e3b9a15dbc020fa5183aab1988e4
302 Found 135 B URL HTTP/2 dmp.brand-display.com/cm/api/tapad?_t=1675147424944&bf=fb85e3b9a15dbc020fa5183aab1988e4
IP
File type HTML document, ASCII text
Hash 1b82c295bd80dae85c568d7630c18f90
08f01973e7de252427c21aeb7d9215e9a49541b1
46294ec65d94787bacd73378e38c2aef143efc39f96a694621b016a934aecb97
GET /cm/api/tapad?_t=1675147424944&bf=fb85e3b9a15dbc020fa5183aab1988e4 HTTP/1.1
Host: dmp.brand-display.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx/1.22.1
date: Tue, 31 Jan 2023 06:43:29 GMT
content-type: text/html; charset=utf-8
content-length: 135
access-control-allow-origin: *
cache-control: max-age=3600
location: https://pixel.tapad.com/idsync/ex/receive?partner_id=3021&partner_device_id=fb85e3b9a15dbc020fa5183aab1988e4
p3p: CP='This is not a P3P policy!'
set-cookie: _knxq_=fb85e3b9a15dbc020fa5183aab1988e4.1675147409.0.1675147409.1675147409; Path=/; Domain=brand-display.com; Max-Age=63072000; Secure; SameSite=None
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
status.geotrust.com/
200 OK 471 B IP
Hash cef2d854d1015f784affa648b77db2c5
b9549115cc62b3f9b6c59aa6e5dfca2f736757aa
85f9a4dc37605fe341092a4802222b270af96558d8dee6d073b28b62a28d85e1
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 264
Cache-Control: max-age=110060
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:43:29 GMT
Etag: "63d7c275-1d7"
Expires: Wed, 01 Feb 2023 13:17:49 GMT
Last-Modified: Mon, 30 Jan 2023 13:13:25 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 7b79a7bc908595175fd9d671dd1a3728
2ea901d1bac5dbe8eb771db3908aae5a6d49799b
cadb9664626d379cdc046693a5bfc4d0e264cf86ba6d73332f98309f30615e38
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=172106
Date: Tue, 31 Jan 2023 06:43:29 GMT
Etag: "63d8a086-1d7"
Expires: Thu, 02 Feb 2023 06:31:55 GMT
Last-Modified: Tue, 31 Jan 2023 05:00:54 GMT
Server: ECS (nyb/1D28)
X-Cache: Miss from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: cBYIH8Z1TkNSM143I7qTvBDMgE9l5vF4HLM8yscnHNP9ifOsx1EmJA==
Age: 5461
match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=1ea3831e-7623-4fc9-be4f-93b7480afd6a&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
204 No Content 0 B URL HTTP/2 match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=1ea3831e-7623-4fc9-be4f-93b7480afd6a&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=1ea3831e-7623-4fc9-be4f-93b7480afd6a&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy= HTTP/1.1
Host: match.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.betika.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Tue, 31 Jan 2023 06:43:29 GMT
X-Firefox-Spdy: h2
widget-mediator.zopim.com/s/W/ws/+KiGvX3NKq9FllX-/c/1675147424887
101 Switching Protocols 0 B URL HTTP/1.1 widget-mediator.zopim.com/s/W/ws/+KiGvX3NKq9FllX-/c/1675147424887
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s/W/ws/+KiGvX3NKq9FllX-/c/1675147424887 HTTP/1.1
Host: widget-mediator.zopim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.betika.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: W9JLuEnUe29VCKFFX+DbmA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Tue, 31 Jan 2023 06:43:29 GMT
Connection: upgrade
Set-Cookie: AWSALB=3ugQTujXvQsOLhUpj3+9wUzQimjUxrJ/XCCtwnlqH3sex7tI6bqDfnZnqEqr3yu07Ybccub8AM4dNCKIoZkbCA8ZQM0qRo2xQiASQdrsaYT/Y/3DMx+JuMlETFd7; Expires=Tue, 07 Feb 2023 06:43:29 GMT; Path=/
AWSALBCORS=3ugQTujXvQsOLhUpj3+9wUzQimjUxrJ/XCCtwnlqH3sex7tI6bqDfnZnqEqr3yu07Ybccub8AM4dNCKIoZkbCA8ZQM0qRo2xQiASQdrsaYT/Y/3DMx+JuMlETFd7; Expires=Tue, 07 Feb 2023 06:43:29 GMT; Path=/; SameSite=None; Secure
Upgrade: websocket
Sec-WebSocket-Accept: aKA6D9ZSv6Jx7xvH/mQGe0Sz5/4=
Sec-WebSocket-Version: 13
WebSocket-Server: uWebSockets
match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=1ea3831e-7623-4fc9-be4f-93b7480afd6a&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
204 No Content 0 B URL HTTP/2 match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=1ea3831e-7623-4fc9-be4f-93b7480afd6a&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=1ea3831e-7623-4fc9-be4f-93b7480afd6a&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy= HTTP/1.1
Host: match.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.betika.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Tue, 31 Jan 2023 06:43:29 GMT
X-Firefox-Spdy: h2
match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=1ea3831e-7623-4fc9-be4f-93b7480afd6a&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
204 No Content 0 B URL HTTP/2 match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=1ea3831e-7623-4fc9-be4f-93b7480afd6a&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=1ea3831e-7623-4fc9-be4f-93b7480afd6a&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy= HTTP/1.1
Host: match.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.betika.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Tue, 31 Jan 2023 06:43:29 GMT
X-Firefox-Spdy: h2
tr.brand-display.com/tracking/api/remarketing?_t=1675147424355&advertiserId=knx64763&id=a2383d8198d84a89960a57545fcc7ba73eaeb820&v1=&v2=&v3=&v4=&v5=&v6=&v7=&v8=&_t=1675147422554&url=https%3A%2F%2Fwww.betika.com%2Fen-ke%2Fjackpots&referer=&aurl=&areferer=&required=0&extra=%7B%22id%22%3A%22all%22%7D&d=1&r=0&bf=fb85e3b9a15dbc020fa5183aab1988e4
200 OK 3.1 kB URL HTTP/2 tr.brand-display.com/tracking/api/remarketing?_t=1675147424355&advertiserId=knx64763&id=a2383d8198d84a89960a57545fcc7ba73eaeb820&v1=&v2=&v3=&v4=&v5=&v6=&v7=&v8=&_t=1675147422554&url=https%3A%2F%2Fwww.betika.com%2Fen-ke%2Fjackpots&referer=&aurl=&areferer=&required=0&extra=%7B%22id%22%3A%22all%22%7D&d=1&r=0&bf=fb85e3b9a15dbc020fa5183aab1988e4
IP
Hash 7e285c1d4803bc3353263568b2ca977e
ab4a584a47bd841f90beee6c55c8983d653e762b
05c4cc82e30439bb88e3189e19b3ae0ea83c22fff0eb8c94aea737fd377be643
GET /tracking/api/remarketing?_t=1675147424355&advertiserId=knx64763&id=a2383d8198d84a89960a57545fcc7ba73eaeb820&v1=&v2=&v3=&v4=&v5=&v6=&v7=&v8=&_t=1675147422554&url=https%3A%2F%2Fwww.betika.com%2Fen-ke%2Fjackpots&referer=&aurl=&areferer=&required=0&extra=%7B%22id%22%3A%22all%22%7D&d=1&r=0&bf=fb85e3b9a15dbc020fa5183aab1988e4 HTTP/1.1
Host: tr.brand-display.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 06:43:29 GMT
content-type: application/javascript
content-length: 3094
server: nginx/1.23.3
cache-control: max-age=3600
set-cookie: _knxq_=5abd4f4b-69c3-2115-7e8ad549.1675147409.1.1675147409.1675147409; domain=.brand-display.com; path=/; SameSite=none; secure
user-region: EU
X-Firefox-Spdy: h2
x.bidswitch.net/sync?dsp_id=316&user_id=fb85e3b9a15dbc020fa5183aab1988e4&expires=30
200 OK 43 B URL HTTP/2 x.bidswitch.net/sync?dsp_id=316&user_id=fb85e3b9a15dbc020fa5183aab1988e4&expires=30
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /sync?dsp_id=316&user_id=fb85e3b9a15dbc020fa5183aab1988e4&expires=30 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 06:43:29 GMT
content-type: image/gif
content-length: 43
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
status.geotrust.com/
200 OK 471 B IP
Hash 369b6c75025aa9b1338cf2d004c654be
47c416c47902454a7003f8fcf88d7c405e235a55
1a43cee532d632a72d4ce548f68e47b115dcb0d8c1de480d0caf4b02204e3996
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6202
Cache-Control: max-age=122088
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:43:29 GMT
Etag: "63d7da3f-1d7"
Expires: Wed, 01 Feb 2023 16:38:17 GMT
Last-Modified: Mon, 30 Jan 2023 14:54:55 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 471 B IP
Hash e8a11ad824dc57053e0c78492fa836f6
06022dcfb6d17829eb5cbf70d777c632116269cb
5a20ddf9e988fbd9f94e0f571bcafd6d1e038f9fb11df66ca02ff7a86bdd91bd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5252
Cache-Control: max-age=168634
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:43:29 GMT
Etag: "63d893c7-1d7"
Expires: Thu, 02 Feb 2023 05:34:03 GMT
Last-Modified: Tue, 31 Jan 2023 04:06:31 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
cm.g.doubleclick.net/pixel?google_nid=knorex&google_hm=ZmI4NWUzYjlhMTVkYmMwMjBmYTUxODNhYWIxOTg4ZTQ=&google_cm&kcid=266606213748848171073537059946356041916
302 Found 387 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=knorex&google_hm=ZmI4NWUzYjlhMTVkYmMwMjBmYTUxODNhYWIxOTg4ZTQ=&google_cm&kcid=266606213748848171073537059946356041916
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 4e0b5d2e53cef6560158bdc4cc749237
dbc7d5f9334b6309aedac3c227553cf0daf2eaa6
9db362391d5b2019e6dcdd5d7e6aa778ed10f8aaaba15750be64b2892c8235a3
GET /pixel?google_nid=knorex&google_hm=ZmI4NWUzYjlhMTVkYmMwMjBmYTUxODNhYWIxOTg4ZTQ=&google_cm&kcid=266606213748848171073537059946356041916 HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.betika.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?google_nid=knorex&google_hm=ZmI4NWUzYjlhMTVkYmMwMjBmYTUxODNhYWIxOTg4ZTQ=&google_cm=&kcid=266606213748848171073537059946356041916&google_tc=
date: Tue, 31 Jan 2023 06:43:29 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 387
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 31-Jan-2023 06:58:29 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/classic/fda6cd35495c75f83508d9d2e77ee33d.mp3
206 Partial Content 20 kB URL HTTP/2 static.zdassets.com/web_widget/latest/classic/fda6cd35495c75f83508d9d2e77ee33d.mp3
IP
File type Audio file with ID3 version 2.3.0, contains: MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, JntStereo\012- data
Hash f11ce9e8f40a392830217253fe75d6de
89ba57fcc360da34756c127acba15a8b23267fc6
05069cc62b394b6ecc2daf3c51b4b2ba7f6cc8735988e8234487234af47eceee
GET /web_widget/latest/classic/fda6cd35495c75f83508d9d2e77ee33d.mp3 HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
date: Tue, 31 Jan 2023 06:43:29 GMT
content-type: audio/mpeg; charset=utf-8
content-length: 19698
x-amz-id-2: g87hI3qvp6u/eYrvF5ekvnlnd/ZKIURFxO017tHaVZdhHodAb1MX6TjMAHxlaiIHpETLXLY/I+c=
x-amz-request-id: X429XSBWRFS5FTSC
x-amz-replication-status: COMPLETED
last-modified: Wed, 09 Mar 2022 06:43:05 GMT
etag: "f11ce9e8f40a392830217253fe75d6de"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Thu, 09 Mar 2023 06:43:04 GMT
x-amz-version-id: ngeCnQamEcRo6kgSgz9pTF5J7hCEPwJW
cf-cache-status: HIT
age: 2114978
content-range: bytes 0-19697/19698
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xxXO7patB7ZBTCoHcQgfpIFQr28seuwR%2FoZcbhnFhQt8r1YuooUVKmTLKBFao0%2Bo1%2FSKuJh0Yy2bUGj9PkwVozsN79WL1AhTEoiqtr8%2F8V%2BTDlDtl0VBf8ZeKt7WcjF5HphSnRM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 792079304dcdb517-OSL
X-Firefox-Spdy: h2
pixel.tapad.com/idsync/ex/receive?partner_id=3021&partner_device_id=fb85e3b9a15dbc020fa5183aab1988e4
302 Found 0 B URL HTTP/2 pixel.tapad.com/idsync/ex/receive?partner_id=3021&partner_device_id=fb85e3b9a15dbc020fa5183aab1988e4
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /idsync/ex/receive?partner_id=3021&partner_device_id=fb85e3b9a15dbc020fa5183aab1988e4 HTTP/1.1
Host: pixel.tapad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.betika.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Tue, 31 Jan 2023 06:43:29 GMT
strict-transport-security: max-age=31536000
access-control-allow-origin: *
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
p3p: policyref="http://tapad-taptags.s3.amazonaws.com/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
set-cookie: TapAd_TS=1675147409972;Expires=Sat, 01 Apr 2023 06:43:29 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
TapAd_DID=0878d809-8890-47bf-9f6c-8322c009037c;Expires=Sat, 01 Apr 2023 06:43:29 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
location: https://pixel.tapad.com/idsync/ex/receive/check?partner_id=3021&partner_device_id=fb85e3b9a15dbc020fa5183aab1988e4
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash 8ef1dbe04ff3834735b0659e7ae82c62
56d86283c8861f679162e92c70bbea59f819b8dc
a41623bee3b144f94362b7351bf88236e4291f113068361be33209f550fb3373
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 06:43:29 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 29 Jan 2023 01:42:55 GMT
Expires: Sun, 05 Feb 2023 01:42:54 GMT
Etag: "56d86283c8861f679162e92c70bbea59f819b8dc"
Cache-Control: max-age=413364,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792079302a13b509-OSL
us-u.openx.net/w/1.0/sd?id=539237773&val=fb85e3b9a15dbc020fa5183aab1988e4
200 OK 43 B URL HTTP/2 us-u.openx.net/w/1.0/sd?id=539237773&val=fb85e3b9a15dbc020fa5183aab1988e4
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /w/1.0/sd?id=539237773&val=fb85e3b9a15dbc020fa5183aab1988e4 HTTP/1.1
Host: us-u.openx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept
server: OXGW/0.0.0
pragma: no-cache
p3p: CP="CUR ADM OUR NOR STA NID"
expires: Mon, 26 Jul 1997 05:00:00 GMT
date: Tue, 31 Jan 2023 06:43:29 GMT
content-type: image/gif
content-length: 43
cache-control: private, max-age=0, no-cache
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cm.g.doubleclick.net/pixel?google_nid=knorex&google_hm=ZmI4NWUzYjlhMTVkYmMwMjBmYTUxODNhYWIxOTg4ZTQ=&google_cm=&kcid=266606213748848171073537059946356041916&google_tc=
302 Found 303 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=knorex&google_hm=ZmI4NWUzYjlhMTVkYmMwMjBmYTUxODNhYWIxOTg4ZTQ=&google_cm=&kcid=266606213748848171073537059946356041916&google_tc=
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash cdcc6591fd3d67e39919992be865affd
6c16deec2ff884078fcc1c76b64eb1af25d5c827
0263ef0882b3350bf95a7e4f95c1915621b2f480738d1981a3ae7ddff60ede13
GET /pixel?google_nid=knorex&google_hm=ZmI4NWUzYjlhMTVkYmMwMjBmYTUxODNhYWIxOTg4ZTQ=&google_cm=&kcid=266606213748848171073537059946356041916&google_tc= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.betika.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://dmp.brand-display.com/adx/cm/pixel?kcid=266606213748848171073537059946356041916&google_error=3
date: Tue, 31 Jan 2023 06:43:29 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 303
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
tr.brand-display.com/tracking/api/remarketing?_t=1675147424355&advertiserId=knx64763&id=a2383d8198d84a89960a57545fcc7ba73eaeb820&v1=&v2=&v3=&v4=&v5=&v6=&v7=&v8=&_t=1675147422554&url=https%253A%252F%252Fwww.betika.com%252Fen-ke%252Fjackpots&referer=&aurl=&areferer=&required=0&extra=%257B%2522id%2522%253A%2522all%2522%257D&d=1&r=0&bf=fb85e3b9a15dbc020fa5183aab1988e4&itp=true
200 OK 0 B URL HTTP/2 tr.brand-display.com/tracking/api/remarketing?_t=1675147424355&advertiserId=knx64763&id=a2383d8198d84a89960a57545fcc7ba73eaeb820&v1=&v2=&v3=&v4=&v5=&v6=&v7=&v8=&_t=1675147422554&url=https%253A%252F%252Fwww.betika.com%252Fen-ke%252Fjackpots&referer=&aurl=&areferer=&required=0&extra=%257B%2522id%2522%253A%2522all%2522%257D&d=1&r=0&bf=fb85e3b9a15dbc020fa5183aab1988e4&itp=true
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tracking/api/remarketing?_t=1675147424355&advertiserId=knx64763&id=a2383d8198d84a89960a57545fcc7ba73eaeb820&v1=&v2=&v3=&v4=&v5=&v6=&v7=&v8=&_t=1675147422554&url=https%253A%252F%252Fwww.betika.com%252Fen-ke%252Fjackpots&referer=&aurl=&areferer=&required=0&extra=%257B%2522id%2522%253A%2522all%2522%257D&d=1&r=0&bf=fb85e3b9a15dbc020fa5183aab1988e4&itp=true HTTP/1.1
Host: tr.brand-display.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.betika.com/
Cookie: _knxq_=5abd4f4b-69c3-2115-7e8ad549.1675147409.1.1675147409.1675147409; _knxp_=39b11f05
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 06:43:29 GMT
content-type: image/gif
content-length: 0
server: nginx/1.23.3
cache-control: max-age=3600
set-cookie: _knxp_=39b11f05; domain=.brand-display.com; path=/; SameSite=none; secure; Expires=Tue, 31 Jan 2023 07:13:29 GMT
_knxq_=5abd4f4b-69c3-2115-7e8ad549.1675147409.1.1675147409.1675147409; domain=.brand-display.com; path=/; SameSite=none; secure; Expires=Wed, 31 Jan 2024 06:43:29 GMT
_knxcv_=; domain=.brand-display.com; path=/; SameSite=none; secure; Expires=Tue, 31 Jan 2023 06:43:29 GMT
p3p: CP='This is not a P3P policy!'
user-region: EU
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash e8a11ad824dc57053e0c78492fa836f6
06022dcfb6d17829eb5cbf70d777c632116269cb
5a20ddf9e988fbd9f94e0f571bcafd6d1e038f9fb11df66ca02ff7a86bdd91bd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2757
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:43:30 GMT
Last-Modified: Tue, 31 Jan 2023 05:57:33 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
status.geotrust.com/
200 OK 471 B IP
Hash 369b6c75025aa9b1338cf2d004c654be
47c416c47902454a7003f8fcf88d7c405e235a55
1a43cee532d632a72d4ce548f68e47b115dcb0d8c1de480d0caf4b02204e3996
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5501
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:43:30 GMT
Last-Modified: Tue, 31 Jan 2023 05:11:49 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
idsync.rlcdn.com/708804.gif?partner_uid=fb85e3b9a15dbc020fa5183aab1988e4
451 Unavailable For Legal Reasons 0 B URL HTTP/2 idsync.rlcdn.com/708804.gif?partner_uid=fb85e3b9a15dbc020fa5183aab1988e4
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /708804.gif?partner_uid=fb85e3b9a15dbc020fa5183aab1988e4 HTTP/1.1
Host: idsync.rlcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.betika.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 451 Unavailable For Legal Reasons
date: Tue, 31 Jan 2023 06:43:30 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ib.adnxs.com/setuid?entity=442&code=fb85e3b9a15dbc020fa5183aab1988e4
307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/setuid?entity=442&code=fb85e3b9a15dbc020fa5183aab1988e4
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /setuid?entity=442&code=fb85e3b9a15dbc020fa5183aab1988e4 HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.betika.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Tue, 31 Jan 2023 06:43:30 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://ib.adnxs.com/bounce?%2Fsetuid%3Fentity%3D442%26code%3Dfb85e3b9a15dbc020fa5183aab1988e4
AN-X-Request-Uuid: 1eb0dbb7-0315-4e18-b99a-2590ac186e30
Set-Cookie: uuid2=2703975548155903411; SameSite=None; Path=/; Max-Age=7776000; Expires=Mon, 01-May-2023 06:43:30 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1003.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
pixel.tapad.com/idsync/ex/receive/check?partner_id=3021&partner_device_id=fb85e3b9a15dbc020fa5183aab1988e4
200 OK 95 B URL HTTP/2 pixel.tapad.com/idsync/ex/receive/check?partner_id=3021&partner_device_id=fb85e3b9a15dbc020fa5183aab1988e4
IP
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced\012- data
Hash 71a50dbba44c78128b221b7df7bb51f1
0ec63b140374ba704a58fa0c743cb357683313dd
3eb10792d1f0c7e07e7248273540f1952d9a5a2996f4b5df70ab026cd9f05517
GET /idsync/ex/receive/check?partner_id=3021&partner_device_id=fb85e3b9a15dbc020fa5183aab1988e4 HTTP/1.1
Host: pixel.tapad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.betika.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 06:43:30 GMT
strict-transport-security: max-age=31536000
access-control-allow-origin: *
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
p3p: policyref="http://tapad-taptags.s3.amazonaws.com/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
set-cookie: TapAd_TS=1675147410054;Expires=Sat, 01 Apr 2023 06:43:30 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
TapAd_DID=923c83b3-0361-4c8e-90f2-4370fd5066ef;Expires=Sat, 01 Apr 2023 06:43:30 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
TapAd_3WAY_SYNCS=;Expires=Sat, 01 Apr 2023 06:43:30 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
content-type: image/png
content-length: 95
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
tags.bluekai.com/site/46117?id=fb85e3b9a15dbc020fa5183aab1988e4&limit=1&redir=https%3A%2F%2Fdmp.brand-display.com%2Fcm2%2Fapi%2Fpixel%3Fpartner%3D0004%26pid%3D%24_BK_UUID%26bf%3Dfb85e3b9a15dbc020fa5183aab1988e4&_t1675147424940
302 Found 0 B URL HTTP/2 tags.bluekai.com/site/46117?id=fb85e3b9a15dbc020fa5183aab1988e4&limit=1&redir=https%3A%2F%2Fdmp.brand-display.com%2Fcm2%2Fapi%2Fpixel%3Fpartner%3D0004%26pid%3D%24_BK_UUID%26bf%3Dfb85e3b9a15dbc020fa5183aab1988e4&_t1675147424940
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /site/46117?id=fb85e3b9a15dbc020fa5183aab1988e4&limit=1&redir=https%3A%2F%2Fdmp.brand-display.com%2Fcm2%2Fapi%2Fpixel%3Fpartner%3D0004%26pid%3D%24_BK_UUID%26bf%3Dfb85e3b9a15dbc020fa5183aab1988e4&_t1675147424940 HTTP/1.1
Host: tags.bluekai.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-length: 0
location: https://dmp.brand-display.com/cm2/api/pixel?partner=0004&pid=$_BK_UUID&bf=fb85e3b9a15dbc020fa5183aab1988e4
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV", policyref="http://tags.bluekai.com/w3c/p3p.xml"
date: Tue, 31 Jan 2023 06:43:30 GMT
set-cookie: bku=Jqx99JvTtswyRSRM; Path=/; Domain=.bluekai.com; Expires=Mon, 31 Jul 2023 06:43:30 GMT; Secure; SameSite=None
bkpa=KJ0WpAamhu9x9BeEpBd8wpB1VfoGM/SxsB5dlx0ahAkvJjual+TMK/wlrnE7OTI/6brZjR2r0eqmQAmvZ0sp0TemiAuz7z+XmfHGUdeVz+vt4wPKnfOFx9WGoanFLzZjUoJK2je4Idj5Q1JVYYC/PSOx2uz4RWmPNLdzycoMe9mBPHBReXEgII4b4c8TGecrRwtdonUMm9l/WhwwqwTs9s4bw4y=; Path=/; Domain=.bluekai.com; Expires=Mon, 31 Jul 2023 06:43:30 GMT; Secure; SameSite=None
X-Firefox-Spdy: h2
ocsp.godaddy.com/
200 OK 1.8 kB IP
Hash 0d1b26461090383d9ba96d73c5a730c2
1a68f8dcc3b9f1cb170632562b5e0047900d0e07
6bc8b223fbdbccd55fa6d3269fd33e60a63b9fc33259b564740b33d485a2acfb
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Tue, 31 Jan 2023 06:43:29 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 31 Jan 2023 03:23:12 GMT
Expires: Wed, 01 Feb 2023 03:23:12 GMT
ETag: "1a68f8dcc3b9f1cb170632562b5e0047900d0e07"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ib.adnxs.com/bounce?%2Fsetuid%3Fentity%3D442%26code%3Dfb85e3b9a15dbc020fa5183aab1988e4
200 OK 43 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fsetuid%3Fentity%3D442%26code%3Dfb85e3b9a15dbc020fa5183aab1988e4
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 592ebefc7104d681d57852665e9ad514
15cdf8df32aa251dd6dd590a60bf9cf74474e7c5
4b5b6b15c6255109e06720cce42a06d3aead8b7874423d9c52cb0303212c25ef
GET /bounce?%2Fsetuid%3Fentity%3D442%26code%3Dfb85e3b9a15dbc020fa5183aab1988e4 HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.betika.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Tue, 31 Jan 2023 06:43:30 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: afe329c2-3d33-4db2-8ea2-e01e04d7fe2c
Set-Cookie: anj=dTM7k!M4.FE:2jUF']wIg2GVKiJ$[n!]tbPl1N!y%d-DwUY7qAOp`U/T'GEbFmH>2N[[9'Y<fnCIJRGCXw!L6[jsRjS/wK1<QG=%9sk@3@'s>T^fqVb; SameSite=None; Path=/; Max-Age=7776000; Expires=Mon, 01-May-2023 06:43:30 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1003.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
dsum-sec.casalemedia.com/rum?cm_dsp_id=191&expiration=63072000&external_user_id=fb85e3b9a15dbc020fa5183aab1988e4
302 Found 0 B URL HTTP/1.1 dsum-sec.casalemedia.com/rum?cm_dsp_id=191&expiration=63072000&external_user_id=fb85e3b9a15dbc020fa5183aab1988e4
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rum?cm_dsp_id=191&expiration=63072000&external_user_id=fb85e3b9a15dbc020fa5183aab1988e4 HTTP/1.1
Host: dsum-sec.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.betika.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Tue, 31 Jan 2023 06:43:30 GMT
Server: Apache
Cache-Control: no-cache
Expires: 0
Location: /rum?cm_dsp_id=191&expiration=63072000&external_user_id=fb85e3b9a15dbc020fa5183aab1988e4&C=1
P3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
Pragma: no-cache
Content-Length: 0
Set-Cookie: CMID=Y9i4knzT86vihLSisMpENgAA; Path=/; Domain=casalemedia.com; Expires=Wed, 31 Jan 2024 06:43:30 GMT; Max-Age=31536000; Secure; SameSite=None
CMPS=1828; Path=/; Domain=casalemedia.com; Expires=Mon, 01 May 2023 06:43:30 GMT; Max-Age=7776000; Secure; SameSite=None
CMPRO=1828; Path=/; Domain=casalemedia.com; Expires=Mon, 01 May 2023 06:43:30 GMT; Max-Age=7776000; Secure; SameSite=None
Keep-Alive: timeout=1, max=500
Connection: Keep-Alive
ocsp.sectigo.com/
200 OK 471 B IP
Hash 8ef1dbe04ff3834735b0659e7ae82c62
56d86283c8861f679162e92c70bbea59f819b8dc
a41623bee3b144f94362b7351bf88236e4291f113068361be33209f550fb3373
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 06:43:30 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 29 Jan 2023 01:42:55 GMT
Expires: Sun, 05 Feb 2023 01:42:54 GMT
Etag: "56d86283c8861f679162e92c70bbea59f819b8dc"
Cache-Control: max-age=413363,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792079311ab70b31-OSL
ocsp.digicert.com/
200 OK 471 B IP
Hash 96a33deab130be6400b843499f9ec40f
7ca27a4c57fb2acea8b60ca9e6f142b37faa4c45
6741b8771c1d273a17f2bb33499fb8832e5fb91a5ef9f2f954d1b18ed3bb6169
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4635
Cache-Control: max-age=124833
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 06:43:30 GMT
Etag: "63d7eb18-1d7"
Expires: Wed, 01 Feb 2023 17:24:03 GMT
Last-Modified: Mon, 30 Jan 2023 16:06:48 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
dsum-sec.casalemedia.com/rum?cm_dsp_id=191&expiration=63072000&external_user_id=fb85e3b9a15dbc020fa5183aab1988e4&C=1
200 OK 43 B URL HTTP/1.1 dsum-sec.casalemedia.com/rum?cm_dsp_id=191&expiration=63072000&external_user_id=fb85e3b9a15dbc020fa5183aab1988e4&C=1
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /rum?cm_dsp_id=191&expiration=63072000&external_user_id=fb85e3b9a15dbc020fa5183aab1988e4&C=1 HTTP/1.1
Host: dsum-sec.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.betika.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 06:43:30 GMT
Server: Apache
Cache-Control: no-cache
Content-Type: image/gif
Expires: 0
Pragma: no-cache
Content-Length: 43
Keep-Alive: timeout=1, max=499
Connection: Keep-Alive
obs.cheqzone.com/mon
200 OK 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mon HTTP/1.1
Host: obs.cheqzone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1382
Origin: https://www.betika.com
Connection: keep-alive
Referer: https://www.betika.com/
Cookie: cg_uuid=06e31478461189da5d632114a52364c4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://www.betika.com
content-type: application/json
date: Tue, 31 Jan 2023 06:43:31 GMT
content-length: 0
X-Firefox-Spdy: h2
obs.cheqzone.com/mon
200 OK 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mon HTTP/1.1
Host: obs.cheqzone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1382
Origin: https://www.betika.com
Connection: keep-alive
Referer: https://www.betika.com/
Cookie: cg_uuid=06e31478461189da5d632114a52364c4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://www.betika.com
content-type: application/json
date: Tue, 31 Jan 2023 06:43:33 GMT
content-length: 0
X-Firefox-Spdy: h2
trk.elephantmob.com/a/tk/s
200 OK 0 B URL HTTP/2 trk.elephantmob.com/a/tk/s
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /a/tk/s HTTP/1.1
Host: trk.elephantmob.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.betika.com/
Origin: https://www.betika.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 06:43:34 GMT
content-length: 0
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: *
access-control-allow-methods: POST
access-control-allow-headers: content-type
X-Firefox-Spdy: h2
ip.betika.com/
200 OK 0 B IP
GET / HTTP/1.1
Host: ip.betika.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.betika.com
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 06:43:27 GMT
content-type: application/json; charset=utf-8
x-powered-by: Express
access-control-allow-origin: https://www.betika.com
vary: Origin
cache-control: public, max-age=300
etag: W/"5b-O/GIJSt8BcSRL5drhUAs1soxKjA"
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=L0qN6d443ZMptgbA67rQuKc1ugtQo.M4XS0pZ.tku.Q-1675147407-0-ARUGL+RLYghPmhW8fyh0J2a67asHciG/BaUJyn9o7n+2MERCyoP7p48/H7e/5nZsNKU5YYSbyUoQqjSkd/05vew=; path=/; expires=Tue, 31-Jan-23 07:13:27 GMT; domain=.betika.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7920791f4e4b0b51-OSL
content-encoding: br
X-Firefox-Spdy: h2
tr.snapchat.com/config/com/912b13bb-50b2-4dd0-88b0-81f12ac5cc48.js
200 OK 0 B URL HTTP/2 tr.snapchat.com/config/com/912b13bb-50b2-4dd0-88b0-81f12ac5cc48.js
IP
GET /config/com/912b13bb-50b2-4dd0-88b0-81f12ac5cc48.js HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.betika.com
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 06:43:27 GMT
access-control-allow-origin: https://www.betika.com
content-type: application/javascript
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-envoy-upstream-service-time: 0
content-encoding: gzip
vary: Accept-Encoding
server: API Gateway
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
dsp-ap.eskimi.com/v2/gtr?id=25605&url=https%3A%2F%2Fwww.betika.com%2Fen-ke%2Fjackpots&t=1675147423963
200 OK 0 B URL HTTP/2 dsp-ap.eskimi.com/v2/gtr?id=25605&url=https%3A%2F%2Fwww.betika.com%2Fen-ke%2Fjackpots&t=1675147423963
IP
GET /v2/gtr?id=25605&url=https%3A%2F%2Fwww.betika.com%2Fen-ke%2Fjackpots&t=1675147423963 HTTP/1.1
Host: dsp-ap.eskimi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.betika.com
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
set-cookie: __eConsent=1; Expires=Thu, 02 Mar 2023 06:43:28 GMT; Max-Age=2592000; Domain=.eskimi.com; Path=/; Secure; SameSite=None
__eDId=067e0c3d-7fe2-4d57-9b5d-85385ea2b022; Expires=Thu, 02 Mar 2023 06:43:28 GMT; Max-Age=2592000; Domain=.eskimi.com; Path=/; Secure; SameSite=None
__eP=1; Expires=Tue, 14 Feb 2023 06:43:28 GMT; Max-Age=1209600; Domain=.eskimi.com; Path=/; Secure; SameSite=None
access-control-allow-origin: https://www.betika.com
access-control-allow-credentials: true
cache-control: no-cache
date: Tue, 31 Jan 2023 06:43:28 GMT
content-type: application/json
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/classic/web-widget-chat-sdk-3789e01.js
200 OK 0 B URL HTTP/2 static.zdassets.com/web_widget/latest/classic/web-widget-chat-sdk-3789e01.js
IP
GET /web_widget/latest/classic/web-widget-chat-sdk-3789e01.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 06:43:29 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: 0ZgGA3JH6miO60x+iV4oIGzYcSSrgEETqXHpElm9WEf4+AkLl/9h8tz3a37VriCoG8UCSkz0VtI=
x-amz-request-id: NQRGRC1FM4X7GEDR
x-amz-replication-status: COMPLETED
last-modified: Tue, 24 Jan 2023 07:06:01 GMT
etag: W/"d366c0776c2bacba354d40e564c3d3e6"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Wed, 24 Jan 2024 07:06:00 GMT
x-amz-version-id: PEXg4EmT1iygpaMR18z9QrcVS8A_Z3Ep
cf-cache-status: HIT
age: 371434
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=932xlNgrszT%2FNM8oTpUCU7b6doQn6j5AY6%2BoYJe95hnkOsan23AefO62KPACXlEP66fg%2BhbOEJusX808AT2JKeGSSCD8SkI0IAfh%2FHGnfS7Oqpqj7a8KSISThzy6i1DPkipeVT4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7920792ba970b517-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/classic/web-widget-chat-incoming-message-notification-3789e01.js
200 OK 0 B URL HTTP/2 static.zdassets.com/web_widget/latest/classic/web-widget-chat-incoming-message-notification-3789e01.js
IP
GET /web_widget/latest/classic/web-widget-chat-incoming-message-notification-3789e01.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 06:43:29 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: bWjsovKjRCekYYLQbkX5CJqj4I4RdaBrb2p4amftObEwQibIuAVIZZCi5lDVCSxXoyuK2wNuGfo=
x-amz-request-id: XZJWHCF5Q7CG9GTG
x-amz-replication-status: COMPLETED
last-modified: Tue, 24 Jan 2023 07:06:01 GMT
etag: W/"659635f5ad1b6653645380f46aa42236"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Wed, 24 Jan 2024 07:06:00 GMT
x-amz-version-id: PTkQfFoeUt2llEzxwBYnSfB39O35UzsZ
cf-cache-status: HIT
age: 371433
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3iXd5A7emEy5MCPbD3ufakNgNNI6AV9LcgG%2FxknfAWFyZWfCZf1XAAe6DxdLi4OJSbEvQBVjrkp9SEdkafDZexpw46K2339U0RqOgtCJsXTo8f2y2YAf8a26Sw5hSKNntxvGd4w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7920792ffd80b517-OSL
content-encoding: br
X-Firefox-Spdy: h2
storage.googleapis.com/betika-cdn/website/terms-and-conditions.json
200 OK 0 B URL HTTP/2 storage.googleapis.com/betika-cdn/website/terms-and-conditions.json
IP
GET /betika-cdn/website/terms-and-conditions.json HTTP/1.1
Host: storage.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.betika.com
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvmi3SEIeVe6O7YjvgVtXuNg10Nei82E41ljngFy5ywJSFU0ciaWKeF3gxIR2m08evogZlO332eGybXt_SgXaPh6g
vary: X-Goog-Allowed-Resources
x-goog-generation: 1672385502852724
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 298227
x-goog-hash: crc32c=jRCndQ==, md5=3jLOOsNqJdvZPSFc4Ve3RQ==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 298227
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Tue, 31 Jan 2023 06:34:12 GMT
expires: Tue, 31 Jan 2023 07:34:12 GMT
cache-control: public, max-age=3600
age: 554
last-modified: Fri, 30 Dec 2022 07:31:42 GMT
etag: "de32ce3ac36a25dbd93d215ce157b745"
content-type: application/json
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-1350846.js?sv=7
200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-1350846.js?sv=7
IP
GET /c/hotjar-1350846.js?sv=7 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Tue, 31 Jan 2023 06:42:34 GMT
access-control-allow-origin: *
cache-control: max-age=60
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
etag: W/dfe0fdcb80c945f8fb8c8d7b270c6d48
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: OFWfM1fVSJMd0q5KDbwK8F9XNqV_zg8xO30DfgdydQ6hxLunC5Gu4w==
age: 54
X-Firefox-Spdy: h2
betika.zendesk.com/embeddable/config
200 OK 0 B URL HTTP/2 betika.zendesk.com/embeddable/config
IP
GET /embeddable/config HTTP/1.1
Host: betika.zendesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.betika.com/
Origin: https://www.betika.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 06:43:28 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-expose-headers:
access-control-max-age: 7200
cache-control: public, max-age=60, stale-while-revalidate=600, stale-if-error=3600
x-zendesk-origin-server: embeddable-app-server-dd85cd54b-4fgvt
x-request-id: 792078742f27cb7b-FRA
x-runtime: 0.002543
vary: Origin, Accept-Encoding
x-cached: HIT
last-modified: Mon, 30 Jan 2023 15:37:45 GMT
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NWkKTXQATTuOSkWozjepK2PRsgfBZKEHeaQNncoNmfhOdB4Kb1GreP6P%2BoB4S%2BvFTaHjLoe92q1yOcSTDnQcP2PnEdTzVbEDSG6iefSXnw%2FC0HXMVp10481jMezMrzaw9mTMgg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
set-cookie: __cfruid=280987159bb0124edecefc6eef92b199023e52c9-1675147408; path=/; domain=.betika.zendesk.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 792079269c78b4eb-OSL
content-encoding: br
X-Firefox-Spdy: h2
trk.elephantmob.com/a/it/cv?cid=ac7db7e590056a5201d58d6075dde55c
200 OK 0 B URL HTTP/2 trk.elephantmob.com/a/it/cv?cid=ac7db7e590056a5201d58d6075dde55c
IP
GET /a/it/cv?cid=ac7db7e590056a5201d58d6075dde55c HTTP/1.1
Host: trk.elephantmob.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.betika.com
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 06:43:27 GMT
content-type: application/json
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: *
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/classic/web-widget-locales/classic/en-us-json-3789e01.js
200 OK 0 B URL HTTP/2 static.zdassets.com/web_widget/latest/classic/web-widget-locales/classic/en-us-json-3789e01.js
IP
GET /web_widget/latest/classic/web-widget-locales/classic/en-us-json-3789e01.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 06:43:29 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: jfwJvHHzFgjdja4+CPMSOxBkcjcXp795SI8fDTNhhhGYiIrVlnyHYidESYBPHtzkgUtkSQf1rIQ=
x-amz-request-id: NQRHHVX9JX9FQGXW
x-amz-replication-status: COMPLETED
last-modified: Tue, 24 Jan 2023 07:06:03 GMT
etag: W/"89b68f56c96d15075b04b0ea633eabf1"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Wed, 24 Jan 2024 07:06:02 GMT
x-amz-version-id: o.UUg_NpAHuxy6_PcLSLI7hLSFjsoUT1
cf-cache-status: HIT
age: 371433
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=duonL0rLxHvwn9Vz9r%2Bw5BNXO3hfXj6dCo96HKtnBJX7SpqYqIrCucCze7Ed037ALBSCobACcu4T9EpyMN6oyf93VVpy5EBt1uPjrYWIKNFcwzBppgMO%2BKZmbEHbv%2BA3t85o1Hs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7920792b693ab517-OSL
content-encoding: br
X-Firefox-Spdy: h2
tr.brand-display.com/tracking/api/r?r0=1&rurl=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dknorex%26google_hm%3D%25%25KNXQ_B64_ENC%25%25%26google_cm&bf=fb85e3b9a15dbc020fa5183aab1988e4
302 Found 0 B URL HTTP/2 tr.brand-display.com/tracking/api/r?r0=1&rurl=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dknorex%26google_hm%3D%25%25KNXQ_B64_ENC%25%25%26google_cm&bf=fb85e3b9a15dbc020fa5183aab1988e4
IP
GET /tracking/api/r?r0=1&rurl=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dknorex%26google_hm%3D%25%25KNXQ_B64_ENC%25%25%26google_cm&bf=fb85e3b9a15dbc020fa5183aab1988e4 HTTP/1.1
Host: tr.brand-display.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Tue, 31 Jan 2023 06:43:29 GMT
location: https://cm.g.doubleclick.net/pixel?google_nid=knorex&google_hm=ZmI4NWUzYjlhMTVkYmMwMjBmYTUxODNhYWIxOTg4ZTQ=&google_cm&kcid=266606213748848171073537059946356041916
server: nginx/1.23.3
set-cookie: _knxp_=39b11f05; domain=.brand-display.com; path=/; SameSite=none; secure; Expires=Tue, 31 Jan 2023 07:13:29 GMT
_knxq_=da66182e-9ef9-9045-a8bed5e7.1675147409.1.1675147409.1675147409; domain=.brand-display.com; path=/; SameSite=none; secure; Expires=Wed, 31 Jan 2024 06:43:29 GMT
p3p: CP='This is not a P3P policy!'
user-region: EU
X-Firefox-Spdy: h2
bh.contextweb.com/bh/rtset?do=add&pid=562385&ev=fb85e3b9a15dbc020fa5183aab1988e4
200 OK 0 B URL HTTP/2 bh.contextweb.com/bh/rtset?do=add&pid=562385&ev=fb85e3b9a15dbc020fa5183aab1988e4
IP
GET /bh/rtset?do=add&pid=562385&ev=fb85e3b9a15dbc020fa5183aab1988e4 HTTP/1.1
Host: bh.contextweb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.betika.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="/bh/w3c/p3p.xml", CP="NOI DSP COR NID CURa DEVa PSAa OUR BUS COM NAV INT"
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Platform-Version
cw-server: bh-deployment-5ffd6ccc57-r7vsg
cache-control: private, max-age=0, no-cache, no-store
expires: -1
content-language: en-US
content-type: image/gif;charset=iso-8859-1
set-cookie: V=uvuE0KwMEHlM;Version=0;Secure;Path=/;Domain=.contextweb.com;Expires=Fri, 26-Jan-2024 06:43:30 GMT;Max-Age=31104000;SameSite=None
pb_rtb_ev=3-1io1|8eq.0.fb85e3b9a15dbc020fa5183aab1988e4;Version=0;Secure;Path=/;Domain=.contextweb.com;Expires=Wed, 31-Jan-2024 06:43:30 GMT;Max-Age=31536000;SameSite=None
INGRESSCOOKIE=3c7b95bafd47ffb2; path=/; HttpOnly; Secure; SameSite=None
server: Jetty(9.4.14.v20181114)
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
cdn.snapodds.com/sdk/v1/snapodds-sdk.js
200 OK 0 B URL HTTP/2 cdn.snapodds.com/sdk/v1/snapodds-sdk.js
IP
GET /sdk/v1/snapodds-sdk.js HTTP/1.1
Host: cdn.snapodds.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Fri, 11 Nov 2022 11:43:08 GMT
server: AmazonS3
content-encoding: br
date: Tue, 31 Jan 2023 06:43:26 GMT
etag: W/"713fa38b596d0e7d03572cc8f3a40963"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: qFyXEzqwKT5elD7R58mkf-gaeWQPTQraoQvSo2GiAJsyLi0zOeeKcw==
age: 20430
X-Firefox-Spdy: h2
api.betika.com/v1/offers
200 OK 0 B IP
GET /v1/offers HTTP/1.1
Host: api.betika.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Origin: https://www.betika.com
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 06:43:26 GMT
content-type: application/json
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, PUT, OPTIONS
access-control-allow-headers: Origin, Content-Type, Authorization, authorization
x-cache: EXPIRED
x-backend-time: 2023-01-31T09:43:26+03:00
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
last-modified: Mon, 30 Jan 2023 21:25:52 GMT
cf-cache-status: EXPIRED
set-cookie: __cf_bm=m_Q1Ozv4nlIPW14WfMLrZT_ZbnBpAr68Uw0U0JKAaXQ-1675147406-0-Ab2jPAQDLrkHeKFGBKxhSyx5vdAVIxmNR30FSVwTX9D9YMZ/sA+6gYwn022TofgskeKuPvnq7Lk/PXdMTspws7I=; path=/; expires=Tue, 31-Jan-23 07:13:26 GMT; domain=.betika.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7920791bfbf00b51-OSL
content-encoding: br
X-Firefox-Spdy: h2
api.betika.com/v1/sports
200 OK 0 B IP
GET /v1/sports HTTP/1.1
Host: api.betika.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.betika.com
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 06:43:26 GMT
content-type: application/json
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, PUT, OPTIONS
access-control-allow-headers: Origin, Content-Type, Authorization, authorization
x-cache: HIT
x-backend-time: 2023-01-31T09:43:26+03:00
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
last-modified: Tue, 31 Jan 2023 06:34:11 GMT
cf-cache-status: EXPIRED
set-cookie: __cf_bm=O8fYhIrk.kgjb9bUyLCd405_Jc5J.wGyj_BsRovPgl4-1675147406-0-AeRhfoPXkpOlihEN5GD7/lzm5y9BtT6yAV6rP/AA2SkOlO3cYfCgXeXc1mieQ/ssvbcKMX+FU1xvWwQU20VikKs=; path=/; expires=Tue, 31-Jan-23 07:13:26 GMT; domain=.betika.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7920791b7b8f0b51-OSL
content-encoding: br
X-Firefox-Spdy: h2
tracker.services.vaix.ai/static/vaix_sdk.js
200 OK 0 B URL HTTP/2 tracker.services.vaix.ai/static/vaix_sdk.js
IP
ASN #24940 Hetzner Online GmbH
GET /static/vaix_sdk.js HTTP/1.1
Host: tracker.services.vaix.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.19.1
date: Tue, 31 Jan 2023 06:43:27 GMT
content-type: text/javascript; charset="utf-8"
vary: Accept-Encoding
cache-control: max-age=60, public
last-modified: Tue, 24 May 2022 11:03:51 GMT
etag: W/"628cbb97-804"
access-control-allow-origin: *
access-control-allow-headers: Origin, Content-Type,Authorization, Vaix-Sdk-Client
access-control-allow-credentials: true
access-control-allow-methods: GET, PUT, POST, DELETE
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
X-Firefox-Spdy: h2
ekr.zdassets.com/compose/c965e869-3df2-4315-a1c1-b285661d3002
200 OK 0 B URL HTTP/2 ekr.zdassets.com/compose/c965e869-3df2-4315-a1c1-b285661d3002
IP
GET /compose/c965e869-3df2-4315-a1c1-b285661d3002 HTTP/1.1
Host: ekr.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.betika.com
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 06:43:27 GMT
content-type: application/json; charset=utf-8
status: 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers:
access-control-max-age: 7200
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cdn-cache-control: max-age=60
cache-control: max-age=600, public, stale-while-revalidate=600, stale-if-error=21600
etag: W/"6eceb61657ed92664584e8d79ce432db"
x-request-id: 78fdbb7b9e652df7-SEA, 78fdbb7b9e652df7-SEA
x-runtime: 0.004225
vary: Origin, Accept-Encoding
x-zendesk-zorg: yes
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LHFw2pBpMxsvNNj%2F3VBqUPnhRU%2BPWkXOSG6xXoFoOA0DaEt8wi8x%2FOfndiYyCo45bXa42Txs54bGQ7PvFt0T2XtaH1sz46p2ub4u6%2FGYuYyxr%2FJe33T9qTxpaR4s7puWjuk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 792079203df3b4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2
dsp-media.eskimi.com/assets/js/e/gtr.min.js?_=0.0.0.3
200 OK 0 B URL HTTP/2 dsp-media.eskimi.com/assets/js/e/gtr.min.js?_=0.0.0.3
IP
ASN #34989 ServeTheWorld AS
GET /assets/js/e/gtr.min.js?_=0.0.0.3 HTTP/1.1
Host: dsp-media.eskimi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 06:43:28 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 692289
cdn-uid: ce2848ff-13c5-49e5-873d-af24ad423612
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31536000
etag: W/"621cbfb5-12fb"
expires: Tue, 28 Nov 2023 12:07:50 GMT
last-modified: Mon, 28 Feb 2022 12:27:33 GMT
x-content-type-options: nosniff
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/28/2022 12:07:50
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: d552084e7d252c4dfc8d58a262ac461e
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
sync.taboola.com/sg/knorex-network/1/rtb-h/?taboola_hm=fb85e3b9a15dbc020fa5183aab1988e4
200 OK 0 B URL HTTP/2 sync.taboola.com/sg/knorex-network/1/rtb-h/?taboola_hm=fb85e3b9a15dbc020fa5183aab1988e4
IP
ASN #200478 Taboola.com ltd
GET /sg/knorex-network/1/rtb-h/?taboola_hm=fb85e3b9a15dbc020fa5183aab1988e4 HTTP/1.1
Host: sync.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.betika.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 06:43:30 GMT
x-fastly-to-nlb-rtt: 21783
access-control-allow-credentials: true
X-Firefox-Spdy: h2
cdn.betika.com/sport-icons/svg-sport_name-defs.svg
200 OK 0 B URL HTTP/2 cdn.betika.com/sport-icons/svg-sport_name-defs.svg
IP
GET /sport-icons/svg-sport_name-defs.svg HTTP/1.1
Host: cdn.betika.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.betika.com
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 06:43:26 GMT
content-type: image/svg+xml
x-guploader-uploadid: ADPycdtu4WOzbSeV3qnIHHwUbncab8hg8jGHbp-3O-UnwJjTfK-001eNDRGu1ScE-gefPpb0iUV-JV0ZALUdWjVoEwmJhzg9g9wV
x-goog-generation: 1650991478809310
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 101575
x-goog-hash: crc32c=g5CbUw==, md5=E9zMi/O8RYT4f+Uw4bhtCQ==
x-goog-storage-class: STANDARD
access-control-allow-origin: *
access-control-expose-headers: Content-Type
expires: Tue, 31 Jan 2023 06:41:21 GMT
cache-control: public, max-age=3600
last-modified: Tue, 26 Apr 2022 16:44:38 GMT
etag: W/"13dccc8bf3bc4584f87fe530e1b86d09"
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
set-cookie: __cf_bm=abFuZ2VRQE0a3Ca8NYwV_gKyp8ovUeY98OsMsHJez5s-1675147406-0-Ab4bv7XvpYhqTUzxVEhTgAYw1i8bFsIlthBhuo/rWiL83drAAy7B4B/7KeQv73ZB1NkHBuPMA/BF/S3+MnMBPjQ=; path=/; expires=Tue, 31-Jan-23 07:13:26 GMT; domain=.betika.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 79207918395b0b51-OSL
content-encoding: br
X-Firefox-Spdy: h2
api.betika.com/v1/sports
200 OK 0 B IP
GET /v1/sports HTTP/1.1
Host: api.betika.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.betika.com
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 06:43:26 GMT
content-type: application/json
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, PUT, OPTIONS
access-control-allow-headers: Origin, Content-Type, Authorization, authorization
x-cache: HIT
x-backend-time: 2023-01-31T09:43:26+03:00
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
last-modified: Tue, 31 Jan 2023 06:34:11 GMT
cf-cache-status: EXPIRED
set-cookie: __cf_bm=1QSLq8krz0CSGG1vzwSKZaVUg5jFKOpHDWLaHoxmZ6I-1675147406-0-Af0u1MN6lmcWcw2OyJT9Oytfnf/NXosnK6EfjUoaAxfoAs0MViS5m0AofFaNgUaPjQJMrc8HP5wVvRpJQb5KUlk=; path=/; expires=Tue, 31-Jan-23 07:13:26 GMT; domain=.betika.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7920791b8b910b51-OSL
content-encoding: br
X-Firefox-Spdy: h2
userinfo.betika.com/
200 OK 0 B IP
GET / HTTP/1.1
Host: userinfo.betika.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.betika.com
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 06:43:26 GMT
content-type: application/json; charset=utf-8
x-powered-by: Express
access-control-allow-origin: https://www.betika.com
vary: Origin
etag: W/"45-g7WkYTBRKxDOyx9Gqg1XBQnDAiM"
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=kgNW8KYajkcLRwOW.8cq8fCn_8Y9GVmTW8TrIT4llgY-1675147406-0-AWqPb9Ce2oUjNyOzic9sOtiDKWsz/qi1vN03ciZtu40Mwd9gtK8BhMrrcZdcsYvPHA931Qtrem40dGkPLBlEFtY=; path=/; expires=Tue, 31-Jan-23 07:13:26 GMT; domain=.betika.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7920791b9ba50b51-OSL
content-encoding: br
X-Firefox-Spdy: h2
unpkg.com/web-vitals/dist/web-vitals.iife.js
302 Found 0 B URL HTTP/2 unpkg.com/web-vitals/dist/web-vitals.iife.js
IP
GET /web-vitals/dist/web-vitals.iife.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.betika.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Tue, 31 Jan 2023 06:43:27 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /web-vitals@3.1.1/dist/web-vitals.iife.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GR390NQMDFE41Z33HS0HEDN6-ams
cf-cache-status: HIT
age: 39
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 792079209f8f1bfe-OSL
X-Firefox-Spdy: h2
162.159.129.86
173.194.73.154
167.233.13.45
23.36.79.43
93.184.220.29
54.151.232.221
157.240.205.11
141.226.228.48
185.80.36.245