Report - trk.myperfect2give.com/1acb0b06-e2c5-4ec0-9c5f-43f21569f239

Report Overview

Visited public
2023-12-05 15:32:41
Tags
URL
trk.myperfect2give.com/1acb0b06-e2c5-4ec0-9c5f-43f21569f239
Finishing URL
www.premierbet.ml/register-short/?btag=657185_6596D59A5A2D4D74A6DF7E8164D6217D&PremBet=wnjd63vf9p4cdvgt2lk8p9cu&utm_medium=Netrefer
IP / ASN
18.193.209.105
#16509 AMAZON-02
Title
Sorry, you have been blocked

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
sdkuaservice.optimove.net	38822	2011-10-11	2018-09-05 11:30:45	2023-11-30 19:22:05	508 B	615 B	34.102.240.186
stream-952.optimove.net	unknown	2011-10-11	2023-08-01 22:11:23	2023-11-25 05:22:53	1.1 kB	1.7 kB	107.154.132.121
realtime-952.optimove.net	unknown	2011-10-11	2023-08-01 22:11:23	2023-11-24 15:07:30	1.1 kB	1.8 kB	107.154.132.121
sgtm-prd.prod-sahara.editec-online.com	unknown	2020-12-02	2022-08-14 21:49:26	2023-12-02 14:12:11	1.1 kB	767 B	34.117.167.203
media.premierbetpartners.com	286522	2018-11-12	2019-04-03 16:15:24	2023-12-04 11:52:34	560 B	1.2 kB	13.107.246.53
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2023-12-05 06:24:59	1.4 kB	340 kB	74.125.131.97
cdn.iconvert.network	unknown	2019-04-02	2020-03-29 05:58:37	2023-12-04 06:58:31	1.4 kB	84 kB	143.204.55.25
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2023-12-05 06:14:20	1.1 kB	33 kB	142.250.74.163
www.google.com	7	1997-09-15	2015-05-10 13:11:19	2023-11-19 18:48:38	1.8 kB	64 kB	142.250.74.164
rum-static.pingdom.net	5211	2009-08-04	2012-11-02 21:45:35	2023-12-05 09:34:38	443 B	6.7 kB	104.22.54.104
geo-lookup.iconvert.network	unknown	2019-04-02	2020-10-12 08:01:35	2023-12-01 23:17:30	434 B	408 B	54.230.111.42
rum-collector-2.pingdom.net	4751	2009-08-04	2017-06-14 16:49:13	2023-12-04 05:13:10	992 B	211 B	52.17.83.255
static.app.delivery	778820	2015-02-13	2020-01-22 09:42:30	2023-11-27 05:03:01	441 B	130 kB	104.26.8.144
www.premierbet.ml	unknown	unknown	2019-03-19 09:03:58	2023-12-03 00:40:22	9.7 kB	95 kB	104.17.224.118
www.gstatic.com	unknown	2008-02-11	2016-07-26 11:37:06	2023-12-05 08:08:22	2.4 kB	638 kB	142.250.74.35
ocsp.r2m03.amazontrust.com	unknown	2007-05-11	2023-02-21 01:06:24	2023-12-05 11:45:58	700 B	1.8 kB	143.204.53.97
sdk.optimove.net	239178	2011-10-11	2021-12-13 19:08:17	2023-12-01 14:03:30	426 B	26 kB	107.154.132.121

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-12-05 15:32:29	low	Client IP	Internal IP	ET INFO DNS Query for Suspicious .ml Domain
2023-12-05 15:32:29	low	Client IP	104.17.224.118	ET INFO Suspicious Domain (*.ml) in TLS SNI

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (29)

	URL	From	Size	First Seen	Last Seen
	www.premierbet.ml/403.html	ScriptElement	197 B	2023-03-10	2024-08-21
Pretty URL www.premierbet.ml/403.html IP 104.17.224.118 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 08:50 Last Seen2024-08-21 08:58 Times Seen92 Hash 7813cffdb73bdf9134bbe04620e8fa8f 9b73b35ddf681f24e17bea5989b4ae231a07807e 4acf7af2f1fc9a476380c3da94c3c28e5b6e3508e6695349fd8718aee386d794 Loading...

	www.premierbet.ml/403.html	ScriptElement	156 B	2023-03-10	2024-08-21
Pretty URL www.premierbet.ml/403.html IP 104.17.224.118 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 08:50 Last Seen2024-08-21 08:58 Times Seen92 Hash db575a02aa57056e31ad1fb5cd84b8ac 499ab2b57fe2acee51658be7e6363a0340e00e23 8ea039656bb07a99bd234fb80c68ebbce37351cfa5cbf8ef947ad70b5d268b06 Loading...

	www.premierbet.ml/403.html	ScriptElement	341 B	2023-03-10	2024-08-21
Pretty URL www.premierbet.ml/403.html IP 104.17.224.118 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 08:50 Last Seen2024-08-21 08:58 Times Seen92 Hash 05cbd143e2162c50a5a00dbdab04580e da182f3b42a6e83b2b13c6503fca64e6ad7e8ed2 b31e0ad9b73c4509bddfd6cd18f79e092c69b31ea573048a38182a1506edded8 Loading...

	unknown	ScriptElement	329 B	2023-08-24	2024-08-21
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-24 22:47 Last Seen2024-08-21 08:10 Times Seen90 Hash a38be1c63099ebe3b56c57775dc778e1 722f5db0f30509b67896ea297a61a79ed2feaacd e3166dc7e1fb1de3ea7c92698fa63900a0f0ba20d4ba6136f88a5954da4bbd97 Loading...

	unknown	ScriptElement	237 B	2023-08-24	2024-08-21
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-24 22:47 Last Seen2024-08-21 08:10 Times Seen90 Hash a163018caa244cb7018ab5d0dbc2617d 4de306deb230c01f13f41504bc9b636123a664f9 c95913bb85ddbda457db57fc72f0dbe7db7344794f1785a37a25a52cd0b50ef6 Loading...

	www.premierbet.ml/403.html	ScriptElement	139 B	2023-03-07	2025-04-05
Pretty URL www.premierbet.ml/403.html IP 104.17.224.118 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 15:24 Last Seen2025-04-05 08:48 Times Seen231 Hash bc4968264d9ca137bee2b30fb1f9feda 4d1c1801925d85fb5adfaddbb1d7af82bf8be303 13d12aebb2eaaae29e41721a90ca9c20386e8a6bb5e91f90e5ec76555a0ecfc9 Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LeAB-wjAAAAAAIfxtjDHx2a1kQg78rCM5i5Tina&co=aHR0cHM6Ly93d3cucHJlbWllcmJldC5tbDo0NDM.&hl=fr&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=h2ra5uw40m4h	ScriptElement	69 B	2023-03-07	2025-05-09
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LeAB-wjAAAAAAIfxtjDHx2a1kQg78rCM5i5Tina&co=aHR0cHM6Ly93d3cucHJlbWllcmJldC5tbDo0NDM.&hl=fr&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=h2ra5uw40m4h IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-05-09 10:22 Times Seen116164 Hash 45ecf7458f42da80ac248ad42d610372 a5b3edf8328769bc754e6e616a957ceed4fdadd7 75867e75b209895995014b43c3d711476e3437481e5fbec91a4da674302558bf Loading...

	sdk.optimove.net/websdk/?tenant_id=952	ScriptElement	155 kB	2023-12-05	2024-08-20
Pretty URL sdk.optimove.net/websdk/?tenant_id=952 IP 107.154.132.121 ASN #19551 INCAPSULA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-05 16:32 Last Seen2024-08-20 16:40 Times Seen6 Hash 4a0a8089b2144fe09a5636d9d231c05a fa4f0fa61d1bc087158dc87fbc6fdccc58bac4d1 57a52cd63ec10c691ef33f9c6fc1fb264685fc6e5410e36bb8b5fe2a0b22eaff Loading...

	www.premierbet.ml/403.html	ScriptElement	1.1 kB	2023-03-07	2025-05-06
Pretty URL www.premierbet.ml/403.html IP 104.17.224.118 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:03 Last Seen2025-05-06 23:06 Times Seen2263 Hash b36955bf11fd2b943745960d036901e5 d9b5403fee4ae8ec7ad7a3cc6ed747bb62aacf6e 5f82f0ebcd0edef1c37dcba00935d90b65c18d2b0834fce752efe5960e532de3 Loading...

	geo-lookup.iconvert.network/?callback=_jsonp_0	ScriptElement	23 B	2023-03-08	2025-03-06
Pretty URL geo-lookup.iconvert.network/?callback=_jsonp_0 IP 54.230.111.42 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:27 Last Seen2025-03-06 03:57 Times Seen107 Hash 77a2b27581b0e6f8e1866d12a9fb3460 0d6912f1aabf2f9f191883767a565846b6b23387 892b6da823563cbd0865b33fd6f805e495769f555aa11679fa72c82e56abe9fd Loading...

	www.googletagmanager.com/gtag/js?id=UA-127247009-10	ScriptElement	178 kB	2023-12-05	2023-12-05
Pretty URL www.googletagmanager.com/gtag/js?id=UA-127247009-10 IP 74.125.131.97 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-05 16:32 Last Seen2023-12-05 16:32 Times Seen1 Hash 1acc9e428ae156576b59262b68fea649 2b30699479ce1eb698e39e24dd7faac73a48c150 c9cec1d291ba1f70d0783df7accbd62f526af07db16ec70ed2cf3ab1d21481e8 Loading...

	unknown	ScriptElement	423 B	2023-03-10	2024-08-21
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 08:50 Last Seen2024-08-21 08:58 Times Seen92 Hash b67dec3f73f8bd066b0ecdda2d0fea4f af2c1af923f8a71f5a465b51a31f0812c577a74e 9e442e4eaf116791ac451da19af5182650009b0db1a92d9c3a57f51c09eb7612 Loading...

	www.premierbet.ml/register-short/sandbox%20eval%20code		147 B	2023-04-11	2025-05-09
Pretty URL www.premierbet.ml/register-short/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-09 11:18 Times Seen341422 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	cdn.iconvert.network/code/0976eafe-d4a1-4f98-b0b0-cfd970fc5ab0.js	ScriptElement	869 B	2023-08-12	2024-08-21
Pretty URL cdn.iconvert.network/code/0976eafe-d4a1-4f98-b0b0-cfd970fc5ab0.js IP 143.204.55.25 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-12 18:03 Last Seen2024-08-21 08:58 Times Seen82 Hash f9e7db8ff58b5cf4290a7f96ca802dc3 bf517c6fae29dee37c92fd381ac0baa46e620f5d e411a5c601fc92963091251364949540467da67b90f62e4ae1185f4e47261c17 Loading...

	www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__fr.js	ScriptElement	480 kB	2023-11-16	2023-12-10
Pretty URL www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__fr.js IP 142.250.74.35 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-16 14:20 Last Seen2023-12-10 17:57 Times Seen67 Hash 7f1f11a7a65829d5f0a4aa0837af16ee 6a3fa46b5a9e501bf438599c4916df405f8c03a2 ca276a7b63d1747f0404f5f9fa2fb2eb4a27a666543bcc5f9812df012b96ed0d Loading...

	rum-static.pingdom.net/pa-5b463fc36a549f0016000157.js	ScriptElement	6.2 kB	2023-03-12	2024-08-21
Pretty URL rum-static.pingdom.net/pa-5b463fc36a549f0016000157.js IP 104.22.54.104 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 15:00 Last Seen2024-08-21 08:58 Times Seen92 Hash 73c6ec9df36683721d7c46b3174d4d6d c28467cf3453fbb2232f59bfb17176ef892f18e4 9c1b26fde34333a2f0b9a63d494261895f64fa433e28c5514087c3a308235363 Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LeAB-wjAAAAAAIfxtjDHx2a1kQg78rCM5i5Tina&co=aHR0cHM6Ly93d3cucHJlbWllcmJldC5tbDo0NDM.&hl=fr&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=h2ra5uw40m4h	ScriptElement	53 kB	2024-08-20	2024-08-20
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LeAB-wjAAAAAAIfxtjDHx2a1kQg78rCM5i5Tina&co=aHR0cHM6Ly93d3cucHJlbWllcmJldC5tbDo0NDM.&hl=fr&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=h2ra5uw40m4h IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 16:40 Last Seen2024-08-20 16:40 Times Seen1 Hash 8270be4e5a4bee1aa6450eba98302ec1 378e5e98050bb31e09184991c5b3a0284fad9baa 4f51604b6f73cc6358dc3a704264fee748f70a529ec757afff66eca39c4a2310 Loading...

	static.app.delivery/sdks/web/optimove-web-bundle.js	ScriptElement	129 kB	2023-12-05	2024-08-20
Pretty URL static.app.delivery/sdks/web/optimove-web-bundle.js IP 104.26.8.144 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-05 09:22 Last Seen2024-08-20 16:43 Times Seen22 Hash 23be5b8f33ac387276b34d4e9e4b4616 4c0233764e69d6f98e1f8785d03be55921766548 4b5b69b6f03985b118596792aadad4e583f4dcdcb360f1f5d37eb73ed5aa7188 Loading...

	www.google.com/recaptcha/api.js?render=6LeAB-wjAAAAAAIfxtjDHx2a1kQg78rCM5i5Tina&hl=fr	ScriptElement	884 B	2023-11-16	2024-08-20
Pretty URL www.google.com/recaptcha/api.js?render=6LeAB-wjAAAAAAIfxtjDHx2a1kQg78rCM5i5Tina&hl=fr IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-16 17:11 Last Seen2024-08-20 19:16 Times Seen17 Hash 8b669520f18afa59314574327a3e49fc 5b3a1f5eb15ce4849d3303823c5d64c75752cdb2 6289ec2d95609891cb46617f5171336965eb17d77edbce0dba8d2eb4480566a7 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-5HJPKXJ	ScriptElement	223 kB	2023-12-05	2023-12-05
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-5HJPKXJ IP 74.125.131.97 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-05 16:32 Last Seen2023-12-05 16:32 Times Seen1 Hash bcf4ed82b283f3bd075c74d9322fab35 0b2bf1c5ec202781e9e25536074fedfaeea9f1c1 429d1311a6917085eb602645e1c164dd345e94f5fb13b04f267077359af93d15 Loading...

	www.google-analytics.com/analytics.js	ScriptElement	4.7 kB	2023-04-11	2025-05-09
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-09 11:18 Times Seen340621 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	cdn.iconvert.network/js/app-2.0.2/main.min.js	ScriptElement	52 kB	2023-03-12	2024-08-21
Pretty URL cdn.iconvert.network/js/app-2.0.2/main.min.js IP 143.204.55.25 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 18:06 Last Seen2024-08-21 08:58 Times Seen82 Hash c249e7cb775fe256f39c3d5f06d755d3 ac1c9ee5b57a93c35340088e2800022537ceaade 26078d96679d902bac10c20b0fcd839c8f097ef231f7abe6e3344d83871579eb Loading...

	www.googletagmanager.com/gtag/js?id=G-R5ZV40GY7F&l=dataLayer&cx=c	ScriptElement	233 kB	2023-12-05	2023-12-05
Pretty URL www.googletagmanager.com/gtag/js?id=G-R5ZV40GY7F&l=dataLayer&cx=c IP 74.125.131.97 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-05 16:32 Last Seen2023-12-05 16:32 Times Seen1 Hash a6b4849f74eeb6ea95472fdba90ab1ab 3139af3506e1403d1972e7b43594983e434e8e9e a3271335ac03c62f3da5458612971d4bbe31a46a7af50a52ee589f98000a1437 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 405108b4c85529b7aa5cec53ea50b146	22 B	2023-11-08 10:40	2024-08-20 20:25
Pretty Observations First Seen2023-11-08 10:40 Last Seen2024-08-20 20:25 Times Seen1243 Hash 405108b4c85529b7aa5cec53ea50b146 9264c7f0e31d78c2191e0c7f7f1e35c9d90bd820 588364febc98e9d07bb20cbcb309eb4cc244ae7944c11645d54cbdfd25cf1b4e Loading...

	#2 Eval - 0ed63005683340aabf1bdf6f7ffc83c1	17 kB	2023-11-08 10:40	2024-08-20 20:25
Pretty Observations First Seen2023-11-08 10:40 Last Seen2024-08-20 20:25 Times Seen1238 Hash 0ed63005683340aabf1bdf6f7ffc83c1 0c372adb3c8f9d6da67341b489ac417b3ccfaf7e 326a8f09ca2e33ccf42925b0258a783af0e190bb16df13fa561a4982671cc949 Loading...

	#3 Eval - e22fdced26355ede2af45f18008911a3	22 B	2023-11-08 10:40	2024-08-20 20:25
Pretty Observations First Seen2023-11-08 10:40 Last Seen2024-08-20 20:25 Times Seen1242 Hash e22fdced26355ede2af45f18008911a3 5dc35e2a30e6146aa7a72f4e371c0d8fc82cc737 5e2c137aeb69e2f9c5f56c52cd808b150ddefa0dff93bb25cd5f96bb8edfc26f Loading...

	#4 Eval - 53a56ee15c08c24648b6e646738be5b8	64 B	2023-11-08 10:40	2024-08-20 20:25
Pretty Observations First Seen2023-11-08 10:40 Last Seen2024-08-20 20:25 Times Seen1243 Hash 53a56ee15c08c24648b6e646738be5b8 e9cff955cdd5dbe224034d89d0eb079e96548f1d 66e9659afb70860b64f79b0587c20418cfd5375e74917c13f1f62502854c371a Loading...

	#5 Eval - 12f7e0327034a172b4fded2a08df50e5	46 B	2023-03-07 15:24	2024-08-21 08:58
Pretty Observations First Seen2023-03-07 15:24 Last Seen2024-08-21 08:58 Times Seen92 Hash 12f7e0327034a172b4fded2a08df50e5 86489397620a6b0842c50280e03a6ffbbbd80805 f3337e62df37a46521d4918634e345a02e1ce397fbc816eab6d61a9cb6409c45 Loading...

	#6 Eval - d6ef9c21df1addbc6394b2c47fedf992	19 kB	2023-11-28 13:52	2024-08-20 17:36
Pretty Observations First Seen2023-11-28 13:52 Last Seen2024-08-20 17:36 Times Seen2 Hash d6ef9c21df1addbc6394b2c47fedf992 b24b7304163e09589d1333b0848b8c4b0764b497 75a9feb22ec27c8a5c45fb611da2b4bf99c18516a6f90ce39d1592edfece6fc0 Loading...

HTTP Transactions (44)

	URL	IP	Response	Size
	media.premierbetpartners.com/redirect.aspx?pid=40142&bid=3440&PremBet=wnjd63vf9p4cdvgt2lk8p9cu	13.107.246.53	307 Temporary Redirect	0 B
URL User Request GET HTTP/2 media.premierbetpartners.com/redirect.aspx?pid=40142&bid=3440&PremBet=wnjd63vf9p4cdvgt2lk8p9cu IP 13.107.246.53:443 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Certificate IssuerSectigo Limited Subjectpremierbetpartners.com FingerprintFC:33:7F:33:19:A1:7E:EC:24:15:1A:D6:ED:1A:C4:29:64:54:AF:78 ValidityTue, 08 Aug 2023 00:00:00 GMT - Thu, 08 Aug 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /redirect.aspx?pid=40142&bid=3440&PremBet=wnjd63vf9p4cdvgt2lk8p9cu HTTP/1.1 Host: media.premierbetpartners.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 307 Temporary Redirect cache-control: private,no-cache, no-store pragma: no-cache content-type: text/html location: https://www.premierbet.ml/register-short/?btag=657185_6596D59A5A2D4D74A6DF7E8164D6217D&PremBet=wnjd63vf9p4cdvgt2lk8p9cu&utm_medium=Netrefer p3p: CP="This is not a P3P policy! It is used to bypass IEs problematic handling of cookies" set-cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a40142%2c%22BID%22%3a3440%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1701790344029)%5c%2f%22%2c%22CookieTag%22%3a%22344040142451240919C20231251532%22%7d%5d; SameSite=None;; domain=.premierbetpartners.com; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; secure NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%225525907143%7c1%22%7d%5d; domain=.premierbetpartners.com; expires=Thu, 05-Dec-3022 15:32:24 GMT; path=/; secure; SameSite=Strict x-aspnet-version: 4.0.30319 request-context: appId=cid-v1:83ffbda4-9458-475e-90ec-4427cfb5c3b0 access-control-expose-headers: Request-Context x-azure-ref: 0h0JvZQAAAAAeIjS00fJJSIEHLS/qlNFhU1ZHMjBFREdFMDYwOAAyZDk5MzlkMy05NTUxLTQ2ZmYtOGEyNi01ZWZmY2FhMWQ5OGM= x-cache: CONFIG_NOCACHE date: Tue, 05 Dec 2023 15:32:23 GMT content-length: 0 X-Firefox-Spdy: h2

	www.premierbet.ml/plugins/menu-icons/css/extra.min.css?ver=0.13.2	104.17.224.118	403 Forbidden	65 kB
URL GET HTTP/2 www.premierbet.ml/plugins/menu-icons/css/extra.min.css?ver=0.13.2 IP 104.17.224.118:443 ASN #13335 CLOUDFLARENET Requested by https://www.premierbet.ml/403.html Certificate IssuerSectigo Limited Subject.premierbet.ml FingerprintF0:55:5C:4C:97:89:43:21:1C:74:23:0C:AE:DB:23:67:7A:44:B5:76 ValidityTue, 23 May 2023 00:00:00 GMT - Fri, 31 May 2024 23:59:59 GMT File type gzip compressed data, from Unix\012- data Size 65 kB (65295 bytes) Hash 07083ef8e4d6e9059477b1820c59555c 1b8d93956cc10225013f5b80755d243f8f43dcd9 5c3dce330710cc079030ade4539be72c92781c54f2aecff86218669b9b0914a9 HTTP Headers GET /plugins/menu-icons/css/extra.min.css?ver=0.13.2 HTTP/1.1 Host: www.premierbet.ml User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/*;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.premierbet.ml/403.html Cookie: B2BS=QB7ufrdaJBDg278TvTmUsljHSbEGmww5mYKsu1FiJG5LecKVbHKkaCJwFdecYR0qvCAXDwLXieQcwqy%2B8DjX7kCzKXnUPpAwfbfBJI0tvtQfpS9cMbd5mv2vFyCHYmFPA%2F%2B9xHjs0UzdbeK5AKh5jJt0I3UaTRKEtpTGxExDY3%2B1DKpKo2sLAXINoDL3XzQiWM8%3D Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 403 Forbidden date: Tue, 05 Dec 2023 15:32:24 GMT content-type: text/html vary: Accept-Encoding access-control-allow-credentials: true access-control-allow-origin: https://www.premierbet.ml server: cloudflare cf-ray: 830d5774eaa0569b-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	www.googletagmanager.com/gtm.js?id=GTM-5HJPKXJ	74.125.131.97	200 OK	78 kB
URL GET HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-5HJPKXJ IP 74.125.131.97:443 ASN #15169 GOOGLE Requested by https://www.premierbet.ml/403.html Certificate IssuerGoogle Trust Services LLC Subject.google-analytics.com FingerprintC1:58:7C:BF:5A:61:79:08:CB:C2:00:63:60:07:86:BD:EA:0A:45:8A ValidityMon, 20 Nov 2023 08:02:50 GMT - Mon, 12 Feb 2024 08:02:49 GMT File type ASCII text, with very long lines (10772) Size 78 kB (77493 bytes) Hash bcf4ed82b283f3bd075c74d9322fab35 0b2bf1c5ec202781e9e25536074fedfaeea9f1c1 429d1311a6917085eb602645e1c164dd345e94f5fb13b04f267077359af93d15 HTTP Headers `GET /gtm.js?id=GTM-5HJPKXJ HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.premierbet.ml/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Tue, 05 Dec 2023 15:32:24 GMT expires: Tue, 05 Dec 2023 15:32:24 GMT cache-control: private, max-age=900 last-modified: Tue, 05 Dec 2023 15:00:00 GMT strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 77493 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	www.premierbet.ml/favicon.ico	104.17.224.118	403 Forbidden	4.0 kB
URL GET HTTP/2 www.premierbet.ml/favicon.ico IP 104.17.224.118:443 ASN #13335 CLOUDFLARENET Requested by https://www.premierbet.ml/register-short/?btag=657185_6596D59A5A2D4D74A6DF7E8164D6217D&PremBet=wnjd63vf9p4cdvgt2lk8p9cu&utm_medium=Netrefer Certificate IssuerSectigo Limited Subject.premierbet.ml FingerprintF0:55:5C:4C:97:89:43:21:1C:74:23:0C:AE:DB:23:67:7A:44:B5:76 ValidityTue, 23 May 2023 00:00:00 GMT - Fri, 31 May 2024 23:59:59 GMT File type gzip compressed data, from Unix\012- data Size 4.0 kB (3979 bytes) Hash a729ee674ebf2884bbd97f18e8c33206 449d658a25d96d99c1877c743509f3c27573c166 4cdb7bf1222f1efed79d656438905944be8de84bc315fd2594476386986cbd52 HTTP Headers GET /favicon.ico HTTP/1.1 Host: www.premierbet.ml User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.premierbet.ml/register-short/?btag=657185_6596D59A5A2D4D74A6DF7E8164D6217D&PremBet=wnjd63vf9p4cdvgt2lk8p9cu&utm_medium=Netrefer Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 403 Forbidden date: Tue, 05 Dec 2023 15:32:24 GMT content-type: text/html vary: Accept-Encoding access-control-allow-credentials: true access-control-allow-origin: https://www.premierbet.ml server: cloudflare cf-ray: 830d577439de569b-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__fr.js	142.250.74.35	200 OK	192 kB
URL GET HTTP/3 www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__fr.js IP 142.250.74.35:443 ASN #15169 GOOGLE Requested by https://www.google.com/recaptcha/api2/webworker.js?hl=fr&v=-QbJqHfGOUB8nuVRLvzFLVed Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type ASCII text, with very long lines (688) Size 192 kB (191904 bytes) Hash 7f1f11a7a65829d5f0a4aa0837af16ee 6a3fa46b5a9e501bf438599c4916df405f8c03a2 ca276a7b63d1747f0404f5f9fa2fb2eb4a27a666543bcc5f9812df012b96ed0d HTTP Headers `GET /recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__fr.js HTTP/1.1 Host: www.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.premierbet.ml DNT: 1 Connection: keep-alive Referer: https://www.premierbet.ml/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK accept-ranges: bytes content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha" report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]} content-length: 191904 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Mon, 04 Dec 2023 22:27:46 GMT expires: Tue, 03 Dec 2024 22:27:46 GMT cache-control: public, max-age=31536000 last-modified: Tue, 14 Nov 2023 05:42:11 GMT content-type: text/javascript vary: Accept-Encoding age: 61478 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	www.googletagmanager.com/gtag/js?id=G-R5ZV40GY7F&l=dataLayer&cx=c	74.125.131.97	200 OK	82 kB
URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-R5ZV40GY7F&l=dataLayer&cx=c IP 74.125.131.97:443 ASN #15169 GOOGLE Requested by https://www.premierbet.ml/403.html Certificate IssuerGoogle Trust Services LLC Subject.google-analytics.com FingerprintC1:58:7C:BF:5A:61:79:08:CB:C2:00:63:60:07:86:BD:EA:0A:45:8A ValidityMon, 20 Nov 2023 08:02:50 GMT - Mon, 12 Feb 2024 08:02:49 GMT File type ASCII text, with very long lines (5955) Size 82 kB (82119 bytes) Hash a6b4849f74eeb6ea95472fdba90ab1ab 3139af3506e1403d1972e7b43594983e434e8e9e a3271335ac03c62f3da5458612971d4bbe31a46a7af50a52ee589f98000a1437 HTTP Headers `GET /gtag/js?id=G-R5ZV40GY7F&l=dataLayer&cx=c HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.premierbet.ml/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Tue, 05 Dec 2023 15:32:25 GMT expires: Tue, 05 Dec 2023 15:32:25 GMT cache-control: private, max-age=900 strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 82119 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	cdn.iconvert.network/code/0976eafe-d4a1-4f98-b0b0-cfd970fc5ab0.js	143.204.55.25	200 OK	869 B
URL GET HTTP/2 cdn.iconvert.network/code/0976eafe-d4a1-4f98-b0b0-cfd970fc5ab0.js IP 143.204.55.25:443 ASN #16509 AMAZON-02 Requested by https://www.premierbet.ml/403.html Certificate IssuerAmazon Subjectcdn.iconvert.network FingerprintAA:D0:8A:82:69:0A:76:5B:3D:CA:E4:86:8D:55:C4:06:C8:4F:DD:32 ValidityWed, 29 Nov 2023 00:00:00 GMT - Fri, 27 Dec 2024 23:59:59 GMT File type ASCII text, with very long lines (368) Size 869 B (869 bytes) Hash f9e7db8ff58b5cf4290a7f96ca802dc3 bf517c6fae29dee37c92fd381ac0baa46e620f5d e411a5c601fc92963091251364949540467da67b90f62e4ae1185f4e47261c17 HTTP Headers `GET /code/0976eafe-d4a1-4f98-b0b0-cfd970fc5ab0.js HTTP/1.1 Host: cdn.iconvert.network User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.premierbet.ml/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/javascript content-length: 869 last-modified: Fri, 11 Aug 2023 12:38:36 GMT x-amz-server-side-encryption: AES256 accept-ranges: bytes server: AmazonS3 date: Tue, 05 Dec 2023 05:12:56 GMT cache-control: max-age=172800 etag: "f9e7db8ff58b5cf4290a7f96ca802dc3" x-cache: Hit from cloudfront via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 alt-svc: h3=":443"; ma=86400 x-amz-cf-id: LK0hAK64tZYK50867sv3lAXHdL1rg8m7_OYDpEEwGuBc_VA9FNI7XA== age: 44319 vary: Accept-Encoding, Origin X-Firefox-Spdy: h2

	ocsp.r2m03.amazontrust.com/	143.204.53.97		471 B
URL ocsp.r2m03.amazontrust.com/ IP 143.204.53.97:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 94be2cefefe0fd63e1ece4fd1c6fe319 a1cc5106b76f165c36eff5430b4bfb2eddbdad5c 0062b7066e7004a5e3ab24c8d0ee3a2435a1b94e535ad62249194ef2edbc1552 HTTP Headers `POST / HTTP/1.1 Host: ocsp.r2m03.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Cache-Control: max-age=7200 Date: Tue, 05 Dec 2023 15:32:25 GMT Server: ECAcc (amb/6AD5) X-Cache: Miss from cloudfront Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: bsemVb53Y6sfQfXsYc27_3bSuteubwAA0jlVAMMYOq5In-UoRFpJfw==`

	cdn.iconvert.network/conf/0976eafe-d4a1-4f98-b0b0-cfd970fc5ab0.json	143.204.55.25	200 OK	29 kB
URL GET HTTP/2 cdn.iconvert.network/conf/0976eafe-d4a1-4f98-b0b0-cfd970fc5ab0.json IP 143.204.55.25:443 ASN #16509 AMAZON-02 Requested by https://www.premierbet.ml/403.html Certificate IssuerAmazon Subjectcdn.iconvert.network FingerprintAA:D0:8A:82:69:0A:76:5B:3D:CA:E4:86:8D:55:C4:06:C8:4F:DD:32 ValidityWed, 29 Nov 2023 00:00:00 GMT - Fri, 27 Dec 2024 23:59:59 GMT File type JSON data\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (65536), with no line terminators Size 29 kB (28899 bytes) Hash 9f297f5957a62a99c3db1017f3fe2e30 a47096a1c748d4bb3984f6a0d322e4ee537a4a30 4f7e6c5bcdfa35acd91135905b8cb21ff2e983422f1843cf5f8e3a4ccf228d86 HTTP Headers `GET /conf/0976eafe-d4a1-4f98-b0b0-cfd970fc5ab0.json HTTP/1.1 Host: cdn.iconvert.network User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.premierbet.ml/ Origin: https://www.premierbet.ml DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/json access-control-allow-origin: * access-control-allow-methods: POST, GET, HEAD, PUT access-control-expose-headers: ETag access-control-max-age: 3000 last-modified: Fri, 11 Aug 2023 12:38:37 GMT x-amz-server-side-encryption: AES256 server: AmazonS3 content-encoding: br date: Tue, 05 Dec 2023 14:13:20 GMT cache-control: max-age=7200 etag: W/"9f297f5957a62a99c3db1017f3fe2e30" vary: Accept-Encoding,Origin x-cache: Hit from cloudfront via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 alt-svc: h3=":443"; ma=86400 x-amz-cf-id: RvuScm1uGYrMlCVvBjgnw2CTBfdiTcBJt-khspa1tZkFRTRcSplugA== age: 4746 X-Firefox-Spdy: h2

	www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__fr.js	142.250.74.35	200 OK	192 kB
URL GET HTTP/3 www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__fr.js IP 142.250.74.35:443 ASN #15169 GOOGLE Requested by https://www.google.com/recaptcha/api2/webworker.js?hl=fr&v=-QbJqHfGOUB8nuVRLvzFLVed Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type ASCII text, with very long lines (688) Size 192 kB (191904 bytes) Hash 7f1f11a7a65829d5f0a4aa0837af16ee 6a3fa46b5a9e501bf438599c4916df405f8c03a2 ca276a7b63d1747f0404f5f9fa2fb2eb4a27a666543bcc5f9812df012b96ed0d HTTP Headers `GET /recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__fr.js HTTP/1.1 Host: www.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.google.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK accept-ranges: bytes content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha" report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]} content-length: 191904 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Mon, 04 Dec 2023 22:27:46 GMT expires: Tue, 03 Dec 2024 22:27:46 GMT cache-control: public, max-age=31536000 last-modified: Tue, 14 Nov 2023 05:42:11 GMT content-type: text/javascript vary: Accept-Encoding age: 61479 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	geo-lookup.iconvert.network/?callback=_jsonp_0	54.230.111.42	200 OK	23 B
URL GET HTTP/2 geo-lookup.iconvert.network/?callback=_jsonp_0 IP 54.230.111.42:443 ASN #16509 AMAZON-02 Requested by https://www.premierbet.ml/403.html Certificate IssuerAmazon Subjectgeo-lookup.iconvert.network Fingerprint19:2B:F1:ED:ED:F8:24:B8:CC:25:26:04:05:B4:29:4F:39:CF:AA:AA ValidityWed, 12 Jul 2023 00:00:00 GMT - Fri, 09 Aug 2024 23:59:59 GMT File type ASCII text, with no line terminators Size 23 B (23 bytes) Hash 77a2b27581b0e6f8e1866d12a9fb3460 0d6912f1aabf2f9f191883767a565846b6b23387 892b6da823563cbd0865b33fd6f805e495769f555aa11679fa72c82e56abe9fd HTTP Headers `GET /?callback=_jsonp_0 HTTP/1.1 Host: geo-lookup.iconvert.network User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.premierbet.ml/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK content-type: application/javascript content-length: 23 x-amz-bucket-region: us-east-1 date: Tue, 05 Dec 2023 15:32:07 GMT server: AmazonS3 x-cache: Hit from cloudfront via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: N2sQhAHRAmw-gvijeJuQkqm9Vqf6v08GhLy1EzbLHPWpPebQBQX1eg== age: 17 X-Firefox-Spdy: h2`

	fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2	142.250.74.163	200 OK	15 kB
URL GET HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 IP 142.250.74.163:443 ASN #15169 GOOGLE Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeAB-wjAAAAAAIfxtjDHx2a1kQg78rCM5i5Tina&co=aHR0cHM6Ly93d3cucHJlbWllcmJldC5tbDo0NDM.&hl=fr&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=h2ra5uw40m4h Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data Size 15 kB (15344 bytes) Hash 5d4aeb4e5f5ef754e307d7ffaef688bd 06db651cdf354c64a7383ea9c77024ef4fb4cef8 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc HTTP Headers GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.google.com DNT: 1 Connection: keep-alive Referer: https://www.google.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 15344 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Mon, 04 Dec 2023 20:34:35 GMT expires: Tue, 03 Dec 2024 20:34:35 GMT cache-control: public, max-age=31536000 last-modified: Mon, 16 Oct 2017 17:32:55 GMT content-type: font/woff2 age: 68271 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2	142.250.74.163	200 OK	16 kB
URL GET HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP 142.250.74.163:443 ASN #15169 GOOGLE Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeAB-wjAAAAAAIfxtjDHx2a1kQg78rCM5i5Tina&co=aHR0cHM6Ly93d3cucHJlbWllcmJldC5tbDo0NDM.&hl=fr&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=h2ra5uw40m4h Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data Size 16 kB (15552 bytes) Hash 285467176f7fe6bb6a9c6873b3dad2cc ea04e4ff5142ddd69307c183def721a160e0a64e 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7 HTTP Headers GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.google.com DNT: 1 Connection: keep-alive Referer: https://www.google.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 15552 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Mon, 04 Dec 2023 22:12:54 GMT expires: Tue, 03 Dec 2024 22:12:54 GMT cache-control: public, max-age=31536000 last-modified: Mon, 16 Oct 2017 17:33:02 GMT content-type: font/woff2 age: 62372 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__fr.js	142.250.74.35	200 OK	192 kB
URL GET HTTP/3 www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__fr.js IP 142.250.74.35:443 ASN #15169 GOOGLE Requested by https://www.google.com/recaptcha/api2/webworker.js?hl=fr&v=-QbJqHfGOUB8nuVRLvzFLVed Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type ASCII text, with very long lines (688) Size 192 kB (191904 bytes) Hash 7f1f11a7a65829d5f0a4aa0837af16ee 6a3fa46b5a9e501bf438599c4916df405f8c03a2 ca276a7b63d1747f0404f5f9fa2fb2eb4a27a666543bcc5f9812df012b96ed0d HTTP Headers `GET /recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__fr.js HTTP/1.1 Host: www.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.google.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK accept-ranges: bytes content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha" report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]} content-length: 191904 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Mon, 04 Dec 2023 22:27:46 GMT expires: Tue, 03 Dec 2024 22:27:46 GMT cache-control: public, max-age=31536000 last-modified: Tue, 14 Nov 2023 05:42:11 GMT content-type: text/javascript vary: Accept-Encoding age: 61480 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	www.gstatic.com/recaptcha/api2/logo_48.png	142.250.74.35	200 OK	2.2 kB
URL GET HTTP/3 www.gstatic.com/recaptcha/api2/logo_48.png IP 142.250.74.35:443 ASN #15169 GOOGLE Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeAB-wjAAAAAAIfxtjDHx2a1kQg78rCM5i5Tina&co=aHR0cHM6Ly93d3cucHJlbWllcmJldC5tbDo0NDM.&hl=fr&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=h2ra5uw40m4h Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data Size 2.2 kB (2228 bytes) Hash ef9941290c50cd3866e2ba6b793f010d 4736508c795667dcea21f8d864233031223b7832 1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a HTTP Headers GET /recaptcha/api2/logo_48.png HTTP/1.1 Host: www.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/styles__ltr.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha" report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]} content-length: 2228 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 29 Nov 2023 21:37:43 GMT expires: Wed, 06 Dec 2023 21:37:43 GMT cache-control: public, max-age=604800 age: 496483 last-modified: Tue, 03 Mar 2020 20:15:00 GMT content-type: image/png alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	sdk.optimove.net/websdk/?tenant_id=952	107.154.132.121	200 OK	25 kB
URL GET HTTP/2 sdk.optimove.net/websdk/?tenant_id=952 IP 107.154.132.121:443 ASN #19551 INCAPSULA Requested by https://www.premierbet.ml/403.html Certificate IssuerSectigo Limited Subject.optimove.net Fingerprint03:F8:06:C9:9E:41:21:74:48:A0:9B:BF:D1:8F:EF:4E:87:7C:C4:9C ValidityThu, 05 Jan 2023 00:00:00 GMT - Mon, 05 Feb 2024 23:59:59 GMT File type ASCII text, with very long lines (65536), with no line terminators Size 25 kB (24760 bytes) Hash 4a0a8089b2144fe09a5636d9d231c05a fa4f0fa61d1bc087158dc87fbc6fdccc58bac4d1 57a52cd63ec10c691ef33f9c6fc1fb264685fc6e5410e36bb8b5fe2a0b22eaff HTTP Headers `GET /websdk/?tenant_id=952 HTTP/1.1 Host: sdk.optimove.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.premierbet.ml/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK etag: W/"25e08-vNkhU0xzKF3/0/nTniGKyiTstxU" content-type: text/javascript; charset=utf-8 content-length: 24760 content-encoding: gzip cache-control: max-age=1462, public, no-transform expires: Tue, 05 Dec 2023 15:56:47 GMT date: Tue, 05 Dec 2023 15:32:25 GMT x-incap-sess-cookie-hdr: yqTtC/KryhmCFP5B9oEBColCb2UAAAAALtPiFRH9uPj9MEHD4N76IA== set-cookie: visid_incap_2859791=oECTW8fzTFWJKJNGKwKKyIlCb2UAAAAAQUIPAAAAAACKKwZd+WzCsSNEzDr2gxMx; expires=Wed, 04 Dec 2024 02:55:00 GMT; HttpOnly; path=/; Domain=.optimove.net incap_ses_721_2859791=LxdSJ4II526CFP5B9oEBColCb2UAAAAA7IEEn7syJD++pNAGfYp96Q==; path=/; Domain=.optimove.net x-cdn: Imperva x-iinfo: 3-4658469-4633891 2CNN RT(1701790345973 19) q(0 0 0 0) r(0 0) X-Firefox-Spdy: h2

	ocsp.r2m03.amazontrust.com/	143.204.53.97		471 B
URL ocsp.r2m03.amazontrust.com/ IP 143.204.53.97:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 09ba751e1cc7e31be577a4a3fdef433a c63a6af0a80016949721e7e55f16706ccba63377 93308e3afed277a13596fb682ec14423ec2b107113685053d0990fa93a62af02 HTTP Headers `POST / HTTP/1.1 Host: ocsp.r2m03.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=7200 Date: Tue, 05 Dec 2023 15:32:26 GMT Last-Modified: Tue, 05 Dec 2023 14:24:48 GMT Server: ECAcc (ska/F776) X-Cache: Miss from cloudfront Via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: vVez48K-_GwNr8oeaCYMmrZOVgWafsrRYhkrEb25DXys1hQlMgP2gQ== Age: 4058`

	rum-collector-2.pingdom.net/img/beacon.gif?id=5b463fc36a549f0016000157&sAW=1280&sAH=1024&bIW=1280&bIH=1024&pD=24&dPR=1&or=landscape-primary&nT=0&rC=0&nS=0&cS=4&cE=4&dLE=4&dLS=4&fS=4&hS=4&rE=-1&rS=-1&reS=15&resS=110&resE=113&uEE=-1&uES=-1&dL=121&dI=352&dCLES=353&dCLEE=353&dC=1783&lES=1783&lEE=1784&s=nt&title=404&path=https%3A%2F%2Fwww.premierbet.ml%2F403.html&ref=https%3A%2F%2Fwww.premierbet.ml%2Fregister-short%2F%3Fbtag%3D657185_6596D59A5A2D4D74A6DF7E8164D6217D%26PremBet%3Dwnjd63vf9p4cdvgt2lk8p9cu%26utm_medium%3DNetrefer&sId=q1ivne39&sST=1701790352&sIS=1&rV=0&v=1.4.1	52.17.83.255	200 OK	0 B
URL GET HTTP/1.1 rum-collector-2.pingdom.net/img/beacon.gif?id=5b463fc36a549f0016000157&sAW=1280&sAH=1024&bIW=1280&bIH=1024&pD=24&dPR=1&or=landscape-primary&nT=0&rC=0&nS=0&cS=4&cE=4&dLE=4&dLS=4&fS=4&hS=4&rE=-1&rS=-1&reS=15&resS=110&resE=113&uEE=-1&uES=-1&dL=121&dI=352&dCLES=353&dCLEE=353&dC=1783&lES=1783&lEE=1784&s=nt&title=404&path=https%3A%2F%2Fwww.premierbet.ml%2F403.html&ref=https%3A%2F%2Fwww.premierbet.ml%2Fregister-short%2F%3Fbtag%3D657185_6596D59A5A2D4D74A6DF7E8164D6217D%26PremBet%3Dwnjd63vf9p4cdvgt2lk8p9cu%26utm_medium%3DNetrefer&sId=q1ivne39&sST=1701790352&sIS=1&rV=0&v=1.4.1 IP 52.17.83.255:443 ASN #16509 AMAZON-02 Requested by https://www.premierbet.ml/403.html Certificate IssuerAmazon Subject.pingdom.net FingerprintFC:B3:2A:2E:A3:35:95:66:4B:D1:52:41:46:D6:C6:FB:73:39:D1:E3 ValidityMon, 06 Nov 2023 00:00:00 GMT - Tue, 03 Dec 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /img/beacon.gif?id=5b463fc36a549f0016000157&sAW=1280&sAH=1024&bIW=1280&bIH=1024&pD=24&dPR=1&or=landscape-primary&nT=0&rC=0&nS=0&cS=4&cE=4&dLE=4&dLS=4&fS=4&hS=4&rE=-1&rS=-1&reS=15&resS=110&resE=113&uEE=-1&uES=-1&dL=121&dI=352&dCLES=353&dCLEE=353&dC=1783&lES=1783&lEE=1784&s=nt&title=404&path=https%3A%2F%2Fwww.premierbet.ml%2F403.html&ref=https%3A%2F%2Fwww.premierbet.ml%2Fregister-short%2F%3Fbtag%3D657185_6596D59A5A2D4D74A6DF7E8164D6217D%26PremBet%3Dwnjd63vf9p4cdvgt2lk8p9cu%26utm_medium%3DNetrefer&sId=q1ivne39&sST=1701790352&sIS=1&rV=0&v=1.4.1 HTTP/1.1 Host: rum-collector-2.pingdom.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.premierbet.ml DNT: 1 Connection: keep-alive Referer: https://www.premierbet.ml/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Access-Control-Allow-Origin: * Cache-Control: no-cache, no-store, must-revalidate Date: Tue, 05 Dec 2023 15:32:26 GMT Expires: 0 Pragma: no-cache Content-Length: 0 Connection: keep-alive`

	sdkuaservice.optimove.net/	34.102.240.186	200 OK	361 B
URL GET HTTP/2 sdkuaservice.optimove.net/ IP 34.102.240.186:443 ASN #15169 GOOGLE Requested by https://www.premierbet.ml/403.html Certificate IssuerSectigo Limited Subject.optimove.net Fingerprint03:F8:06:C9:9E:41:21:74:48:A0:9B:BF:D1:8F:EF:4E:87:7C:C4:9C ValidityThu, 05 Jan 2023 00:00:00 GMT - Mon, 05 Feb 2024 23:59:59 GMT File type JSON data\012- , ASCII text Size 361 B (361 bytes) Hash 3083d0e97d9681d8731856bcc2d38dc0 0d962f0c4fd88ef4e6613e5ea47e5998f13ac636 eb902e82d3845ac4d70e6edd86509b810996391fce4434547483a457b34f0e1f HTTP Headers `GET / HTTP/1.1 Host: sdkuaservice.optimove.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/x-www-form-urlencoded;charset=utf-8 Origin: https://www.premierbet.ml DNT: 1 Connection: keep-alive Referer: https://www.premierbet.ml/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK x-powered-by: Express access-control-allow-origin: * content-type: application/json date: Tue, 05 Dec 2023 15:32:26 GMT content-length: 361 via: 1.1 google alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	stream-952.optimove.net/	107.154.132.121	200 OK	0 B
URL POST HTTP/2 stream-952.optimove.net/ IP 107.154.132.121:443 ASN #19551 INCAPSULA Requested by https://www.premierbet.ml/403.html Certificate IssuerSectigo Limited Subject.optimove.net Fingerprint03:F8:06:C9:9E:41:21:74:48:A0:9B:BF:D1:8F:EF:4E:87:7C:C4:9C ValidityThu, 05 Jan 2023 00:00:00 GMT - Mon, 05 Feb 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS / HTTP/1.1 Host: stream-952.optimove.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: content-type,x-request-id Referer: https://www.premierbet.ml/ Origin: https://www.premierbet.ml DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 204 No Content x-powered-by: Express access-control-allow-origin: * access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE vary: Access-Control-Request-Headers access-control-allow-headers: content-type,x-request-id access-control-max-age: 86400 content-length: 0 date: Tue, 05 Dec 2023 15:32:26 GMT via: 1.1 google alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 x-incap-sess-cookie-hdr: SLkgVHP5iH2XFP5B9oEBCopCb2UAAAAAH4pwXa2q9cnBpYLvgJtZCA== set-cookie: visid_incap_2816538=dteYU7yQTbKsnT3UxUD7gopCb2UAAAAAQUIPAAAAAACJUOnXtv7E8swmT4tJSn5u; expires=Wed, 04 Dec 2024 02:37:52 GMT; HttpOnly; path=/; Domain=.optimove.net incap_ses_721_2816538=oN8NBnl9aAeXFP5B9oEBCopCb2UAAAAAsalaD9YiiULS2r9GX/cm2w==; path=/; Domain=.optimove.net x-cdn: Imperva x-iinfo: 13-9263748-9263753 NNNN CT(0 5 0) RT(1701790346270 20) q(0 0 0 0) r(1 1) U6 X-Firefox-Spdy: h2

	stream-952.optimove.net/	107.154.132.121	200 OK	66 B
URL POST HTTP/2 stream-952.optimove.net/ IP 107.154.132.121:443 ASN #19551 INCAPSULA Requested by https://www.premierbet.ml/403.html Certificate IssuerSectigo Limited Subject.optimove.net Fingerprint03:F8:06:C9:9E:41:21:74:48:A0:9B:BF:D1:8F:EF:4E:87:7C:C4:9C ValidityThu, 05 Jan 2023 00:00:00 GMT - Mon, 05 Feb 2024 23:59:59 GMT File type JSON data\012- , ASCII text, with no line terminators Size 66 B (66 bytes) Hash 14618b6d52c3eb1d2d8553c4f8ed1440 e51550f0972cd2967a9124170ff5e79bd1162910 4c013097833e6c24b5de59a8e1a181aea1e75252834675557c3511730c2d46a6 HTTP Headers POST / HTTP/1.1 Host: stream-952.optimove.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.premierbet.ml/ Content-Type: application/json X-Request-ID: b4bb2363-71fb-4d1f-912a-8982df5d0fc7 Content-Length: 560 Origin: https://www.premierbet.ml DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK x-powered-by: Express access-control-allow-origin: content-type: application/json; charset=utf-8 etag: W/"31-5RVQ8Jcs0pZ6kSQXD/Xnm9EWKRA" date: Tue, 05 Dec 2023 15:32:26 GMT via: 1.1 google alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 x-incap-sess-cookie-hdr: VEpwQpDp5yqXFP5B9oEBCopCb2UAAAAAv+JKiY7S6hQqrpz38GKSnQ== set-cookie: visid_incap_2816538=dteYU7yQTbKsnT3UxUD7gopCb2UAAAAAQUIPAAAAAACJUOnXtv7E8swmT4tJSn5u; expires=Wed, 04 Dec 2024 02:37:52 GMT; HttpOnly; path=/; Domain=.optimove.net incap_ses_721_2816538=34BdfSLxAgiXFP5B9oEBCopCb2UAAAAADKm7Tr8BdRp0CW9sfKA5IQ==; path=/; Domain=.optimove.net x-cdn: Imperva content-encoding: gzip x-iinfo: 13-9263748-9263753 PNYN RT(1701790346270 68) q(0 0 0 0) r(0 0) U6 X-Firefox-Spdy: h2

	www.premierbet.ml/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.7.4	104.17.224.118	403 Forbidden	887 B
URL GET HTTP/2 www.premierbet.ml/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.7.4 IP 104.17.224.118:443 ASN #13335 CLOUDFLARENET Requested by https://www.premierbet.ml/403.html Certificate IssuerSectigo Limited Subject.premierbet.ml FingerprintF0:55:5C:4C:97:89:43:21:1C:74:23:0C:AE:DB:23:67:7A:44:B5:76 ValidityTue, 23 May 2023 00:00:00 GMT - Fri, 31 May 2024 23:59:59 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (950), with no line terminators Size 887 B (887 bytes) Hash 7dc0cf03ac59b19ce75915c4970842ac 717b6e6d5754248d59c90682079cf1ee6fee8cb3 3c9c723e7e8bde4173249da2da6767727fc3c72985e04df2a6d7eab38edeb514 HTTP Headers GET /plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.7.4 HTTP/1.1 Host: www.premierbet.ml User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.premierbet.ml/403.html Cookie: B2BS=QB7ufrdaJBDg278TvTmUsljHSbEGmww5mYKsu1FiJG5LecKVbHKkaCJwFdecYR0qvCAXDwLXieQcwqy%2B8DjX7kCzKXnUPpAwfbfBJI0tvtQfpS9cMbd5mv2vFyCHYmFPA%2F%2B9xHjs0UzdbeK5AKh5jJt0I3UaTRKEtpTGxExDY3%2B1DKpKo2sLAXINoDL3XzQiWM8%3D Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 403 Forbidden date: Tue, 05 Dec 2023 15:32:24 GMT content-type: text/html vary: Accept-Encoding access-control-allow-credentials: true access-control-allow-origin: https://www.premierbet.ml server: cloudflare cf-ray: 830d57752ae6569b-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	www.premierbet.ml/plugins/revslider/public/assets/css/settings.css?ver=5.4.7.4	104.17.224.118	403 Forbidden	887 B
URL GET HTTP/2 www.premierbet.ml/plugins/revslider/public/assets/css/settings.css?ver=5.4.7.4 IP 104.17.224.118:443 ASN #13335 CLOUDFLARENET Requested by https://www.premierbet.ml/403.html Certificate IssuerSectigo Limited Subject.premierbet.ml FingerprintF0:55:5C:4C:97:89:43:21:1C:74:23:0C:AE:DB:23:67:7A:44:B5:76 ValidityTue, 23 May 2023 00:00:00 GMT - Fri, 31 May 2024 23:59:59 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (950), with no line terminators Size 887 B (887 bytes) Hash 7dc0cf03ac59b19ce75915c4970842ac 717b6e6d5754248d59c90682079cf1ee6fee8cb3 3c9c723e7e8bde4173249da2da6767727fc3c72985e04df2a6d7eab38edeb514 HTTP Headers GET /plugins/revslider/public/assets/css/settings.css?ver=5.4.7.4 HTTP/1.1 Host: www.premierbet.ml User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/*;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.premierbet.ml/403.html Cookie: B2BS=QB7ufrdaJBDg278TvTmUsljHSbEGmww5mYKsu1FiJG5LecKVbHKkaCJwFdecYR0qvCAXDwLXieQcwqy%2B8DjX7kCzKXnUPpAwfbfBJI0tvtQfpS9cMbd5mv2vFyCHYmFPA%2F%2B9xHjs0UzdbeK5AKh5jJt0I3UaTRKEtpTGxExDY3%2B1DKpKo2sLAXINoDL3XzQiWM8%3D Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 403 Forbidden date: Tue, 05 Dec 2023 15:32:24 GMT content-type: text/html vary: Accept-Encoding access-control-allow-credentials: true access-control-allow-origin: https://www.premierbet.ml server: cloudflare cf-ray: 830d5774faab569b-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	www.premierbet.ml/content/premierbet-assets/premierbet-v1/green/1.1.28/btobet-visitor.min.css	104.17.224.118	403 Forbidden	887 B
URL GET HTTP/2 www.premierbet.ml/content/premierbet-assets/premierbet-v1/green/1.1.28/btobet-visitor.min.css IP 104.17.224.118:443 ASN #13335 CLOUDFLARENET Requested by https://www.premierbet.ml/403.html Certificate IssuerSectigo Limited Subject.premierbet.ml FingerprintF0:55:5C:4C:97:89:43:21:1C:74:23:0C:AE:DB:23:67:7A:44:B5:76 ValidityTue, 23 May 2023 00:00:00 GMT - Fri, 31 May 2024 23:59:59 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (950), with no line terminators Size 887 B (887 bytes) Hash 7dc0cf03ac59b19ce75915c4970842ac 717b6e6d5754248d59c90682079cf1ee6fee8cb3 3c9c723e7e8bde4173249da2da6767727fc3c72985e04df2a6d7eab38edeb514 HTTP Headers GET /content/premierbet-assets/premierbet-v1/green/1.1.28/btobet-visitor.min.css HTTP/1.1 Host: www.premierbet.ml User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/*;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.premierbet.ml/403.html Cookie: B2BS=QB7ufrdaJBDg278TvTmUsljHSbEGmww5mYKsu1FiJG5LecKVbHKkaCJwFdecYR0qvCAXDwLXieQcwqy%2B8DjX7kCzKXnUPpAwfbfBJI0tvtQfpS9cMbd5mv2vFyCHYmFPA%2F%2B9xHjs0UzdbeK5AKh5jJt0I3UaTRKEtpTGxExDY3%2B1DKpKo2sLAXINoDL3XzQiWM8%3D Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 403 Forbidden date: Tue, 05 Dec 2023 15:32:24 GMT content-type: text/html vary: Accept-Encoding access-control-allow-credentials: true access-control-allow-origin: https://www.premierbet.ml server: cloudflare cf-ray: 830d57750aba569b-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/styles__ltr.css	142.250.74.35	200 OK	56 kB
URL GET HTTP/3 www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/styles__ltr.css IP 142.250.74.35:443 ASN #15169 GOOGLE Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeAB-wjAAAAAAIfxtjDHx2a1kQg78rCM5i5Tina&co=aHR0cHM6Ly93d3cucHJlbWllcmJldC5tbDo0NDM.&hl=fr&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=h2ra5uw40m4h Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type ASCII text, with very long lines (56398), with no line terminators Size 56 kB (56398 bytes) Hash eb4bc511f79f7a1573b45f5775b3a99b d910fb51ad7316aa54f055079374574698e74b35 7859a62e04b0acb06516eb12454de6673883ecfaeaed6c254659bca7cd59c050 HTTP Headers `GET /recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/styles__ltr.css HTTP/1.1 Host: www.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/*;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.google.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK accept-ranges: bytes content-encoding: gzip content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha" report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]} content-length: 24606 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Tue, 05 Dec 2023 13:33:22 GMT expires: Wed, 04 Dec 2024 13:33:22 GMT cache-control: public, max-age=31536000 last-modified: Tue, 14 Nov 2023 05:42:11 GMT content-type: text/css vary: Accept-Encoding age: 7143 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	realtime-952.optimove.net/reportEvent	107.154.132.121	204 No Content	0 B
URL OPTIONS HTTP/2 realtime-952.optimove.net/reportEvent IP 107.154.132.121:443 ASN #19551 INCAPSULA Requested by https://www.premierbet.ml/403.html Certificate IssuerSectigo Limited Subject.optimove.net Fingerprint03:F8:06:C9:9E:41:21:74:48:A0:9B:BF:D1:8F:EF:4E:87:7C:C4:9C ValidityThu, 05 Jan 2023 00:00:00 GMT - Mon, 05 Feb 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /reportEvent HTTP/1.1 Host: realtime-952.optimove.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: content-type,x-request-id Referer: https://www.premierbet.ml/ Origin: https://www.premierbet.ml DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 204 No Content x-powered-by: Express access-control-allow-origin: * access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE vary: Access-Control-Request-Headers access-control-allow-headers: content-type,x-request-id access-control-max-age: 86400 content-length: 0 date: Tue, 05 Dec 2023 15:32:26 GMT via: 1.1 google alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 x-incap-sess-cookie-hdr: puVQETiwgSbTFP5B9oEBCopCb2UAAAAAPAtKbbVNqOvloDlXT2hspg== set-cookie: visid_incap_2819049=gr1UPChFQ5iWxeRfA5wZgopCb2UAAAAAQUIPAAAAAACHuY8pOx4e+c3tVCjE90i5; expires=Wed, 04 Dec 2024 02:37:52 GMT; HttpOnly; path=/; Domain=.optimove.net incap_ses_721_2819049=XTE4D6N6VS/TFP5B9oEBCopCb2UAAAAAwPhnbDFiFowNbxZTfJ2pqw==; path=/; Domain=.optimove.net x-cdn: Imperva x-iinfo: 13-9263748-9263774 NNNN CT(1 3 0) RT(1701790346270 336) q(0 0 0 11) r(0 0) U6 X-Firefox-Spdy: h2

	static.app.delivery/sdks/web/optimove-web-bundle.js	104.26.8.144	200 OK	129 kB
URL GET HTTP/2 static.app.delivery/sdks/web/optimove-web-bundle.js IP 104.26.8.144:443 ASN #13335 CLOUDFLARENET Requested by https://www.premierbet.ml/403.html Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint6D:44:E4:67:B2:46:78:2D:8D:47:B7:9F:89:6D:0C:07:FD:43:78:87 ValiditySat, 06 May 2023 00:00:00 GMT - Sun, 05 May 2024 23:59:59 GMT File type Size 129 kB (129179 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /sdks/web/optimove-web-bundle.js HTTP/1.1 Host: static.app.delivery User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.premierbet.ml/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Tue, 05 Dec 2023 15:32:26 GMT content-type: application/javascript last-modified: Mon, 04 Dec 2023 17:17:56 GMT vary: Accept-Encoding etag: W/"656e09c4-1f89b" expires: Tue, 05 Dec 2023 15:41:33 GMT cache-control: max-age=3600 x-content-type-options: nosniff strict-transport-security: max-age=15552000; includeSubDomains cf-cache-status: HIT age: 3053 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6Lz70dMhdouWJLfZX1XYFkFardymJb5JMjqp6GdCRMeVJh9ySq73JZtBsnnJ7rtUbu47WOGxs6p5jbmHeGuNoyrGob1WQyxbp8DtVHaYsGsuNJ0eq0XiSke%2F%2BCfpChUlf4aqOB0%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 830d5780fc3cb4f1-OSL content-encoding: br X-Firefox-Spdy: h2

	www.premierbet.ml/plugins/btobet-casino-v1.3/assets/1.06.26.2/btobet-casino.min.css?ver=1.06.26.2	104.17.224.118	403 Forbidden	887 B
URL GET HTTP/2 www.premierbet.ml/plugins/btobet-casino-v1.3/assets/1.06.26.2/btobet-casino.min.css?ver=1.06.26.2 IP 104.17.224.118:443 ASN #13335 CLOUDFLARENET Requested by https://www.premierbet.ml/403.html Certificate IssuerSectigo Limited Subject.premierbet.ml FingerprintF0:55:5C:4C:97:89:43:21:1C:74:23:0C:AE:DB:23:67:7A:44:B5:76 ValidityTue, 23 May 2023 00:00:00 GMT - Fri, 31 May 2024 23:59:59 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (950), with no line terminators Size 887 B (887 bytes) Hash 7dc0cf03ac59b19ce75915c4970842ac 717b6e6d5754248d59c90682079cf1ee6fee8cb3 3c9c723e7e8bde4173249da2da6767727fc3c72985e04df2a6d7eab38edeb514 HTTP Headers GET /plugins/btobet-casino-v1.3/assets/1.06.26.2/btobet-casino.min.css?ver=1.06.26.2 HTTP/1.1 Host: www.premierbet.ml User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/*;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.premierbet.ml/403.html Cookie: B2BS=QB7ufrdaJBDg278TvTmUsljHSbEGmww5mYKsu1FiJG5LecKVbHKkaCJwFdecYR0qvCAXDwLXieQcwqy%2B8DjX7kCzKXnUPpAwfbfBJI0tvtQfpS9cMbd5mv2vFyCHYmFPA%2F%2B9xHjs0UzdbeK5AKh5jJt0I3UaTRKEtpTGxExDY3%2B1DKpKo2sLAXINoDL3XzQiWM8%3D Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 403 Forbidden date: Tue, 05 Dec 2023 15:32:24 GMT content-type: text/html vary: Accept-Encoding access-control-allow-credentials: true access-control-allow-origin: https://www.premierbet.ml server: cloudflare cf-ray: 830d5774faa3569b-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	www.premierbet.ml/content/premierbet-assets/premierbet-v1/green/1.1.28/btobet.min.js	104.17.224.118	403 Forbidden	887 B
URL GET HTTP/2 www.premierbet.ml/content/premierbet-assets/premierbet-v1/green/1.1.28/btobet.min.js IP 104.17.224.118:443 ASN #13335 CLOUDFLARENET Requested by https://www.premierbet.ml/403.html Certificate IssuerSectigo Limited Subject.premierbet.ml FingerprintF0:55:5C:4C:97:89:43:21:1C:74:23:0C:AE:DB:23:67:7A:44:B5:76 ValidityTue, 23 May 2023 00:00:00 GMT - Fri, 31 May 2024 23:59:59 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (950), with no line terminators Size 887 B (887 bytes) Hash 7dc0cf03ac59b19ce75915c4970842ac 717b6e6d5754248d59c90682079cf1ee6fee8cb3 3c9c723e7e8bde4173249da2da6767727fc3c72985e04df2a6d7eab38edeb514 HTTP Headers GET /content/premierbet-assets/premierbet-v1/green/1.1.28/btobet.min.js HTTP/1.1 Host: www.premierbet.ml User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.premierbet.ml/403.html Cookie: B2BS=QB7ufrdaJBDg278TvTmUsljHSbEGmww5mYKsu1FiJG5LecKVbHKkaCJwFdecYR0qvCAXDwLXieQcwqy%2B8DjX7kCzKXnUPpAwfbfBJI0tvtQfpS9cMbd5mv2vFyCHYmFPA%2F%2B9xHjs0UzdbeK5AKh5jJt0I3UaTRKEtpTGxExDY3%2B1DKpKo2sLAXINoDL3XzQiWM8%3D Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 403 Forbidden date: Tue, 05 Dec 2023 15:32:24 GMT content-type: text/html vary: Accept-Encoding access-control-allow-credentials: true access-control-allow-origin: https://www.premierbet.ml server: cloudflare cf-ray: 830d57750abe569b-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	sgtm-prd.prod-sahara.editec-online.com/g/collect?v=2&tid=G-R5ZV40GY7F&gtm=45je3bt0v9103999963z8811062823&_p=1701790350463&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=1068647232.1701790351&ul=en-us&sr=1280x1024&_fplc=0&ur=NO-03&sst.uc=NO&sst.ngs=1&sst.etld=google.no&sst.gcsub=region1&sst.gcd=11l1l1l1l1&sst.tft=1701790350463&_s=1&sid=1701790351&sct=1&seg=0&dl=https%3A%2F%2Fwww.premierbet.ml%2F403.html&dr=https%3A%2F%2Fwww.premierbet.ml%2Fregister-short%2F%3Fbtag%3D657185_6596D59A5A2D4D74A6DF7E8164D6217D%26PremBet%3Dwnjd63vf9p4cdvgt2lk8p9cu%26utm_medium%3DNetrefer&dt=404&en=page_view&_fv=1&_nsi=1&_ss=1&ep.hostname=www.premierbet.ml&tfd=832&richsstsse	34.117.167.203	200 OK	65 B
URL GET HTTP/2 sgtm-prd.prod-sahara.editec-online.com/g/collect?v=2&tid=G-R5ZV40GY7F&gtm=45je3bt0v9103999963z8811062823&_p=1701790350463&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=1068647232.1701790351&ul=en-us&sr=1280x1024&_fplc=0&ur=NO-03&sst.uc=NO&sst.ngs=1&sst.etld=google.no&sst.gcsub=region1&sst.gcd=11l1l1l1l1&sst.tft=1701790350463&_s=1&sid=1701790351&sct=1&seg=0&dl=https%3A%2F%2Fwww.premierbet.ml%2F403.html&dr=https%3A%2F%2Fwww.premierbet.ml%2Fregister-short%2F%3Fbtag%3D657185_6596D59A5A2D4D74A6DF7E8164D6217D%26PremBet%3Dwnjd63vf9p4cdvgt2lk8p9cu%26utm_medium%3DNetrefer&dt=404&en=page_view&_fv=1&_nsi=1&_ss=1&ep.hostname=www.premierbet.ml&tfd=832&richsstsse IP 34.117.167.203:443 ASN #15169 GOOGLE Requested by https://www.premierbet.ml/403.html Certificate IssuerSectigo Limited Subject.prod-sahara.editec-online.com FingerprintDE:46:4D:3C:E6:98:95:77:00:4D:AC:70:AD:BB:08:27:DB:C3:FD:72 ValidityFri, 16 Dec 2022 00:00:00 GMT - Sat, 16 Dec 2023 23:59:59 GMT File type ASCII text, with no line terminators Size 65 B (65 bytes) Hash 09e2b0b335a8a3fe7af59bc95afb7805 ce618c52e5e3e2e4d0151e76c21f4df73d1ee9c5 ad1d4f9f8632a757694e89ac2387e5719b475b295a228ed119e49a809f86f476 HTTP Headers GET /g/collect?v=2&tid=G-R5ZV40GY7F&gtm=45je3bt0v9103999963z8811062823&_p=1701790350463&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=1068647232.1701790351&ul=en-us&sr=1280x1024&_fplc=0&ur=NO-03&sst.uc=NO&sst.ngs=1&sst.etld=google.no&sst.gcsub=region1&sst.gcd=11l1l1l1l1&sst.tft=1701790350463&_s=1&sid=1701790351&sct=1&seg=0&dl=https%3A%2F%2Fwww.premierbet.ml%2F403.html&dr=https%3A%2F%2Fwww.premierbet.ml%2Fregister-short%2F%3Fbtag%3D657185_6596D59A5A2D4D74A6DF7E8164D6217D%26PremBet%3Dwnjd63vf9p4cdvgt2lk8p9cu%26utm_medium%3DNetrefer&dt=404&en=page_view&_fv=1&_nsi=1&_ss=1&ep.hostname=www.premierbet.ml&tfd=832&richsstsse HTTP/1.1 Host: sgtm-prd.prod-sahara.editec-online.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.premierbet.ml DNT: 1 Connection: keep-alive Referer: https://www.premierbet.ml/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK set-cookie: FPID=FPID2.2.D8Sc5GdkPPhSQAx%2F81yZcXZxX48%2Buq%2BPkO5EtFaJtQE%3D.1701790351; Max-Age=63072000; Domain=premierbet.ml; Path=/; Secure; HttpOnly FPLC=EqiJ5xpgPRoIw6lFEgCfu4tH5Wr2bsvApbWfyrxi0Zn7KOYPHboBVS0uAMi2wGSsLtBaKq1uJR4LS9b2Cj0V%2BEdpwBMIxmwjxZdAW4wL9fIWJ2xMRMaoqwokhdh6%2FQ%3D%3D; Max-Age=72000; Domain=premierbet.ml; Path=/; Secure cache-control: no-cache content-type: text/plain x-content-type-options: nosniff x-accel-buffering: no access-control-allow-origin: https://www.premierbet.ml access-control-allow-credentials: true date: Tue, 05 Dec 2023 15:32:25 GMT via: 1.1 google alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	cdn.iconvert.network/js/app-2.0.2/main.min.js	143.204.55.25	200 OK	52 kB
URL GET HTTP/3 cdn.iconvert.network/js/app-2.0.2/main.min.js IP 143.204.55.25:443 ASN #16509 AMAZON-02 Requested by https://www.premierbet.ml/403.html Certificate IssuerAmazon Subjectcdn.iconvert.network FingerprintAA:D0:8A:82:69:0A:76:5B:3D:CA:E4:86:8D:55:C4:06:C8:4F:DD:32 ValidityWed, 29 Nov 2023 00:00:00 GMT - Fri, 27 Dec 2024 23:59:59 GMT File type Size 52 kB (51906 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /js/app-2.0.2/main.min.js HTTP/1.1 Host: cdn.iconvert.network User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.premierbet.ml/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK content-type: text/javascript alt-svc: h3=":443"; ma=86400 age: 11915396 date: Thu, 20 Jul 2023 17:42:30 GMT last-modified: Mon, 05 Dec 2022 15:06:33 GMT etag: W/"c249e7cb775fe256f39c3d5f06d755d3" cache-control: max-age=31536000,immutable server: AmazonS3 content-encoding: gzip vary: Accept-Encoding, Origin x-cache: Hit from cloudfront via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: KsmRNt_ZEYIlv0dwm_Yd0NybMiNPxFBdhMSmHTVWZpan5ut47vwOIg==

	www.google.com/recaptcha/api.js?render=6LeAB-wjAAAAAAIfxtjDHx2a1kQg78rCM5i5Tina&hl=fr	142.250.74.164	200 OK	884 B
URL GET HTTP/2 www.google.com/recaptcha/api.js?render=6LeAB-wjAAAAAAIfxtjDHx2a1kQg78rCM5i5Tina&hl=fr IP 142.250.74.164:443 ASN #15169 GOOGLE Requested by https://www.premierbet.ml/403.html Certificate IssuerGoogle Trust Services LLC Subjectwww.google.com FingerprintB0:8E:97:10:7E:30:90:F6:42:A1:32:63:5C:78:27:D3:A8:F1:05:D1 ValidityMon, 23 Oct 2023 11:24:57 GMT - Mon, 15 Jan 2024 11:24:56 GMT File type ASCII text, with very long lines (884), with no line terminators Size 884 B (884 bytes) Hash 8b669520f18afa59314574327a3e49fc 5b3a1f5eb15ce4849d3303823c5d64c75752cdb2 6289ec2d95609891cb46617f5171336965eb17d77edbce0dba8d2eb4480566a7 HTTP Headers `GET /recaptcha/api.js?render=6LeAB-wjAAAAAAIfxtjDHx2a1kQg78rCM5i5Tina&hl=fr HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.premierbet.ml/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK content-type: text/javascript; charset=utf-8 expires: Tue, 05 Dec 2023 15:32:24 GMT date: Tue, 05 Dec 2023 15:32:24 GMT cache-control: private, max-age=300 cross-origin-resource-policy: cross-origin content-encoding: gzip x-content-type-options: nosniff x-frame-options: SAMEORIGIN content-security-policy: frame-ancestors 'self' x-xss-protection: 1; mode=block server: GSE alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	www.premierbet.ml/plugins/sitepress-multilingual-cms/res/js/jquery.cookie.js?ver=4.2.9	104.17.224.118	403 Forbidden	887 B
URL GET HTTP/2 www.premierbet.ml/plugins/sitepress-multilingual-cms/res/js/jquery.cookie.js?ver=4.2.9 IP 104.17.224.118:443 ASN #13335 CLOUDFLARENET Requested by https://www.premierbet.ml/403.html Certificate IssuerSectigo Limited Subject.premierbet.ml FingerprintF0:55:5C:4C:97:89:43:21:1C:74:23:0C:AE:DB:23:67:7A:44:B5:76 ValidityTue, 23 May 2023 00:00:00 GMT - Fri, 31 May 2024 23:59:59 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (950), with no line terminators Size 887 B (887 bytes) Hash 7dc0cf03ac59b19ce75915c4970842ac 717b6e6d5754248d59c90682079cf1ee6fee8cb3 3c9c723e7e8bde4173249da2da6767727fc3c72985e04df2a6d7eab38edeb514 HTTP Headers GET /plugins/sitepress-multilingual-cms/res/js/jquery.cookie.js?ver=4.2.9 HTTP/1.1 Host: www.premierbet.ml User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.premierbet.ml/403.html Cookie: B2BS=QB7ufrdaJBDg278TvTmUsljHSbEGmww5mYKsu1FiJG5LecKVbHKkaCJwFdecYR0qvCAXDwLXieQcwqy%2B8DjX7kCzKXnUPpAwfbfBJI0tvtQfpS9cMbd5mv2vFyCHYmFPA%2F%2B9xHjs0UzdbeK5AKh5jJt0I3UaTRKEtpTGxExDY3%2B1DKpKo2sLAXINoDL3XzQiWM8%3D Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 403 Forbidden date: Tue, 05 Dec 2023 15:32:24 GMT content-type: text/html vary: Accept-Encoding access-control-allow-credentials: true access-control-allow-origin: https://www.premierbet.ml server: cloudflare cf-ray: 830d57751ad6569b-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	www.premierbet.ml/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-list-horizontal/style.css?ver=1	104.17.224.118	403 Forbidden	887 B
URL GET HTTP/2 www.premierbet.ml/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-list-horizontal/style.css?ver=1 IP 104.17.224.118:443 ASN #13335 CLOUDFLARENET Requested by https://www.premierbet.ml/403.html Certificate IssuerSectigo Limited Subject.premierbet.ml FingerprintF0:55:5C:4C:97:89:43:21:1C:74:23:0C:AE:DB:23:67:7A:44:B5:76 ValidityTue, 23 May 2023 00:00:00 GMT - Fri, 31 May 2024 23:59:59 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (950), with no line terminators Size 887 B (887 bytes) Hash 7dc0cf03ac59b19ce75915c4970842ac 717b6e6d5754248d59c90682079cf1ee6fee8cb3 3c9c723e7e8bde4173249da2da6767727fc3c72985e04df2a6d7eab38edeb514 HTTP Headers GET /plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-list-horizontal/style.css?ver=1 HTTP/1.1 Host: www.premierbet.ml User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/*;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.premierbet.ml/403.html Cookie: B2BS=QB7ufrdaJBDg278TvTmUsljHSbEGmww5mYKsu1FiJG5LecKVbHKkaCJwFdecYR0qvCAXDwLXieQcwqy%2B8DjX7kCzKXnUPpAwfbfBJI0tvtQfpS9cMbd5mv2vFyCHYmFPA%2F%2B9xHjs0UzdbeK5AKh5jJt0I3UaTRKEtpTGxExDY3%2B1DKpKo2sLAXINoDL3XzQiWM8%3D Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 403 Forbidden date: Tue, 05 Dec 2023 15:32:24 GMT content-type: text/html vary: Accept-Encoding access-control-allow-credentials: true access-control-allow-origin: https://www.premierbet.ml server: cloudflare cf-ray: 830d5774faae569b-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	rum-static.pingdom.net/pa-5b463fc36a549f0016000157.js	104.22.54.104	200 OK	6.2 kB
URL GET HTTP/2 rum-static.pingdom.net/pa-5b463fc36a549f0016000157.js IP 104.22.54.104:443 ASN #13335 CLOUDFLARENET Requested by https://www.premierbet.ml/403.html Certificate IssuerCloudflare, Inc. Subjectpingdom.net Fingerprint95:37:DC:08:FB:5D:32:8E:03:08:92:BA:43:FB:74:8B:E0:82:A8:E3 ValiditySat, 14 Oct 2023 00:00:00 GMT - Sun, 13 Oct 2024 23:59:59 GMT File type ASCII text, with very long lines (6409), with no line terminators Size 6.2 kB (6239 bytes) Hash d526d7d8fde4e9cbc1d035ab0689c987 b7155cb120e5fca4f19e73bdef11f21873b1dec2 60caec77e247d75dd51a2a6a2b92a5bd2617abb152d84bd749ea33e59be13c9c HTTP Headers `GET /pa-5b463fc36a549f0016000157.js HTTP/1.1 Host: rum-static.pingdom.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.premierbet.ml/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK date: Tue, 05 Dec 2023 15:32:24 GMT content-type: application/javascript; charset=utf-8 last-modified: Fri, 14 Oct 2022 06:22:28 GMT vary: Accept-Encoding etag: W/"63490024-1852" expires: Tue, 05 Dec 2023 15:37:24 GMT cache-control: max-age=86400 access-control-allow-origin: * content-encoding: gzip cf-cache-status: REVALIDATED server: cloudflare cf-ray: 830d5775c8340b02-OSL X-Firefox-Spdy: h2`

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LeAB-wjAAAAAAIfxtjDHx2a1kQg78rCM5i5Tina&co=aHR0cHM6Ly93d3cucHJlbWllcmJldC5tbDo0NDM.&hl=fr&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=h2ra5uw40m4h	142.250.74.164	200 OK	61 kB
URL GET HTTP/3 www.google.com/recaptcha/api2/anchor?ar=1&k=6LeAB-wjAAAAAAIfxtjDHx2a1kQg78rCM5i5Tina&co=aHR0cHM6Ly93d3cucHJlbWllcmJldC5tbDo0NDM.&hl=fr&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=h2ra5uw40m4h IP 142.250.74.164:443 ASN #15169 GOOGLE Requested by https://www.premierbet.ml/403.html Certificate IssuerGoogle Trust Services LLC Subject.google.com Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95 ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (52675) Size 61 kB (61200 bytes) Hash ef04df857f909797284747d8cb786df3 1f0eb2be2f543d5dfe2c2464c24abacaf893d89d 03c35dcdc69c3a99f0f0bfc5bf87d4af57e97af9aba789465f4f9e7f4bc57e5e HTTP Headers GET /recaptcha/api2/anchor?ar=1&k=6LeAB-wjAAAAAAIfxtjDHx2a1kQg78rCM5i5Tina&co=aHR0cHM6Ly93d3cucHJlbWllcmJldC5tbDo0NDM.&hl=fr&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=h2ra5uw40m4h HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.premierbet.ml/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK content-type: text/html; charset=utf-8 cross-origin-resource-policy: cross-origin cross-origin-embedder-policy: require-corp report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]} cache-control: no-cache, no-store, max-age=0, must-revalidate pragma: no-cache expires: Mon, 01 Jan 1990 00:00:00 GMT date: Tue, 05 Dec 2023 15:32:25 GMT content-security-policy: script-src 'nonce-CBrJstUvH6m48fJy9B-s5A' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1 content-encoding: gzip x-content-type-options: nosniff x-xss-protection: 1; mode=block server: GSE alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	www.premierbet.ml/plugins/sitepress-multilingual-cms/res/js/cookies/language-cookie.js?ver=4.2.9	104.17.224.118	403 Forbidden	887 B
URL GET HTTP/2 www.premierbet.ml/plugins/sitepress-multilingual-cms/res/js/cookies/language-cookie.js?ver=4.2.9 IP 104.17.224.118:443 ASN #13335 CLOUDFLARENET Requested by https://www.premierbet.ml/403.html Certificate IssuerSectigo Limited Subject.premierbet.ml FingerprintF0:55:5C:4C:97:89:43:21:1C:74:23:0C:AE:DB:23:67:7A:44:B5:76 ValidityTue, 23 May 2023 00:00:00 GMT - Fri, 31 May 2024 23:59:59 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (950), with no line terminators Size 887 B (887 bytes) Hash 7dc0cf03ac59b19ce75915c4970842ac 717b6e6d5754248d59c90682079cf1ee6fee8cb3 3c9c723e7e8bde4173249da2da6767727fc3c72985e04df2a6d7eab38edeb514 HTTP Headers GET /plugins/sitepress-multilingual-cms/res/js/cookies/language-cookie.js?ver=4.2.9 HTTP/1.1 Host: www.premierbet.ml User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.premierbet.ml/403.html Cookie: B2BS=QB7ufrdaJBDg278TvTmUsljHSbEGmww5mYKsu1FiJG5LecKVbHKkaCJwFdecYR0qvCAXDwLXieQcwqy%2B8DjX7kCzKXnUPpAwfbfBJI0tvtQfpS9cMbd5mv2vFyCHYmFPA%2F%2B9xHjs0UzdbeK5AKh5jJt0I3UaTRKEtpTGxExDY3%2B1DKpKo2sLAXINoDL3XzQiWM8%3D Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 403 Forbidden date: Tue, 05 Dec 2023 15:32:24 GMT content-type: text/html vary: Accept-Encoding access-control-allow-credentials: true access-control-allow-origin: https://www.premierbet.ml server: cloudflare cf-ray: 830d57751adc569b-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	www.premierbet.ml/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.7.4	104.17.224.118	403 Forbidden	887 B
URL GET HTTP/2 www.premierbet.ml/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.7.4 IP 104.17.224.118:443 ASN #13335 CLOUDFLARENET Requested by https://www.premierbet.ml/403.html Certificate IssuerSectigo Limited Subject.premierbet.ml FingerprintF0:55:5C:4C:97:89:43:21:1C:74:23:0C:AE:DB:23:67:7A:44:B5:76 ValidityTue, 23 May 2023 00:00:00 GMT - Fri, 31 May 2024 23:59:59 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (950), with no line terminators Size 887 B (887 bytes) Hash 7dc0cf03ac59b19ce75915c4970842ac 717b6e6d5754248d59c90682079cf1ee6fee8cb3 3c9c723e7e8bde4173249da2da6767727fc3c72985e04df2a6d7eab38edeb514 HTTP Headers GET /plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.7.4 HTTP/1.1 Host: www.premierbet.ml User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.premierbet.ml/403.html Cookie: B2BS=QB7ufrdaJBDg278TvTmUsljHSbEGmww5mYKsu1FiJG5LecKVbHKkaCJwFdecYR0qvCAXDwLXieQcwqy%2B8DjX7kCzKXnUPpAwfbfBJI0tvtQfpS9cMbd5mv2vFyCHYmFPA%2F%2B9xHjs0UzdbeK5AKh5jJt0I3UaTRKEtpTGxExDY3%2B1DKpKo2sLAXINoDL3XzQiWM8%3D Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 403 Forbidden date: Tue, 05 Dec 2023 15:32:24 GMT content-type: text/html vary: Accept-Encoding access-control-allow-credentials: true access-control-allow-origin: https://www.premierbet.ml server: cloudflare cf-ray: 830d57754afe569b-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	www.googletagmanager.com/gtag/js?id=UA-127247009-10	74.125.131.97	200 OK	178 kB
URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=UA-127247009-10 IP 74.125.131.97:443 ASN #15169 GOOGLE Requested by https://www.premierbet.ml/403.html Certificate IssuerGoogle Trust Services LLC Subject.google-analytics.com FingerprintC1:58:7C:BF:5A:61:79:08:CB:C2:00:63:60:07:86:BD:EA:0A:45:8A ValidityMon, 20 Nov 2023 08:02:50 GMT - Mon, 12 Feb 2024 08:02:49 GMT File type ASCII text, with very long lines (3026) Size 178 kB (178054 bytes) Hash 1acc9e428ae156576b59262b68fea649 2b30699479ce1eb698e39e24dd7faac73a48c150 c9cec1d291ba1f70d0783df7accbd62f526af07db16ec70ed2cf3ab1d21481e8 HTTP Headers `GET /gtag/js?id=UA-127247009-10 HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.premierbet.ml/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Tue, 05 Dec 2023 15:32:24 GMT expires: Tue, 05 Dec 2023 15:32:24 GMT cache-control: private, max-age=900 last-modified: Tue, 05 Dec 2023 15:00:00 GMT strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 64902 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	www.google.com/recaptcha/api2/webworker.js?hl=fr&v=-QbJqHfGOUB8nuVRLvzFLVed	142.250.74.164	200 OK	102 B
URL GET HTTP/3 www.google.com/recaptcha/api2/webworker.js?hl=fr&v=-QbJqHfGOUB8nuVRLvzFLVed IP 142.250.74.164:443 ASN #15169 GOOGLE Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeAB-wjAAAAAAIfxtjDHx2a1kQg78rCM5i5Tina&co=aHR0cHM6Ly93d3cucHJlbWllcmJldC5tbDo0NDM.&hl=fr&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=h2ra5uw40m4h Certificate IssuerGoogle Trust Services LLC Subject.google.com Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95 ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT File type ASCII text, with no line terminators Size 102 B (102 bytes) Hash f4afdc4deb3d147a67f30602e76ebb10 d4856262cd7037c95c4b17cfcdea0bfb108d4896 7620ccffae8b506f5055f1fa8eed23daa43045b36bfb0751b206d6d94bbf7835 HTTP Headers GET /recaptcha/api2/webworker.js?hl=fr&v=-QbJqHfGOUB8nuVRLvzFLVed HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeAB-wjAAAAAAIfxtjDHx2a1kQg78rCM5i5Tina&co=aHR0cHM6Ly93d3cucHJlbWllcmJldC5tbDo0NDM.&hl=fr&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=h2ra5uw40m4h Sec-Fetch-Dest: worker Sec-Fetch-Mode: same-origin Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK content-type: text/javascript; charset=utf-8 cross-origin-embedder-policy: require-corp report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]} expires: Tue, 05 Dec 2023 15:32:25 GMT date: Tue, 05 Dec 2023 15:32:25 GMT cache-control: private, max-age=300 content-encoding: gzip x-content-type-options: nosniff x-frame-options: SAMEORIGIN content-security-policy: frame-ancestors 'self' x-xss-protection: 1; mode=block server: GSE alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	www.premierbet.ml/plugins/menu-icons/vendor/codeinwp/icon-picker/css/types/btocasino.min.css?ver=1.0	104.17.224.118	403 Forbidden	887 B
URL GET HTTP/2 www.premierbet.ml/plugins/menu-icons/vendor/codeinwp/icon-picker/css/types/btocasino.min.css?ver=1.0 IP 104.17.224.118:443 ASN #13335 CLOUDFLARENET Requested by https://www.premierbet.ml/403.html Certificate IssuerSectigo Limited Subject.premierbet.ml FingerprintF0:55:5C:4C:97:89:43:21:1C:74:23:0C:AE:DB:23:67:7A:44:B5:76 ValidityTue, 23 May 2023 00:00:00 GMT - Fri, 31 May 2024 23:59:59 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (950), with no line terminators Size 887 B (887 bytes) Hash 7dc0cf03ac59b19ce75915c4970842ac 717b6e6d5754248d59c90682079cf1ee6fee8cb3 3c9c723e7e8bde4173249da2da6767727fc3c72985e04df2a6d7eab38edeb514 HTTP Headers GET /plugins/menu-icons/vendor/codeinwp/icon-picker/css/types/btocasino.min.css?ver=1.0 HTTP/1.1 Host: www.premierbet.ml User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/*;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.premierbet.ml/403.html Cookie: B2BS=QB7ufrdaJBDg278TvTmUsljHSbEGmww5mYKsu1FiJG5LecKVbHKkaCJwFdecYR0qvCAXDwLXieQcwqy%2B8DjX7kCzKXnUPpAwfbfBJI0tvtQfpS9cMbd5mv2vFyCHYmFPA%2F%2B9xHjs0UzdbeK5AKh5jJt0I3UaTRKEtpTGxExDY3%2B1DKpKo2sLAXINoDL3XzQiWM8%3D Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 403 Forbidden date: Tue, 05 Dec 2023 15:32:24 GMT content-type: text/html vary: Accept-Encoding access-control-allow-credentials: true access-control-allow-origin: https://www.premierbet.ml server: cloudflare cf-ray: 830d5774ea9c569b-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	www.premierbet.ml/register-short/?btag=657185_6596D59A5A2D4D74A6DF7E8164D6217D&PremBet=wnjd63vf9p4cdvgt2lk8p9cu&utm_medium=Netrefer	104.17.224.118	403 Forbidden	887 B
URL User Request GET HTTP/2 www.premierbet.ml/register-short/?btag=657185_6596D59A5A2D4D74A6DF7E8164D6217D&PremBet=wnjd63vf9p4cdvgt2lk8p9cu&utm_medium=Netrefer IP 104.17.224.118:443 ASN #13335 CLOUDFLARENET Certificate IssuerSectigo Limited Subject.premierbet.ml FingerprintF0:55:5C:4C:97:89:43:21:1C:74:23:0C:AE:DB:23:67:7A:44:B5:76 ValidityTue, 23 May 2023 00:00:00 GMT - Fri, 31 May 2024 23:59:59 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (950), with no line terminators Size 887 B (887 bytes) Hash 7dc0cf03ac59b19ce75915c4970842ac 717b6e6d5754248d59c90682079cf1ee6fee8cb3 3c9c723e7e8bde4173249da2da6767727fc3c72985e04df2a6d7eab38edeb514 HTTP Headers GET /register-short/?btag=657185_6596D59A5A2D4D74A6DF7E8164D6217D&PremBet=wnjd63vf9p4cdvgt2lk8p9cu&utm_medium=Netrefer HTTP/1.1 Host: www.premierbet.ml User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 403 Forbidden date: Tue, 05 Dec 2023 15:32:24 GMT content-type: text/html vary: Accept-Encoding access-control-allow-credentials: true server: cloudflare cf-ray: 830d5772a814569b-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	www.premierbet.ml/403.html	104.17.224.118	404 Not Found	11 kB
URL GET HTTP/2 www.premierbet.ml/403.html IP 104.17.224.118:443 ASN #13335 CLOUDFLARENET Requested by https://www.premierbet.ml/register-short/?btag=657185_6596D59A5A2D4D74A6DF7E8164D6217D&PremBet=wnjd63vf9p4cdvgt2lk8p9cu&utm_medium=Netrefer Certificate IssuerSectigo Limited Subject.premierbet.ml FingerprintF0:55:5C:4C:97:89:43:21:1C:74:23:0C:AE:DB:23:67:7A:44:B5:76 ValidityTue, 23 May 2023 00:00:00 GMT - Fri, 31 May 2024 23:59:59 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (870), with CRLF, LF line terminators Size 11 kB (11269 bytes) Hash 0159e4d8d4491441a87ea04abbbb2580 99e77976d1dd110ad4832bbe4301db8c7dad18c6 88932b07962470e56bff3a1cf9ba4ee0479fa53a63c3c548ed0a61ec1129b1cc HTTP Headers GET /403.html HTTP/1.1 Host: www.premierbet.ml User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.premierbet.ml/register-short/?btag=657185_6596D59A5A2D4D74A6DF7E8164D6217D&PremBet=wnjd63vf9p4cdvgt2lk8p9cu&utm_medium=Netrefer Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/2 404 Not Found date: Tue, 05 Dec 2023 15:32:24 GMT content-type: text/html; charset=UTF-8 vary: Accept-Encoding, Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; preload; x-content-type-options: nosniff x-xss-protection: 1; mode=block x-permitted-cross-domain-policies: none expires: Wed, 11 Jan 1984 05:00:00 GMT cache-control: no-transform etag: W/da5a9e308ed8614c48f0189a409149ab set-cookie: B2BS=QB7ufrdaJBDg278TvTmUsljHSbEGmww5mYKsu1FiJG5LecKVbHKkaCJwFdecYR0qvCAXDwLXieQcwqy%2B8DjX7kCzKXnUPpAwfbfBJI0tvtQfpS9cMbd5mv2vFyCHYmFPA%2F%2B9xHjs0UzdbeK5AKh5jJt0I3UaTRKEtpTGxExDY3%2B1DKpKo2sLAXINoDL3XzQiWM8%3D; path=/; secure; HttpOnly; SameSite=None x-internal: 0 content-encoding: gzip x-cache: Error from cloudfront via: 1.1 c908cbeaf223c80632fd467b8ff1278a.cloudfront.net (CloudFront) x-amz-cf-pop: ARN1-C1 x-amz-cf-id: VfRLGnlsF_ocYrD7uHSpeOUAxFfKqtlILoPEAVqlOPEmFyp2Koy8Mg== cf-cache-status: DYNAMIC content-security-policy: frame-ancestors www.premierbet.ml premierbet.ml server: cloudflare cf-ray: 830d577429ce569b-OSL X-Firefox-Spdy: h2

	realtime-952.optimove.net/reportEvent	107.154.132.121	200 OK	77 B
URL POST HTTP/2 realtime-952.optimove.net/reportEvent IP 107.154.132.121:443 ASN #19551 INCAPSULA Requested by https://www.premierbet.ml/403.html Certificate IssuerSectigo Limited Subject.optimove.net Fingerprint03:F8:06:C9:9E:41:21:74:48:A0:9B:BF:D1:8F:EF:4E:87:7C:C4:9C ValidityThu, 05 Jan 2023 00:00:00 GMT - Mon, 05 Feb 2024 23:59:59 GMT File type troff or preprocessor input, ASCII text, with no line terminators Size 77 B (77 bytes) Hash e6958b5ff59debf5d8eeb4c171bc2da1 826b6a4ff85674ecc2fd68d01f120c0b565df000 c33e6ff4a3a780f6a0bb90703eb41528b28a6eb440b1edeca8e70960b67b042f HTTP Headers POST /reportEvent HTTP/1.1 Host: realtime-952.optimove.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.premierbet.ml/ Content-Type: application/json X-Request-ID: efe17095-2cff-4deb-9ee6-497ffb616733 Content-Length: 560 Origin: https://www.premierbet.ml DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK x-powered-by: Express access-control-allow-origin: access-control-allow-methods: GET, POST access-control-allow-headers: X-Requested-With,Content-Type content-type: application/json date: Tue, 05 Dec 2023 15:32:26 GMT via: 1.1 google alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 x-incap-sess-cookie-hdr: UlcLPGXCVSzTFP5B9oEBCopCb2UAAAAAAqs8RxE1uTxKGKGssBh+7A== set-cookie: visid_incap_2819049=gr1UPChFQ5iWxeRfA5wZgopCb2UAAAAAQUIPAAAAAACHuY8pOx4e+c3tVCjE90i5; expires=Wed, 04 Dec 2024 02:37:52 GMT; HttpOnly; path=/; Domain=.optimove.net incap_ses_721_2819049=etRVUn3afGbTFP5B9oEBCopCb2UAAAAAVr5eNBpHJlAvDN0Pm2sthQ==; path=/; Domain=.optimove.net x-cdn: Imperva content-encoding: gzip x-iinfo: 13-9263748-9263774 PNYN RT(1701790346270 395) q(0 0 0 0) r(0 0) U6 X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (29)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN