r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1cdc095521e9ee2606059be447d1fdd5
02b5d0a5b5823e2338daf7e144700babe2a213af
8bda3aabcf331c2bfcc4c7023cd797c760fd301dc353641bb95048e072f66c66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8BDA3AABCF331C2BFCC4C7023CD797C760FD301DC353641BB95048E072F66C66"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11178
Expires: Sun, 05 Feb 2023 07:10:29 GMT
Date: Sun, 05 Feb 2023 04:04:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c21ba65e44ac95470c314e068e49a9eb
17a13b13738993d889d4afa3d848dc63bf6eba64
9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66"
Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19906
Expires: Sun, 05 Feb 2023 09:35:57 GMT
Date: Sun, 05 Feb 2023 04:04:11 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 05 Feb 2023 03:36:17 GMT
content-type: application/json
age: 1674
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash fb7b6b46e708ad73eaaa3c21e74569ae
950663c025acad81556af5aa3022ecc9d55097fe
763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8112
Expires: Sun, 05 Feb 2023 06:19:23 GMT
Date: Sun, 05 Feb 2023 04:04:11 GMT
Connection: keep-alive
apostanaboa.com/betcoco-casino-1?cep=dr00W_xLtzLR-TJoW5EkpQbwqDAGhRExWYwwa9NdK77iJBWzyCbXpSTmrePR4pDe63GHko459c2bYrop9-mabWgAfs4d3eBGPFPPTqm0kI6liGul7YFHlFC6aHZq0WU5rekFr13IGxl1pZmDM6LobzoD9nL0NxgLDSGWQWzQ6V1GmHQGhdghG-PJw_asdWMTRoKXrpGH3uzbitE60_rgJwfbLuxDt8M3jH-WTRdYvit3D5qJa6rdKtqLXMjKHmFnUu0aGLhnAFORcfkXZqtdj9-UNx_7hIB8WO09752YJnvrQXJFUtyCA0Y6iDgqiXwwwfIWlFYJCg-tN-Vv7kPFNQ0esd0wyM3SDrgVImvjE--YCXtuvylXGnXJuZ0Yi3KF&lptoken=1612755857e116df299a
188.114.96.1200 OK 1.6 kB URL HTTP/1.1 apostanaboa.com/betcoco-casino-1?cep=dr00W_xLtzLR-TJoW5EkpQbwqDAGhRExWYwwa9NdK77iJBWzyCbXpSTmrePR4pDe63GHko459c2bYrop9-mabWgAfs4d3eBGPFPPTqm0kI6liGul7YFHlFC6aHZq0WU5rekFr13IGxl1pZmDM6LobzoD9nL0NxgLDSGWQWzQ6V1GmHQGhdghG-PJw_asdWMTRoKXrpGH3uzbitE60_rgJwfbLuxDt8M3jH-WTRdYvit3D5qJa6rdKtqLXMjKHmFnUu0aGLhnAFORcfkXZqtdj9-UNx_7hIB8WO09752YJnvrQXJFUtyCA0Y6iDgqiXwwwfIWlFYJCg-tN-Vv7kPFNQ0esd0wyM3SDrgVImvjE--YCXtuvylXGnXJuZ0Yi3KF&lptoken=1612755857e116df299a
IP 188.114.96.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 6c5b0197fdd3a31d0cb75aeef1b649f6
453648758049890f3fcff67d40fc7f70ef790046
d26614d08a02256fd0b41abb0ff68991be675921c4b7777c20afb5e99a80baaa
GET /betcoco-casino-1?cep=dr00W_xLtzLR-TJoW5EkpQbwqDAGhRExWYwwa9NdK77iJBWzyCbXpSTmrePR4pDe63GHko459c2bYrop9-mabWgAfs4d3eBGPFPPTqm0kI6liGul7YFHlFC6aHZq0WU5rekFr13IGxl1pZmDM6LobzoD9nL0NxgLDSGWQWzQ6V1GmHQGhdghG-PJw_asdWMTRoKXrpGH3uzbitE60_rgJwfbLuxDt8M3jH-WTRdYvit3D5qJa6rdKtqLXMjKHmFnUu0aGLhnAFORcfkXZqtdj9-UNx_7hIB8WO09752YJnvrQXJFUtyCA0Y6iDgqiXwwwfIWlFYJCg-tN-Vv7kPFNQ0esd0wyM3SDrgVImvjE--YCXtuvylXGnXJuZ0Yi3KF&lptoken=1612755857e116df299a HTTP/1.1
Host: apostanaboa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 04:04:11 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Vary: Accept-Encoding
Via: 1.1 vegur
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=S35szHfpucJXpSYoum6QaoIvTx0YHZXFGG3G4JLs%2FJQJvDj8R6GsNfv4Mb1GlNWjuFC9gIPJyJR7XLIny%2FkauWD9rxd5sk14acOBQLSGsCUWQQR0ZeGNXo4yYRm%2BpEdb93E%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7948c2b40872b506-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: KDtLdHTpgaSSzEPOTRMgKS2S6LXJvj06DC18s9azr5NT13owjjuujt0dsgYwfB89A9RZ/Q4YD14=
x-amz-request-id: HKADVRZDYA48SWZN
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 05 Feb 2023 03:24:18 GMT
age: 2393
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 04:04:11 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/foundation-sites@6.7.5/dist/js/foundation.min.js
151.101.1.229200 OK 39 kB URL HTTP/2 cdn.jsdelivr.net/npm/foundation-sites@6.7.5/dist/js/foundation.min.js
IP 151.101.1.229:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash a780745ce36b36868a11b3afd43ac125
5838f1f938d260c3f85d11dacde5cabee921b5b1
fd347c1b5f4c21a66ba7867344130a28c45750b8a41ab6ed4e2d7492e7bfd781
GET /npm/foundation-sites@6.7.5/dist/js/foundation.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://apostanaboa.com
Connection: keep-alive
Referer: http://apostanaboa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 6.7.5
x-jsd-version-type: version
etag: W/"2f593-D6sV6qbvuiGCDLBvjSnUX+61YV4"
content-encoding: gzip
accept-ranges: bytes
date: Sun, 05 Feb 2023 04:04:12 GMT
age: 8791764
x-served-by: cache-fra-eddf8230054-FRA, cache-bma1662-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 39165
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 6630148a03da2d4ccf19993f0fefd44c
2c747b9bc89b4240ad4340b31b993e3d947d1e5a
68c252a328d6f8dbea1935f3a4a950fb02969e70aabfff9853add357f76ecd4f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2576
Cache-Control: max-age=147829
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 04:04:12 GMT
Etag: "63debf21-117"
Expires: Mon, 06 Feb 2023 21:08:01 GMT
Last-Modified: Sat, 04 Feb 2023 20:25:05 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 279
cdn.jsdelivr.net/npm/foundation-sites@6.7.5/dist/css/foundation.min.css
151.101.1.229200 OK 18 kB URL HTTP/2 cdn.jsdelivr.net/npm/foundation-sites@6.7.5/dist/css/foundation.min.css
IP 151.101.1.229:0
File type Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Hash 2daecaa8a7e8091505207f37496652ff
2fa316de305864cea40a1e9404fc63b0beef6450
54699afb4b3460e037df8a40ce951ad046d7ceac8e7ca6bb0ce4eecba702f1f2
GET /npm/foundation-sites@6.7.5/dist/css/foundation.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://apostanaboa.com
Connection: keep-alive
Referer: http://apostanaboa.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 6.7.5
x-jsd-version-type: version
etag: W/"20ed4-9jDdnCJYJnCbr0kCsBOkm7STlVw"
content-encoding: gzip
accept-ranges: bytes
date: Sun, 05 Feb 2023 04:04:12 GMT
age: 2753510
x-served-by: cache-fra-eddf8230117-FRA, cache-bma1662-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 17607
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/animate.css/4.1.1/animate.min.css
104.17.24.14200 OK 4.2 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/animate.css/4.1.1/animate.min.css
IP 104.17.24.14:0
File type ASCII text, with very long lines (65348)
Hash eefc9abe5bc10d658a2393a70d052566
dd49deafcd3ebe1306cda0b843f2da265f8a90e1
6011c33e447455e96e1d4926b0e15ca399eb993163a8e5ee0c523947396d66c3
GET /ajax/libs/animate.css/4.1.1/animate.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://apostanaboa.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 04:04:12 GMT
content-type: text/css; charset=utf-8
content-length: 4216
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5f5628a2-11846"
last-modified: Mon, 07 Sep 2020 12:33:38 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 800929
expires: Fri, 26 Jan 2024 04:04:12 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gZccd58IY1pSFmX9rXUbfOgnS3Xt0SzXLFM7tLxrDnMQq4fkf871DrFJwiEbh3NMcrAqmQdhnShYRvi2KH%2BPUOwR54skfObcGxkPuo377jXXKLHIGCsQqeb6lxRQIz6Zq9XV5Pnk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7948c2b7aedab51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 98be7fe21d059e46146a43d20c4eea92
1ec58129fea75085588be7b8baec05b0874b5274
7bb2eb5ffcd88a3b6ba7b210bdbcd4469134c9708f06befb6c616beebf8dae46
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 04:04:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
IP 104.18.20.226:0
Hash d32c7ee0320c5ace21b0ef391e1daf99
66d105bb2535c61ee34023ce5abc3861786a1be6
945049167ecbec7889a7fb7fd658af1313a89aff5b3fc400e6a7bee20467856c
POST /ca/gsatlasr3dvtlsca2022q4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 04:04:12 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "B7C113BDCECBE806535AC5B3DFCAD9373C5784C4"
Expires: Sun, 05 Feb 2023 14:00:00 GMT
Last-Modified: Sun, 05 Feb 2023 02:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 3521
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7948c2b7af7d0b59-OSL
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 6630148a03da2d4ccf19993f0fefd44c
2c747b9bc89b4240ad4340b31b993e3d947d1e5a
68c252a328d6f8dbea1935f3a4a950fb02969e70aabfff9853add357f76ecd4f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2576
Cache-Control: max-age=147829
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 04:04:12 GMT
Etag: "63debf21-117"
Expires: Mon, 06 Feb 2023 21:08:01 GMT
Last-Modified: Sat, 04 Feb 2023 20:25:05 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 98be7fe21d059e46146a43d20c4eea92
1ec58129fea75085588be7b8baec05b0874b5274
7bb2eb5ffcd88a3b6ba7b210bdbcd4469134c9708f06befb6c616beebf8dae46
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 04:04:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apostanaboa.com/betcoco/style_casino.css
188.114.96.1200 OK 925 B URL HTTP/1.1 apostanaboa.com/betcoco/style_casino.css
IP 188.114.96.1:0
File type CSV text\012- , ASCII text
Hash 6976ccc2f88a20fef6a6ee5a8b2abd45
9aae41a0162700736a1b06cece40ce0fdeee13eb
30b0c8f85cc3ea945bdaa4c1adc2dd3e4dae81716dc72bf98714e5bc347f0908
GET /betcoco/style_casino.css HTTP/1.1
Host: apostanaboa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apostanaboa.com/betcoco-casino-1?cep=dr00W_xLtzLR-TJoW5EkpQbwqDAGhRExWYwwa9NdK77iJBWzyCbXpSTmrePR4pDe63GHko459c2bYrop9-mabWgAfs4d3eBGPFPPTqm0kI6liGul7YFHlFC6aHZq0WU5rekFr13IGxl1pZmDM6LobzoD9nL0NxgLDSGWQWzQ6V1GmHQGhdghG-PJw_asdWMTRoKXrpGH3uzbitE60_rgJwfbLuxDt8M3jH-WTRdYvit3D5qJa6rdKtqLXMjKHmFnUu0aGLhnAFORcfkXZqtdj9-UNx_7hIB8WO09752YJnvrQXJFUtyCA0Y6iDgqiXwwwfIWlFYJCg-tN-Vv7kPFNQ0esd0wyM3SDrgVImvjE--YCXtuvylXGnXJuZ0Yi3KF&lptoken=1612755857e116df299a
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 04:04:12 GMT
Content-Type: text/css; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Mon, 30 Jan 2023 11:35:22 GMT
Etag: W/"bb9-1860275d490"
Vary: Accept-Encoding
Content-Encoding: gzip
Via: 1.1 vegur
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=F1Pa%2Fr5fNSvzjBy6%2Br0awi890yi3lxxSi5l7Qun3OJZp63dxxVQYJUWX9vUUMJDdbyzadJDW8uvxGnTo3IJg2cz1lVh4JbWyafvsWwTawi1ukEmYqefMbaxiVGY0oLRm0sw%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7948c2b70954b506-OSL
alt-svc: h2=":443"; ma=60
apostanaboa.com/js/tracking.js
188.114.96.1200 OK 281 B URL HTTP/1.1 apostanaboa.com/js/tracking.js
IP 188.114.96.1:0
Hash c93991a168d765f80f8d1adfb7cb9629
18216f2e6ae2937dddfef7732937e74baa2a8a19
b266c9d5b18b6e7e4eeeee47bfdde2cb5bb4051e834f0bee1b2200c21314c3cd
GET /js/tracking.js HTTP/1.1
Host: apostanaboa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apostanaboa.com/betcoco-casino-1?cep=dr00W_xLtzLR-TJoW5EkpQbwqDAGhRExWYwwa9NdK77iJBWzyCbXpSTmrePR4pDe63GHko459c2bYrop9-mabWgAfs4d3eBGPFPPTqm0kI6liGul7YFHlFC6aHZq0WU5rekFr13IGxl1pZmDM6LobzoD9nL0NxgLDSGWQWzQ6V1GmHQGhdghG-PJw_asdWMTRoKXrpGH3uzbitE60_rgJwfbLuxDt8M3jH-WTRdYvit3D5qJa6rdKtqLXMjKHmFnUu0aGLhnAFORcfkXZqtdj9-UNx_7hIB8WO09752YJnvrQXJFUtyCA0Y6iDgqiXwwwfIWlFYJCg-tN-Vv7kPFNQ0esd0wyM3SDrgVImvjE--YCXtuvylXGnXJuZ0Yi3KF&lptoken=1612755857e116df299a
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 04:04:12 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Mon, 30 Jan 2023 11:35:22 GMT
Etag: W/"210-1860275d490"
Vary: Accept-Encoding
Via: 1.1 vegur
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BzIquO93a1CnSfUhdeaZBuKRjC03UJEBujRJyoBY9Ky%2B0nmBhjWZtFYMjKQnPkjyYMZYIg1DRbqLOYLQK%2BgxggjtKwucG9uImPaoGIt80BCVIT%2FiRWquY9R4vOzVgcyFcTw%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7948c2b71a0a1bfe-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 5452c58c07ce8d3cade93b323b271c35
581b1e438daeb32a12feaf50f2aab17dcf3e3171
b99ea2af71e697f45db51732f7d3e8d3e50258c9c96e50a772b8c4638577140a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 04:04:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 5452c58c07ce8d3cade93b323b271c35
581b1e438daeb32a12feaf50f2aab17dcf3e3171
b99ea2af71e697f45db51732f7d3e8d3e50258c9c96e50a772b8c4638577140a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 04:04:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 5452c58c07ce8d3cade93b323b271c35
581b1e438daeb32a12feaf50f2aab17dcf3e3171
b99ea2af71e697f45db51732f7d3e8d3e50258c9c96e50a772b8c4638577140a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 04:04:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.227200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://apostanaboa.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 Feb 2023 07:08:09 GMT
expires: Sat, 03 Feb 2024 07:08:09 GMT
cache-control: public, max-age=31536000
age: 161763
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
desekansr.com/pfe/current/micro.tag.min.js?z=5574881&sw=/sw-check-permissions-75ebd.js
139.45.197.250200 OK 14 kB URL HTTP/1.1 desekansr.com/pfe/current/micro.tag.min.js?z=5574881&sw=/sw-check-permissions-75ebd.js
IP 139.45.197.250:0
File type C source, ASCII text, with very long lines (41091), with no line terminators
Hash 002d32199f9116c7429c84ef9d7849bb
328e4f6b8bdfb247e311b58cddab5eaa21d5b4e3
8b9b2a4d4da7ff539e51c4bb298f0587b0c14ed4158294bfa003cb8b6893d1dc
Analyzer Verdict Alert quad9 Sinkholed
GET /pfe/current/micro.tag.min.js?z=5574881&sw=/sw-check-permissions-75ebd.js HTTP/1.1
Host: desekansr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apostanaboa.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 05 Feb 2023 04:04:12 GMT
Content-Type: application/javascript
Last-Modified: Fri, 27 Jan 2023 11:03:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"63d3af98-a083"
Access-Control-Allow-Credentials: true
Cache-Control: no-cache
Pragma: no-cache
Content-Encoding: gzip
apostanaboa.com/payments/04.svg
188.114.96.1200 OK 396 B URL HTTP/1.1 apostanaboa.com/payments/04.svg
IP 188.114.96.1:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (403)
Hash 1208551d130e0a35fbdb48f89810bebf
172c9b11f3b230679f942160a95c757b5f5bee84
8938c89aca677db626e12fd2e75ca4202ed16f8db3dac7e9668e9b7ab769579f
GET /payments/04.svg HTTP/1.1
Host: apostanaboa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apostanaboa.com/betcoco-casino-1?cep=dr00W_xLtzLR-TJoW5EkpQbwqDAGhRExWYwwa9NdK77iJBWzyCbXpSTmrePR4pDe63GHko459c2bYrop9-mabWgAfs4d3eBGPFPPTqm0kI6liGul7YFHlFC6aHZq0WU5rekFr13IGxl1pZmDM6LobzoD9nL0NxgLDSGWQWzQ6V1GmHQGhdghG-PJw_asdWMTRoKXrpGH3uzbitE60_rgJwfbLuxDt8M3jH-WTRdYvit3D5qJa6rdKtqLXMjKHmFnUu0aGLhnAFORcfkXZqtdj9-UNx_7hIB8WO09752YJnvrQXJFUtyCA0Y6iDgqiXwwwfIWlFYJCg-tN-Vv7kPFNQ0esd0wyM3SDrgVImvjE--YCXtuvylXGnXJuZ0Yi3KF&lptoken=1612755857e116df299a
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 04:04:12 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Mon, 30 Jan 2023 11:35:22 GMT
Etag: W/"2f1-1860275d490"
Vary: Accept-Encoding
Via: 1.1 vegur
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6zZCiRJcud1xJpBw1iLICsTNUrxlnsdBclNiHOeglkfdVeartQFcxwizrmbbcCqf98gaPGJ8R%2Fg56l8oIFyAgokbNxEdbiGBXXbrbsUMkDIcQ2xxjGC0Yf6Au32Q1nx6VZM%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7948c2b889dfb506-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 5452c58c07ce8d3cade93b323b271c35
581b1e438daeb32a12feaf50f2aab17dcf3e3171
b99ea2af71e697f45db51732f7d3e8d3e50258c9c96e50a772b8c4638577140a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 04:04:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apostanaboa.com/payments/05.svg
188.114.96.1200 OK 4.5 kB URL HTTP/1.1 apostanaboa.com/payments/05.svg
IP 188.114.96.1:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (9983)
Hash 04dd7e51817bce35080fb5430fcecce5
32db6457dd9ca5ca870d18520db740add81f2225
776e23330068af4c1353ca8121ebb069332aa7a3c7d512f77e944b635b44f4d7
GET /payments/05.svg HTTP/1.1
Host: apostanaboa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apostanaboa.com/betcoco-casino-1?cep=dr00W_xLtzLR-TJoW5EkpQbwqDAGhRExWYwwa9NdK77iJBWzyCbXpSTmrePR4pDe63GHko459c2bYrop9-mabWgAfs4d3eBGPFPPTqm0kI6liGul7YFHlFC6aHZq0WU5rekFr13IGxl1pZmDM6LobzoD9nL0NxgLDSGWQWzQ6V1GmHQGhdghG-PJw_asdWMTRoKXrpGH3uzbitE60_rgJwfbLuxDt8M3jH-WTRdYvit3D5qJa6rdKtqLXMjKHmFnUu0aGLhnAFORcfkXZqtdj9-UNx_7hIB8WO09752YJnvrQXJFUtyCA0Y6iDgqiXwwwfIWlFYJCg-tN-Vv7kPFNQ0esd0wyM3SDrgVImvjE--YCXtuvylXGnXJuZ0Yi3KF&lptoken=1612755857e116df299a
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 04:04:12 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Mon, 30 Jan 2023 11:35:22 GMT
Etag: W/"29b2-1860275d490"
Vary: Accept-Encoding
Content-Encoding: gzip
Via: 1.1 vegur
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MkXvw6MzGsNUYE0VWxPiwDLDs9opOo29Z33%2BEts3tWkSavQUwywJ62WQ9WkoPNw8VrlMgYHg6n1YTUX8TIlHVhs4Q3OOLnaUDrjuvjUghffD19fjyujaS2CKgkkl1FVgBMQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7948c2b889570b69-OSL
alt-svc: h2=":443"; ma=60
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 05 Feb 2023 03:07:20 GMT
age: 3412
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
apostanaboa.com/payments/08.svg
188.114.96.1200 OK 2.4 kB URL HTTP/1.1 apostanaboa.com/payments/08.svg
IP 188.114.96.1:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1611)
Hash fd295b7421108ea142e18bba7bae2228
42f4ca0855d877de4ac4fe24894e4a43e3b2941b
4f2171fc1511adc1e20d7a8f1269974e3453f0252381163b8cb73201f27a257d
GET /payments/08.svg HTTP/1.1
Host: apostanaboa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apostanaboa.com/betcoco-casino-1?cep=dr00W_xLtzLR-TJoW5EkpQbwqDAGhRExWYwwa9NdK77iJBWzyCbXpSTmrePR4pDe63GHko459c2bYrop9-mabWgAfs4d3eBGPFPPTqm0kI6liGul7YFHlFC6aHZq0WU5rekFr13IGxl1pZmDM6LobzoD9nL0NxgLDSGWQWzQ6V1GmHQGhdghG-PJw_asdWMTRoKXrpGH3uzbitE60_rgJwfbLuxDt8M3jH-WTRdYvit3D5qJa6rdKtqLXMjKHmFnUu0aGLhnAFORcfkXZqtdj9-UNx_7hIB8WO09752YJnvrQXJFUtyCA0Y6iDgqiXwwwfIWlFYJCg-tN-Vv7kPFNQ0esd0wyM3SDrgVImvjE--YCXtuvylXGnXJuZ0Yi3KF&lptoken=1612755857e116df299a
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 04:04:12 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Mon, 30 Jan 2023 11:35:22 GMT
Etag: W/"15c1-1860275d490"
Vary: Accept-Encoding
Content-Encoding: gzip
Via: 1.1 vegur
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2UV73XY9JUTdGyy%2BlSwnlACpdVH8i6RF1zy99Tr6eCViv05i5xSM7wBaLm6PhRoYbtqbwh%2BOyWKQbv0RcPAn6Nx1Z%2FP4dVGOVJ%2F7eYdD4tMA6Fld2oIbsZDrGb3eSW5cqfc%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7948c2b88cb9b50f-OSL
alt-svc: h2=":443"; ma=60
apostanaboa.com/brand/logo.svg
188.114.96.1200 OK 5.5 kB URL HTTP/1.1 apostanaboa.com/brand/logo.svg
IP 188.114.96.1:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (2161)
Hash 36d021f2e6e84515d83a462402272d10
69dba243778fa0aad7470b32ef74e36919042435
e1211e9378ce950173be8fcb4a360fb5ebe8a791965c60e369330673e61167e7
GET /brand/logo.svg HTTP/1.1
Host: apostanaboa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apostanaboa.com/betcoco-casino-1?cep=dr00W_xLtzLR-TJoW5EkpQbwqDAGhRExWYwwa9NdK77iJBWzyCbXpSTmrePR4pDe63GHko459c2bYrop9-mabWgAfs4d3eBGPFPPTqm0kI6liGul7YFHlFC6aHZq0WU5rekFr13IGxl1pZmDM6LobzoD9nL0NxgLDSGWQWzQ6V1GmHQGhdghG-PJw_asdWMTRoKXrpGH3uzbitE60_rgJwfbLuxDt8M3jH-WTRdYvit3D5qJa6rdKtqLXMjKHmFnUu0aGLhnAFORcfkXZqtdj9-UNx_7hIB8WO09752YJnvrQXJFUtyCA0Y6iDgqiXwwwfIWlFYJCg-tN-Vv7kPFNQ0esd0wyM3SDrgVImvjE--YCXtuvylXGnXJuZ0Yi3KF&lptoken=1612755857e116df299a
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 04:04:12 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Mon, 30 Jan 2023 11:35:22 GMT
Etag: W/"2dec-1860275d490"
Vary: Accept-Encoding
Content-Encoding: gzip
Via: 1.1 vegur
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XbiIZez5lTEkoYXGy6BP5zeYCrdlu2%2FI311hhRA6CsWjhiSGkkCQJEqHuHeY1K%2FC5Y9MgpWigBdws2CHH6kqHa0kBMUM7Uw5TbLZTo8LXqjV6sCrX6OyFY9mEXla0ELpGhE%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7948c2b8aa601bfe-OSL
alt-svc: h2=":443"; ma=60
apostanaboa.com/payments/15.svg
188.114.96.1200 OK 621 B URL HTTP/1.1 apostanaboa.com/payments/15.svg
IP 188.114.96.1:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1200), with no line terminators
Hash bcd138e3462d6a4141447a6f254887c4
3e33b9007fe0c2caa32d223aac597d813dffa6f9
0e4d12ab7a165fbc16e5e89ce58e2756bce16270baafb95a4a22fa779f2253e3
GET /payments/15.svg HTTP/1.1
Host: apostanaboa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apostanaboa.com/betcoco-casino-1?cep=dr00W_xLtzLR-TJoW5EkpQbwqDAGhRExWYwwa9NdK77iJBWzyCbXpSTmrePR4pDe63GHko459c2bYrop9-mabWgAfs4d3eBGPFPPTqm0kI6liGul7YFHlFC6aHZq0WU5rekFr13IGxl1pZmDM6LobzoD9nL0NxgLDSGWQWzQ6V1GmHQGhdghG-PJw_asdWMTRoKXrpGH3uzbitE60_rgJwfbLuxDt8M3jH-WTRdYvit3D5qJa6rdKtqLXMjKHmFnUu0aGLhnAFORcfkXZqtdj9-UNx_7hIB8WO09752YJnvrQXJFUtyCA0Y6iDgqiXwwwfIWlFYJCg-tN-Vv7kPFNQ0esd0wyM3SDrgVImvjE--YCXtuvylXGnXJuZ0Yi3KF&lptoken=1612755857e116df299a
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 04:04:12 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Mon, 30 Jan 2023 11:35:22 GMT
Etag: W/"4b0-1860275d490"
Vary: Accept-Encoding
Content-Encoding: gzip
Via: 1.1 vegur
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yVzm9NOYrF9erPNddy3AoGmjr6iSJeoDnUIOlCKG%2Fl4DiLplbmCGTV5hxFT1YfXbMj2jVEybM89Q70LZ%2BjShrYK7NKpRwEvAC7ONEf7jmb2pYFD3IQvRSgTQzFPeHkAJrDk%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7948c2b888ebb4ff-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6c6da1c3c9cdccd6b496103d7660bf45
0e468f44875b944afc0c630a1b63b231c18d839b
94cbbcd18a1f7434210460470799c20754aa8c012328d1e3ae475d4d9802005a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94CBBCD18A1F7434210460470799C20754AA8C012328D1E3AE475D4D9802005A"
Last-Modified: Thu, 02 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3863
Expires: Sun, 05 Feb 2023 05:08:35 GMT
Date: Sun, 05 Feb 2023 04:04:12 GMT
Connection: keep-alive
desekansr.com/zone?&pub=0&zone_id=5574881&is_mobile=false&domain=apostanaboa.com&var=&ymid=&var_3=&dsig=&action=prerequest
139.45.197.250200 OK 0 B URL HTTP/2 desekansr.com/zone?&pub=0&zone_id=5574881&is_mobile=false&domain=apostanaboa.com&var=&ymid=&var_3=&dsig=&action=prerequest
IP 139.45.197.250:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
POST /zone?&pub=0&zone_id=5574881&is_mobile=false&domain=apostanaboa.com&var=&ymid=&var_3=&dsig=&action=prerequest HTTP/1.1
Host: desekansr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://apostanaboa.com
Connection: keep-alive
Referer: http://apostanaboa.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 04:04:12 GMT
content-length: 0
x-trace-id: 3ca00003a62a77a1f96a11d844595063
access-control-allow-origin: http://apostanaboa.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
apostanaboa.com/aposta-ganha/antillephone.png
188.114.96.1200 OK 43 kB URL HTTP/1.1 apostanaboa.com/aposta-ganha/antillephone.png
IP 188.114.96.1:0
File type PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced\012- data
Hash fc19e956417b72c5256566d64551a61f
fbabb6fa24a343892aa5da2c6318471fd63bd8d1
f7db4165d7984ce78dfb6ea2fffe26287506a908cfdd7c2c708470bfcca4a783
GET /aposta-ganha/antillephone.png HTTP/1.1
Host: apostanaboa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apostanaboa.com/betcoco-casino-1?cep=dr00W_xLtzLR-TJoW5EkpQbwqDAGhRExWYwwa9NdK77iJBWzyCbXpSTmrePR4pDe63GHko459c2bYrop9-mabWgAfs4d3eBGPFPPTqm0kI6liGul7YFHlFC6aHZq0WU5rekFr13IGxl1pZmDM6LobzoD9nL0NxgLDSGWQWzQ6V1GmHQGhdghG-PJw_asdWMTRoKXrpGH3uzbitE60_rgJwfbLuxDt8M3jH-WTRdYvit3D5qJa6rdKtqLXMjKHmFnUu0aGLhnAFORcfkXZqtdj9-UNx_7hIB8WO09752YJnvrQXJFUtyCA0Y6iDgqiXwwwfIWlFYJCg-tN-Vv7kPFNQ0esd0wyM3SDrgVImvjE--YCXtuvylXGnXJuZ0Yi3KF&lptoken=1612755857e116df299a
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 04:04:12 GMT
Content-Type: image/png
Content-Length: 43190
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Mon, 30 Jan 2023 11:35:22 GMT
Etag: W/"a8b6-1860275d490"
Via: 1.1 vegur
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pO8V%2BSOmME%2BMSQsD2S0B152o7xNxUsDioVF3NJ5U4Q8aJNzVAQgXDQmm%2FBdV%2BYV1wO9nP2OhsnMpDR%2Bha%2BACpKU9e905B6ZIP9AnJ9eI7noomj85rJYaIsfGxzotWobAG%2F0%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7948c2b88d320b41-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16895
Expires: Sun, 05 Feb 2023 08:45:47 GMT
Date: Sun, 05 Feb 2023 04:04:12 GMT
Connection: keep-alive
apostanaboa.com/payments/11.svg
188.114.96.1200 OK 5.6 kB URL HTTP/1.1 apostanaboa.com/payments/11.svg
IP 188.114.96.1:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (874)
Hash b19e965c8d0d1ce89784dc2b4e243189
007c8220e13a73f1ff0ebdfa429b3df7b592fe00
a1bb574493e1545e904ff881916e49d7644578852e18af01643b65ba88d04d71
GET /payments/11.svg HTTP/1.1
Host: apostanaboa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apostanaboa.com/betcoco-casino-1?cep=dr00W_xLtzLR-TJoW5EkpQbwqDAGhRExWYwwa9NdK77iJBWzyCbXpSTmrePR4pDe63GHko459c2bYrop9-mabWgAfs4d3eBGPFPPTqm0kI6liGul7YFHlFC6aHZq0WU5rekFr13IGxl1pZmDM6LobzoD9nL0NxgLDSGWQWzQ6V1GmHQGhdghG-PJw_asdWMTRoKXrpGH3uzbitE60_rgJwfbLuxDt8M3jH-WTRdYvit3D5qJa6rdKtqLXMjKHmFnUu0aGLhnAFORcfkXZqtdj9-UNx_7hIB8WO09752YJnvrQXJFUtyCA0Y6iDgqiXwwwfIWlFYJCg-tN-Vv7kPFNQ0esd0wyM3SDrgVImvjE--YCXtuvylXGnXJuZ0Yi3KF&lptoken=1612755857e116df299a
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 04:04:12 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Mon, 30 Jan 2023 11:35:22 GMT
Etag: W/"3b05-1860275d490"
Vary: Accept-Encoding
Content-Encoding: gzip
Via: 1.1 vegur
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rO16qHX9QMv0j70jC4AJ5RNWK8y4WyIo1WiF9lUBU00VSWiiHohgouGRLKUKxCKacsaSZtseJUZC7OhsPTVyk%2FSoSD2kD0lLjLWUrExKFcuSrQRq4J%2FGjr9oF5jbzVAcbCc%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7948c2ba0d78b50f-OSL
alt-svc: h2=":443"; ma=60
apostanaboa.com/payments/01.svg
188.114.96.1200 OK 8.9 kB URL HTTP/1.1 apostanaboa.com/payments/01.svg
IP 188.114.96.1:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (10022)
Hash 6e12991ea2b194a21ac99a126b2f5a30
c03aab183d5b12bd9e71cb15807634edf24f3e0a
c86a1461b149fffd85f9e19f5e7e096041ba16e4fe9afdd918d3eee487faf25d
GET /payments/01.svg HTTP/1.1
Host: apostanaboa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apostanaboa.com/betcoco-casino-1?cep=dr00W_xLtzLR-TJoW5EkpQbwqDAGhRExWYwwa9NdK77iJBWzyCbXpSTmrePR4pDe63GHko459c2bYrop9-mabWgAfs4d3eBGPFPPTqm0kI6liGul7YFHlFC6aHZq0WU5rekFr13IGxl1pZmDM6LobzoD9nL0NxgLDSGWQWzQ6V1GmHQGhdghG-PJw_asdWMTRoKXrpGH3uzbitE60_rgJwfbLuxDt8M3jH-WTRdYvit3D5qJa6rdKtqLXMjKHmFnUu0aGLhnAFORcfkXZqtdj9-UNx_7hIB8WO09752YJnvrQXJFUtyCA0Y6iDgqiXwwwfIWlFYJCg-tN-Vv7kPFNQ0esd0wyM3SDrgVImvjE--YCXtuvylXGnXJuZ0Yi3KF&lptoken=1612755857e116df299a
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 04:04:12 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Mon, 30 Jan 2023 11:35:22 GMT
Etag: W/"5349-1860275d490"
Vary: Accept-Encoding
Content-Encoding: gzip
Via: 1.1 vegur
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7cv1y5FdcR54XnVDbgVT31iefBU%2F%2BOMXeYDFAdBpf1I1CFSKENeaAcyxgeUJauEVMz0JS%2Fogh7FLOzrCEP6E1j%2ByMW91QEehQ8UWTYv9eaY17tJd8ADI7OaNJMKqbVMCGhw%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7948c2ba1af01bfe-OSL
alt-svc: h2=":443"; ma=60
apostanaboa.com/payments/02.svg
188.114.96.1200 OK 4.0 kB URL HTTP/1.1 apostanaboa.com/payments/02.svg
IP 188.114.96.1:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1801)
Hash 869bf0c816217bd851ba8fa60a423a11
c81b295f6345a13e45d0fdfe89e3dad9c5f04630
abca68ca2816de05e9973339742893d0c829e90d7cb4a6c04308eb385e1ba595
GET /payments/02.svg HTTP/1.1
Host: apostanaboa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apostanaboa.com/betcoco-casino-1?cep=dr00W_xLtzLR-TJoW5EkpQbwqDAGhRExWYwwa9NdK77iJBWzyCbXpSTmrePR4pDe63GHko459c2bYrop9-mabWgAfs4d3eBGPFPPTqm0kI6liGul7YFHlFC6aHZq0WU5rekFr13IGxl1pZmDM6LobzoD9nL0NxgLDSGWQWzQ6V1GmHQGhdghG-PJw_asdWMTRoKXrpGH3uzbitE60_rgJwfbLuxDt8M3jH-WTRdYvit3D5qJa6rdKtqLXMjKHmFnUu0aGLhnAFORcfkXZqtdj9-UNx_7hIB8WO09752YJnvrQXJFUtyCA0Y6iDgqiXwwwfIWlFYJCg-tN-Vv7kPFNQ0esd0wyM3SDrgVImvjE--YCXtuvylXGnXJuZ0Yi3KF&lptoken=1612755857e116df299a
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 04:04:12 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Mon, 30 Jan 2023 11:35:22 GMT
Etag: W/"2161-1860275d490"
Vary: Accept-Encoding
Content-Encoding: gzip
Via: 1.1 vegur
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gBSSZLnsccomeld9dBPvRlePsT1L0WWU4RZmUqpAD42LHL4V5YY%2BY2YoK8dvUQzUCbxejdzK45OSy9WELWYv%2BgUfHicn7pnwO8LSErF8NDIPVG6P8B33Sw4X8FADsMbIPiI%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7948c2ba2948b4ff-OSL
alt-svc: h2=":443"; ma=60
apostanaboa.com/payments/03.svg
188.114.96.1200 OK 2.2 kB URL HTTP/1.1 apostanaboa.com/payments/03.svg
IP 188.114.96.1:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (919)
Hash f10c853aa437c6c82ab19db00735b721
e2357d147f3d4e9c565b49b97802d5ce66fefd42
8fc250d8d7cc2269e457c828de250c1737c9f61084d6b5f8ed93986e7aea8902
GET /payments/03.svg HTTP/1.1
Host: apostanaboa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apostanaboa.com/betcoco-casino-1?cep=dr00W_xLtzLR-TJoW5EkpQbwqDAGhRExWYwwa9NdK77iJBWzyCbXpSTmrePR4pDe63GHko459c2bYrop9-mabWgAfs4d3eBGPFPPTqm0kI6liGul7YFHlFC6aHZq0WU5rekFr13IGxl1pZmDM6LobzoD9nL0NxgLDSGWQWzQ6V1GmHQGhdghG-PJw_asdWMTRoKXrpGH3uzbitE60_rgJwfbLuxDt8M3jH-WTRdYvit3D5qJa6rdKtqLXMjKHmFnUu0aGLhnAFORcfkXZqtdj9-UNx_7hIB8WO09752YJnvrQXJFUtyCA0Y6iDgqiXwwwfIWlFYJCg-tN-Vv7kPFNQ0esd0wyM3SDrgVImvjE--YCXtuvylXGnXJuZ0Yi3KF&lptoken=1612755857e116df299a
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 04:04:12 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Mon, 30 Jan 2023 11:35:22 GMT
Etag: W/"1871-1860275d490"
Vary: Accept-Encoding
Content-Encoding: gzip
Via: 1.1 vegur
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=998rs8WLVjiQnJ1W1dbvoDg4ulHD5f0PMVUpuRPujcYqHiK%2FN6PI7u3y7BAXtwhM15XL1Oav%2FZO8ZANlARGZrTVNgOE5rmC7wNieOW7ZR5w7RYMOJvldPeLL%2FdVpZXMZhbQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7948c2baddba0b41-OSL
alt-svc: h2=":443"; ma=60
apostanaboa.com/payments/07.svg
188.114.96.1200 OK 4.3 kB URL HTTP/1.1 apostanaboa.com/payments/07.svg
IP 188.114.96.1:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1231)
Hash 6a1329a2c750ed24ecde8130303c01b3
b2ee022d2db967da5336bdff1c3c4cd2a3a9d1bc
6b56acbfb584f478c5def427b6643e675c67c01081383cecdb6f03d02849cf81
GET /payments/07.svg HTTP/1.1
Host: apostanaboa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apostanaboa.com/betcoco-casino-1?cep=dr00W_xLtzLR-TJoW5EkpQbwqDAGhRExWYwwa9NdK77iJBWzyCbXpSTmrePR4pDe63GHko459c2bYrop9-mabWgAfs4d3eBGPFPPTqm0kI6liGul7YFHlFC6aHZq0WU5rekFr13IGxl1pZmDM6LobzoD9nL0NxgLDSGWQWzQ6V1GmHQGhdghG-PJw_asdWMTRoKXrpGH3uzbitE60_rgJwfbLuxDt8M3jH-WTRdYvit3D5qJa6rdKtqLXMjKHmFnUu0aGLhnAFORcfkXZqtdj9-UNx_7hIB8WO09752YJnvrQXJFUtyCA0Y6iDgqiXwwwfIWlFYJCg-tN-Vv7kPFNQ0esd0wyM3SDrgVImvjE--YCXtuvylXGnXJuZ0Yi3KF&lptoken=1612755857e116df299a
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 04:04:12 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Mon, 30 Jan 2023 11:35:22 GMT
Etag: W/"24db-1860275d490"
Vary: Accept-Encoding
Content-Encoding: gzip
Via: 1.1 vegur
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xxR40LK2WaXwdYZwtD0o9PaWB7Diqr5I2y%2Fd2jvLnuf7lS21XIay3hdoomn6wqiNtlkO0GVY%2FdyOKyDvxkE2wUQf4EBNoP%2F%2FRQzoNt2ZjM2Dmdou17A4OdOX61RGPUzF7Dc%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7948c2bb8b441bfe-OSL
alt-svc: h2=":443"; ma=60
apostanaboa.com/payments/06.svg
188.114.96.1200 OK 4.0 kB URL HTTP/1.1 apostanaboa.com/payments/06.svg
IP 188.114.96.1:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1212)
Hash d933b21fd10ebab7a8ca0f31910ae422
c51b798878815a03e03e49e62c903fde40355efb
c21d29cc2f2610b41a14a0f083e59609b0c06dbb021ff0498405f946c58db452
GET /payments/06.svg HTTP/1.1
Host: apostanaboa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apostanaboa.com/betcoco-casino-1?cep=dr00W_xLtzLR-TJoW5EkpQbwqDAGhRExWYwwa9NdK77iJBWzyCbXpSTmrePR4pDe63GHko459c2bYrop9-mabWgAfs4d3eBGPFPPTqm0kI6liGul7YFHlFC6aHZq0WU5rekFr13IGxl1pZmDM6LobzoD9nL0NxgLDSGWQWzQ6V1GmHQGhdghG-PJw_asdWMTRoKXrpGH3uzbitE60_rgJwfbLuxDt8M3jH-WTRdYvit3D5qJa6rdKtqLXMjKHmFnUu0aGLhnAFORcfkXZqtdj9-UNx_7hIB8WO09752YJnvrQXJFUtyCA0Y6iDgqiXwwwfIWlFYJCg-tN-Vv7kPFNQ0esd0wyM3SDrgVImvjE--YCXtuvylXGnXJuZ0Yi3KF&lptoken=1612755857e116df299a
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 04:04:12 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Mon, 30 Jan 2023 11:35:22 GMT
Etag: W/"25f4-1860275d490"
Vary: Accept-Encoding
Content-Encoding: gzip
Via: 1.1 vegur
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aMVXLK9KvNMBPgas4aMe0ydYUE75SwUBTsLzZ3NB31R6njG089BIAtA4CmH5BM2fMwh2H64L7Ve5RI3%2F6SoCYebcY4gBB%2F1BeRaGI1K27VwVqjmSbA81sAuH01DmP%2BgMeUE%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7948c2bb8e1db50f-OSL
alt-svc: h2=":443"; ma=60
apostanaboa.com/payments/09.svg
188.114.96.1200 OK 3.4 kB URL HTTP/1.1 apostanaboa.com/payments/09.svg
IP 188.114.96.1:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1443)
Hash de56d32b5a8d89a82ece275d58006c26
fd4ee53bb9404191ee2f9239778db86f07b23962
0e81027a1ad9a8bc9e3bfd0a1136b6c410fb9def8518ac918f1b00ddcf6738f5
GET /payments/09.svg HTTP/1.1
Host: apostanaboa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apostanaboa.com/betcoco-casino-1?cep=dr00W_xLtzLR-TJoW5EkpQbwqDAGhRExWYwwa9NdK77iJBWzyCbXpSTmrePR4pDe63GHko459c2bYrop9-mabWgAfs4d3eBGPFPPTqm0kI6liGul7YFHlFC6aHZq0WU5rekFr13IGxl1pZmDM6LobzoD9nL0NxgLDSGWQWzQ6V1GmHQGhdghG-PJw_asdWMTRoKXrpGH3uzbitE60_rgJwfbLuxDt8M3jH-WTRdYvit3D5qJa6rdKtqLXMjKHmFnUu0aGLhnAFORcfkXZqtdj9-UNx_7hIB8WO09752YJnvrQXJFUtyCA0Y6iDgqiXwwwfIWlFYJCg-tN-Vv7kPFNQ0esd0wyM3SDrgVImvjE--YCXtuvylXGnXJuZ0Yi3KF&lptoken=1612755857e116df299a
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 04:04:12 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Mon, 30 Jan 2023 11:35:22 GMT
Etag: W/"1e50-1860275d490"
Vary: Accept-Encoding
Content-Encoding: gzip
Via: 1.1 vegur
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Y%2Bd9epJcYEsT3KSjSfxrBTmSwb0omQMp6IcZiwZgxlY6jFZr1vpINoLpM%2BR1Wo4B2B9r5vxedf4BkCcI%2BaLKFYBYs8i50wCH8B6t76NzuBdtPeeLMZX0rkTzijJ5jjR2798%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7948c2bb99b1b4ff-OSL
alt-svc: h2=":443"; ma=60
push.services.mozilla.com/
52.10.3.114101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.10.3.114:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Zpn9zhyhbJj1BeBCMUe8EQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: /rOwZagd9ONl2wrXwjmXDLtKP3Q=
apostanaboa.com/betcoco-3/ivete.webp
188.114.96.1200 OK 98 kB URL HTTP/1.1 apostanaboa.com/betcoco-3/ivete.webp
IP 188.114.96.1:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 65a074b19d04674c95ad034be0fbbebb
0ccf643c8381671d5093f3e043ce90b15d1f8254
19af34dac091c5e29c9d3c9d4b5e0cd9646c226c486529dc39f03d4243330fe9
GET /betcoco-3/ivete.webp HTTP/1.1
Host: apostanaboa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apostanaboa.com/betcoco-casino-1?cep=dr00W_xLtzLR-TJoW5EkpQbwqDAGhRExWYwwa9NdK77iJBWzyCbXpSTmrePR4pDe63GHko459c2bYrop9-mabWgAfs4d3eBGPFPPTqm0kI6liGul7YFHlFC6aHZq0WU5rekFr13IGxl1pZmDM6LobzoD9nL0NxgLDSGWQWzQ6V1GmHQGhdghG-PJw_asdWMTRoKXrpGH3uzbitE60_rgJwfbLuxDt8M3jH-WTRdYvit3D5qJa6rdKtqLXMjKHmFnUu0aGLhnAFORcfkXZqtdj9-UNx_7hIB8WO09752YJnvrQXJFUtyCA0Y6iDgqiXwwwfIWlFYJCg-tN-Vv7kPFNQ0esd0wyM3SDrgVImvjE--YCXtuvylXGnXJuZ0Yi3KF&lptoken=1612755857e116df299a
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 04:04:13 GMT
Content-Type: image/webp
Content-Length: 97450
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Mon, 30 Jan 2023 11:35:22 GMT
Etag: W/"17caa-1860275d490"
Via: 1.1 vegur
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8eKxCpVcP5rPVdqSkFKFln9ivZauIUnbgT1UeoOvc2X3YAbo8faKrx%2BfdlRDOcZpRCJhvkzdPFkl%2F9Ez%2FsXIneWDUO4tZrPe%2BhTlUjqH1lG3PEO7BrmZVe5AwJxelhUbYc0%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7948c2ba09fd0b69-OSL
alt-svc: h2=":443"; ma=60
apostanaboa.com/payments/10.svg
188.114.96.1200 OK 1.2 kB URL HTTP/1.1 apostanaboa.com/payments/10.svg
IP 188.114.96.1:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3670), with no line terminators
Hash 2070bc2ace438fc3ec1a0479d74edc6c
571f780791b7387183cc7d9b6d9e7b9c73e5231d
1152457260e9b62c91371958ff7598d89b84bdd8f5eb7c0567836a53314f2450
GET /payments/10.svg HTTP/1.1
Host: apostanaboa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apostanaboa.com/betcoco-casino-1?cep=dr00W_xLtzLR-TJoW5EkpQbwqDAGhRExWYwwa9NdK77iJBWzyCbXpSTmrePR4pDe63GHko459c2bYrop9-mabWgAfs4d3eBGPFPPTqm0kI6liGul7YFHlFC6aHZq0WU5rekFr13IGxl1pZmDM6LobzoD9nL0NxgLDSGWQWzQ6V1GmHQGhdghG-PJw_asdWMTRoKXrpGH3uzbitE60_rgJwfbLuxDt8M3jH-WTRdYvit3D5qJa6rdKtqLXMjKHmFnUu0aGLhnAFORcfkXZqtdj9-UNx_7hIB8WO09752YJnvrQXJFUtyCA0Y6iDgqiXwwwfIWlFYJCg-tN-Vv7kPFNQ0esd0wyM3SDrgVImvjE--YCXtuvylXGnXJuZ0Yi3KF&lptoken=1612755857e116df299a
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 04:04:13 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Mon, 30 Jan 2023 11:35:22 GMT
Etag: W/"e56-1860275d490"
Vary: Accept-Encoding
Content-Encoding: gzip
Via: 1.1 vegur
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7J6CBNuU9igtDmAny1j1U0vxGzbXl8tSLDdPrnce%2F1diUHr8sL85ePxRDAd0O7d0CeTO7TkVFgh1mnL9RwqEe6XIYwBGFX%2F5dYZ7NfIWIIpOVUnRTrrROAWTGTJUZkYMvfE%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7948c2bc3df80b41-OSL
alt-svc: h2=":443"; ma=60
apostanaboa.com/payments/12.svg
188.114.96.1200 OK 844 B URL HTTP/1.1 apostanaboa.com/payments/12.svg
IP 188.114.96.1:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1595)
Hash 2e4967f14e7b9dd6d72aefa09dcef96e
07703ce4cc80848567c6600026af2a8e504b55da
9bdb478b9c7227df3ccdf44ae723667799eb45e076bd932276cce471dba42d06
GET /payments/12.svg HTTP/1.1
Host: apostanaboa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apostanaboa.com/betcoco-casino-1?cep=dr00W_xLtzLR-TJoW5EkpQbwqDAGhRExWYwwa9NdK77iJBWzyCbXpSTmrePR4pDe63GHko459c2bYrop9-mabWgAfs4d3eBGPFPPTqm0kI6liGul7YFHlFC6aHZq0WU5rekFr13IGxl1pZmDM6LobzoD9nL0NxgLDSGWQWzQ6V1GmHQGhdghG-PJw_asdWMTRoKXrpGH3uzbitE60_rgJwfbLuxDt8M3jH-WTRdYvit3D5qJa6rdKtqLXMjKHmFnUu0aGLhnAFORcfkXZqtdj9-UNx_7hIB8WO09752YJnvrQXJFUtyCA0Y6iDgqiXwwwfIWlFYJCg-tN-Vv7kPFNQ0esd0wyM3SDrgVImvjE--YCXtuvylXGnXJuZ0Yi3KF&lptoken=1612755857e116df299a
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 04:04:13 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Mon, 30 Jan 2023 11:35:22 GMT
Etag: W/"6a7-1860275d490"
Vary: Accept-Encoding
Content-Encoding: gzip
Via: 1.1 vegur
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HL9t1N5t%2FRTd7PbzHPWSFRwIlXS42Cc2GzM4NcQQZuCeqKacm3wsfcLXy9fcODm8GHsW%2FNS8q8RmQvLux3nYiPA9yilSe2xUXMkXeEPzWbzGUs60lhfuI5z7UcmxbzVWY84%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7948c2bcfbb01bfe-OSL
alt-svc: h2=":443"; ma=60
apostanaboa.com/payments/13.svg
188.114.96.1200 OK 1.4 kB URL HTTP/1.1 apostanaboa.com/payments/13.svg
IP 188.114.96.1:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2095)
Hash f7a22bdc565cffe966bf0650cf1ba4a5
b22abf423536a8ead6749ac283550a512f07a7da
1c93a9ca5afb261690587072412fcc7e7e5ca44e003aa0fdb4ef32dfe495f6cf
GET /payments/13.svg HTTP/1.1
Host: apostanaboa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apostanaboa.com/betcoco-casino-1?cep=dr00W_xLtzLR-TJoW5EkpQbwqDAGhRExWYwwa9NdK77iJBWzyCbXpSTmrePR4pDe63GHko459c2bYrop9-mabWgAfs4d3eBGPFPPTqm0kI6liGul7YFHlFC6aHZq0WU5rekFr13IGxl1pZmDM6LobzoD9nL0NxgLDSGWQWzQ6V1GmHQGhdghG-PJw_asdWMTRoKXrpGH3uzbitE60_rgJwfbLuxDt8M3jH-WTRdYvit3D5qJa6rdKtqLXMjKHmFnUu0aGLhnAFORcfkXZqtdj9-UNx_7hIB8WO09752YJnvrQXJFUtyCA0Y6iDgqiXwwwfIWlFYJCg-tN-Vv7kPFNQ0esd0wyM3SDrgVImvjE--YCXtuvylXGnXJuZ0Yi3KF&lptoken=1612755857e116df299a
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 04:04:13 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Mon, 30 Jan 2023 11:35:22 GMT
Etag: W/"c74-1860275d490"
Vary: Accept-Encoding
Content-Encoding: gzip
Via: 1.1 vegur
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=l7r83t17RnDcmipdJpTiny5O3RByF86gJ12PUIZa%2B42%2Fs%2FThCv6Me1uwhBd%2BOHPFbYKV%2BJlzF7xU8tEfx6u%2FPjK1%2FpkF%2FMHkjw4jrsIHCoDa3j6fXJq3IGa0Tird6xux7fg%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7948c2bd1eabb50f-OSL
alt-svc: h2=":443"; ma=60
apostanaboa.com/payments/14.svg
188.114.96.1200 OK 846 B URL HTTP/1.1 apostanaboa.com/payments/14.svg
IP 188.114.96.1:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (469)
Hash 35fce004f88ea060043b512535eddda7
d27d456f93419f8d9aba63d8ee6ffac73cbd9cf2
9619b487eac67e02b198e536b6340c8af3ea8d6e03c67bcf8c829a75a5d17421
GET /payments/14.svg HTTP/1.1
Host: apostanaboa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apostanaboa.com/betcoco-casino-1?cep=dr00W_xLtzLR-TJoW5EkpQbwqDAGhRExWYwwa9NdK77iJBWzyCbXpSTmrePR4pDe63GHko459c2bYrop9-mabWgAfs4d3eBGPFPPTqm0kI6liGul7YFHlFC6aHZq0WU5rekFr13IGxl1pZmDM6LobzoD9nL0NxgLDSGWQWzQ6V1GmHQGhdghG-PJw_asdWMTRoKXrpGH3uzbitE60_rgJwfbLuxDt8M3jH-WTRdYvit3D5qJa6rdKtqLXMjKHmFnUu0aGLhnAFORcfkXZqtdj9-UNx_7hIB8WO09752YJnvrQXJFUtyCA0Y6iDgqiXwwwfIWlFYJCg-tN-Vv7kPFNQ0esd0wyM3SDrgVImvjE--YCXtuvylXGnXJuZ0Yi3KF&lptoken=1612755857e116df299a
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 04:04:13 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Mon, 30 Jan 2023 11:35:22 GMT
Etag: W/"797-1860275d490"
Vary: Accept-Encoding
Content-Encoding: gzip
Via: 1.1 vegur
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lA5u963i0Ek2sH5caf8XahqbYIdD3jOdc%2BtoCmq6DhTWzRz%2BDTxFQgbNKVjI8927yvKKA006F2cezy6ejA0LLwEzc0JZPEoX4JiIrD%2FU9PQN%2BIpZqdPOq3di8gGjuH7U8d8%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7948c2bd29ffb4ff-OSL
alt-svc: h2=":443"; ma=60
apostanaboa.com/betcoco/bg_olympus.jpg
188.114.96.1200 OK 163 kB URL HTTP/1.1 apostanaboa.com/betcoco/bg_olympus.jpg
IP 188.114.96.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1438x815, components 3\012- data
Size 163 kB (163295 bytes)
Hash 0c376c6fb28fd442abe07ea315dd8692
047264b349925c2551362c09439f6aefa322dc4c
7dacab67b39a422defc2d1e5896b049034153fd149053811212ce7a8f68a741b
GET /betcoco/bg_olympus.jpg HTTP/1.1
Host: apostanaboa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apostanaboa.com/betcoco/style_casino.css
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 04:04:13 GMT
Content-Type: image/jpeg
Content-Length: 163295
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Mon, 30 Jan 2023 11:35:22 GMT
Etag: W/"27ddf-1860275d490"
Via: 1.1 vegur
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=auR3loRI%2BLG0CWvhTe1Mh810X%2BMdRxPvj1U%2FO2%2BW1CIIN8e1tthvrex9kCSlCJ%2BxDRe%2F1q%2BAroO4F4EPaNNEiWxedhk%2FHlRSccScERnj%2F8TScQ4HWuhXjZoLBYv1lGLaDzA%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7948c2b9ea44b506-OSL
alt-svc: h2=":443"; ma=60
apostanaboa.com/aposta-ganha/age.svg
188.114.96.1200 OK 1.3 kB URL HTTP/1.1 apostanaboa.com/aposta-ganha/age.svg
IP 188.114.96.1:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1546)
Hash 3c2c2dfcab4e495a3a355e9dc5ee11ae
9d5cf163d1ac360c4608ba61fd3d4e36d0b851f8
117ddedf7bcb402a042462951a4a55dac257a962d6dd6d19d2cef31794cc11ac
GET /aposta-ganha/age.svg HTTP/1.1
Host: apostanaboa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apostanaboa.com/betcoco-casino-1?cep=dr00W_xLtzLR-TJoW5EkpQbwqDAGhRExWYwwa9NdK77iJBWzyCbXpSTmrePR4pDe63GHko459c2bYrop9-mabWgAfs4d3eBGPFPPTqm0kI6liGul7YFHlFC6aHZq0WU5rekFr13IGxl1pZmDM6LobzoD9nL0NxgLDSGWQWzQ6V1GmHQGhdghG-PJw_asdWMTRoKXrpGH3uzbitE60_rgJwfbLuxDt8M3jH-WTRdYvit3D5qJa6rdKtqLXMjKHmFnUu0aGLhnAFORcfkXZqtdj9-UNx_7hIB8WO09752YJnvrQXJFUtyCA0Y6iDgqiXwwwfIWlFYJCg-tN-Vv7kPFNQ0esd0wyM3SDrgVImvjE--YCXtuvylXGnXJuZ0Yi3KF&lptoken=1612755857e116df299a
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 04:04:13 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Cache-Control: public, max-age=14400
Last-Modified: Mon, 30 Jan 2023 11:35:22 GMT
Etag: W/"c11-1860275d490"
Vary: Accept-Encoding
Content-Encoding: gzip
Via: 1.1 vegur
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TYDu3DGL5zaUeCjZ3v1bqMMBnJUTAalAgSYU1eQ9AUhfVQywZTUGlINb0X%2FkjK2XsH4lubuza5%2BGqWN0UNPnuFui5SAd3CcW%2BD7yNkDHosFBffKSnYoq6aS7UQKtPzjmOn8%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7948c2bd9aae0b69-OSL
alt-svc: h2=":443"; ma=60
apostanaboa.com/favicon.ico
188.114.96.1500 Internal Server Error 275 B URL HTTP/1.1 apostanaboa.com/favicon.ico
IP 188.114.96.1:0
Hash a4aa676a4c4ad136bcba19a9a317742a
70cdbdec8e8b79e01ffe4cd9f20c1af01cd3f9df
4357719cf867a59389603efd37cc5517954df17f20339998901f6ceaface6484
GET /favicon.ico HTTP/1.1
Host: apostanaboa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://apostanaboa.com/betcoco-casino-1?cep=dr00W_xLtzLR-TJoW5EkpQbwqDAGhRExWYwwa9NdK77iJBWzyCbXpSTmrePR4pDe63GHko459c2bYrop9-mabWgAfs4d3eBGPFPPTqm0kI6liGul7YFHlFC6aHZq0WU5rekFr13IGxl1pZmDM6LobzoD9nL0NxgLDSGWQWzQ6V1GmHQGhdghG-PJw_asdWMTRoKXrpGH3uzbitE60_rgJwfbLuxDt8M3jH-WTRdYvit3D5qJa6rdKtqLXMjKHmFnUu0aGLhnAFORcfkXZqtdj9-UNx_7hIB8WO09752YJnvrQXJFUtyCA0Y6iDgqiXwwwfIWlFYJCg-tN-Vv7kPFNQ0esd0wyM3SDrgVImvjE--YCXtuvylXGnXJuZ0Yi3KF&lptoken=1612755857e116df299a
HTTP/1.1 500 Internal Server Error
Date: Sun, 05 Feb 2023 04:04:13 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Vary: Accept-Encoding
Via: 1.1 vegur
CF-Cache-Status: BYPASS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QtAeZy%2BBFK%2BDm9%2FztIUG8xBaWxpZBTZoGJpjJroWP1XtIXo%2Bun%2FykpDULUDWndZksyHHwIG6eiLmQ5f5tS98V%2BRY0sJYxYdkt1pEvFfJneM7ZMWOAPWWN9TDPQ5Rd6C4d1w%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7948c2bf0af00b69-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11265
Expires: Sun, 05 Feb 2023 07:11:59 GMT
Date: Sun, 05 Feb 2023 04:04:14 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11265
Expires: Sun, 05 Feb 2023 07:11:59 GMT
Date: Sun, 05 Feb 2023 04:04:14 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11265
Expires: Sun, 05 Feb 2023 07:11:59 GMT
Date: Sun, 05 Feb 2023 04:04:14 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11265
Expires: Sun, 05 Feb 2023 07:11:59 GMT
Date: Sun, 05 Feb 2023 04:04:14 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F626efb39-4b90-4979-bc7d-1a1ba9e7fc73.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F626efb39-4b90-4979-bc7d-1a1ba9e7fc73.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash eaca60722d35484e7cad5e6521465c75
470c81f1cab13436da9f94e97bb152fc9d01ad04
8c75170cdf9f6b97aef972568348aa4e6d67486ad1fdb7aa9d346e1cc8ae9df7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F626efb39-4b90-4979-bc7d-1a1ba9e7fc73.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9290
x-amzn-requestid: 5ed93026-d87a-4c82-81ce-8faa9e8dba60
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fsnFtFVUoAMF6Bw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63db5224-0e5fea32709d6f665f6b09db;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 06:03:16 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: AD5rpaPGI6jezDtJBS7-XTUoJQetiG6yyo6VbDfBYzk9RwPNYN5h2Q==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 22:57:11 GMT
etag: "470c81f1cab13436da9f94e97bb152fc9d01ad04"
content-type: image/jpeg
age: 18423
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d53279-1206-40a7-be9b-b504e0748218.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d53279-1206-40a7-be9b-b504e0748218.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7fff69db25a1c7a3fbe154a3c80ac5aa
638e08807f73b70ab87b804816f9eb3e8dd2aa74
be96b347ba90dda9c39975077d963ff875831a14a4269e28edc0d2f80928bba6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d53279-1206-40a7-be9b-b504e0748218.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5356
x-amzn-requestid: af4c4533-48b8-4b02-951a-3e61933fb126
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi3fyFrMoAMFr_w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76c64-0346b30d0ded67912070f671;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 07:06:12 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: IJBXK8DSlmaj48MVSTo-8A69jOe3x2cvnZYRLfyXZ7jZWqsMbTZsEg==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 21:43:52 GMT
age: 22822
etag: "638e08807f73b70ab87b804816f9eb3e8dd2aa74"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6e4dfe8-8de0-4ffd-85a4-544a7e82f052.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6e4dfe8-8de0-4ffd-85a4-544a7e82f052.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5d907b978dc107f6e95182eee954462a
29a73442173f75b4f3413e2c6459e8448b1cc33f
8268fb8aa86182e7c2113709cce8f559ac8cc831e12cfd7a75c67f30c69808a5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6e4dfe8-8de0-4ffd-85a4-544a7e82f052.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5652
x-amzn-requestid: a9d8e72b-b943-4c6d-a01c-7b7b65da6ee4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fzXDqG-eIAMFbTQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63de054a-778199ce1db9fa1b73a9d4ec;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 07:12:10 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CyZUnEQ1l6j1CZCVM63GYbV6mAnhjW3kh4E5M07jH6d3t4mwhSK4hw==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 22:04:01 GMT
age: 21613
etag: "29a73442173f75b4f3413e2c6459e8448b1cc33f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad342374-789b-497a-b212-29d0b2aaced0.jpeg
34.120.237.76200 OK 7.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad342374-789b-497a-b212-29d0b2aaced0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 75caf9549ac23c827c10d6baabb84884
e8391e4046acb91cd4a6113974fda1c44dcd3865
a01e3a9aaa0b0fa156303bcbf38c1c45ea6abe8d0a052734b05ea4da82f176c4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad342374-789b-497a-b212-29d0b2aaced0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7060
x-amzn-requestid: e3e457e7-b73a-4b5f-a7bb-9a643cde2760
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fwAv_GI1oAMFbIg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dcae66-6793e5e054a709881bb2d191;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 06:49:10 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6LeXkwyELIc_XykRxsfDIBu7Kda_3OHFDiteX0rKwDt-315catmvKw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 22:10:43 GMT
age: 21211
etag: "e8391e4046acb91cd4a6113974fda1c44dcd3865"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98423c35-aa11-41c0-8f4f-52bec4c9eaa8.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98423c35-aa11-41c0-8f4f-52bec4c9eaa8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b3e7140400336984afc6093c1246f863
59e0b21cdf4cfdac3f1ea05badd007727939ac42
4d927e74922159db5d07b9947fa1021cff74bb7b55759960cb3941d05c1e8f11
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98423c35-aa11-41c0-8f4f-52bec4c9eaa8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9579
x-amzn-requestid: c474008d-a6a9-409b-88e2-c55062044575
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fzQtnFGhoAMF5Zw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ddfb23-54dd67257ba25ad24e977a9c;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 06:28:51 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 0Of3BK3VqVMGQGDIODQthVmi7BC8Ney4zgGCpVuzYc1j6D8RRP-AxA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 11:55:41 GMT
age: 58113
etag: "59e0b21cdf4cfdac3f1ea05badd007727939ac42"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fef803fc0-c789-4c2b-8cb2-33bef88abc9c.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fef803fc0-c789-4c2b-8cb2-33bef88abc9c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bbb38d805862a1b3081eebf256e0dae0
4a5cb01390d897be8721cd4551c74d0452aff640
02443891d0533f37fe38b16febafc86fa64c457dc1827b97ec535d623486d549
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fef803fc0-c789-4c2b-8cb2-33bef88abc9c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8691
x-amzn-requestid: 51bb839e-c32c-4be9-9f38-7f8044160e70
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVsLgFPqIAMFfww=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d22716-3794126b47a79aed27e1aac4;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:09:10 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ZzB4intZtIAVIcqw9mAMRZi0to963HvX5jZkt03q0MjLup64VMIDpQ==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 03:41:55 GMT
age: 1339
etag: "4a5cb01390d897be8721cd4551c74d0452aff640"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Montserrat:wght@400;700;900&display=swap
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Montserrat:wght@400;700;900&display=swap
IP 142.250.74.106:0
GET /css2?family=Montserrat:wght@400;700;900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://apostanaboa.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 05 Feb 2023 04:04:12 GMT
date: Sun, 05 Feb 2023 04:04:12 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2