blancoshrimp.com/SB/PE
104.21.73.164301 Moved Permanently 162 B IP 104.21.73.164:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert fortinet Malware
GET /SB/PE HTTP/1.1
Host: blancoshrimp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 04 Feb 2023 01:53:14 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://blancoshrimp.com/SB/PE
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=omvjZLEzUuUuYeqkWQYOvvXy4q2cQkFKG5lvr8ix%2FIlZhBhV7Tf6UCBpt4P1nbCmh5a2y%2FUYs%2BvhhuhBh8jnM%2F%2BhUWjk282U%2BKfuEJC%2F5rI88YaN3akQiXfuvlwSvJYbDd5m"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 793fc57f4ab7b518-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d4e95d0d8982bcd07804baf6fc88231c
5027abda0875bd2529dd4d6691784c74da71a9ee
373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8217
Expires: Sat, 04 Feb 2023 04:10:11 GMT
Date: Sat, 04 Feb 2023 01:53:14 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ec47f9eed203ae063b9c210009de54a9
19ff156471b9cffbc2432c5b65543bdd18e36271
3974208ce1840f6c9467287b7e220379ed881d76db64939f411dbc500c103d48
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3974208CE1840F6C9467287B7E220379ED881D76DB64939F411DBC500C103D48"
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6824
Expires: Sat, 04 Feb 2023 03:46:58 GMT
Date: Sat, 04 Feb 2023 01:53:14 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 04 Feb 2023 01:36:12 GMT
content-type: application/json
age: 1022
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9a76feabb767086ae0fa54e0ffbf763f
3655d78994a1e9838340669462728b67c8c12e54
bf215ab858c7785b7c01f7d3d437a918f056f00fe9b065820e1cdd09b7bba8f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BF215AB858C7785B7C01F7D3D437A918F056F00FE9B065820E1CDD09B7BBA8F9"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8730
Expires: Sat, 04 Feb 2023 04:18:44 GMT
Date: Sat, 04 Feb 2023 01:53:14 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 3MGeKjXWoCuB/JLQrUMClMjPkw7YsMYKwB1AOHdG6QWCbKRX3SFdeoEQ8LjfIfBphZMzuvgdilI=
x-amz-request-id: SMQDSGRP4XX6R3W3
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 04 Feb 2023 01:52:39 GMT
age: 35
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 01:53:14 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash b4cede06098e6bce7ae3b9e7f5083d87
ffadab025aeea8377e6d019cf76ea7d59742f621
8dc6a46f189f992da3bde42f357f107b12c29b1c078ab713d7a545174a629766
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 01:53:14 GMT
Etag: "63dc9d60-117"
Server: ECS (amb/6B96)
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash b4cede06098e6bce7ae3b9e7f5083d87
ffadab025aeea8377e6d019cf76ea7d59742f621
8dc6a46f189f992da3bde42f357f107b12c29b1c078ab713d7a545174a629766
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 01:53:14 GMT
Etag: "63dc9d60-117"
Last-Modified: Sat, 04 Feb 2023 01:53:14 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 279
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 04 Feb 2023 01:49:07 GMT
age: 247
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
code.jquery.com/jquery-3.6.0.slim.min.js
69.16.175.42200 OK 25 kB URL HTTP/2 code.jquery.com/jquery-3.6.0.slim.min.js
IP 69.16.175.42:0
File type ASCII text, with very long lines (65241)
Hash ae3ffbb71d763d2a1ca869e4866b23ae
22723a163afd77efe96e92eaca712583612b3e73
29dda737fcaf96a8a4ea6d0dd66c6e379a4c98cf3374647388650ee6e48a462c
GET /jquery-3.6.0.slim.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://blancoshrimp.com
Connection: keep-alive
Referer: https://blancoshrimp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:15 GMT
content-encoding: gzip
content-length: 24587
content-type: application/javascript; charset=utf-8
last-modified: Wed, 16 Feb 2022 10:50:39 GMT
accept-ranges: bytes
server: nginx
etag: W/"620cd6ff-11ab4"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1675475595.dop068.sk1.t,1675475595.cds215.sk1.hn,1675475595.cds258.sk1.c
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2260
Expires: Sat, 04 Feb 2023 02:30:55 GMT
Date: Sat, 04 Feb 2023 01:53:15 GMT
Connection: keep-alive
www.securely-send.com/storage/pu_cd_pe_pa_aa_vold.js
161.35.78.172200 OK 44 kB URL HTTP/2 www.securely-send.com/storage/pu_cd_pe_pa_aa_vold.js
IP 161.35.78.172:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (43765), with no line terminators
Hash 0ab2caa6305d4fadf461e179a16c4f81
fb888a55aef46fa62ef67adff23f34142a989037
362bbba94f4366363ac1a4009488b17b2b28243ba28d39734b5d5669cc496ae5
Analyzer Verdict Alert fortinet Phishing
GET /storage/pu_cd_pe_pa_aa_vold.js HTTP/1.1
Host: www.securely-send.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blancoshrimp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sat, 04 Feb 2023 01:53:15 GMT
content-type: application/javascript; charset=utf-8
content-length: 43765
last-modified: Wed, 01 Feb 2023 10:07:58 GMT
etag: "63da39fe-aaf5"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
push.services.mozilla.com/
35.83.22.170101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.83.22.170:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 17FTpH3GzAuCn3SUhGETKQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: s82E9sCLBJoNmvlLk/aKHh8pFbI=
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 6f5501c015c524f0dd4d0978012c466b
50afd0f8006dc626aa4da59e68943dc4af8305e6
93ec17f37844115a1f1e84c899626bb562a9150e8877189c66dd28e90f29e81c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2234
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 01:53:15 GMT
Etag: "63dcae58-117"
Last-Modified: Sat, 04 Feb 2023 01:16:01 GMT
Server: ECS (amb/6B96)
X-Cache: HIT
Content-Length: 279
www.bet365.com/olp/open-account?affiliate=365_01155434
5.226.179.10200 OK 4.7 kB URL HTTP/1.1 www.bet365.com/olp/open-account?affiliate=365_01155434
IP 5.226.179.10:0
ASN #209242 Cloudflare London, LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 134ab4d7dbdae2912479c48253ace645
eafbff5e0844fc1e520e1a212c8eb37454fe42b6
e9e00426b696a841843c371a0e4de2dc74775a52dd909e0a79c9460af833f844
GET /olp/open-account?affiliate=365_01155434 HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:53:15 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ServerDetails: <!--2P1 - 79-->
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=kySnLZ4Y5VLsPhorhwfXDN9s3A.ItkMQrE3nBAkCy3k-1675475595-0-AQu7jvwa9ctQJlNZGetOLGJleBEBdSBHNi3Y7kDHIZNqoFAlofLor3lE0uyaWK+II5l4xM6Z0kjatRHpSOBgnks=; path=/; expires=Sat, 04-Feb-23 02:23:15 GMT; domain=.bet365.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 793fc5896d30b51e-OSL
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash c181c51a9326d56e60915a792c306c2c
de1cc0ce1384905e65a9fa9575743091d785e528
b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 01:53:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.bet365.com/olpc/nn/143/0/1/open-account
5.226.179.10200 OK 13 kB URL HTTP/1.1 www.bet365.com/olpc/nn/143/0/1/open-account
IP 5.226.179.10:0
ASN #209242 Cloudflare London, LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2285), with CRLF line terminators
Hash 0ac54a6bd4ed9160469c2963c5be99d3
2ce7ecd28702ee29e23d81405657feb2c33624c2
c24682a94b6a21e445e978d6216258617b3ab8d3d17a9a60cafe502d314f981c
GET /olpc/nn/143/0/1/open-account HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/olp/open-account?affiliate=365_01155434
Cookie: __cf_bm=kySnLZ4Y5VLsPhorhwfXDN9s3A.ItkMQrE3nBAkCy3k-1675475595-0-AQu7jvwa9ctQJlNZGetOLGJleBEBdSBHNi3Y7kDHIZNqoFAlofLor3lE0uyaWK+II5l4xM6Z0kjatRHpSOBgnks=
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:53:15 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 12839
Connection: keep-alive
Cache-Control: private
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Security-Policy: default-src 'self';script-src 'self' 'unsafe-inline' https://www.googletagmanager.com;frame-src 'self' http://members.bet365.com 'nonce-WwyptYzNoFdyhG+AN4yVIjc9CnPH5CmjP+deW4JNyEU=';style-src 'self' 'unsafe-inline';img-src 'self' data: https://content001.bet365.com/ https://content001.bet365.com/SportsContent/ 'nonce-WwyptYzNoFdyhG+AN4yVIjc9CnPH5CmjP+deW4JNyEU=';connect-src 'self' https://www.google-analytics.com http://members.bet365.com https://extra.bet365.com 'nonce-WwyptYzNoFdyhG+AN4yVIjc9CnPH5CmjP+deW4JNyEU=';font-src 'self' data: 'nonce-WwyptYzNoFdyhG+AN4yVIjc9CnPH5CmjP+deW4JNyEU=';
Last-Modified: Fri, 03 Feb 2023 20:55:05 GMT
CF-Cache-Status: HIT
Age: 3404
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 793fc589ed71b51e-OSL
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash dba0022a9b170fdd4f03167987b46aa2
4e8ee780d81673bf7d457d77aa84eb45bc4b8d66
2c4fb89413268c130924d107be68bf916748287c1aead30f2e5f59ee3ca76609
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2293
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 01:53:15 GMT
Last-Modified: Sat, 04 Feb 2023 01:15:03 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9f93c096cdd2ec76c3dea40a1d63727f
2b1a3aad4481dbe2add0369b6373490d34f880a7
6e334d037f771664bf03bbe1769d375010b8b1418d0b097b72a975352b9db015
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6E334D037F771664BF03BBE1769D375010B8B1418D0B097B72A975352B9DB015"
Last-Modified: Thu, 02 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=473
Expires: Sat, 04 Feb 2023 02:01:08 GMT
Date: Sat, 04 Feb 2023 01:53:15 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 0470d90bd42cb55e4c17d152729c2ab8
9e22586e486e56464c6a4ff8c873bf8a96674bd4
eb33829d01d862b9a387e1bb79ee7a32a5070198b6a0ad76172d0cbf75f84049
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6010
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 01:53:15 GMT
Last-Modified: Sat, 04 Feb 2023 00:13:05 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 280
www.bet365.com/olpc/Content/Fonts/FTN45__W.woff2
5.226.179.10200 OK 46 kB URL HTTP/1.1 www.bet365.com/olpc/Content/Fonts/FTN45__W.woff2
IP 5.226.179.10:0
ASN #209242 Cloudflare London, LLC
File type Web Open Font Format (Version 2), TrueType, length 45892, version 1.590\012- data
Hash e3596a29429736364ebfef73786a55ab
7bd9b6b18b0985c080d520610c0ab74a128d71bd
6e28311fc68644a88a32df782c7371991894bc6a6a81f8ff70f971b4470c3751
GET /olpc/Content/Fonts/FTN45__W.woff2 HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/olpc/nn/143/0/1/open-account
Cookie: __cf_bm=kySnLZ4Y5VLsPhorhwfXDN9s3A.ItkMQrE3nBAkCy3k-1675475595-0-AQu7jvwa9ctQJlNZGetOLGJleBEBdSBHNi3Y7kDHIZNqoFAlofLor3lE0uyaWK+II5l4xM6Z0kjatRHpSOBgnks=
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:53:15 GMT
Content-Length: 45892
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 00:51:58 GMT
CF-Cache-Status: HIT
Age: 1947
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793fc58a3d99b51e-OSL
www.bet365.com/olpc/olpc-scripts.js?v=KDTjkmVXa0zSSWIyyHmLFOBOjdyHlaqJQbhw88pHAIA1
5.226.179.10200 OK 7.8 kB URL HTTP/1.1 www.bet365.com/olpc/olpc-scripts.js?v=KDTjkmVXa0zSSWIyyHmLFOBOjdyHlaqJQbhw88pHAIA1
IP 5.226.179.10:0
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (22529), with no line terminators
Hash 0f970d13f157c52f1f0e1eaa43d225c0
6e2bd108ccb272927e5f1ceef33697867862306f
5881568c0f146564710d8c30b9056ae1b2404d45e7cb09f9b455fedeabdcb821
GET /olpc/olpc-scripts.js?v=KDTjkmVXa0zSSWIyyHmLFOBOjdyHlaqJQbhw88pHAIA1 HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/olpc/nn/143/0/1/open-account
Cookie: __cf_bm=kySnLZ4Y5VLsPhorhwfXDN9s3A.ItkMQrE3nBAkCy3k-1675475595-0-AQu7jvwa9ctQJlNZGetOLGJleBEBdSBHNi3Y7kDHIZNqoFAlofLor3lE0uyaWK+II5l4xM6Z0kjatRHpSOBgnks=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:53:15 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 7792
Connection: keep-alive
Cache-Control: public
Content-Encoding: gzip
Expires: Sat, 03 Feb 2024 20:51:52 GMT
Last-Modified: Fri, 03 Feb 2023 20:51:52 GMT
Vary: User-Agent,Accept-Encoding
CF-Cache-Status: HIT
Age: 3611
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 793fc58a6db3b51e-OSL
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash c181c51a9326d56e60915a792c306c2c
de1cc0ce1384905e65a9fa9575743091d785e528
b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 01:53:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
e1.o.lencr.org/
23.36.77.32200 OK 346 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b62003434217935f45d4a36c288cc814
4c36aae857ca36f64b7dfd33c16f6ec8bdeb2c33
cdaa0d2f5507d7d1e230ba2cdd823c980c7473d5bf4f4a8c8cd3c3185a364319
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "CDAA0D2F5507D7D1E230BA2CDD823C980C7473D5BF4F4A8C8CD3C3185A364319"
Last-Modified: Wed, 01 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7813
Expires: Sat, 04 Feb 2023 04:03:28 GMT
Date: Sat, 04 Feb 2023 01:53:15 GMT
Connection: keep-alive
ic.aff-handler.com/C/45577?sr=1853546
217.147.127.42302 Found 309 B URL HTTP/1.1 ic.aff-handler.com/C/45577?sr=1853546
IP 217.147.127.42:0
ASN #201071 Virtual Internet Services Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 5db039a4ff38ac0d980b415ad5d379ad
d826fe8c8cc3a805fc4c0b1ecee760c658c74e1c
52dacdb6e718e9c07c74819561740db6d88cbd68a4e02c3e1262f92583f36bef
GET /C/45577?sr=1853546 HTTP/1.1
Host: ic.aff-handler.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Pragma: no-cache
Content-Type: text/html; charset=utf-8
Expires: 0
Location: https://es.888casino.com/exclusive-mob/spinson.htm?sr=1853546&mm_id=45577&utm_source=aff&utm_medium=casap&utm_content=100138643&utm_campaign=100138643_1853546_nodescription
Server:
X-AspNetMvc-Version: 4.0
Set-Cookie: uffiliate_click_45577_1853546_=uffiliate_click_45577_1853546_; expires=Mon, 06-Mar-2023 01:53:15 GMT; path=/; SameSite=None; Secure
srv: 1231321
Date: Sat, 04 Feb 2023 01:53:15 GMT
Content-Length: 309
www.bet365.com/olpc/olpc-styles.css?v=ADHdDai99bBc7EkexwsG2Dy6MZFuXii0weu-ag9vIh01
5.226.179.10200 OK 125 kB URL HTTP/1.1 www.bet365.com/olpc/olpc-styles.css?v=ADHdDai99bBc7EkexwsG2Dy6MZFuXii0weu-ag9vIh01
IP 5.226.179.10:0
ASN #209242 Cloudflare London, LLC
File type Unicode text, UTF-8 text, with very long lines (335), with CRLF line terminators
Size 125 kB (124685 bytes)
Hash dd53b53b336bc4ed72b70391cdce8608
ef277ce9827cea6ac495e1628b6f123c91334745
2f4b5295a21a0883f6f1d490ead1f98e7516c077f48a758b5d12cce1a7ac44fe
GET /olpc/olpc-styles.css?v=ADHdDai99bBc7EkexwsG2Dy6MZFuXii0weu-ag9vIh01 HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/olpc/nn/143/0/1/open-account
Cookie: __cf_bm=kySnLZ4Y5VLsPhorhwfXDN9s3A.ItkMQrE3nBAkCy3k-1675475595-0-AQu7jvwa9ctQJlNZGetOLGJleBEBdSBHNi3Y7kDHIZNqoFAlofLor3lE0uyaWK+II5l4xM6Z0kjatRHpSOBgnks=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:53:15 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: public
Content-Encoding: gzip
Expires: Sat, 03 Feb 2024 20:51:52 GMT
Last-Modified: Fri, 03 Feb 2023 20:51:52 GMT
Vary: User-Agent,Accept-Encoding
CF-Cache-Status: HIT
Age: 3611
Server: cloudflare
CF-RAY: 793fc58abe1ab4eb-OSL
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 7d482750bf7fdfcaa38c0efd583ef4dc
a4f68a124e4be130bc838e70f23fd4c6d2f4ef2d
5e6f1cadf4bc425664bb26fa2b384cf13900461b689c77d0916b1d2edd41337c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 01:53:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 4e5feba509e86d9f92be26649f75c721
79b9324f97c0e3f01aa3ca18a226503ac2458b28
807c8481df8f41fa054fca6e225766bee61c21104aa81f75c3bd4805887f8246
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2638
Cache-Control: max-age=97787
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 01:53:15 GMT
Etag: "63dc8b38-117"
Expires: Sun, 05 Feb 2023 05:03:02 GMT
Last-Modified: Fri, 03 Feb 2023 04:19:04 GMT
Server: ECS (amb/6BA9)
X-Cache: HIT
Content-Length: 279
www.bet365.com/members/services/host/Scripts/js/ProductCommon_v1.js
5.226.179.10200 OK 3.6 kB URL HTTP/1.1 www.bet365.com/members/services/host/Scripts/js/ProductCommon_v1.js
IP 5.226.179.10:0
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (9857), with no line terminators
Hash 8526418443f6bcfead67615247d3e38a
6935cb6ce3e37192afcd3d08ec3b2d9c18035d20
49fa8353e8973f41c38723a669bd3200fd658ba87d6c121eb45da4af631825aa
GET /members/services/host/Scripts/js/ProductCommon_v1.js HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/olpc/nn/143/0/1/open-account
Cookie: __cf_bm=kySnLZ4Y5VLsPhorhwfXDN9s3A.ItkMQrE3nBAkCy3k-1675475595-0-AQu7jvwa9ctQJlNZGetOLGJleBEBdSBHNi3Y7kDHIZNqoFAlofLor3lE0uyaWK+II5l4xM6Z0kjatRHpSOBgnks=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:53:15 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: 0
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
x-bet-hop: 1
Content-Encoding: gzip
Last-Modified: Sat, 04 Feb 2023 01:53:15 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793fc58a9dbfb50b-OSL
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 6f5501c015c524f0dd4d0978012c466b
50afd0f8006dc626aa4da59e68943dc4af8305e6
93ec17f37844115a1f1e84c899626bb562a9150e8877189c66dd28e90f29e81c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 863
Cache-Control: max-age=105004
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 01:53:15 GMT
Etag: "63dcae58-117"
Expires: Sun, 05 Feb 2023 07:03:19 GMT
Last-Modified: Fri, 03 Feb 2023 06:48:56 GMT
Server: ECS (amb/6BBD)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 01:53:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.bet365.com/members/services/host/Scripts/js/ProductCommon_v1.js?async
5.226.179.10200 OK 699 B URL HTTP/1.1 www.bet365.com/members/services/host/Scripts/js/ProductCommon_v1.js?async
IP 5.226.179.10:0
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (990), with no line terminators
Hash 20b69ff46463e585b032ce20a12ecbec
82f69e234a17a1af480f5b3260897c340c87332b
0663e1637557accafd90f76fb2b3a0ffec7317e29bfb451b0292028fe87bc844
GET /members/services/host/Scripts/js/ProductCommon_v1.js?async HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/olpc/nn/143/0/1/open-account
Cookie: __cf_bm=kySnLZ4Y5VLsPhorhwfXDN9s3A.ItkMQrE3nBAkCy3k-1675475595-0-AQu7jvwa9ctQJlNZGetOLGJleBEBdSBHNi3Y7kDHIZNqoFAlofLor3lE0uyaWK+II5l4xM6Z0kjatRHpSOBgnks=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:53:16 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: 0
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
x-bet-hop: 1
Content-Encoding: gzip
Last-Modified: Sat, 04 Feb 2023 01:53:15 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793fc58aae4f0b45-OSL
www.googletagmanager.com/gtm.js?id=GTM-T2BKDHM
142.250.74.168200 OK 40 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-T2BKDHM
IP 142.250.74.168:0
File type ASCII text, with very long lines (1759)
Hash 5b64da94a7b2a7e04b99ca5b7d2da7cb
a5b7f108ab63b56e78482c3967bc5e96ae0f120e
a1de650b66adb555a630609cd3ce21f4a5b280b17f4723001b7cb0db6a0e57f7
GET /gtm.js?id=GTM-T2BKDHM HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 04 Feb 2023 01:53:15 GMT
expires: Sat, 04 Feb 2023 01:53:15 GMT
cache-control: private, max-age=900
last-modified: Sat, 04 Feb 2023 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 40109
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.227200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://blancoshrimp.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 Feb 2023 07:08:09 GMT
expires: Sat, 03 Feb 2024 07:08:09 GMT
cache-control: public, max-age=31536000
age: 67507
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.bet365.com/members/services/host/Scripts/js/ProductCommon_v1.js?seed=AMBlCxqGAQAAVD34Vdy2YXLA7y3wS4By5rT4E8t3t1s3wenDyHCgSReB7K6b&PIRXTcSdwp--z=q
5.226.179.10200 OK 176 kB URL HTTP/1.1 www.bet365.com/members/services/host/Scripts/js/ProductCommon_v1.js?seed=AMBlCxqGAQAAVD34Vdy2YXLA7y3wS4By5rT4E8t3t1s3wenDyHCgSReB7K6b&PIRXTcSdwp--z=q
IP 5.226.179.10:0
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (65536), with no line terminators
Size 176 kB (175481 bytes)
Hash 64e0bbc4c6a2af3e70088c633e1bddc6
941bc5dcb64a45d6d475e3183928dc32243ff6f6
e6bf80cba18b2550cee360d691d45156a05969416a4c0b9b0bb3d2ee3a9c7f33
GET /members/services/host/Scripts/js/ProductCommon_v1.js?seed=AMBlCxqGAQAAVD34Vdy2YXLA7y3wS4By5rT4E8t3t1s3wenDyHCgSReB7K6b&PIRXTcSdwp--z=q HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/olpc/nn/143/0/1/open-account
Cookie: __cf_bm=kySnLZ4Y5VLsPhorhwfXDN9s3A.ItkMQrE3nBAkCy3k-1675475595-0-AQu7jvwa9ctQJlNZGetOLGJleBEBdSBHNi3Y7kDHIZNqoFAlofLor3lE0uyaWK+II5l4xM6Z0kjatRHpSOBgnks=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:53:16 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: public, max-age=3600, immutable
x-bet-hop: 1
Content-Encoding: gzip
Last-Modified: Sat, 04 Feb 2023 01:30:00 GMT
CF-Cache-Status: HIT
Age: 1396
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793fc58b2e4db4eb-OSL
gml-grp.com/C.ashx?btag=a_13943b_1919c_&affid=4168&siteid=13943&adid=1919&c=PU_PE_PA_SB_DT_VOLD_BETANO
188.114.96.1302 Found 529 B URL HTTP/2 gml-grp.com/C.ashx?btag=a_13943b_1919c_&affid=4168&siteid=13943&adid=1919&c=PU_PE_PA_SB_DT_VOLD_BETANO
IP 188.114.96.1:0
Hash 89f56a15798ef8bafd69a124941dd74e
9d856cb456a1b71f057acd214a33cd8d94586da9
fa0b4c1294197bf792359d319d6ee671e4429c1ea150997011a744eb1df11e3a
GET /C.ashx?btag=a_13943b_1919c_&affid=4168&siteid=13943&adid=1919&c=PU_PE_PA_SB_DT_VOLD_BETANO HTTP/1.1
Host: gml-grp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 04 Feb 2023 01:53:15 GMT
content-type: text/html; charset=utf-8
cache-control: private
location: //gml-grp.com/C.ashx?btag=a_13943b_1919c_&affid=4168&siteid=13943&adid=1919&c=PU_PE_PA_SB_DT_VOLD_BETANO&AutoR=1
x-aspnet-version: 4.0.30319
set-cookie: CEK=a; expires=Fri, 05-May-2023 01:53:15 GMT; path=/; SameSite=None; Secure
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BKqcRrX00sVakvlgoXrYrWpSfZJ79K%2FEGxTsYEkMmdgdx0muU4VR5RDVZEzjX2EKTIIZh7N8s0yBqDA2eklySRPV8FxgrFGDCNiQLFA8RH0F4gCZj%2FjsEntvsmS80w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793fc589caaeb524-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 4cff2d11ab486bf4c1d7b16f9408dbb7
847e0bbea9d1206340ec5d03063a72068086c7ab
5f3a553621dd89c40420d21556706a97607edb7eeccb0f28aabd5a468ff99157
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6336
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 01:53:16 GMT
Etag: "63dc44eb-117"
Last-Modified: Sat, 04 Feb 2023 00:07:41 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 372111fb86d5e078ef8ca6c1177968a7
b4c1c1937c883b6164842f1fccc1b7bd6c1e6460
f1f4b83a18800543680315c89f8f7b7d79d9e53acefdb40b9eb47a0ef930e3c1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=104142
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 01:53:15 GMT
Etag: "63dcae59-116"
Expires: Sun, 05 Feb 2023 06:48:57 GMT
Last-Modified: Fri, 03 Feb 2023 06:48:57 GMT
Server: nginx
Content-Length: 278
members.bet365.com/Members/Helpers/DefaultAff.aspx?affiliate=365_01155434
5.226.179.10200 OK 177 B URL HTTP/1.1 members.bet365.com/Members/Helpers/DefaultAff.aspx?affiliate=365_01155434
IP 5.226.179.10:0
ASN #209242 Cloudflare London, LLC
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 475774a26d4f30240a3534bcbd2fd161
9fd7b986673786b4fc80943b330bd1c03256049e
f7541d6ca43b4da74a89ec05885dceabf1a4af132d36326cf7974a47c904c811
GET /Members/Helpers/DefaultAff.aspx?affiliate=365_01155434 HTTP/1.1
Host: members.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/
Cookie: __cf_bm=kySnLZ4Y5VLsPhorhwfXDN9s3A.ItkMQrE3nBAkCy3k-1675475595-0-AQu7jvwa9ctQJlNZGetOLGJleBEBdSBHNi3Y7kDHIZNqoFAlofLor3lE0uyaWK+II5l4xM6Z0kjatRHpSOBgnks=
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:53:16 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 177
Connection: keep-alive
Cache-Control: private
Content-Encoding: gzip
Vary: Accept-Encoding
ME-Redirect: PQB
Set-Cookie: Affiliates=Code=365_01155434%2f166151425329&prd=Sports; domain=.bet365.com; expires=Tue, 21-Mar-2023 01:53:15 GMT; path=/; secure
session=processform=0; path=/; secure
pstk=A5D50429E3E50D92B919D63CCC2417CD000003; domain=.bet365.com; path=/; secure
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793fc58a6c591c0a-OSL
promo.20bet.partners/redirect.aspx?pid=191762&bid=1971&lpid=1091
23.36.79.25307 Temporary Redirect 0 B URL HTTP/2 promo.20bet.partners/redirect.aspx?pid=191762&bid=1971&lpid=1091
IP 23.36.79.25:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect.aspx?pid=191762&bid=1971&lpid=1091 HTTP/1.1
Host: promo.20bet.partners
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
content-type: text/html
content-length: 0
location: https://20media.world/pe?btag=668128_20291175FC544DC8B68537A119FB1815
p3p: CP="This is not a P3P policy! It is used to bypass IEs problematic handling of cookies"
x-aspnet-version: 4.0.30319
request-context: appId=cid-v1:83ffbda4-9458-475e-90ec-4427cfb5c3b0
access-control-expose-headers: Request-Context
expires: Sat, 04 Feb 2023 01:53:16 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 04 Feb 2023 01:53:16 GMT
set-cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a191762%2c%22BID%22%3a1971%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675475595993)%5c%2f%22%2c%22CookieTag%22%3a%221971191762451240919C202324153%22%7d%5d; SameSite=None;; domain=.20bet.partners; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; secure
NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%221094692693%7c1%22%7d%5d; domain=.20bet.partners; expires=Mon, 04-Feb-3022 01:53:16 GMT; path=/; secure; SameSite=Strict
server-timing: cdn-cache; desc=MISS, edge; dur=19, origin; dur=113
X-Firefox-Spdy: h2
media.betwarrior.bet/redirect.aspx?pid=9279&bid=3038
23.36.79.16307 Temporary Redirect 0 B URL HTTP/2 media.betwarrior.bet/redirect.aspx?pid=9279&bid=3038
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect.aspx?pid=9279&bid=3038 HTTP/1.1
Host: media.betwarrior.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
content-type: text/html
content-length: 0
location: https://betwarrior.bet/es/sports?register&btag=655952_E5959276B85C46628013EA0CC44CB82C
p3p: CP="This is not a P3P policy! It is used to bypass IEs problematic handling of cookies"
x-aspnet-version: 4.0.30319
request-context: appId=cid-v1:83ffbda4-9458-475e-90ec-4427cfb5c3b0
access-control-expose-headers: Request-Context
expires: Sat, 04 Feb 2023 01:53:16 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 04 Feb 2023 01:53:16 GMT
set-cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a9279%2c%22BID%22%3a3038%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675475596106)%5c%2f%22%2c%22CookieTag%22%3a%2230389279451240919C202324153%22%7d%5d; SameSite=None;; domain=.betwarrior.bet; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; secure
NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%2239427814%7c1%22%7d%5d; domain=.betwarrior.bet; expires=Mon, 04-Feb-3022 01:53:16 GMT; path=/; secure; SameSite=Strict
server-timing: cdn-cache; desc=MISS, edge; dur=94, origin; dur=56
X-Firefox-Spdy: h2
content001.bet365.com/SportsContent/Global/Footer/SPORTSX2-18.png
5.226.179.10200 OK 4.4 kB URL HTTP/1.1 content001.bet365.com/SportsContent/Global/Footer/SPORTSX2-18.png
IP 5.226.179.10:0
ASN #209242 Cloudflare London, LLC
File type PNG image data, 65 x 65, 8-bit/color RGBA, non-interlaced\012- data
Hash 097b1799e6f2ab026f137f91b4627384
fd6a5222f5743cccc954a311b6d30b4125179244
5af616c5e6ad0d97aa233ed4644776ca94de0cfb1a653844d8a5d9ee46e756af
GET /SportsContent/Global/Footer/SPORTSX2-18.png HTTP/1.1
Host: content001.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/
Cookie: __cf_bm=kySnLZ4Y5VLsPhorhwfXDN9s3A.ItkMQrE3nBAkCy3k-1675475595-0-AQu7jvwa9ctQJlNZGetOLGJleBEBdSBHNi3Y7kDHIZNqoFAlofLor3lE0uyaWK+II5l4xM6Z0kjatRHpSOBgnks=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:53:16 GMT
Content-Type: image/png
Content-Length: 4400
Connection: keep-alive
Last-Modified: Fri, 20 Mar 2015 09:13:01 GMT
Timing-Allow-Origin: *
CF-Cache-Status: HIT
Expires: Thu, 09 Feb 2023 01:53:16 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793fc58b99cfb51b-OSL
content001.bet365.com/SportsContent/Global/Footer/eCogra-Horizontal2x.png
5.226.179.10200 OK 1.7 kB URL HTTP/1.1 content001.bet365.com/SportsContent/Global/Footer/eCogra-Horizontal2x.png
IP 5.226.179.10:0
ASN #209242 Cloudflare London, LLC
File type PNG image data, 206 x 48, 8-bit colormap, non-interlaced\012- data
Hash 9c970e4a7854f871873d7b1401701536
2236689845834104a586507057840c7229c7353c
d0438c85b7b5f9c21ac9a1975ccd12464f5f8cbf15d3353ee700e2617f913349
GET /SportsContent/Global/Footer/eCogra-Horizontal2x.png HTTP/1.1
Host: content001.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/
Cookie: __cf_bm=kySnLZ4Y5VLsPhorhwfXDN9s3A.ItkMQrE3nBAkCy3k-1675475595-0-AQu7jvwa9ctQJlNZGetOLGJleBEBdSBHNi3Y7kDHIZNqoFAlofLor3lE0uyaWK+II5l4xM6Z0kjatRHpSOBgnks=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:53:16 GMT
Content-Type: image/png
Content-Length: 1671
Connection: keep-alive
Last-Modified: Wed, 11 Aug 2021 10:23:12 GMT
Timing-Allow-Origin: *
CF-Cache-Status: HIT
Expires: Thu, 09 Feb 2023 01:53:16 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793fc58b989ab4e8-OSL
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 7d482750bf7fdfcaa38c0efd583ef4dc
a4f68a124e4be130bc838e70f23fd4c6d2f4ef2d
5e6f1cadf4bc425664bb26fa2b384cf13900461b689c77d0916b1d2edd41337c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 01:53:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=G-45M1DQFW2B&l=dataLayer&cx=c
142.250.74.168200 OK 82 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-45M1DQFW2B&l=dataLayer&cx=c
IP 142.250.74.168:0
File type ASCII text, with very long lines (32561)
Hash 3509e9820a08ba7e5d8eea29a0120edf
fa6f44b00541248622070baf7ee6383a160d3a9c
176b6e0d227b6df9ceb31b38a68fe297369205bc8ce4c678943309c603afbec8
GET /gtag/js?id=G-45M1DQFW2B&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 04 Feb 2023 01:53:16 GMT
expires: Sat, 04 Feb 2023 01:53:16 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 81724
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 01:53:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
content001.bet365.com/SportsContent/Global/Footer/GordonMoody/GordonMoody-GT-x2_Grey99.png
5.226.179.10200 OK 5.3 kB URL HTTP/1.1 content001.bet365.com/SportsContent/Global/Footer/GordonMoody/GordonMoody-GT-x2_Grey99.png
IP 5.226.179.10:0
ASN #209242 Cloudflare London, LLC
File type PNG image data, 188 x 60, 8-bit gray+alpha, non-interlaced\012- data
Hash 40ed9c8ae714b944f87008ab90bb071d
32bbf71529809e6ea3521c5636838a76c7488fae
b163877ec48382be73ffdf62c6a5dc5ded37443856dde414e591dfe85b61f070
GET /SportsContent/Global/Footer/GordonMoody/GordonMoody-GT-x2_Grey99.png HTTP/1.1
Host: content001.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/
Cookie: __cf_bm=kySnLZ4Y5VLsPhorhwfXDN9s3A.ItkMQrE3nBAkCy3k-1675475595-0-AQu7jvwa9ctQJlNZGetOLGJleBEBdSBHNi3Y7kDHIZNqoFAlofLor3lE0uyaWK+II5l4xM6Z0kjatRHpSOBgnks=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:53:16 GMT
Content-Type: image/png
Content-Length: 5324
Connection: keep-alive
Last-Modified: Mon, 11 Oct 2021 13:13:24 GMT
Timing-Allow-Origin: *
CF-Cache-Status: HIT
Expires: Thu, 09 Feb 2023 01:53:16 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793fc58bf9f8b51b-OSL
content001.bet365.com/SportsContent/Global/Footer/bet365%20grey%20footer%20logo.png
5.226.179.10200 OK 7.9 kB URL HTTP/1.1 content001.bet365.com/SportsContent/Global/Footer/bet365%20grey%20footer%20logo.png
IP 5.226.179.10:0
ASN #209242 Cloudflare London, LLC
File type PNG image data, 255 x 53, 8-bit/color RGBA, non-interlaced\012- data
Hash 51325bd6f5ada6b0eba71b19dda89dd7
4c67ca4f77680cd5acdcf04cac6b9a673e5ccc70
6ad4d67eed235fafc8ddfab188fa2e968ba4345718c8338bd7f4fbfafa6f8a2b
GET /SportsContent/Global/Footer/bet365%20grey%20footer%20logo.png HTTP/1.1
Host: content001.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/
Cookie: __cf_bm=kySnLZ4Y5VLsPhorhwfXDN9s3A.ItkMQrE3nBAkCy3k-1675475595-0-AQu7jvwa9ctQJlNZGetOLGJleBEBdSBHNi3Y7kDHIZNqoFAlofLor3lE0uyaWK+II5l4xM6Z0kjatRHpSOBgnks=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:53:16 GMT
Content-Type: image/png
Content-Length: 7868
Connection: keep-alive
Last-Modified: Thu, 11 Jun 2015 14:13:32 GMT
Timing-Allow-Origin: *
CF-Cache-Status: HIT
Expires: Thu, 09 Feb 2023 01:53:16 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793fc58bfa9e1c06-OSL
e1.o.lencr.org/
23.36.77.32200 OK 346 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b62003434217935f45d4a36c288cc814
4c36aae857ca36f64b7dfd33c16f6ec8bdeb2c33
cdaa0d2f5507d7d1e230ba2cdd823c980c7473d5bf4f4a8c8cd3c3185a364319
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "CDAA0D2F5507D7D1E230BA2CDD823C980C7473D5BF4F4A8C8CD3C3185A364319"
Last-Modified: Wed, 01 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7812
Expires: Sat, 04 Feb 2023 04:03:28 GMT
Date: Sat, 04 Feb 2023 01:53:16 GMT
Connection: keep-alive
content001.bet365.com/SportsContent/Global/Footer/SPORTSX1-ESSA_2.png
5.226.179.10200 OK 6.4 kB URL HTTP/1.1 content001.bet365.com/SportsContent/Global/Footer/SPORTSX1-ESSA_2.png
IP 5.226.179.10:0
ASN #209242 Cloudflare London, LLC
File type PNG image data, 162 x 35, 8-bit/color RGBA, non-interlaced\012- data
Hash 1b8c19b189cccdda7105465a474c9b4d
6ef1cecd283f484606c987259e06a22ff3aff7ae
101ca051649af6826119108f51311f70b4d58e94242c8877a2b8a9247b90f54f
GET /SportsContent/Global/Footer/SPORTSX1-ESSA_2.png HTTP/1.1
Host: content001.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/
Cookie: __cf_bm=kySnLZ4Y5VLsPhorhwfXDN9s3A.ItkMQrE3nBAkCy3k-1675475595-0-AQu7jvwa9ctQJlNZGetOLGJleBEBdSBHNi3Y7kDHIZNqoFAlofLor3lE0uyaWK+II5l4xM6Z0kjatRHpSOBgnks=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:53:16 GMT
Content-Type: image/png
Content-Length: 6386
Connection: keep-alive
Last-Modified: Tue, 04 Jun 2019 13:21:41 GMT
Timing-Allow-Origin: *
CF-Cache-Status: HIT
Expires: Thu, 09 Feb 2023 01:53:16 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793fc58c1b00b523-OSL
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a063d956f2cb831cbed24bfb9c7bd7b5
8dd3bbecea83d899816754f26ce4e7d017d603e3
7c481700b9197d8bdc2474011d3196de33b81d936e923f82d57517ed2df169ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7C481700B9197D8BDC2474011D3196DE33B81D936E923F82D57517ED2DF169BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2216
Expires: Sat, 04 Feb 2023 02:30:12 GMT
Date: Sat, 04 Feb 2023 01:53:16 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash f6ee5358ccb0ba20f9b6e9395dead455
7610e0ad8117428d6f9e53b9e26f9525c7beb533
76ed7a3c00e1e91c88b4549201879b1bfabcf630f91a59ab309bddddc8ef8a55
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2317
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 01:53:16 GMT
Last-Modified: Sat, 04 Feb 2023 01:14:39 GMT
Server: ECS (amb/6BB2)
X-Cache: HIT
Content-Length: 279
refpaiozdg.top/L?tag=d_2032927m_25437c_&site=2032927&ad=25437&r=registration/
45.135.120.29303 See Other 0 B URL HTTP/2 refpaiozdg.top/L?tag=d_2032927m_25437c_&site=2032927&ad=25437&r=registration/
IP 45.135.120.29:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /L?tag=d_2032927m_25437c_&site=2032927&ad=25437&r=registration/ HTTP/1.1
Host: refpaiozdg.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 303 See Other
server: nginx
date: Sat, 04 Feb 2023 01:53:15 GMT
cache-control: private
location: https://megapari.com:443//registration/?tag=d_2032927m_25437c_
x-aspnetmvc-version: 5.0
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
content001.bet365.com/SportsContent/Global/Footer/MGALICENSED.png
5.226.179.10200 OK 2.0 kB URL HTTP/1.1 content001.bet365.com/SportsContent/Global/Footer/MGALICENSED.png
IP 5.226.179.10:0
ASN #209242 Cloudflare London, LLC
File type PNG image data, 88 x 44, 8-bit/color RGBA, non-interlaced\012- data
Hash d8cb8a91c78942815c69aaeea7c79162
0a36fd477b2c7d88bb67d95e806bf5838d1b39cd
057c251de5bc8825df293db443b8c9a99e01f856abe658c741a89c86b6bfa2e1
GET /SportsContent/Global/Footer/MGALICENSED.png HTTP/1.1
Host: content001.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/
Cookie: __cf_bm=kySnLZ4Y5VLsPhorhwfXDN9s3A.ItkMQrE3nBAkCy3k-1675475595-0-AQu7jvwa9ctQJlNZGetOLGJleBEBdSBHNi3Y7kDHIZNqoFAlofLor3lE0uyaWK+II5l4xM6Z0kjatRHpSOBgnks=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:53:16 GMT
Content-Type: image/png
Content-Length: 1979
Connection: keep-alive
Last-Modified: Wed, 10 Jul 2019 13:20:52 GMT
Timing-Allow-Origin: *
CF-Cache-Status: HIT
Expires: Thu, 09 Feb 2023 01:53:16 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793fc58c0f8bb529-OSL
megapari.com//registration/?tag=d_2032927m_25437c_
83.147.204.197301 Moved Permanently 0 B URL HTTP/2 megapari.com//registration/?tag=d_2032927m_25437c_
IP 83.147.204.197:0
ASN #202492 Silverhill Group Holding Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET //registration/?tag=d_2032927m_25437c_ HTTP/1.1
Host: megapari.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Sat, 04 Feb 2023 01:53:16 GMT
content-type: text/html; charset=utf-8
content-length: 0
x-frame-options: SAMEORIGIN
set-cookie: SESSION=8c8f1c7e2fa09cafe907ef12165c8820; path=/; secure; HttpOnly; SameSite=Lax
ua=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
auid=U5PMxWPduox13hzFA6gdAg==; path=/; secure; httponly; samesite=lax
location: /registration/?tag=d_2032927m_25437c_
x-reason: 100
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 5b05c9b6a59d0f0c47dd79efc9872d10
ebd2066b10daab58b90b609c23865eba38b73dfe
09facf2e45067aaf22c5e356d50d1e0369d775309fa0f5d562ef35280b01b2c7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=87247
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 01:53:16 GMT
Etag: "63dc6c5b-116"
Expires: Sun, 05 Feb 2023 02:07:23 GMT
Last-Modified: Fri, 03 Feb 2023 02:07:23 GMT
Server: nginx
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 6532a75964edb50e0c7553000a143734
78b346793ca37e698664ee5f1a2f231d1cfa85be
18f670cd00d4d86fc4aa5eaf03301404a227fd3251a936cfc9f56ab5f6dfc212
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=132954
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 01:53:16 GMT
Etag: "63dd1ee6-118"
Expires: Sun, 05 Feb 2023 14:49:10 GMT
Last-Modified: Fri, 03 Feb 2023 14:49:10 GMT
Server: nginx
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 7cb1a8fed67e2352132e9bce1c0af485
ef7cb36cd2c03cfab17d3ac932150415e0242137
36e08d60d56a1755e227d1ed390fb6f854be650eb945ec95d9d8839ed25c0713
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 01:53:16 GMT
Server: ECS (amb/6BB6)
Content-Length: 280
www.bet365.com/olpc/nn/143/0/1/cookieconsentajax?
5.226.179.10200 OK 1.4 kB URL HTTP/1.1 www.bet365.com/olpc/nn/143/0/1/cookieconsentajax?
IP 5.226.179.10:0
ASN #209242 Cloudflare London, LLC
File type Unicode text, UTF-8 text, with very long lines (489), with CRLF, LF line terminators
Hash 41bc7a3cb016ed2e39c03d0cc8be6b42
b18485bc2f7d8bb65434447040e3b6a7125a0509
6b68a474dc9ab3d547c5584d6a1de4360570147384669553d528ee80495e9f57
POST /olpc/nn/143/0/1/cookieconsentajax? HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.bet365.com
Connection: keep-alive
Referer: https://www.bet365.com/olpc/nn/143/0/1/open-account
Cookie: __cf_bm=kySnLZ4Y5VLsPhorhwfXDN9s3A.ItkMQrE3nBAkCy3k-1675475595-0-AQu7jvwa9ctQJlNZGetOLGJleBEBdSBHNi3Y7kDHIZNqoFAlofLor3lE0uyaWK+II5l4xM6Z0kjatRHpSOBgnks=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Content-Length: 0
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:53:16 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 1362
Connection: keep-alive
Cache-Control: private
Content-Encoding: gzip
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793fc58d4f69b4eb-OSL
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash 997dde171f446e13d9cb0d42b2b71e21
6370a3f11b9bad3d5c08dfeebb454b86eeee0f42
27ed7e5582a8ff051ecc988c83de2a8e109a916f9e6bc760d9f775baa0c237b0
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=114944
Date: Sat, 04 Feb 2023 01:53:16 GMT
Etag: "63dcd86b-1d7"
Expires: Sun, 05 Feb 2023 09:49:00 GMT
Last-Modified: Fri, 03 Feb 2023 09:48:27 GMT
Server: ECS (dcb/7EEF)
X-Cache: Miss from cloudfront
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Ia9RzSufaV8idK5A__q7mAEFX8-BJVH-RDmVBB3JBrsoIktTtgVb4w==
Age: 33
in.betsson.com/pe-bono-bienvenida-21/pe/?from=JkxvchK7z8MUnUCnN-a7RGNd7ZgqdRLk-AP0846390900&affcode=AP0846390900&utm_medium=MA_Affiliates&utm_source=10687405
54.230.111.89200 OK 16 kB URL HTTP/2 in.betsson.com/pe-bono-bienvenida-21/pe/?from=JkxvchK7z8MUnUCnN-a7RGNd7ZgqdRLk-AP0846390900&affcode=AP0846390900&utm_medium=MA_Affiliates&utm_source=10687405
IP 54.230.111.89:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (49496)
Hash 854de468566486288b2baeb7980aadd7
69d27208955b76df99d3f805454205c65671180a
d8655af825daea8be55af40c12fb105bcc284615500f8a59fc7c0dd17803ad29
GET /pe-bono-bienvenida-21/pe/?from=JkxvchK7z8MUnUCnN-a7RGNd7ZgqdRLk-AP0846390900&affcode=AP0846390900&utm_medium=MA_Affiliates&utm_source=10687405 HTTP/1.1
Host: in.betsson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: ZBan=JkxvchK7z8MUnUCnN-a7RGNd7ZgqdRLk
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html;charset=UTF-8
content-length: 15802
date: Sat, 04 Feb 2023 01:53:16 GMT
server: Apache/2.4.52 (Ubuntu)
strict-transport-security: max-age=3153600; includeSubDomains
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: NbFqbocJVWxph9gkeukl9UsikGKAsa74i7WqNBTv75nCXUZ-gkwfmg==
X-Firefox-Spdy: h2
promotions.betsafe.com/sb-bono-de-bienvenida/pe/?from=JkxvchK7z8MYcklSpmnjhWNd7ZgqdRLk-AP0846390900&affcode=AP0846390900&utm_medium=MA_Affiliates&utm_source=10687405
54.230.111.103200 OK 11 kB URL HTTP/2 promotions.betsafe.com/sb-bono-de-bienvenida/pe/?from=JkxvchK7z8MYcklSpmnjhWNd7ZgqdRLk-AP0846390900&affcode=AP0846390900&utm_medium=MA_Affiliates&utm_source=10687405
IP 54.230.111.103:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (29371)
Hash 8bc2bc040950eceb2be0a95aacd9d261
ffeefaff9e6714f6e317d04b0136e85f4fae05ef
008e88adc8ea3cefdfb5b8128dedd428954f48f1b255ee4809101a19ef216807
GET /sb-bono-de-bienvenida/pe/?from=JkxvchK7z8MYcklSpmnjhWNd7ZgqdRLk-AP0846390900&affcode=AP0846390900&utm_medium=MA_Affiliates&utm_source=10687405 HTTP/1.1
Host: promotions.betsafe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: ZBan=JkxvchK7z8MYcklSpmnjhWNd7ZgqdRLk
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html;charset=UTF-8
content-length: 10980
date: Sat, 04 Feb 2023 01:53:16 GMT
server: Apache/2.4.52 (Ubuntu)
strict-transport-security: max-age=3153600; includeSubDomains
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: hxswdo-HghHnudYBI3-bnG4l6bT9SvlsgTr0n_AKKGcUgnkHaeDIBA==
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 3ed38454db4ae5c4884006ba06b0f2b6
b5a94b859f49f9ab05634275f23d077de5c02cd4
296ce4ac6f888f753b8487df0824c2d593635557ad42c6d4eeefe1bcdb112182
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4381
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 01:53:16 GMT
Last-Modified: Sat, 04 Feb 2023 00:40:15 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 279
cdn.cookielaw.org/scripttemplates/otSDKStub.js
104.16.149.64200 OK 8.4 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/otSDKStub.js
IP 104.16.149.64:0
File type ASCII text, with very long lines (25592)
Hash e248bb3ed9070ee48f0b5bc674e6a49d
46a6ac373399405df390e910c580cf850dce9886
74fd866eaf62b63cec2b85eadf2245e9302107f4c8fabc25f9c3e5cd49f40a6b
GET /scripttemplates/otSDKStub.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://in.betsson.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:16 GMT
content-type: application/javascript
content-length: 8384
content-encoding: gzip
content-md5: 4ki7PtkHDuSPC1vGdOaknQ==
last-modified: Thu, 02 Feb 2023 13:33:36 GMT
etag: 0x8DB05221689032C
x-ms-request-id: 3a8b6a68-201e-0101-2064-379f4e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 26085
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 793fc58f3845b4eb-OSL
X-Firefox-Spdy: h2
in.betsson.com/ui/scriptloader.php
54.230.111.89200 OK 3.7 kB URL HTTP/2 in.betsson.com/ui/scriptloader.php
IP 54.230.111.89:0
File type ASCII text, with very long lines (3472), with CRLF, LF line terminators
Hash b68bf25aa5735f706b7d9604589573e7
7728d24de400ed82be825a69134cf61af11f0939
a9747f6fd154adc70be836cab13aac2816d5e2d60fa98428442c917edfb37cd9
GET /ui/scriptloader.php HTTP/1.1
Host: in.betsson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://in.betsson.com/pe-bono-bienvenida-21/pe/?from=JkxvchK7z8MUnUCnN-a7RGNd7ZgqdRLk-AP0846390900&affcode=AP0846390900&utm_medium=MA_Affiliates&utm_source=10687405
Cookie: ZBan=JkxvchK7z8MUnUCnN-a7RGNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 3725
date: Mon, 23 Jan 2023 07:51:08 GMT
server: Apache/2.4.52 (Ubuntu)
strict-transport-security: max-age=3153600; includeSubDomains
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: TjsrIT7dy5rP0p6LHhgEn-JVNESyvcI6x63h1hLFzQNthD6IeL-G1Q==
age: 1015328
X-Firefox-Spdy: h2
promotions.betsafe.com/ui/scriptloader.php
54.230.111.103200 OK 3.7 kB URL HTTP/2 promotions.betsafe.com/ui/scriptloader.php
IP 54.230.111.103:0
File type ASCII text, with very long lines (3472), with CRLF, LF line terminators
Hash 0aedfd658f1d95a1452cdd5c078df61b
9fe4aeb010206f1a2df58943755ba600ebb84464
7e88f063369ec97bcc929e9863c738421263f2c09c40f5586e9ef99f51e637e6
GET /ui/scriptloader.php HTTP/1.1
Host: promotions.betsafe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promotions.betsafe.com/sb-bono-de-bienvenida/pe/?from=JkxvchK7z8MYcklSpmnjhWNd7ZgqdRLk-AP0846390900&affcode=AP0846390900&utm_medium=MA_Affiliates&utm_source=10687405
Cookie: ZBan=JkxvchK7z8MYcklSpmnjhWNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 3725
date: Fri, 06 Jan 2023 00:44:36 GMT
server: Apache/2.4.52 (Ubuntu)
strict-transport-security: max-age=3153600; includeSubDomains
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: PF_s2yTZQmLDVtLWfo6z_BSXA04oUTbPLS6BKgTekERX3SJluP-ffQ==
age: 2509720
X-Firefox-Spdy: h2
record.betsafe.com/_artCMRK1bjZCnN6gMv_or2Nd7ZgqdRLk/15/
104.18.190.136301 Moved Permanently 279 B URL HTTP/2 record.betsafe.com/_artCMRK1bjZCnN6gMv_or2Nd7ZgqdRLk/15/
IP 104.18.190.136:0
Hash a62ee41cd8abd47a40869c9b5078d63a
c9ecb7ed1a81735780611b5bf520a44854c0e18b
7f473c22475ab92df851b4aec7f7d55f63efec329f9d5ed8283bdf25eed78336
GET /_artCMRK1bjZCnN6gMv_or2Nd7ZgqdRLk/15/ HTTP/1.1
Host: record.betsafe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Sat, 04 Feb 2023 01:53:16 GMT
content-type: text/html; charset=utf-8
location: https://promotions.betsafe.com/sb-bono-de-bienvenida/pe/?from=JkxvchK7z8MYcklSpmnjhWNd7ZgqdRLk-AP0846390900&affcode=AP0846390900&utm_medium=MA_Affiliates&utm_source=10687405
cache-control: private, no-cache, must-revalidate, Cache-Control: no-cache
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *
pragma: no-cache
x-powered-by: ZBan
cf-cache-status: BYPASS
set-cookie: VID1=KiwzQFAtUyxQLTMwUC1gYGAKYAo%3D; expires=Sun, 04-Feb-2024 01:53:16 GMT; Max-Age=31536000; path=/; secure; HttpOnly; SameSite=None
ZBan=JkxvchK7z8MYcklSpmnjhWNd7ZgqdRLk; expires=Sun, 04-Feb-2024 01:53:16 GMT; Max-Age=31536000; path=/; domain=.betsafe.com; secure; HttpOnly; SameSite=None
PartnerId=JkxvchK7z8MYcklSpmnjhWNd7ZgqdRLk-Z2lnX2NwaF9wb3A%3D; expires=Mon, 06-Mar-2023 01:53:16 GMT; Max-Age=2592000; path=/; SameSite=Lax
marketingproduct=Sportsbook; expires=Mon, 06-Mar-2023 01:53:16 GMT; Max-Age=2592000; path=/; domain=.betsafe.com; SameSite=Lax
vary: Accept-Encoding
server: cloudflare
cf-ray: 793fc58b9f52b527-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/2caa4cad-e958-4659-ab40-48264f2a57bf/2caa4cad-e958-4659-ab40-48264f2a57bf.json
104.16.149.64200 OK 3.2 kB URL HTTP/2 cdn.cookielaw.org/consent/2caa4cad-e958-4659-ab40-48264f2a57bf/2caa4cad-e958-4659-ab40-48264f2a57bf.json
IP 104.16.149.64:0
File type JSON data\012- , ASCII text, with very long lines (11678), with no line terminators
Hash 752170a600a8f416176ba289c1bb1091
3c70431a33756a791ff480b02a7fe0c559650880
e3c7edd865421a09750a060b20cc1e8f09324ef44a0cebf18e1db9acc1a304c4
GET /consent/2caa4cad-e958-4659-ab40-48264f2a57bf/2caa4cad-e958-4659-ab40-48264f2a57bf.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://promotions.betsafe.com
Connection: keep-alive
Referer: https://promotions.betsafe.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:16 GMT
content-type: application/x-javascript
content-length: 3157
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: dSFwpgCo9BYXa6KJwbsQkQ==
last-modified: Thu, 11 Aug 2022 10:28:17 GMT
etag: 0x8DA7B84346DFAA7
x-ms-request-id: 10e18dd0-501e-006c-598d-ad7335000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 7581
expires: Sun, 05 Feb 2023 01:53:16 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 793fc58ffc88b4fa-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/f1dbabb7-1b41-46c6-a924-f2073e4e762d/f1dbabb7-1b41-46c6-a924-f2073e4e762d.json
104.16.149.64200 OK 3.2 kB URL HTTP/2 cdn.cookielaw.org/consent/f1dbabb7-1b41-46c6-a924-f2073e4e762d/f1dbabb7-1b41-46c6-a924-f2073e4e762d.json
IP 104.16.149.64:0
File type JSON data\012- , ASCII text, with very long lines (11678), with no line terminators
Hash c0080563e159625b14e4d5a7603bf32f
940244d346abb65e1e672b4d91dcbe4d56142fe8
517b42fe901607872aaf3a5665ebb3c9bb481d327e65196b14a0c922f3b4969c
GET /consent/f1dbabb7-1b41-46c6-a924-f2073e4e762d/f1dbabb7-1b41-46c6-a924-f2073e4e762d.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://in.betsson.com
Connection: keep-alive
Referer: https://in.betsson.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:16 GMT
content-type: application/x-javascript
content-length: 3158
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: wAgFY+FZYlsU5NWnYDvzLw==
last-modified: Thu, 11 Aug 2022 11:03:34 GMT
etag: 0x8DA7B8922758CCF
x-ms-request-id: ca6e301c-801e-0161-6f8d-adda6c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
expires: Sun, 05 Feb 2023 01:53:16 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 793fc58fcc77b4fa-OSL
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2307
Expires: Sat, 04 Feb 2023 02:31:43 GMT
Date: Sat, 04 Feb 2023 01:53:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2307
Expires: Sat, 04 Feb 2023 02:31:43 GMT
Date: Sat, 04 Feb 2023 01:53:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2307
Expires: Sat, 04 Feb 2023 02:31:43 GMT
Date: Sat, 04 Feb 2023 01:53:16 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd74fd89c-32f8-4ed4-ab23-e95f810fbc57.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd74fd89c-32f8-4ed4-ab23-e95f810fbc57.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4b5c35cdff2fb0758db780212b0b1f77
edbb557a3bf57128467335685aebbd4831d802f8
e0fa59843073ba8bd171c66610bc1b3d59a1a94c4991e6023507b9453ca0edba
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd74fd89c-32f8-4ed4-ab23-e95f810fbc57.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9349
x-amzn-requestid: ecd1913d-7dbe-4ffd-ba85-0549aab51a06
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyayOGPlIAMFQ7Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dda4da-6a9b8d146155fa8b6c1c02d6;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 00:20:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jGBEz2d-SXXPBZhwlJgR4w248y-NY2c-18euLre5PULjWUIfhfUmNQ==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 00:30:47 GMT
age: 4949
etag: "edbb557a3bf57128467335685aebbd4831d802f8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 392b61306c346508d3ac4a2f28218f9c
d2de32b52e0d3f4fc6acaf687b3521294b01dc03
018712a4d6734b84ac1777124f97dae4d93b1e5b297a5dcfe0955b52710b8a35
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10253
x-amzn-requestid: a90cb6b3-8a72-4b4b-b4f5-6dafc8c6752a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD7GGv5IAMFu8A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8046-3ca59e7c52800a4e44bda8fd;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jBxNmhfAeUgxg8w4XpQHZ1QoN9GatdUV7V7r2tHd7YePJYPHpesd2Q==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:05:21 GMT
age: 13675
etag: "d2de32b52e0d3f4fc6acaf687b3521294b01dc03"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F651be34f-d4ea-4a24-987c-b006e5f9a876.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F651be34f-d4ea-4a24-987c-b006e5f9a876.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f926cd4f39b1a10b152e5959b28ae29e
2b1982d21321071394e363888e007598e968fb35
a51b246a9aa5a2583cae7fd4f0a3bdf73f0b318b7838828d36ea5674a5f26753
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F651be34f-d4ea-4a24-987c-b006e5f9a876.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13309
x-amzn-requestid: f6a3f0f3-d91b-4f4d-8265-0f87742ba5d2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyFeBFX4oAMFfpA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd82bf-5808ceec265756c702d212dc;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:55:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: WWjzs8W8GmSAM0-Uc8XBTxz67RJJCIzp3fBYhkoIWZ26UrobmZV8mw==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:14:12 GMT
etag: "2b1982d21321071394e363888e007598e968fb35"
content-type: image/jpeg
age: 13144
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6661b7263315f5eb3cd2465f671e1fcd
b7b5831c6b3ccc41d7a980b6088adc10ff8785f1
eb25507950d81db4b54a1af7fadaceee1bcff780eb28b6a04dbfb3886785f5b7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8527
x-amzn-requestid: 6a8c6487-6069-47d1-afa1-648626f85439
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyDqqGg5oAMFV-A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd7fdd-0a772cde1e6fba6d7da97435;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:42:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: CHWhIpyzhoPtMUplzh1430Q9FfCM1wkTc_hQsgQk6InM9tYBPGYnNg==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:05:44 GMT
age: 13652
etag: "b7b5831c6b3ccc41d7a980b6088adc10ff8785f1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
promos.betano.com/sportsbook-pe/index.html?btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO&utm_medium=4168&utm_source=3&siteid=13943
104.17.85.89200 OK 19 kB URL HTTP/2 promos.betano.com/sportsbook-pe/index.html?btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO&utm_medium=4168&utm_source=3&siteid=13943
IP 104.17.85.89:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1595)
Hash c0685b81291631c05db54bcc87e9518e
e93ce350a4182faa76ca6a5bd7d4083b0ede77dd
9887f6f10809ff3a2e7f1872168091455bd3af619eadad14808da103e8565d6a
GET /sportsbook-pe/index.html?btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO&utm_medium=4168&utm_source=3&siteid=13943 HTTP/1.1
Host: promos.betano.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:16 GMT
content-type: text/html; charset=utf-8
cache-control: public, max-age=900, immutable
content-md5: /a1O1GTKRv7FirGh5ttbLw==
last-modified: Fri, 08 Apr 2022 09:53:52 GMT
x-ms-request-id: d3271fe5-601e-004a-113b-38b18d000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cf-cache-status: DYNAMIC
vary: Accept-Encoding
set-cookie: btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO;max-age=2592000; domain=.betano.com;path=/;secure;samesite=none;httponly
__cf_bm=7S4.AxFW6XoOOlxbHaRsRFmCwauZpvz_NdAE0yD2FM0-1675475596-0-ASFXD9yo5MBhW/GyH69qyGudz+plrzCgkw4fum5+wqvN1hVhjLrsfMYw4Dw/bCxIxnYG3TDBc302MTTFDqlfBIs=; path=/; expires=Sat, 04-Feb-23 02:23:16 GMT; domain=.betano.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 793fc58d2b8ab523-OSL
content-encoding: br
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18e70636-fb7d-4a6e-9742-a039e4d7253d.jpeg
34.120.237.76200 OK 7.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18e70636-fb7d-4a6e-9742-a039e4d7253d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 41580a501cc07c328e6ab6b167a110dc
a4dfa0f479b5f9a036b75b2eea6dffabd3a3486e
0fa45161e563101b3f1293f951a3edf84c88c9f3b29bed9b54f952ca325bf21d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18e70636-fb7d-4a6e-9742-a039e4d7253d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7101
x-amzn-requestid: 479d8004-430a-45b9-99fa-11cbcc605a7c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD7EHxqoAMFaug=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8046-25ac3c54427748bc191fd1ba;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 1-NjCSeyrUAwvL2BDl1JXYK0WY0ze5FZz5-chZ6x2IEnDQBw9rEv6w==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:11:51 GMT
age: 13285
etag: "a4dfa0f479b5f9a036b75b2eea6dffabd3a3486e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash c2ff6d938dff404aac4ff2fc036182fc
8cff7c1f1d707a963c02cc573316bd40c3136a49
d029711b96a9bf6eb011658c1fa9dfb152b17c6d32bd1c87f63c9028a15d08f9
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Sat, 04 Feb 2023 01:53:16 GMT
Server: ECS (dcb/7EA2)
X-Cache: Miss from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: sV838AEfpm-9ivMGK94Zx8f457O6oZYw8nGURBRkCK8ffj4ZkpRicw==
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash f8fc0de3d6e8a8edb2073177fd428a0c
a5cf2e5a3766c080690b8e05e2e81281b7e1ef1a
cc4180b726a47f45e697b60c8ac73cc255710aef077781220a728257f78f78fc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2675
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 01:53:16 GMT
Last-Modified: Sat, 04 Feb 2023 01:08:41 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash f8fc0de3d6e8a8edb2073177fd428a0c
a5cf2e5a3766c080690b8e05e2e81281b7e1ef1a
cc4180b726a47f45e697b60c8ac73cc255710aef077781220a728257f78f78fc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1395
Cache-Control: max-age=97976
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 01:53:16 GMT
Etag: "63dc90d1-118"
Expires: Sun, 05 Feb 2023 05:06:12 GMT
Last-Modified: Fri, 03 Feb 2023 04:42:57 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 280
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash b418c06e919e6042eca0f2d7d5ab9f99
f8b9b8605858a3360d4d1d3d4921bd024dcb9afe
47eef79eccf5c3336cf273c2fd95d05eab3d8fab231baed3511ca52c9d9bb949
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=169289
Date: Sat, 04 Feb 2023 01:53:16 GMT
Etag: "63ddacd5-1d7"
Expires: Mon, 06 Feb 2023 00:54:45 GMT
Last-Modified: Sat, 04 Feb 2023 00:54:45 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: T1r2yhLwU05lxdxuFVCRDbqIL6BR_tlqVFqtqSfeUUKgwPwsckCwzw==
cdnroute.bpsgameserver.com/echo-cdn-origin/themes/betsafe/1672761764/css/compressed/betsafe.min.css
54.230.111.90200 OK 20 kB URL HTTP/2 cdnroute.bpsgameserver.com/echo-cdn-origin/themes/betsafe/1672761764/css/compressed/betsafe.min.css
IP 54.230.111.90:0
File type Unicode text, UTF-8 text, with very long lines (64798), with no line terminators
Hash d4232fc0bc31fa7f977e5f9af38d1cd4
939244f3ee384271d7cb5f45fbac7d67b44a70c3
76fceccd0e81b9e6e57292a32f8ea3693796205a89a4adb71b8fa8dbbdd5258b
GET /echo-cdn-origin/themes/betsafe/1672761764/css/compressed/betsafe.min.css HTTP/1.1
Host: cdnroute.bpsgameserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promotions.betsafe.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
content-length: 20087
date: Fri, 20 Jan 2023 09:47:08 GMT
server: Apache/2.4.52 (Ubuntu)
last-modified: Thu, 19 Jan 2023 08:52:35 GMT
etag: "28fb7-5f29a0ddd5a0d-br"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 19 Feb 2023 09:47:08 GMT
content-encoding: br
access-control-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: zC_D-kWw1Ac0j5TORVA2GaRdIziUtGRf3rW5bHBpLMI2VNDBtD8TFw==
age: 1267569
X-Firefox-Spdy: h2
cdnroute.bpsgameserver.com/echo-cdn-origin/themes/betsafe/1672761764/js/compressed/echo.min.js
54.230.111.90200 OK 197 kB URL HTTP/2 cdnroute.bpsgameserver.com/echo-cdn-origin/themes/betsafe/1672761764/js/compressed/echo.min.js
IP 54.230.111.90:0
File type Unicode text, UTF-8 text, with very long lines (32000)
Size 197 kB (196955 bytes)
Hash 71b1463848bad57660b593abc2f81d0f
4fd1b6b20603bec1ecc1d0651c6bcde1b532b900
7e62d23569ec2ba6befc16d93db08ada0585ba198781e8496a4877ccb486749a
GET /echo-cdn-origin/themes/betsafe/1672761764/js/compressed/echo.min.js HTTP/1.1
Host: cdnroute.bpsgameserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promotions.betsafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript
content-length: 196955
date: Tue, 10 Jan 2023 02:06:59 GMT
server: Apache/2.4.52 (Ubuntu)
last-modified: Fri, 06 Jan 2023 08:47:09 GMT
etag: "c2c04-5f19476876b3f-br"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 09 Feb 2023 02:06:59 GMT
content-encoding: br
access-control-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: yNsYQlE15Ud5y_5BnKbnCd-tTILRfyhelldJE0dHMvxqk4bWRRvDOA==
age: 2159178
X-Firefox-Spdy: h2
promos.betano.com/sportsbook-pe/d-disclaimer.png
104.17.85.89200 OK 3.7 kB URL HTTP/2 promos.betano.com/sportsbook-pe/d-disclaimer.png
IP 104.17.85.89:0
File type PNG image data, 226 x 42, 8-bit/color RGBA, non-interlaced\012- data
Hash 207b119e7af77460d25af1b3b8323aab
8bae3fe16324d63041ecd3b3be251bd4b812bfd9
47ed298f345a072ff8a73296f23fc8e11e3e5c1c09d022bac12e7d8e2fa13696
GET /sportsbook-pe/d-disclaimer.png HTTP/1.1
Host: promos.betano.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promos.betano.com/sportsbook-pe/index.html?btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO&utm_medium=4168&utm_source=3&siteid=13943
Cookie: btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO; __cf_bm=7S4.AxFW6XoOOlxbHaRsRFmCwauZpvz_NdAE0yD2FM0-1675475596-0-ASFXD9yo5MBhW/GyH69qyGudz+plrzCgkw4fum5+wqvN1hVhjLrsfMYw4Dw/bCxIxnYG3TDBc302MTTFDqlfBIs=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:17 GMT
content-type: image/png
content-length: 3742
cache-control: public, max-age=900
content-md5: IHsRnnr3dGDSWvGzuDI6qw==
last-modified: Fri, 08 Apr 2022 09:53:53 GMT
etag: "0x8DA1945B091EADE"
x-ms-request-id: 0e183cab-701e-0046-0760-372685000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
vary: Accept-Encoding
cf-cache-status: MISS
expires: Sat, 04 Feb 2023 02:08:17 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 793fc5907d1db523-OSL
X-Firefox-Spdy: h2
promos.betano.com/sportsbook-pe/d-logo.png
104.17.85.89200 OK 39 kB URL HTTP/2 promos.betano.com/sportsbook-pe/d-logo.png
IP 104.17.85.89:0
File type PNG image data, 670 x 395, 8-bit/color RGBA, non-interlaced\012- data
Hash 484f62aeca1b1eefe27508e9d0f76de1
39dc53c8d9fee7511ec779a862d45e7607517c48
5f0a7a23224ab516543dacd2e872a2bea1ce7c96135bea3264e7d7a87dfe788d
GET /sportsbook-pe/d-logo.png HTTP/1.1
Host: promos.betano.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promos.betano.com/sportsbook-pe/index.html?btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO&utm_medium=4168&utm_source=3&siteid=13943
Cookie: btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO; __cf_bm=7S4.AxFW6XoOOlxbHaRsRFmCwauZpvz_NdAE0yD2FM0-1675475596-0-ASFXD9yo5MBhW/GyH69qyGudz+plrzCgkw4fum5+wqvN1hVhjLrsfMYw4Dw/bCxIxnYG3TDBc302MTTFDqlfBIs=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:17 GMT
content-type: image/png
content-length: 38743
cache-control: public, max-age=900
content-md5: SE9irsobHu/idQjp0Pdt4Q==
last-modified: Fri, 08 Apr 2022 09:53:53 GMT
etag: "0x8DA1945B09F566B"
x-ms-request-id: 80369bae-601e-0028-5f60-3773aa000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
vary: Accept-Encoding
cf-cache-status: MISS
expires: Sat, 04 Feb 2023 02:08:17 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 793fc5907d1fb523-OSL
X-Firefox-Spdy: h2
promos.betano.com/sportsbook-pe/d-egr.png
104.17.85.89200 OK 6.9 kB URL HTTP/2 promos.betano.com/sportsbook-pe/d-egr.png
IP 104.17.85.89:0
File type PNG image data, 322 x 54, 8-bit/color RGBA, non-interlaced\012- data
Hash 372d6124fc8bb486597a2a4ae5fef88e
5acc7aa2a83d856df9d47243f4d0ea1ded183c52
28856ce9836e98c8421b6dd5ba5373307efc325ed49a74103dae34f190e1b7a0
GET /sportsbook-pe/d-egr.png HTTP/1.1
Host: promos.betano.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promos.betano.com/sportsbook-pe/index.html?btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO&utm_medium=4168&utm_source=3&siteid=13943
Cookie: btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO; __cf_bm=7S4.AxFW6XoOOlxbHaRsRFmCwauZpvz_NdAE0yD2FM0-1675475596-0-ASFXD9yo5MBhW/GyH69qyGudz+plrzCgkw4fum5+wqvN1hVhjLrsfMYw4Dw/bCxIxnYG3TDBc302MTTFDqlfBIs=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:17 GMT
content-type: image/png
content-length: 6896
cache-control: public, max-age=900
content-md5: Ny1hJPyLtIZZeipK5f74jg==
last-modified: Fri, 08 Apr 2022 09:53:53 GMT
etag: "0x8DA1945B0987999"
x-ms-request-id: 00c05bf5-801e-0020-4e60-3769a5000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
vary: Accept-Encoding
cf-cache-status: MISS
expires: Sat, 04 Feb 2023 02:08:17 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 793fc5906d1cb523-OSL
X-Firefox-Spdy: h2
promos.betano.com/sportsbook-pe/t-android.png
104.17.85.89200 OK 1.3 kB URL HTTP/2 promos.betano.com/sportsbook-pe/t-android.png
IP 104.17.85.89:0
File type PNG image data, 18 x 23, 8-bit/color RGBA, non-interlaced\012- data
Hash dcb361d29a10a9093977797d7709556d
2ebda4766ffc9a43a263ae557769acb74290e98f
ec5e9ef6f31345217c5fb70ca6fa42110ef992b8162ea9213edab897e3163f91
GET /sportsbook-pe/t-android.png HTTP/1.1
Host: promos.betano.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promos.betano.com/sportsbook-pe/index.html?btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO&utm_medium=4168&utm_source=3&siteid=13943
Cookie: btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO; __cf_bm=7S4.AxFW6XoOOlxbHaRsRFmCwauZpvz_NdAE0yD2FM0-1675475596-0-ASFXD9yo5MBhW/GyH69qyGudz+plrzCgkw4fum5+wqvN1hVhjLrsfMYw4Dw/bCxIxnYG3TDBc302MTTFDqlfBIs=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:17 GMT
content-type: image/png
content-length: 1349
cache-control: public, max-age=900
content-md5: 3LNh0poQqQk5d3l9dwlVbQ==
last-modified: Fri, 08 Apr 2022 09:53:54 GMT
etag: "0x8DA1945B16A29A6"
x-ms-request-id: 58fda42e-d01e-004f-6260-376356000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
vary: Accept-Encoding
cf-cache-status: MISS
expires: Sat, 04 Feb 2023 02:08:17 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 793fc5908d2cb523-OSL
X-Firefox-Spdy: h2
promos.betano.com/sportsbook-pe/t-disclaimer.png
104.17.85.89200 OK 2.3 kB URL HTTP/2 promos.betano.com/sportsbook-pe/t-disclaimer.png
IP 104.17.85.89:0
File type PNG image data, 146 x 27, 8-bit/color RGBA, non-interlaced\012- data
Hash 8c42f0b2ce944bb55ef89de4787ea93c
165903e3385ff5e3ff0d16f2d6195b1daed6333f
39d92d2d3182bb202e775e22158464831521820544127f7abe4a88907fdd273a
GET /sportsbook-pe/t-disclaimer.png HTTP/1.1
Host: promos.betano.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promos.betano.com/sportsbook-pe/index.html?btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO&utm_medium=4168&utm_source=3&siteid=13943
Cookie: btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO; __cf_bm=7S4.AxFW6XoOOlxbHaRsRFmCwauZpvz_NdAE0yD2FM0-1675475596-0-ASFXD9yo5MBhW/GyH69qyGudz+plrzCgkw4fum5+wqvN1hVhjLrsfMYw4Dw/bCxIxnYG3TDBc302MTTFDqlfBIs=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:17 GMT
content-type: image/png
content-length: 2267
cache-control: public, max-age=900
content-md5: jELwss6US7Ve+J3keH6pPA==
last-modified: Fri, 08 Apr 2022 09:53:54 GMT
etag: "0x8DA1945B18CEEC0"
x-ms-request-id: e8f833be-d01e-002d-0960-37a171000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
vary: Accept-Encoding
cf-cache-status: MISS
expires: Sat, 04 Feb 2023 02:08:17 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 793fc5908d29b523-OSL
X-Firefox-Spdy: h2
promos.betano.com/sportsbook-pe/m-egr.png
104.17.85.89200 OK 4.5 kB URL HTTP/2 promos.betano.com/sportsbook-pe/m-egr.png
IP 104.17.85.89:0
File type PNG image data, 227 x 41, 8-bit/color RGBA, non-interlaced\012- data
Hash ef8a58ecf598bfeb3306bb6a4682af3f
d8d43a3a55364446010c1899bb6ee91c152115b1
c0b3aa59867168813e62ac836bff6d3187e2983c7560b2cd6d2c60973819d981
GET /sportsbook-pe/m-egr.png HTTP/1.1
Host: promos.betano.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promos.betano.com/sportsbook-pe/index.html?btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO&utm_medium=4168&utm_source=3&siteid=13943
Cookie: btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO; __cf_bm=7S4.AxFW6XoOOlxbHaRsRFmCwauZpvz_NdAE0yD2FM0-1675475596-0-ASFXD9yo5MBhW/GyH69qyGudz+plrzCgkw4fum5+wqvN1hVhjLrsfMYw4Dw/bCxIxnYG3TDBc302MTTFDqlfBIs=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:17 GMT
content-type: image/png
content-length: 4450
cache-control: public, max-age=900
content-md5: 74pY7PWYv+szBrtqRoKvPw==
last-modified: Fri, 08 Apr 2022 09:53:54 GMT
etag: "0x8DA1945B1560856"
x-ms-request-id: 0136c416-d01e-0060-2f60-376e9d000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
vary: Accept-Encoding
cf-cache-status: MISS
expires: Sat, 04 Feb 2023 02:08:17 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 793fc5908d30b523-OSL
X-Firefox-Spdy: h2
es.888casino.com/exclusive-mob/spinson.htm?utm_campaign=100138643_1853546_nodescription&utm_content=100138643&utm_medium=casap&utm_source=aff
143.204.55.102200 OK 39 kB URL HTTP/2 es.888casino.com/exclusive-mob/spinson.htm?utm_campaign=100138643_1853546_nodescription&utm_content=100138643&utm_medium=casap&utm_source=aff
IP 143.204.55.102:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2886)
Hash 40f5c91705dda323eb4da970f690ad27
397400e3f2ceee17935dcb0b78c7055491ad75db
66ba94ba0b5e57f3f371bb7457e282b0ad7e92d2349ac6b722c2149a08d9bd32
GET /exclusive-mob/spinson.htm?utm_campaign=100138643_1853546_nodescription&utm_content=100138643&utm_medium=casap&utm_source=aff HTTP/1.1
Host: es.888casino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: 888TempQueryCookie=sr%3D1853546; 888Cookie=isftd%3Dfalse%26isreal%3Dfalse%26lang%3Des%26OSR%3D1853546%26RefType%3DNoReferrer%26TestData%3D%7B%22mm_id%22%3A%2245577%22%2C%22orig-lp%22%3A%22https%3A%2F%2Fes.888casino.com%2Fexclusive-mob%2Fspinson.htm%22%2C%22referrer%22%3A%22NULL%22%2C%22utm_campaign%22%3A%22100138643_1853546_nodescription%22%2C%22utm_content%22%3A%22100138643%22%2C%22utm_medium%22%3A%22casap%22%2C%22utm_source%22%3A%22aff%22%7D; 888TempContext=testdata%3D%7B%22mm_id%22%3A%2245577%22%2C%22orig-lp%22%3A%22https%3A%2F%2Fes.888casino.com%2Fexclusive-mob%2Fspinson.htm%22%2C%22referrer%22%3A%22NULL%22%2C%22utm_campaign%22%3A%22100138643_1853546_nodescription%22%2C%22utm_content%22%3A%22100138643%22%2C%22utm_medium%22%3A%22casap%22%2C%22utm_source%22%3A%22aff%22%7D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
date: Sat, 04 Feb 2023 01:53:16 GMT
x-wcs-correlation-id: 6uU6oRwJrxVVZ2MDN6feVEhNx1ubHbVjQe3g2r-YYAg7ExkUU6TLxA==
srv: 44303334
p3p: CP="Read our privacy policy at http://www.888.com/security-and-privacy/privacy-policy.htm"
content-security-policy: frame-ancestors 'self' *.genesazrak.com *.888casinoarabic.net *.arabiccasino888.com *.casinoarabic888.com *.casinoarabic-888.com *.888-casinoarabic.com *.888casino-arabic.com http://wrapper.safe-installation.com/ https://wrapper.safe-installation.com/ http://localhost:* https://localhost:* *.bingosys.net *.secured-igaming-usa.com *.888.pt *.sisportsbook.com *.888poker.de *.888slots.de *.safe-iplay.com *.safe-installation.com *.payoutscentral.com *.triple8holdem.com *.888.com *.secured-qa.com *.secured-registration.com *.secureutils.com *.images4us.com *.onlinepersonalmessages.com *.888sport.com *.888sport.es *.888sport.it *.888sport.dk *.888sport.ro *.888sport.se *.888sport.us *.888sport.de *.777.com *.personalinfoonline.com *.888.de *.888casino.com *.888poker.com *.888casino.dk *.888poker.dk *.888.de *.888casino.ro *.888poker.ro *.888casino.se *.888poker.se *.888casino.es *.888poker.es *.888casino.it *.888poker.it *.888casino.us *.888poker.us *.888ladies.com *.888.pt cmsp *.harrahscasino.com *.wsop.com *.delawarepark.com *.doverdowns.com *.harringtongamingonline.com *.secured-igaming-services.com *.secured-igaming-usa.com *.igaming-services.com *.888.ca *.888casino.ca *.888poker.ca *.888sport.ca *.888.nl *.888casino.nl *.888poker.nl *.888sport.nl *.ar-888-casino.com *.888casino-ar.com *.ar888-casino.com *.arab888-casino.com *.casinoelarab-888.com *.alarab-888casino.com *.casinoalarab-888.com *.888casino-alarab.com *.888casino-arabian.com *.arabian-888casino.com *.888-casino-arabian.com *.888-casino-alarab.com *.ballysdover.com *.888casino-uae.com *.playat888-games.com *.888casino-game.com *.online-arabic-casino.net *.tripleeight.live *.playat888online.com *.888games-uae.com *.triple-eight-games.com *.play-casino-now.com *.888slots-uae.com *.888-uae.com *.mrgreen.de *.mrgreen.se *.mrgreen.com *.mrgreen.dk
set-cookie: 888TempQueryCookie=; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=888casino.com; path=/; secure; samesite=none; httponly
888TempContext=; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=888casino.com; path=/; secure; samesite=none; httponly
888Cookie=isftd%3Dfalse%26isreal%3Dfalse%26lang%3Des%26OSR%3D1853546%26RefType%3DNoReferrer%26TestData%3D%7B%22mm_id%22%3A%2245577%22%2C%22orig-lp%22%3A%22https%3A%2F%2Fes.888casino.com%2Fexclusive-mob%2Fspinson.htm%22%2C%22referrer%22%3A%22NULL%22%2C%22utm_campaign%22%3A%22100138643_1853546_nodescription%22%2C%22utm_content%22%3A%22100138643%22%2C%22utm_medium%22%3A%22casap%22%2C%22utm_source%22%3A%22aff%22%7D; max-age=604800; domain=888casino.com; path=/; secure; samesite=none; httponly
apigw-requestid: fyoV-gbRDoEEJPw=
content-encoding: br
vary: Accept-Encoding,User-Agent,Cookie
x-cache: Miss from cloudfront
via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 6uU6oRwJrxVVZ2MDN6feVEhNx1ubHbVjQe3g2r-YYAg7ExkUU6TLxA==
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-45M1DQFW2B>m=45je3210&_p=65579520&gcs=G1-0&cid=771706189.1675475630&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675475629&sct=1&seg=0&dl=https%3A%2F%2Fwww.bet365.com%2Folp%2Fopen-account%3Faffiliate%3D365_01155434&dt=%C3%85pningstilbud&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-45M1DQFW2B>m=45je3210&_p=65579520&gcs=G1-0&cid=771706189.1675475630&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675475629&sct=1&seg=0&dl=https%3A%2F%2Fwww.bet365.com%2Folp%2Fopen-account%3Faffiliate%3D365_01155434&dt=%C3%85pningstilbud&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-45M1DQFW2B>m=45je3210&_p=65579520&gcs=G1-0&cid=771706189.1675475630&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675475629&sct=1&seg=0&dl=https%3A%2F%2Fwww.bet365.com%2Folp%2Fopen-account%3Faffiliate%3D365_01155434&dt=%C3%85pningstilbud&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.bet365.com
Connection: keep-alive
Referer: https://www.bet365.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.bet365.com
date: Sat, 04 Feb 2023 01:53:17 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
promos.betano.com/sportsbook-pe/t-egr.png
104.17.85.89200 OK 4.1 kB URL HTTP/2 promos.betano.com/sportsbook-pe/t-egr.png
IP 104.17.85.89:0
File type PNG image data, 220 x 38, 8-bit/color RGBA, non-interlaced\012- data
Hash e4afa4bdd856a3c400ea66aab974bf59
82d73c8d9c17d69fc91470ec441a477c58ab643e
f01125c1caf80ef3d470db700582039adbb2db3ceb3dbd052486750902c12b4f
GET /sportsbook-pe/t-egr.png HTTP/1.1
Host: promos.betano.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promos.betano.com/sportsbook-pe/index.html?btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO&utm_medium=4168&utm_source=3&siteid=13943
Cookie: btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO; __cf_bm=7S4.AxFW6XoOOlxbHaRsRFmCwauZpvz_NdAE0yD2FM0-1675475596-0-ASFXD9yo5MBhW/GyH69qyGudz+plrzCgkw4fum5+wqvN1hVhjLrsfMYw4Dw/bCxIxnYG3TDBc302MTTFDqlfBIs=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:17 GMT
content-type: image/png
content-length: 4142
cache-control: public, max-age=900
content-md5: 5K+kvdhWo8QA6maquXS/WQ==
last-modified: Fri, 08 Apr 2022 09:53:54 GMT
etag: "0x8DA1945B1966334"
x-ms-request-id: d34f535d-801e-0042-3a3b-38ab82000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
vary: Accept-Encoding
cf-cache-status: MISS
expires: Sat, 04 Feb 2023 02:08:17 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 793fc5908d27b523-OSL
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 63b184a8ae82b614a6b4204dbcb3579e
a09e9c3757f414192415e485db34bf98385505a9
560d261f29dbd5ba75486099ef825587483b49e724bf160f13601acdeecb2068
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=109945
Date: Sat, 04 Feb 2023 01:53:17 GMT
Etag: "63dcc0a0-1d7"
Expires: Sun, 05 Feb 2023 08:25:42 GMT
Last-Modified: Fri, 03 Feb 2023 08:06:56 GMT
Server: ECS (dcb/7F5F)
X-Cache: Miss from cloudfront
Via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: fHavO_y4WVSi5H5yG3hjczOE7ipulUvYZ3pHBDaALgqrwjHTewJ_Pw==
Age: 1126
promos.betano.com/sportsbook-pe/m-logo.png
104.17.85.89200 OK 18 kB URL HTTP/2 promos.betano.com/sportsbook-pe/m-logo.png
IP 104.17.85.89:0
File type PNG image data, 267 x 119, 8-bit/color RGBA, non-interlaced\012- data
Hash 3195b08b2d71621bd192827a014d3cc9
0bb198cf2cedb2598842c7d3306ffacd710609fb
47c8fbb5cc4fd8b73d029d23450344f8852fcb91ed0aca2900b3471e8797a8e2
GET /sportsbook-pe/m-logo.png HTTP/1.1
Host: promos.betano.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promos.betano.com/sportsbook-pe/index.html?btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO&utm_medium=4168&utm_source=3&siteid=13943
Cookie: btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO; __cf_bm=7S4.AxFW6XoOOlxbHaRsRFmCwauZpvz_NdAE0yD2FM0-1675475596-0-ASFXD9yo5MBhW/GyH69qyGudz+plrzCgkw4fum5+wqvN1hVhjLrsfMYw4Dw/bCxIxnYG3TDBc302MTTFDqlfBIs=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:17 GMT
content-type: image/png
content-length: 18208
cache-control: public, max-age=900
content-md5: MZWwiy1xYhvRkoJ6AU08yQ==
last-modified: Fri, 08 Apr 2022 09:53:54 GMT
etag: "0x8DA1945B16373DC"
x-ms-request-id: 4e363f4f-501e-0023-6d3b-3888c1000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
vary: Accept-Encoding
cf-cache-status: MISS
expires: Sat, 04 Feb 2023 02:08:17 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 793fc5908d2db523-OSL
X-Firefox-Spdy: h2
promos.betano.com/sportsbook-pe/m-disclaimer.png
104.17.85.89200 OK 2.5 kB URL HTTP/2 promos.betano.com/sportsbook-pe/m-disclaimer.png
IP 104.17.85.89:0
File type PNG image data, 162 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash e9d0559e626a9ab738c43601a08f4f25
c60ef8c44800d82059cb821b561024833351f4c9
0108b4f1f3be8097b9eae2bcd140f7684b7797ad04a4b68c993180eb82b73617
GET /sportsbook-pe/m-disclaimer.png HTTP/1.1
Host: promos.betano.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promos.betano.com/sportsbook-pe/index.html?btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO&utm_medium=4168&utm_source=3&siteid=13943
Cookie: btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO; __cf_bm=7S4.AxFW6XoOOlxbHaRsRFmCwauZpvz_NdAE0yD2FM0-1675475596-0-ASFXD9yo5MBhW/GyH69qyGudz+plrzCgkw4fum5+wqvN1hVhjLrsfMYw4Dw/bCxIxnYG3TDBc302MTTFDqlfBIs=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:17 GMT
content-type: image/png
content-length: 2469
cache-control: public, max-age=900
content-md5: 6dBVnmJqmrc4xDYBoI9PJQ==
last-modified: Fri, 08 Apr 2022 09:53:54 GMT
etag: "0x8DA1945B14EB66A"
x-ms-request-id: 423f562a-301e-0047-293b-387959000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
vary: Accept-Encoding
cf-cache-status: MISS
expires: Sat, 04 Feb 2023 02:08:17 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 793fc5909d35b523-OSL
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 158390a3306a62f17714b4cb0e43e518
579a15de60cd85be9b4d8e54f1f894c3166fd557
9a96da74d2a316b50aeaaae1391fac4e3495f70b98a61f00b69dd415a1ab55c0
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=170452
Date: Sat, 04 Feb 2023 01:53:17 GMT
Etag: "63dda74c-1d7"
Expires: Mon, 06 Feb 2023 01:14:09 GMT
Last-Modified: Sat, 04 Feb 2023 00:31:08 GMT
Server: ECS (bsa/EB21)
X-Cache: Miss from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: p7x91AGaJ8UHKITmbyotDvHEUBrUw5gMDsLBmya1u2JNiyO_VtqO9Q==
Age: 2581
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/loader/index.es2017.js
52.219.74.69200 OK 78 B URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/loader/index.es2017.js
IP 52.219.74.69:0
Hash 0fdc437b89bf46bca8fc492a05b5cb3c
ee8d395e2b61dbfaeae938b1c1e0bd56cfbf0397
6ac3b56975178012793ab68fbb1431305008beb77881d51ee26ae00a41e0cad7
GET /prod/common/complib/loader/index.es2017.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://in.betsson.com
Connection: keep-alive
Referer: https://in.betsson.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: m0ExTJRfIaBGfA/qqaHO7qedfNWDFVwqkfGBSEWOdTBY9CzhApdmoe0f1w+3dkdlX8QmqL0Im9I=
x-amz-request-id: 8ESWAM2QPY53CB1R
Date: Sat, 04 Feb 2023 01:53:18 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 01 Feb 2023 15:22:34 GMT
ETag: "0fdc437b89bf46bca8fc492a05b5cb3c"
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 78
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/loader/index.es2017.js
52.219.74.69200 OK 78 B URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/loader/index.es2017.js
IP 52.219.74.69:0
Hash 0fdc437b89bf46bca8fc492a05b5cb3c
ee8d395e2b61dbfaeae938b1c1e0bd56cfbf0397
6ac3b56975178012793ab68fbb1431305008beb77881d51ee26ae00a41e0cad7
GET /prod/common/complib/loader/index.es2017.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://promotions.betsafe.com
Connection: keep-alive
Referer: https://promotions.betsafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: jCcTPOJ/+z0i1BHfHpFfHzorGmlFrSLBroBpQHEtVa8mNkPqt3+qBK3db7tANKfcuA9Xkh86uw4=
x-amz-request-id: 8ESX3TPNFSEFG2R3
Date: Sat, 04 Feb 2023 01:53:18 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 01 Feb 2023 15:22:34 GMT
ETag: "0fdc437b89bf46bca8fc492a05b5cb3c"
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 78
cdn.cookielaw.org/consent/2caa4cad-e958-4659-ab40-48264f2a57bf/c15e6223-6008-45c0-bd61-d5fb7c5b4f73/en-us.json
104.16.149.64200 OK 33 kB URL HTTP/2 cdn.cookielaw.org/consent/2caa4cad-e958-4659-ab40-48264f2a57bf/c15e6223-6008-45c0-bd61-d5fb7c5b4f73/en-us.json
IP 104.16.149.64:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (65516), with no line terminators
Hash c5c47deef535fa3085e76fc339c7d6cd
6d4e5d82150d1422f4db55415c44a01dc0571cb2
f2175def3985a6973e5170f34233c0ad2b1ca2927a1b7a18a7d363109b4a9bff
GET /consent/2caa4cad-e958-4659-ab40-48264f2a57bf/c15e6223-6008-45c0-bd61-d5fb7c5b4f73/en-us.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://promotions.betsafe.com/
Origin: https://promotions.betsafe.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:17 GMT
content-type: application/x-javascript
content-length: 32682
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: xcR97vU1+jCF52/DOcfWzQ==
last-modified: Thu, 11 Aug 2022 10:30:36 GMT
etag: 0x8DA7B8487AC805D
x-ms-request-id: f023086f-e01e-0018-078c-adf573000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 48710
expires: Sun, 05 Feb 2023 01:53:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 793fc5942ed9b4fa-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/f1dbabb7-1b41-46c6-a924-f2073e4e762d/c15e6223-6008-45c0-bd61-d5fb7c5b4f73/en-us.json
104.16.149.64200 OK 40 kB URL HTTP/2 cdn.cookielaw.org/consent/f1dbabb7-1b41-46c6-a924-f2073e4e762d/c15e6223-6008-45c0-bd61-d5fb7c5b4f73/en-us.json
IP 104.16.149.64:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (65516), with no line terminators
Hash 0dd6140bd20d837258000e83ad0f7ee0
a831acb47c96326d64eda75503813d5e541c36ec
bfad3ccc15bf3d9503aebb428e4f375014ca1a57f2071245574fae7adbb7b6ec
GET /consent/f1dbabb7-1b41-46c6-a924-f2073e4e762d/c15e6223-6008-45c0-bd61-d5fb7c5b4f73/en-us.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://in.betsson.com/
Origin: https://in.betsson.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:17 GMT
content-type: application/x-javascript
content-length: 39904
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: DdYUC9INg3JYAA6DrQ9+4A==
last-modified: Thu, 11 Aug 2022 10:59:59 GMT
etag: 0x8DA7B88A278C412
x-ms-request-id: 3487e052-901e-00f2-1476-ad0a72000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 15042
expires: Sun, 05 Feb 2023 01:53:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 793fc5944eeeb4fa-OSL
X-Firefox-Spdy: h2
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/polyfills/index.js
52.219.74.69200 OK 1.1 kB URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/polyfills/index.js
IP 52.219.74.69:0
Hash d584dac684dbfccbd3271d63a2c59ed1
81d1179f903109a0d78f99626fea0b7466ce29ea
954f4ed0d5d08ce0bf5307007eaaf3d7c7c062a3d112b147b8710af544a4a844
GET /prod/common/complib/esm/polyfills/index.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://in.betsson.com
Connection: keep-alive
Referer: https://cbt-gecko-storage.s3.eu-central-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: rzVGkMZtTfuyQUlgi/Ir6O9POupfMA0Kkb8pHfew7mGXC+5KAkpJuZhDRZTevEhCHS9/zMWEopE=
x-amz-request-id: 8ESHDCXV8ASX295P
Date: Sat, 04 Feb 2023 01:53:18 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 01 Feb 2023 15:22:34 GMT
ETag: "d584dac684dbfccbd3271d63a2c59ed1"
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 1143
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/loader.js
52.219.74.69200 OK 4.3 kB URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/loader.js
IP 52.219.74.69:0
File type Java source, ASCII text, with very long lines (3280)
Hash 1dee864a18a5c118812abfad81713014
090d7df3c71c641a2c4eb4b5151a7da3a176d40a
6e6c279c4bc498ae566b6bb9ee399c19be757dc99e47c6b8b9211c23f254b075
GET /prod/common/complib/esm/loader.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://in.betsson.com
Connection: keep-alive
Referer: https://cbt-gecko-storage.s3.eu-central-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: lFPQj8kvREAAYK2MCar0UJpnjzx0mKS3/N0kIVRlAOTnb3qf73B3w5GWEDKMqRqmpp9tAkLMONM=
x-amz-request-id: 8ESN32ZEZCECDTKA
Date: Sat, 04 Feb 2023 01:53:18 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 01 Feb 2023 15:22:34 GMT
ETag: "1dee864a18a5c118812abfad81713014"
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 4322
promos.betano.com/cdn-cgi/challenge-platform/h/b/scripts/alpha/invisible.js?ts=1675468800
104.17.85.89200 OK 20 kB URL HTTP/2 promos.betano.com/cdn-cgi/challenge-platform/h/b/scripts/alpha/invisible.js?ts=1675468800
IP 104.17.85.89:0
File type ASCII text, with very long lines (40057), with no line terminators
Hash 0b521f150fb648fb562f4a80b585003e
ddec96995b9e5cb949feb1e9878f62fa2d6f981d
f511eee47f41d3be2e7fa635c38d4f85859ca2d9f45dec210e41ac10f5af77b5
GET /cdn-cgi/challenge-platform/h/b/scripts/alpha/invisible.js?ts=1675468800 HTTP/1.1
Host: promos.betano.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO; __cf_bm=7S4.AxFW6XoOOlxbHaRsRFmCwauZpvz_NdAE0yD2FM0-1675475596-0-ASFXD9yo5MBhW/GyH69qyGudz+plrzCgkw4fum5+wqvN1hVhjLrsfMYw4Dw/bCxIxnYG3TDBc302MTTFDqlfBIs=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:17 GMT
content-type: application/javascript; charset=UTF-8
cache-control: max-age=14400, public
vary: accept-encoding
x-control-type-options: nosniff
server: cloudflare
cf-ray: 793fc5923e5ab523-OSL
content-encoding: br
X-Firefox-Spdy: h2
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/polyfills/index.js
52.219.74.69304 Not Modified 0 B URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/polyfills/index.js
IP 52.219.74.69:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /prod/common/complib/esm/polyfills/index.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://promotions.betsafe.com
Connection: keep-alive
Referer: https://cbt-gecko-storage.s3.eu-central-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
If-None-Match: "d584dac684dbfccbd3271d63a2c59ed1"
HTTP/1.1 304 Not Modified
x-amz-id-2: DWr4ByFwEuMjlidsZlUSDbSPre5MOwYtvJQ+Oq0XF3vNrYPJc3oCCyTygKQ2dZqvY02UOKCp8RI=
x-amz-request-id: 8ESJYHH54DNFQVA4
Date: Sat, 04 Feb 2023 01:53:18 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 01 Feb 2023 15:22:34 GMT
ETag: "d584dac684dbfccbd3271d63a2c59ed1"
Server: AmazonS3
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/loader.js
52.219.74.69304 Not Modified 0 B URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/loader.js
IP 52.219.74.69:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /prod/common/complib/esm/loader.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://promotions.betsafe.com
Connection: keep-alive
Referer: https://cbt-gecko-storage.s3.eu-central-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
If-None-Match: "1dee864a18a5c118812abfad81713014"
HTTP/1.1 304 Not Modified
x-amz-id-2: JgUl2KZr4x+JcauEHDE7AIwDEYAoJAx/97Dco2j1X35OC/Tj130KrYxKLivqTLACeuZ2L51eYu0=
x-amz-request-id: 8ESR0ZC8GSNC6MC1
Date: Sat, 04 Feb 2023 01:53:18 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 01 Feb 2023 15:22:34 GMT
ETag: "1dee864a18a5c118812abfad81713014"
Server: AmazonS3
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/app-globals-0f993ce5.js
52.219.74.69200 OK 64 B URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/app-globals-0f993ce5.js
IP 52.219.74.69:0
Hash 8372a2a3eccde49725077fdf00761935
f153edb0551d43830e36a1c5957a3496cc855c0a
cb534efe547cb9d9ba2853d713e575e0ca10c4f154733406372df2bb40514f80
GET /prod/common/complib/esm/app-globals-0f993ce5.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://in.betsson.com
Connection: keep-alive
Referer: https://cbt-gecko-storage.s3.eu-central-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: EG0P2OsHYplKxNhjjzUlLQpBlWO5/BGyKhAbWf4Hs+M2jBExGf9l659dz6Y+AVo0qRPZ4m9PDzM=
x-amz-request-id: 8ESVXGHDHGGY15Y2
Date: Sat, 04 Feb 2023 01:53:18 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 01 Feb 2023 15:22:34 GMT
ETag: "8372a2a3eccde49725077fdf00761935"
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 64
cdn.cookielaw.org/scripttemplates/6.39.0/assets/otFlat.json
104.16.149.64200 OK 3.0 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.39.0/assets/otFlat.json
IP 104.16.149.64:0
File type JSON data\012- , ASCII text, with very long lines (11118)
Hash 5f1f3dee54d56068cc422c2e182af30c
307e86761b9ecbc0262af0358acfc0e0b95e7ea5
482ea2a9ca60ee6292211fcbfb5ea4b28ef501cd7be34899a43384c8f9a113e8
GET /scripttemplates/6.39.0/assets/otFlat.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://promotions.betsafe.com/
Origin: https://promotions.betsafe.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:17 GMT
content-type: application/json
content-length: 3007
content-encoding: gzip
content-md5: Xx897lTVYGjMQiwuGCrzDA==
last-modified: Fri, 26 Aug 2022 16:30:55 GMT
etag: 0x8DA87805972EF22
x-ms-request-id: 8f790c2d-501e-0045-3284-b90577000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 42580
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 793fc5973848b4fa-OSL
X-Firefox-Spdy: h2
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/index-c8ce0eba.js
52.219.74.69200 OK 14 kB URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/index-c8ce0eba.js
IP 52.219.74.69:0
File type gzip compressed data, was "otPcTab.json", last modified: Fri Jul 29 21:30:22 2022, from Unix\012- data
Hash 3e961eb7fdc3f94310047addd52478f7
e653b0a0929096e9aaf34772f5839c6fc3f4da49
221064afa3bffb58aff4d7a036a9f5196c60ff0077e23453ca2aa7a1019be47a
GET /prod/common/complib/esm/index-c8ce0eba.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://in.betsson.com
Connection: keep-alive
Referer: https://cbt-gecko-storage.s3.eu-central-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: Ie0RD718nVytlVxyowhLJwHhzYNshWMA5HDghiClhQ0JmwayMCsxBkDoqDMrvDVqp8h3xXFSg1U=
x-amz-request-id: 8ESVB8GP9VT53CZV
Date: Sat, 04 Feb 2023 01:53:18 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 01 Feb 2023 15:22:34 GMT
ETag: "98e671a31d29c2283e57432b06911d14"
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 146308
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/index-c8ce0eba.js
52.219.74.69304 Not Modified 0 B URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/index-c8ce0eba.js
IP 52.219.74.69:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /prod/common/complib/esm/index-c8ce0eba.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://promotions.betsafe.com
Connection: keep-alive
Referer: https://cbt-gecko-storage.s3.eu-central-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
If-None-Match: "98e671a31d29c2283e57432b06911d14"
HTTP/1.1 304 Not Modified
x-amz-id-2: 2F+jUB/y0UYlGfk4iRCYwm0mG2HQCBa784fi1juJ4fieXMOIvCWBCaOQHaLO4R2saOL/pKwiYc0=
x-amz-request-id: 8ESN2HZCAZ7619S7
Date: Sat, 04 Feb 2023 01:53:18 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 01 Feb 2023 15:22:34 GMT
ETag: "98e671a31d29c2283e57432b06911d14"
Server: AmazonS3
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/app-globals-0f993ce5.js
52.219.74.69304 Not Modified 0 B URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/app-globals-0f993ce5.js
IP 52.219.74.69:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /prod/common/complib/esm/app-globals-0f993ce5.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://promotions.betsafe.com
Connection: keep-alive
Referer: https://cbt-gecko-storage.s3.eu-central-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
If-None-Match: "8372a2a3eccde49725077fdf00761935"
HTTP/1.1 304 Not Modified
x-amz-id-2: HkJGGX3Jhxjj+pvdeoH/lkin+dwwVOUYpamJNtp4AmAkD36lwcJDSVuQX8aGu17cRJ/ODTiYnko=
x-amz-request-id: 8ESKXMXAGBRZS1BG
Date: Sat, 04 Feb 2023 01:53:18 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 01 Feb 2023 15:22:34 GMT
ETag: "8372a2a3eccde49725077fdf00761935"
Server: AmazonS3
cdn.cookielaw.org/logos/ef1e7412-c61f-4d80-8864-afd77df9fe19/2caa4cad-e958-4659-ab40-48264f2a57bf/466ce7e0-da7e-4de2-ae1c-113b33580243/Betsafe-white.png
104.16.149.64200 OK 8.4 kB URL HTTP/2 cdn.cookielaw.org/logos/ef1e7412-c61f-4d80-8864-afd77df9fe19/2caa4cad-e958-4659-ab40-48264f2a57bf/466ce7e0-da7e-4de2-ae1c-113b33580243/Betsafe-white.png
IP 104.16.149.64:0
File type PNG image data, 330 x 75, 8-bit/color RGBA, non-interlaced\012- data
Hash 906a44f02a66aa56afbf7bca6d85c087
c649192426f4cd0cbc6ebd63f67a19f049587f68
a78d658b428d80636c81a24ad48d171d9ea03dc3d801508e22a88e45bf110a8d
GET /logos/ef1e7412-c61f-4d80-8864-afd77df9fe19/2caa4cad-e958-4659-ab40-48264f2a57bf/466ce7e0-da7e-4de2-ae1c-113b33580243/Betsafe-white.png HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promotions.betsafe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:18 GMT
content-type: application/octet-stream
content-length: 8439
content-md5: kGpE8Cpmqlavv3vKbYXAhw==
last-modified: Tue, 09 Jun 2020 07:52:01 GMT
etag: 0x8D80C49FE6B043F
x-ms-request-id: 63e28e36-901e-003e-22a6-596ec7000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 81624
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 793fc598ad92b4eb-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d3e050cf67675c3c19014a74517e3747
9931fd6a416e220e15ef5eccad6d0cb12edf3995
8411e23b7bfeba91b6252f15de6ed18b8cff1f752af0efc4f5429b54fccb0da4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1392
Cache-Control: max-age=109507
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 01:53:18 GMT
Etag: "63dcbde2-1d7"
Expires: Sun, 05 Feb 2023 08:18:25 GMT
Last-Modified: Fri, 03 Feb 2023 07:55:14 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
cdn.cookielaw.org/logos/static/poweredBy_ot_logo.svg
104.16.149.64200 OK 69 kB URL HTTP/2 cdn.cookielaw.org/logos/static/poweredBy_ot_logo.svg
IP 104.16.149.64:0
Hash 0ac3289e9466dff50015b4cbe641ca4c
d325de6e3e907950d025dcbb7486e36d3127a950
47f23825eaaf6f49160e13d169f2d705501016bd3e98a016ded8da3b469871a8
GET /logos/static/poweredBy_ot_logo.svg HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promotions.betsafe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:18 GMT
content-type: image/svg+xml
content-md5: LpuayL42jB78xRllx0vkOw==
last-modified: Thu, 02 Feb 2023 13:33:38 GMT
x-ms-request-id: 37e5f1ab-101e-00ca-7f5b-374b2b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 13476
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 793fc598ad94b4eb-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash dd1f85cc598419df61e254e53f9ec1ef
f86c0ee563f5b7a01e1d40b566f2bc184a32380f
c06f52b233c835b03292f39cb847507a03bb971066bf91341b58a580244398c0
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promos.betano.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: tPgXbMJk1evLY5kty0Rt3yzgId28oSbU76N/Zj+2iXXVJv71D5cf5Qu9kmBWdwQgbCsr3Jy4Aem26E7t3p7F2g==
priority: u=3,i
content-length: 27843
x-fb-trip-id: 1904183273
date: Sat, 04 Feb 2023 01:53:18 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d3e050cf67675c3c19014a74517e3747
9931fd6a416e220e15ef5eccad6d0cb12edf3995
8411e23b7bfeba91b6252f15de6ed18b8cff1f752af0efc4f5429b54fccb0da4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1392
Cache-Control: max-age=109507
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 01:53:18 GMT
Etag: "63dcbde2-1d7"
Expires: Sun, 05 Feb 2023 08:18:25 GMT
Last-Modified: Fri, 03 Feb 2023 07:55:14 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promos.betano.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Sat, 04 Feb 2023 01:44:08 GMT
expires: Sat, 04 Feb 2023 03:44:08 GMT
cache-control: public, max-age=7200
age: 550
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.cookielaw.org/logos/ef1e7412-c61f-4d80-8864-afd77df9fe19/f1dbabb7-1b41-46c6-a924-f2073e4e762d/e2b09f74-8c8c-441e-9884-ffa585cc341f/betsson.png
104.16.149.64200 OK 8.5 kB URL HTTP/2 cdn.cookielaw.org/logos/ef1e7412-c61f-4d80-8864-afd77df9fe19/f1dbabb7-1b41-46c6-a924-f2073e4e762d/e2b09f74-8c8c-441e-9884-ffa585cc341f/betsson.png
IP 104.16.149.64:0
File type PNG image data, 318 x 57, 8-bit/color RGBA, non-interlaced\012- data
Hash 859aca7869c488ed6b04eb203250c4e1
fea586929aede21efa8ccbc87024dc21e1aaaf2b
ebf3c2f1ce0729ecee607abcd13b46df41d46f9e7b33dc71b44e488fbac42f0c
GET /logos/ef1e7412-c61f-4d80-8864-afd77df9fe19/f1dbabb7-1b41-46c6-a924-f2073e4e762d/e2b09f74-8c8c-441e-9884-ffa585cc341f/betsson.png HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://in.betsson.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:18 GMT
content-type: application/octet-stream
content-length: 8535
content-md5: hZrKeGnEiO1rBOsgMlDE4Q==
last-modified: Mon, 01 Jun 2020 09:26:09 GMT
etag: 0x8D8060DD16450A8
x-ms-request-id: e93db895-b01e-0126-7caf-590507000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 82445
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 793fc599ce01b4eb-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b2225cc2d185fde75131092ad660d637
cd30900570650f2f02b61ec691a71885f72e1974
870dd465ebcd3c268152c2f77ac12fddf0c22e4b388ff0ca1df9cf5e20724546
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3409
Cache-Control: max-age=154320
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 01:53:18 GMT
Etag: "63dd650d-1d7"
Expires: Sun, 05 Feb 2023 20:45:18 GMT
Last-Modified: Fri, 03 Feb 2023 19:48:29 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
20bet.com/custom-assets/mainloader.gif
104.22.34.208200 OK 304 kB URL HTTP/2 20bet.com/custom-assets/mainloader.gif
IP 104.22.34.208:0
File type GIF image data, version 89a, 400 x 400\012- data
Size 304 kB (303571 bytes)
Hash 323a31f4cce6bcd83935bbccf0f665da
7ba68a35bec60487944b77a69f91c88556f7017a
9e9d2f310ed323e2649b69229dd077995f5c2217c12bc07c66ea3f17dbc1dafa
GET /custom-assets/mainloader.gif HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_20291175FC544DC8B68537A119FB1815
Cookie: btag=668128_20291175FC544DC8B68537A119FB1815
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:18 GMT
content-type: image/gif
content-length: 303571
cf-ray: 793fc59a0a690a25-ARN
accept-ranges: bytes
age: 1837
cache-control: public, max-age=14400
last-modified: Sat, 04 Feb 2023 01:22:41 GMT
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers: Content-Length,Content-Range
server: cloudflare
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 85cc6b2d1246c598e6c3e2d6e7be475d
d91c3e0bbb1e3eebe57cb90438525cb0ee375581
10233b5e7c8d9e4075d1855643ddb97797753b45891f0c46fab50737303a1b04
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6384
Cache-Control: max-age=114502
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 01:53:18 GMT
Etag: "63dcbde4-117"
Expires: Sun, 05 Feb 2023 09:41:40 GMT
Last-Modified: Fri, 03 Feb 2023 07:55:16 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 5adf2c0a4b0cb0102bb2a801db222019
987b0d000fef5f238e256af039503019a60bb4f3
bc1467d19e8dea3983161468af524eb7c479b9e9e4f30df5f971f6816a8f4f85
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4511
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 01:53:18 GMT
Last-Modified: Sat, 04 Feb 2023 00:38:07 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 279
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/cbt-footer.entry.js
52.219.74.69200 OK 15 kB URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/cbt-footer.entry.js
IP 52.219.74.69:0
File type C++ source text\012- Java source, ASCII text, with very long lines (4837)
Hash 13e026cd20ab6e3d04d97b4e6d831c23
b43989b8125b7e2c9d096d389a65ef43a7833fc6
dcdacdc267f6f3cca03b8225c9ed74392627df790023230be3306dd25c10a34c
GET /prod/common/complib/esm/cbt-footer.entry.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://in.betsson.com
Connection: keep-alive
Referer: https://cbt-gecko-storage.s3.eu-central-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: lquR4SgOYYRTSkq2I0moIy9GP4QrOtS9Z3K4fPma0w2+l3AI1+citUIT2t20euOOtam+P49ujXk=
x-amz-request-id: HMEMT495AZHDVSNT
Date: Sat, 04 Feb 2023 01:53:19 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 01 Feb 2023 15:22:34 GMT
ETag: "13e026cd20ab6e3d04d97b4e6d831c23"
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 15116
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/cbt-footer.entry.js
52.219.74.69200 OK 15 kB URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/cbt-footer.entry.js
IP 52.219.74.69:0
File type C++ source text\012- Java source, ASCII text, with very long lines (4837)
Hash 13e026cd20ab6e3d04d97b4e6d831c23
b43989b8125b7e2c9d096d389a65ef43a7833fc6
dcdacdc267f6f3cca03b8225c9ed74392627df790023230be3306dd25c10a34c
GET /prod/common/complib/esm/cbt-footer.entry.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://promotions.betsafe.com
Connection: keep-alive
Referer: https://cbt-gecko-storage.s3.eu-central-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: cvhD97DDwxUT2lCZj+cPyjFHgZPptIVQKXad6EWBcAYdbtBp3G2iQwX3TVGSfO0FTOc2AvU+G5Q=
x-amz-request-id: HMEM87VK7Q9FTNT7
Date: Sat, 04 Feb 2023 01:53:19 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 01 Feb 2023 15:22:34 GMT
ETag: "13e026cd20ab6e3d04d97b4e6d831c23"
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 15116
casino.cur.a8r.games/public/sg.js
104.18.13.198200 OK 2.3 kB URL HTTP/2 casino.cur.a8r.games/public/sg.js
IP 104.18.13.198:0
Hash 87d1ae7dce79263dafba9de1b3de7996
40cb42e571b4a4f24cc3beccdd0634eca9e029db
30ea960b0365089b979f2d953418594ecaba0ff6dfba78ff7f081ca225670b5d
GET /public/sg.js HTTP/1.1
Host: casino.cur.a8r.games
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:18 GMT
content-type: text/javascript; charset=utf-8
strict-transport-security: max-age=15724800; includeSubDomains
last-modified: Sat, 04 Feb 2023 01:15:04 GMT
cf-cache-status: HIT
age: 1919
expires: Sat, 04 Feb 2023 05:53:18 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
server: cloudflare
cf-ray: 793fc59a8d58b50f-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/inheritQueryParams-34165318.js
52.219.74.69200 OK 2.7 kB URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/inheritQueryParams-34165318.js
IP 52.219.74.69:0
File type C++ source text\012- Java source, ASCII text
Hash 549e1e838b861fb0ef54f6cf614836bd
73269b0bdfa4c49ab371d76b4bbc7979e9dfe8a0
3d07cc1632f1a6bf09ebff1a148a8edcde5f2547b37ee881e7fef5d3909a1f58
GET /prod/common/complib/esm/inheritQueryParams-34165318.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://in.betsson.com
Connection: keep-alive
Referer: https://cbt-gecko-storage.s3.eu-central-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: deR3MbKLuFBOG9dJIqMV0DCbOhdwguLBE+sQ/UXQQS/rGlBneUEE8DkXLfnnJkQsfYCRrgWegi4=
x-amz-request-id: HMENBJP06SRV8AQ3
Date: Sat, 04 Feb 2023 01:53:19 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 01 Feb 2023 15:22:34 GMT
ETag: "549e1e838b861fb0ef54f6cf614836bd"
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 2668
cdn.onesignal.com/sdks/OneSignalSDK.js
104.18.225.52200 OK 3.6 kB URL HTTP/2 cdn.onesignal.com/sdks/OneSignalSDK.js
IP 104.18.225.52:0
File type ASCII text, with very long lines (9097)
Hash 7d860848f2b6c8e8fd8bd0a635661ef6
fec400d8418f140af45276ab71731de3bcd69b71
083f7857d5aca3629a15f06330ba17c90c3296cf00c6c961e4764645ffc8f611
GET /sdks/OneSignalSDK.js HTTP/1.1
Host: cdn.onesignal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:18 GMT
content-type: application/javascript
etag: W/"ae63ef8ff03da61fffaa7f165729897a"
access-control-allow-headers: OneSignal-Subscription-Id
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 2250
expires: Tue, 07 Feb 2023 01:53:18 GMT
cache-control: public, max-age=259200
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains
server: cloudflare
cf-ray: 793fc59a7f0fb518-OSL
content-encoding: br
X-Firefox-Spdy: h2
code.jquery.com/jquery-3.4.1.min.js
69.16.175.42200 OK 624 B URL HTTP/2 code.jquery.com/jquery-3.4.1.min.js
IP 69.16.175.42:0
Hash 9aea40615e4e048e215b623517189c3c
50a9728b7bd0abd51b76ab11f30b31c9bb9c694b
8289f147df083108e3e860c31962a0771e6bb25e8cf39d5d4b39aeb25b02b534
GET /jquery-3.4.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promos.betano.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:16 GMT
content-encoding: gzip
content-length: 30638
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-15851"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1675475596.dop026.sk1.t,1675475596.cds021.sk1.hn,1675475596.cds201.sk1.c
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 99b6df75cf88b7f368b272159870a738
9bc31dc5c0f4b847d47e2ee8a565b21a373b9d80
5f2016ad3444cb9b6f19019687d1d60efee467095a2263b43efd84ffd98cca2e
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=151747
Date: Sat, 04 Feb 2023 01:53:18 GMT
Etag: "63dd589b-1d7"
Expires: Sun, 05 Feb 2023 20:02:25 GMT
Last-Modified: Fri, 03 Feb 2023 18:55:23 GMT
Server: ECS (nyb/1D05)
X-Cache: Miss from cloudfront
Via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: IG1zyyH38iEJRPSUPLpbkfCjTRYV4zafgUWzu4o0jYXW_iXEzzVKMA==
Age: 4022
20bet.com/app/styles.09f1d7fd866591ab.css
104.22.34.208200 OK 31 kB URL HTTP/2 20bet.com/app/styles.09f1d7fd866591ab.css
IP 104.22.34.208:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 07363cd964439499a6ab5c464482016d
b9c8b85aa5cd98f5ae740b47328c53d552e8ea6b
1e62ed58a1a95763d5c4ca01722a02bf3ce81603d726e2934df84624deeff46e
GET /app/styles.09f1d7fd866591ab.css HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_20291175FC544DC8B68537A119FB1815
Cookie: btag=668128_20291175FC544DC8B68537A119FB1815
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:18 GMT
content-type: text/css
cf-ray: 793fc599fa600a25-ARN
etag: W/"63dcff6a-23c8a"
last-modified: Fri, 03 Feb 2023 12:34:50 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/inheritQueryParams-34165318.js
52.219.74.69304 Not Modified 0 B URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/inheritQueryParams-34165318.js
IP 52.219.74.69:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /prod/common/complib/esm/inheritQueryParams-34165318.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://promotions.betsafe.com
Connection: keep-alive
Referer: https://cbt-gecko-storage.s3.eu-central-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
If-None-Match: "549e1e838b861fb0ef54f6cf614836bd"
HTTP/1.1 304 Not Modified
x-amz-id-2: jqsC48FAdYR1lNntbxIjIyJuXJ2fC65jp2ZelkNsa93UkAfOTkKTDBH9UG/nGyuEwuegujTulbo=
x-amz-request-id: HMENHVFTQPWRDGSY
Date: Sat, 04 Feb 2023 01:53:19 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 01 Feb 2023 15:22:34 GMT
ETag: "549e1e838b861fb0ef54f6cf614836bd"
Server: AmazonS3
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/buildQueryParams-c973808d.js
52.219.74.69304 Not Modified 0 B URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/buildQueryParams-c973808d.js
IP 52.219.74.69:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /prod/common/complib/esm/buildQueryParams-c973808d.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://promotions.betsafe.com
Connection: keep-alive
Referer: https://cbt-gecko-storage.s3.eu-central-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
If-None-Match: "67f7419202508dd74f0b825c7aef2016"
HTTP/1.1 304 Not Modified
x-amz-id-2: SOKZBKQjcvvXVLBed8F0/JzjWksQS3ctHVL46K6kN61SEk8t0SJfwbVgtrrJ4/OPmryj/ZIG0QQ=
x-amz-request-id: HMEWYYS3CDAFJPF8
Date: Sat, 04 Feb 2023 01:53:19 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 01 Feb 2023 15:22:34 GMT
ETag: "67f7419202508dd74f0b825c7aef2016"
Server: AmazonS3
geolocation.onetrust.com/cookieconsentpub/v1/geo/location
104.18.27.85200 OK 6.9 kB URL HTTP/2 geolocation.onetrust.com/cookieconsentpub/v1/geo/location
IP 104.18.27.85:0
Hash 56119498895e0564db61032a68de78be
0cda7bffecf5653990b14c910004af52de994846
8166085d131ecd8d63c482521dced3d0eb9102dd05c53347977413e1589a238a
GET /cookieconsentpub/v1/geo/location HTTP/1.1
Host: geolocation.onetrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://promotions.betsafe.com
Connection: keep-alive
Referer: https://promotions.betsafe.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:16 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, OPTIONS
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 793fc5910afe0b3d-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com/sealassets/d510897a709a5a93db9e780de0eccf1e-20bet.com-f5faf6d82a7be2057527120fa49724355adf2a8c973918d432fa7b70160234e717ac6b01358f27fc0aff52358b79fb11-c3ByaXRlLXNlYWwucG5n?status=valid
54.230.111.63200 OK 49 kB URL HTTP/2 c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com/sealassets/d510897a709a5a93db9e780de0eccf1e-20bet.com-f5faf6d82a7be2057527120fa49724355adf2a8c973918d432fa7b70160234e717ac6b01358f27fc0aff52358b79fb11-c3ByaXRlLXNlYWwucG5n?status=valid
IP 54.230.111.63:0
File type PNG image data, 512 x 256, 8-bit/color RGBA, non-interlaced\012- data
Hash 8ef6782be55b8ce8f5b132d28af8e0d0
cb99df77f4865d9c2f287539a5ca474cf76f7d09
d614922fde9604f8899e47f3cc3d69bf952312b996f7cf1421163996710850fa
GET /sealassets/d510897a709a5a93db9e780de0eccf1e-20bet.com-f5faf6d82a7be2057527120fa49724355adf2a8c973918d432fa7b70160234e717ac6b01358f27fc0aff52358b79fb11-c3ByaXRlLXNlYWwucG5n?status=valid HTTP/1.1
Host: c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 49397
x-powered-by: Express
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fb5a2e9be913d-FRA
date: Sat, 04 Feb 2023 01:53:18 GMT
cache-control: max-age=1200
etag: W/"c0f5-y5nfd/SGXZwvKHU5pcpHTPdvfQk"
x-cache: RefreshHit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: cAp-twZ-Bx9yhzCLFio4Qm7gicBqQYmL8lP-nTg3k-2tT7bxycIt7w==
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 078c6b8c278273a136af1354d01664f2
afe1398c1d2d6165117c014b97250de327283867
9836592a7c1aff09a52c3782b7e12a3893c412babb2f944715e3bc10cf928196
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6284
Cache-Control: max-age=106834
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 01:53:18 GMT
Etag: "63dca054-1d7"
Expires: Sun, 05 Feb 2023 07:33:52 GMT
Last-Modified: Fri, 03 Feb 2023 05:49:08 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com/sealassets/d510897a709a5a93db9e780de0eccf1e-20bet.com-f5faf6d82a7be2057527120fa49724355adf2a8c973918d432fa7b70160234e717ac6b01358f27fc0aff52358b79fb11-c3BhY2VyLXNwcml0ZS5wbmc%3D
54.230.111.63200 OK 95 B URL HTTP/2 c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com/sealassets/d510897a709a5a93db9e780de0eccf1e-20bet.com-f5faf6d82a7be2057527120fa49724355adf2a8c973918d432fa7b70160234e717ac6b01358f27fc0aff52358b79fb11-c3BhY2VyLXNwcml0ZS5wbmc%3D
IP 54.230.111.63:0
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced\012- data
Hash 9591c410148e6883727c5339fd1c02cd
3442a95fe890ce4769b36b2ecc611b801a54cfb5
cafbd551d674da240212f6c44988757a728b9dc8cbc2a6c8dcf53c0d9159c323
Analyzer Verdict Alert fortinet Malware
GET /sealassets/d510897a709a5a93db9e780de0eccf1e-20bet.com-f5faf6d82a7be2057527120fa49724355adf2a8c973918d432fa7b70160234e717ac6b01358f27fc0aff52358b79fb11-c3BhY2VyLXNwcml0ZS5wbmc%3D HTTP/1.1
Host: c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 95
x-powered-by: Express
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fb5a2da8a35e7-FRA
date: Sat, 04 Feb 2023 01:53:18 GMT
cache-control: max-age=1200
etag: W/"5f-NEKpX+iQzkdps2suzGEbgBpUz7U"
x-cache: RefreshHit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: nEagAT2aUlT0JCF6lJuz0MPK68HLEj6WQ5YJcmvAFc56l9OJepJ3Eg==
X-Firefox-Spdy: h2
aswpsdkus.com/notify/v1/ua-sdk.min.js
34.160.158.95200 OK 43 kB URL HTTP/2 aswpsdkus.com/notify/v1/ua-sdk.min.js
IP 34.160.158.95:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 1cda07a2bbc55dcaf684954e7d897c40
ad0c471c1cd361f7a4ef8deb825aa63eb1b01029
8e12a7991dda2a0e6cbd6ba7423a98ea668c2f47a83f7b70180d21b1f3893270
GET /notify/v1/ua-sdk.min.js HTTP/1.1
Host: aswpsdkus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycduYlp8z2BaherxIcVZrQGFMBtFEX3ChKgh_cVgcLD8FdTbi5HEqf6-AvOsZruefdfH0gSdl_PPBgkvssTLHf4RKcNs0kn1p
vary: X-Goog-Allowed-Resources
x-goog-generation: 1673371354401478
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 42942
content-encoding: gzip
x-goog-hash: crc32c=CzJWog==, md5=HNoHorvFXcr2hJVOfYl8QA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 42942
server: UploadServer
date: Sat, 04 Feb 2023 01:48:59 GMT
expires: Sat, 04 Feb 2023 01:53:59 GMT
cache-control: public,max-age=300,no-transform
age: 259
last-modified: Tue, 10 Jan 2023 17:22:34 GMT
etag: "1cda07a2bbc55dcaf684954e7d897c40"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 078c6b8c278273a136af1354d01664f2
afe1398c1d2d6165117c014b97250de327283867
9836592a7c1aff09a52c3782b7e12a3893c412babb2f944715e3bc10cf928196
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6284
Cache-Control: max-age=106834
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 01:53:18 GMT
Etag: "63dca054-1d7"
Expires: Sun, 05 Feb 2023 07:33:52 GMT
Last-Modified: Fri, 03 Feb 2023 05:49:08 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
track.adform.net/Serving/TrackPoint/?CC=1&pm=2776363&ADFPageName=pe.betano%7CSportsbook&ADFdivider=%7C&ord=454442598827&ADFtpmode=2&loc=https%3A%2F%2Fpromos.betano.com%2Fsportsbook-pe%2Findex.html%3Fbtag%3Da_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO%26utm_medium%3D4168%26utm_source%3D3%26siteid%3D13943&Set1=en-US%7Cen-US%7C1280x1024%7C24
37.157.6.233200 OK 194 B URL HTTP/2 track.adform.net/Serving/TrackPoint/?CC=1&pm=2776363&ADFPageName=pe.betano%7CSportsbook&ADFdivider=%7C&ord=454442598827&ADFtpmode=2&loc=https%3A%2F%2Fpromos.betano.com%2Fsportsbook-pe%2Findex.html%3Fbtag%3Da_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO%26utm_medium%3D4168%26utm_source%3D3%26siteid%3D13943&Set1=en-US%7Cen-US%7C1280x1024%7C24
IP 37.157.6.233:0
File type ASCII text, with CRLF line terminators
Hash ff17a732b946d3207ae8156e8101ef89
79b561c7e1fb0f2cca4fd9901ed08f55f0763178
79fd5c4b12e3778a7cf7b4d7de58d52ed60c82495b4cb91e711a7f7b410728f1
GET /Serving/TrackPoint/?CC=1&pm=2776363&ADFPageName=pe.betano%7CSportsbook&ADFdivider=%7C&ord=454442598827&ADFtpmode=2&loc=https%3A%2F%2Fpromos.betano.com%2Fsportsbook-pe%2Findex.html%3Fbtag%3Da_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO%26utm_medium%3D4168%26utm_source%3D3%26siteid%3D13943&Set1=en-US%7Cen-US%7C1280x1024%7C24 HTTP/1.1
Host: track.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://promos.betano.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 01:53:18 GMT
content-type: text/javascript; charset=utf-8
content-length: 194
cache-control: no-cache, no-store, must-revalidate, no-transform
pragma: no-cache
content-encoding: gzip
expires: -1
vary: Accept-Encoding
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
ws-cdn001.akamaized.net/7693683943e78a298c36d469e68b47d8/widgetloader
23.36.77.8200 OK 60 kB URL HTTP/2 ws-cdn001.akamaized.net/7693683943e78a298c36d469e68b47d8/widgetloader
IP 23.36.77.8:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (41453)
Hash 297124fbf369cd0269a9f454c978304a
052c58495f020b2a1823a08660c8493d959f1e21
5036b21a973f75c53f34c10a4da742dd668d0de498960cf6a2376d97b4856333
GET /7693683943e78a298c36d469e68b47d8/widgetloader HTTP/1.1
Host: ws-cdn001.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-security-policy: frame-ancestors 'self' https://st-cdn001.akamaized.net https://ls-cdn001.akamaized.net
cache-control: public, max-age=120, stale-while-revalidate=60, immutable
etag: "dbd94835299851de14a09ce08183eb22-ad178b20a3ae52f75aa81f88f35a1d95"
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
x-ing-v: 2
content-length: 60140
date: Sat, 04 Feb 2023 01:53:18 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
cdn.seon.io/js/v4/agent.js
54.230.111.40200 OK 142 kB URL HTTP/2 cdn.seon.io/js/v4/agent.js
IP 54.230.111.40:0
File type C source, ASCII text, with very long lines (65536), with no line terminators
Size 142 kB (142154 bytes)
Hash e9ca4bb651b486211b18e62e9c80682a
ae57407347aadcd4e539bbeda973b9172bf6c8e3
94630523d33b964ed79f21b12ff50769f032778fdedc8c7c69163d0af28d51e6
GET /js/v4/agent.js HTTP/1.1
Host: cdn.seon.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 20 Dec 2022 16:00:08 GMT
x-amz-version-id: oBwuMALhSWNlluJ4Z9BGO_.GELHIAD3H
server: AmazonS3
content-encoding: gzip
date: Sat, 04 Feb 2023 01:11:24 GMT
cache-control: max-age=3600
etag: W/"c34c3067f651e0fea2609171ab7bfec0"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: DFwTuMBCbHzcqFM1VADg3ZZt5pk5iQhdFfu0DCtDDUDGenq3vGBAmg==
age: 2515
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=542391013994393&ev=PageView&dl=https%3A%2F%2Fpromos.betano.com%2Fsportsbook-pe%2Findex.html%3Fbtag%3Da_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO%26utm_medium%3D4168%26utm_source%3D3%26siteid%3D13943&rl=&if=true&ts=1675475632352&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&it=1675475631851&coo=false&rqm=GET
157.240.205.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=542391013994393&ev=PageView&dl=https%3A%2F%2Fpromos.betano.com%2Fsportsbook-pe%2Findex.html%3Fbtag%3Da_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO%26utm_medium%3D4168%26utm_source%3D3%26siteid%3D13943&rl=&if=true&ts=1675475632352&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&it=1675475631851&coo=false&rqm=GET
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=542391013994393&ev=PageView&dl=https%3A%2F%2Fpromos.betano.com%2Fsportsbook-pe%2Findex.html%3Fbtag%3Da_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO%26utm_medium%3D4168%26utm_source%3D3%26siteid%3D13943&rl=&if=true&ts=1675475632352&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&it=1675475631851&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promos.betano.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 04 Feb 2023 01:53:18 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=542391013994393&ev=PageView&dl=https%3A%2F%2Fpromos.betano.com%2Fsportsbook-pe%2Findex.html%3Fbtag%3Da_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO%26utm_medium%3D4168%26utm_source%3D3%26siteid%3D13943&rl=&if=true&ts=1675475632355&cd[AffiliateID]=13943&sw=1280&sh=1024&v=2.9.95&r=stable&a=tmSimo-GTM-WebTemplate&ec=1&o=30&cs_est=true&it=1675475631851&coo=false&tm=1&rqm=GET
157.240.205.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=542391013994393&ev=PageView&dl=https%3A%2F%2Fpromos.betano.com%2Fsportsbook-pe%2Findex.html%3Fbtag%3Da_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO%26utm_medium%3D4168%26utm_source%3D3%26siteid%3D13943&rl=&if=true&ts=1675475632355&cd[AffiliateID]=13943&sw=1280&sh=1024&v=2.9.95&r=stable&a=tmSimo-GTM-WebTemplate&ec=1&o=30&cs_est=true&it=1675475631851&coo=false&tm=1&rqm=GET
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=542391013994393&ev=PageView&dl=https%3A%2F%2Fpromos.betano.com%2Fsportsbook-pe%2Findex.html%3Fbtag%3Da_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO%26utm_medium%3D4168%26utm_source%3D3%26siteid%3D13943&rl=&if=true&ts=1675475632355&cd[AffiliateID]=13943&sw=1280&sh=1024&v=2.9.95&r=stable&a=tmSimo-GTM-WebTemplate&ec=1&o=30&cs_est=true&it=1675475631851&coo=false&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promos.betano.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 04 Feb 2023 01:53:19 GMT
X-Firefox-Spdy: h2
20bet.com/app/runtime.3565d56e138e89a0.esm.js
104.22.34.208200 OK 83 kB URL HTTP/2 20bet.com/app/runtime.3565d56e138e89a0.esm.js
IP 104.22.34.208:0
File type ASCII text, with very long lines (10030), with no line terminators
Hash 62700f46096a1a68aa4411944da26b81
39b4cf7f5888e5488d16d2d8cf08f3abd9129a34
d4cb3ba3e16d72cc8b18780145931b090fa074373513ca1bbb4920b76a350acb
GET /app/runtime.3565d56e138e89a0.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_20291175FC544DC8B68537A119FB1815
Cookie: btag=668128_20291175FC544DC8B68537A119FB1815
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:18 GMT
content-type: application/javascript
cf-ray: 793fc59cbb770a25-ARN
etag: W/"63dcff74-272e"
last-modified: Fri, 03 Feb 2023 12:35:00 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
tracker.ads.sportradar.com/dist/tracker.js
23.36.79.8200 OK 12 kB URL HTTP/2 tracker.ads.sportradar.com/dist/tracker.js
IP 23.36.79.8:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (34755)
Hash b34b13d85152f71b7fd15289c78c0583
0bb20191b022bbd0e75f2bbce7f6332886079c2c
7a3fc57394ecc6745eb6e18745aa1e5e5d05cb2237c4d0d754ab43d33863a84c
GET /dist/tracker.js HTTP/1.1
Host: tracker.ads.sportradar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 20 Jan 2021 14:51:32 GMT
accept-ranges: bytes
server: AmazonS3
etag: "5ff82a1c468a89919e9437d33e0402cb"
x-amz-cf-pop: AMS50-C1
x-amz-cf-id: ETbLIh65aY9mAVLWVaDNXwp9snfbUH2WYXvAEL3sCX87VsDHTCtsDg==
vary: Accept-Encoding
content-encoding: gzip
unused62: 8096267
content-length: 11553
date: Sat, 04 Feb 2023 01:53:19 GMT
cache-control: max-age=900, public
X-Firefox-Spdy: h2
bitslot.io/?stag=148527_63ddba8cf4a4f54db0b6835d&tracking_link=http%3A%2F%2Fb-partner.xyz%2Facf687497
104.18.18.207301 Moved Permanently 71 kB URL HTTP/2 bitslot.io/?stag=148527_63ddba8cf4a4f54db0b6835d&tracking_link=http%3A%2F%2Fb-partner.xyz%2Facf687497
IP 104.18.18.207:0
File type gzip compressed data, from Unix\012- data
Hash 6539f59328281ea957273aea25d124f3
3816da74f7c12693b07fe21ca1ae20dbb74ebca2
f6e82f944490db3c4172a5b36e26a35c63095df685e93ea365abdda85da07459
GET /?stag=148527_63ddba8cf4a4f54db0b6835d&tracking_link=http%3A%2F%2Fb-partner.xyz%2Facf687497 HTTP/1.1
Host: bitslot.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Sat, 04 Feb 2023 01:53:16 GMT
location: https://www.bitslot.io/?stag=148527_63ddba8cf4a4f54db0b6835d&tracking_link=http%3A%2F%2Fb-partner.xyz%2Facf687497
cache-control: max-age=3600
expires: Sat, 04 Feb 2023 02:53:16 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 793fc58cbb11b4fa-OSL
X-Firefox-Spdy: h2
zz.connextra.com/dcs/tagController/tag/d3ea3fb1f9d4/homepage
104.110.28.81200 OK 16 kB URL HTTP/2 zz.connextra.com/dcs/tagController/tag/d3ea3fb1f9d4/homepage
IP 104.110.28.81:0
File type HTML document text\012- exported SGML document, ASCII text, with very long lines (2407)
Hash f5c6ed464a100daeec24c257b81aeba4
f73b688dfff651a1342f8f36b2763f16e8fa976e
c62f6ae2fe15b2279beb5110c4d7827a39865b01b4b53caabcbe5686c8eae626
GET /dcs/tagController/tag/d3ea3fb1f9d4/homepage HTTP/1.1
Host: zz.connextra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript;charset=utf-8
content-length: 16263
server: istio-envoy
content-encoding: gzip
x-envoy-upstream-service-time: 2
cache-control: must-revalidate, max-age=300
expires: Sat, 04 Feb 2023 01:58:19 GMT
date: Sat, 04 Feb 2023 01:53:19 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
20bet.com/app/vendor.7f46fa567274024c.esm.js
104.22.34.208200 OK 472 kB URL HTTP/2 20bet.com/app/vendor.7f46fa567274024c.esm.js
IP 104.22.34.208:0
File type ASCII text, with very long lines (65451)
Size 472 kB (472109 bytes)
Hash ee1404fd66fc0c4f94e4f46a3af20340
08c7c74c7ae7c264cb4acbab28c1be4fd31a7e1a
d8fd9178c4342cbbe199d0707b9678006dbad8e473cb119dddbf1073e9265259
GET /app/vendor.7f46fa567274024c.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_20291175FC544DC8B68537A119FB1815
Cookie: btag=668128_20291175FC544DC8B68537A119FB1815
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:18 GMT
content-type: application/javascript
cf-ray: 793fc59cbb780a25-ARN
etag: W/"63dcff75-251c87"
last-modified: Fri, 03 Feb 2023 12:35:01 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
assets.customer.io/assets/track.js
54.230.111.79200 OK 4.3 kB URL HTTP/2 assets.customer.io/assets/track.js
IP 54.230.111.79:0
Hash 22862f137fea96e5056eba397b094cdd
2ff59091696e364cd5fe1dcc1493abb174486b16
4969600641d0a44884154d974d83c57c84b9a33e063cb3b9ca7fe0046c7af969
GET /assets/track.js HTTP/1.1
Host: assets.customer.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 26 Jan 2023 16:12:22 GMT
server: AmazonS3
content-encoding: gzip
date: Fri, 03 Feb 2023 16:12:51 GMT
etag: W/"60648b7089f3133807fa043435dcaf74"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: dWVN0icagbvt4idr7Kf5_lH3iflpUFx0a15HumIbY19vdli0Y7zmFw==
age: 54909
X-Firefox-Spdy: h2
sc-events-sdk.sharechat.com/web-sdk.js
34.120.129.12200 OK 12 kB URL HTTP/2 sc-events-sdk.sharechat.com/web-sdk.js
IP 34.120.129.12:0
File type ASCII text, with very long lines (11862), with no line terminators
Hash 590bf0022120d1610cba44ba02e12810
5dc081270f226a5e3ee9b47ad279ed2b1cdcf492
07886428aa53f7fa0b69b0b5e236e171be8c492d7020686b0fdec11f572c07a8
GET /web-sdk.js HTTP/1.1
Host: sc-events-sdk.sharechat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycduRSPlJD_HGOBDnIQqa-Nky9slJV4bjiJKV7vnH_8F8kxoNQHZhelhM0Jj54KmviMa4Sm9GaR4snt6xSTZ1IxE9Eg
vary: X-Goog-Allowed-Resources
x-goog-generation: 1667891067679001
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 11862
x-goog-hash: crc32c=ZVy9+A==, md5=WQvwAiEg0WEMukS6AuEoEA==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 11862
server: UploadServer
date: Sat, 04 Feb 2023 01:43:27 GMT
expires: Sat, 04 Feb 2023 02:43:27 GMT
cache-control: public, max-age=3600
age: 592
last-modified: Tue, 08 Nov 2022 07:04:27 GMT
etag: "590bf0022120d1610cba44ba02e12810"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
secure.adnxs.com/seg?add=32401244&t=1
37.252.171.53307 Redirection 0 B URL HTTP/1.1 secure.adnxs.com/seg?add=32401244&t=1
IP 37.252.171.53:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /seg?add=32401244&t=1 HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Sat, 04 Feb 2023 01:53:19 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://secure.adnxs.com/bounce?%2Fseg%3Fadd%3D32401244%26t%3D1
AN-X-Request-Uuid: 5296b274-93ab-4ac4-adfc-a3ebd7ac2396
Set-Cookie: uuid2=1387766864060872527; SameSite=None; Path=/; Max-Age=7776000; Expires=Fri, 05-May-2023 01:53:19 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1003.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
ocsp.godaddy.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash cca744485b3aa7a1ffdd32e694f1dd1d
22cc501c91ee339aa59aaa7c3c19215d08affd37
cf0bda7a018b4419ad18d3c2e3d88bbc61101efec345c29290155e738d7a759b
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sat, 04 Feb 2023 01:53:19 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 03 Feb 2023 20:50:51 GMT
Expires: Sat, 04 Feb 2023 20:50:51 GMT
ETag: "22cc501c91ee339aa59aaa7c3c19215d08affd37"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
promos.betano.com/custom.js
104.17.85.89200 OK 2.7 kB URL HTTP/2 promos.betano.com/custom.js
IP 104.17.85.89:0
Hash 92bccbe08327551183edd0b69192d25e
a27188c0b64215ad251441cbe8e3293ed912dda9
fa3d7d00652d01c2c080921522c60e7a2ead255c6362fb5950f6ff5f3c054e1e
GET /custom.js HTTP/1.1
Host: promos.betano.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promos.betano.com/sportsbook-pe/index.html?btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO&utm_medium=4168&utm_source=3&siteid=13943
Cookie: btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO; __cf_bm=7S4.AxFW6XoOOlxbHaRsRFmCwauZpvz_NdAE0yD2FM0-1675475596-0-ASFXD9yo5MBhW/GyH69qyGudz+plrzCgkw4fum5+wqvN1hVhjLrsfMYw4Dw/bCxIxnYG3TDBc302MTTFDqlfBIs=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:17 GMT
content-type: application/javascript
content-md5: oX+ccSVA/q/xYPyQvNAF4A==
last-modified: Thu, 20 Oct 2022 14:42:41 GMT
etag: W/"0x8DAB2A9575D808C"
x-ms-request-id: 2c54070b-a01e-0055-4148-2b0289000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
vary: Accept-Encoding
cf-cache-status: MISS
expires: Sat, 04 Feb 2023 01:58:17 GMT
cache-control: public, max-age=300
server: cloudflare
cf-ray: 793fc5906d1bb523-OSL
content-encoding: br
X-Firefox-Spdy: h2
b-partner.xyz/acf687497
172.67.218.53302 Found 136 B IP 172.67.218.53:0
File type HTML document, ASCII text
Hash b8a481f332b3b3b745763b87b6345dad
6959e9a8e9916909d62e695a05681ef8877b5615
0c45cdc860107182fdb2f64314dbb69bb3d967bce97ebfb68e7d20c9dd73832c
GET /acf687497 HTTP/1.1
Host: b-partner.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 04 Feb 2023 01:53:16 GMT
content-type: text/html; charset=utf-8
location: https://bitslot.io/?stag=148527_63ddba8cf4a4f54db0b6835d&tracking_link=http%3A%2F%2Fb-partner.xyz%2Facf687497
set-cookie: 73d3f1ba062585bce51f=63ddba8cf4a4f54db0b6835d; Expires=Mon, 06 Mar 2023 01:53:16 GMT
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
referrer-policy: strict-origin-when-cross-origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CPHQhh%2BCEtn0DSouXU9EfTEIZuVuK2zLBrlb22MxV%2FLaBiF2JQu4RCVw6M5bi7D3gsaSL2PR%2FRFAffVnbzgtascsPBnPNpuyE1lj5ZA0hUvqY3Jj%2BcaVYTwTN%2FozBnzn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793fc58abe1eb4eb-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 7cb1a8fed67e2352132e9bce1c0af485
ef7cb36cd2c03cfab17d3ac932150415e0242137
36e08d60d56a1755e227d1ed390fb6f854be650eb945ec95d9d8839ed25c0713
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=123949
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 01:53:19 GMT
Etag: "63dcfbbc-118"
Expires: Sun, 05 Feb 2023 12:19:08 GMT
Last-Modified: Fri, 03 Feb 2023 12:19:08 GMT
Server: nginx
Content-Length: 280
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash 62d0e3a8fba23e2c4367b78df6425029
8d5d41dcd0a9da3c50682fea6225ce05b8513f85
1550af722223d0f7c2ecf711422b58f7c6789dcc0ea11b486c4030d2daa243de
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "1550AF722223D0F7C2ECF711422B58F7C6789DCC0EA11B486C4030D2DAA243DE"
Last-Modified: Fri, 03 Feb 2023 18:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=768
Expires: Sat, 04 Feb 2023 02:06:07 GMT
Date: Sat, 04 Feb 2023 01:53:19 GMT
Connection: keep-alive
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash 62d0e3a8fba23e2c4367b78df6425029
8d5d41dcd0a9da3c50682fea6225ce05b8513f85
1550af722223d0f7c2ecf711422b58f7c6789dcc0ea11b486c4030d2daa243de
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "1550AF722223D0F7C2ECF711422B58F7C6789DCC0EA11B486C4030D2DAA243DE"
Last-Modified: Fri, 03 Feb 2023 18:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=826
Expires: Sat, 04 Feb 2023 02:07:05 GMT
Date: Sat, 04 Feb 2023 01:53:19 GMT
Connection: keep-alive
a.sportradarserving.com/pixel?type=js&aid=1121&id=1859
3.121.253.189302 Moved Temporarily 0 B URL HTTP/1.1 a.sportradarserving.com/pixel?type=js&aid=1121&id=1859
IP 3.121.253.189:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel?type=js&aid=1121&id=1859 HTTP/1.1
Host: a.sportradarserving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Sat, 04 Feb 2023 01:53:19 GMT
Location: https://a.sportradarserving.com/ul_cb/pixel?type=js&aid=1121&id=1859
Set-Cookie: zuuid=30a59495-5d6a-404e-bd5f-ed27ab7331f6; path=/; expires=Sun, 04-Feb-2024 01:53:19 GMT; domain=sportradarserving.com; samesite=none; secure
c=1675475599; path=/; expires=Sun, 04-Feb-2024 01:53:19 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1675475599; path=/; expires=Sun, 04-Feb-2024 01:53:19 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 0
Connection: keep-alive
a.sportradarserving.com/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
3.121.253.189302 Moved Temporarily 0 B URL HTTP/1.1 a.sportradarserving.com/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
IP 3.121.253.189:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId= HTTP/1.1
Host: a.sportradarserving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Sat, 04 Feb 2023 01:53:19 GMT
Location: https://a.sportradarserving.com/ul_cb/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
Set-Cookie: zuuid=88cf873a-ff7d-4444-802d-103f373a56f8; path=/; expires=Sun, 04-Feb-2024 01:53:19 GMT; domain=sportradarserving.com; samesite=none; secure
c=1675475599; path=/; expires=Sun, 04-Feb-2024 01:53:19 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1675475599; path=/; expires=Sun, 04-Feb-2024 01:53:19 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 0
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 0e97ed60f55d929bb630f356fbe405cb
0dc4a3a83288fae32f75aa1977e5382656be4391
e261c5a13b033db28883b282342cc38c43f2c82b9795e5a2952910baacfff353
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=88000
Date: Sat, 04 Feb 2023 01:53:19 GMT
Etag: "63dc55a5-1d7"
Expires: Sun, 05 Feb 2023 02:19:59 GMT
Last-Modified: Fri, 03 Feb 2023 00:30:29 GMT
Server: ECS (dcb/7FA5)
X-Cache: Miss from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 5_NXhWS_ImluvOhmnOt9HP7R69exTVtzyeLVWxGT71mO1B7jnxT65Q==
Age: 6570
20bet.com/app/6485.c5e5798c269cfd52.esm.js
104.22.34.208200 OK 451 B URL HTTP/2 20bet.com/app/6485.c5e5798c269cfd52.esm.js
IP 104.22.34.208:0
File type ASCII text, with very long lines (782), with no line terminators
Hash 94714386b543a8f95a7b2a1fdc96642f
ba2798fdb4e1d7130e2301add8e9c6a57595af39
4677c89f572fc614b008a235db92660d7d3bea95cced46061efb164f49717af5
GET /app/6485.c5e5798c269cfd52.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_20291175FC544DC8B68537A119FB1815
Cookie: btag=668128_20291175FC544DC8B68537A119FB1815; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:19 GMT
content-type: application/javascript
cf-ray: 793fc5a28dd20a25-ARN
etag: W/"63dcff7a-30e"
last-modified: Fri, 03 Feb 2023 12:35:06 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
a.sportradarserving.com/ul_cb/pixel?type=js&aid=1121&id=1859
3.121.253.189200 OK 1.5 kB URL HTTP/1.1 a.sportradarserving.com/ul_cb/pixel?type=js&aid=1121&id=1859
IP 3.121.253.189:0
File type ASCII text, with very long lines (1527), with no line terminators
Hash 7da71909deb8034480a4cbe24d6602d2
1f3e840855ce68eecd61618ad6040686a379a52d
7bac25aee42f2e048710d3207ca640bdfd4b799fc592c93e3334f42b6eefc676
GET /ul_cb/pixel?type=js&aid=1121&id=1859 HTTP/1.1
Host: a.sportradarserving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20bet.com/
Connection: keep-alive
Cookie: zuuid=88cf873a-ff7d-4444-802d-103f373a56f8; c=1675475599; zuuid_lu=1675475599
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store, must-revalidate
Content-Type: text/javascript; charset=UTF-8
Date: Sat, 04 Feb 2023 01:53:19 GMT
Set-Cookie: zuuid=88cf873a-ff7d-4444-802d-103f373a56f8; path=/; expires=Sun, 04-Feb-2024 01:53:19 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1675475599; path=/; expires=Sun, 04-Feb-2024 01:53:19 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k=1; path=/; expires=Sun, 04-Feb-2024 01:53:19 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k_lu=1675475599; path=/; expires=Sun, 04-Feb-2024 01:53:19 GMT; domain=sportradarserving.com; samesite=none; secure
cm2=!bidswitch,444804799; path=/; expires=Sun, 04-Feb-2024 01:53:19 GMT; domain=sportradarserving.com; samesite=none; secure
bss=!bidswitch,444732799; path=/; expires=Sun, 04-Feb-2024 01:53:19 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 1527
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 621b586028d5acaf29b8777ca0872ce1
9d2a358576d0acab58e2eacf7765b686cee9181f
a7c99a5217e394c715679780ae1e3e60202653547212b0a4fd2efab0e1a01015
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 01:53:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
platform.20bet.com/api/sport/list/-1/0/es
104.22.34.208204 No Content 0 B URL HTTP/2 platform.20bet.com/api/sport/list/-1/0/es
IP 104.22.34.208:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/sport/list/-1/0/es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 01:53:19 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fc5a34e230a25-ARN
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js?render=6LeYXFIiAAAAAEinEF15OsBYNq5UXwmor7zuYO0g
216.58.207.228200 OK 582 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6LeYXFIiAAAAAEinEF15OsBYNq5UXwmor7zuYO0g
IP 216.58.207.228:0
File type ASCII text, with very long lines (884), with no line terminators
Hash ba7bb8d0f4a363974a8f8a7918525f56
21578c80622cfa09dd55675c574827248e185f71
4494386bc89af9d8806675ff70d4cc53281aeeb01b9f841f3174b98da5f76076
GET /recaptcha/api.js?render=6LeYXFIiAAAAAEinEF15OsBYNq5UXwmor7zuYO0g HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Sat, 04 Feb 2023 01:53:20 GMT
date: Sat, 04 Feb 2023 01:53:20 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 582
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
20bet.com/app/common.3697a9055d1996ae.esm.js
104.22.34.208200 OK 10 kB URL HTTP/2 20bet.com/app/common.3697a9055d1996ae.esm.js
IP 104.22.34.208:0
File type ASCII text, with very long lines (32302), with no line terminators
Hash 496930a815a62a9975ff55badb6a9ebb
4f4b8a1e47a236b2b13962975cdb2dcccfeb1de1
460519d2e5fd1074429b5a9fe6b47d480e04b0d1ccef7df2f0bc3855c1cbfa35
GET /app/common.3697a9055d1996ae.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_20291175FC544DC8B68537A119FB1815
Cookie: btag=668128_20291175FC544DC8B68537A119FB1815; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:19 GMT
content-type: application/javascript
cf-ray: 793fc5a28dd00a25-ARN
etag: W/"63dcff6e-7e2e"
last-modified: Fri, 03 Feb 2023 12:34:54 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
cdnroute.bpsgameserver.com/echo-cdn-origin/themes/betsson/1674118443/css/compressed/betsson.min.css
54.230.111.90200 OK 576 kB URL HTTP/2 cdnroute.bpsgameserver.com/echo-cdn-origin/themes/betsson/1674118443/css/compressed/betsson.min.css
IP 54.230.111.90:0
File type Unicode text, UTF-8 text, with very long lines (64798), with no line terminators
Size 576 kB (576310 bytes)
Hash 1a89c29642faaed0395febd01430cec3
ad12c8a8438eb740667a0223f6748bd37eeed120
517c9befb0cd418ef07b66a690878b30f6f6794bb9c72dee6e2ae42d7d7b4900
GET /echo-cdn-origin/themes/betsson/1674118443/css/compressed/betsson.min.css HTTP/1.1
Host: cdnroute.bpsgameserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://in.betsson.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
date: Thu, 19 Jan 2023 09:24:44 GMT
server: Apache/2.4.52 (Ubuntu)
last-modified: Thu, 19 Jan 2023 08:54:06 GMT
etag: "e44fe-5f29a13538cc5-br"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sat, 18 Feb 2023 09:24:44 GMT
content-encoding: br
access-control-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: XA76LNGCba9T1sYvW1QAxITD_tBI2GM5d9vNF2OzZerTPKP9qiWevw==
age: 1355313
X-Firefox-Spdy: h2
platform.20bet.com/api/status
172.67.15.187204 No Content 0 B URL HTTP/2 platform.20bet.com/api/status
IP 172.67.15.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/status HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 01:53:20 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fc5a38a57b529-OSL
X-Firefox-Spdy: h2
20bet.com/app/8416.089b97ec0fb7c863.esm.js
104.22.34.208200 OK 403 B URL HTTP/2 20bet.com/app/8416.089b97ec0fb7c863.esm.js
IP 104.22.34.208:0
File type ASCII text, with very long lines (730), with no line terminators
Hash b6f7a2d1512551402a34fbc3e674a868
c99ad1b55ef3acc9b86ea83dca20b028f91293d5
fff957b37cd1f1ca98ce0b21b9c342e71035df7de401c60910672152daa0fc4f
GET /app/8416.089b97ec0fb7c863.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_20291175FC544DC8B68537A119FB1815
Cookie: btag=668128_20291175FC544DC8B68537A119FB1815; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:19 GMT
content-type: application/javascript
cf-ray: 793fc5a28dd40a25-ARN
etag: W/"63dcff6e-2da"
last-modified: Fri, 03 Feb 2023 12:34:54 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/data/get-currencies
172.67.15.187204 No Content 0 B URL HTTP/2 platform.20bet.com/api/data/get-currencies
IP 172.67.15.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/data/get-currencies HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 01:53:20 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fc5a3aa76b529-OSL
X-Firefox-Spdy: h2
platform.20bet.com/api/market-descriptions/get-all-markets/es
172.67.15.187204 No Content 0 B URL HTTP/2 platform.20bet.com/api/market-descriptions/get-all-markets/es
IP 172.67.15.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/market-descriptions/get-all-markets/es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 01:53:20 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fc5a39a61b529-OSL
X-Firefox-Spdy: h2
platform.20bet.com/api/match-statuses/get-all/es
172.67.15.187204 No Content 0 B URL HTTP/2 platform.20bet.com/api/match-statuses/get-all/es
IP 172.67.15.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/match-statuses/get-all/es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 01:53:20 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fc5a3aa6db529-OSL
X-Firefox-Spdy: h2
20bet.com/app/common.68e049bd60bde3ea.css
104.22.34.208200 OK 1.0 kB URL HTTP/2 20bet.com/app/common.68e049bd60bde3ea.css
IP 104.22.34.208:0
File type assembler source, ASCII text, with very long lines (3432), with no line terminators
Hash 123d265c3ce0fb8dddaf2cd6a897380f
b31f26da9fbfbd426549cbdb0aeb6983c934a04b
75d4985bec6ceb2f8f459471c7dce506deadf23af4860c2fcdbceaa7d5df71f8
GET /app/common.68e049bd60bde3ea.css HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_20291175FC544DC8B68537A119FB1815
Cookie: btag=668128_20291175FC544DC8B68537A119FB1815; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:19 GMT
content-type: text/css
cf-ray: 793fc5a27dcd0a25-ARN
etag: W/"63dcff7f-d68"
last-modified: Fri, 03 Feb 2023 12:35:11 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
apis.sharechat.com/self-serve-service/v1/external/selfServe/sdk/SG3eKxKT7W/get
104.17.235.9200 OK 57 B URL HTTP/2 apis.sharechat.com/self-serve-service/v1/external/selfServe/sdk/SG3eKxKT7W/get
IP 104.17.235.9:0
File type JSON data\012- , ASCII text, with no line terminators
Hash b743f3d65555324eb815a39dbfda117e
854c81927d8fd17fd8cb66503d8d2a0912293007
b93f1daec177bd721359292bba935c7f95c000e39bc8eb2f5f86eee34957e0f4
GET /self-serve-service/v1/external/selfServe/sdk/SG3eKxKT7W/get HTTP/1.1
Host: apis.sharechat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:19 GMT
content-type: application/json;charset=utf-8
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: https://20bet.com
vary: Origin
etag: W/"1f-6dkZ0odeH7r21LA6dRUG6G17Ebs"
via: 1.1 google
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=jptaZpuM39ICX82O1FQeS1uUuY0KARwsheo1iv.tpnw-1675475599-0-AX8ZPuHW4rA0TBbTxf8w/4dSpRX5iXIyoaU519kERuWZBdbs5cLyt/LbYzEBvYota1Ydmi6zqQuErJbYGVJt7qs=; path=/; expires=Sat, 04-Feb-23 02:23:19 GMT; domain=.sharechat.com; HttpOnly; Secure; SameSite=None
_cfuvid=A.wqcyMUUX7jlqiy1k9wSOaV8_JvnhCdExDGMTBpGgY-1675475599858-0-604800000; path=/; domain=.sharechat.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 793fc5a06fc4b524-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
platform.20bet.com/api/v2/ip-data
172.67.15.187204 No Content 0 B URL HTTP/2 platform.20bet.com/api/v2/ip-data
IP 172.67.15.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v2/ip-data HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 01:53:20 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fc5a38a56b529-OSL
X-Firefox-Spdy: h2
platform.20bet.com/api/v2/data/rates
172.67.15.187204 No Content 0 B URL HTTP/2 platform.20bet.com/api/v2/data/rates
IP 172.67.15.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v2/data/rates HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 01:53:20 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fc5a3ba7ab529-OSL
X-Firefox-Spdy: h2
platform.20bet.com/api/v2/configurations
172.67.15.187204 No Content 0 B URL HTTP/2 platform.20bet.com/api/v2/configurations
IP 172.67.15.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v2/configurations HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 01:53:20 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fc5a39a64b529-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 8176ac8bbb8fa05f36bdfa163da09e0c
b936c84c5fa7e781b12a17952c82bca546ca0575
1aa7e39fd02514a4023036a8a100d7e7898ee220063ebfb41c509264c81ed727
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 01:53:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
platform.20bet.com/api/match-statuses/get-all/es
104.22.34.208200 OK 15 kB URL HTTP/2 platform.20bet.com/api/match-statuses/get-all/es
IP 104.22.34.208:0
File type JSON data\012- , ASCII text, with very long lines (6725), with no line terminators
Hash 2fd5756ae96d58ddecf7b95fbd3aaa00
55b46cc41fec810dac419352f0fd58125e2f2603
24ad1ca084bc2005ea49e5b6060c0479f475094ba3211c4a9c3094e8abca557b
GET /api/match-statuses/get-all/es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:20 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fc5a48e9f0a25-ARN
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/v3/casino/game?dev_id=popular&per_page=6&has_live=0&perPage=6
172.67.15.187204 No Content 0 B URL HTTP/2 platform.20bet.com/api/v3/casino/game?dev_id=popular&per_page=6&has_live=0&perPage=6
IP 172.67.15.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v3/casino/game?dev_id=popular&per_page=6&has_live=0&perPage=6 HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 01:53:20 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fc5a72c33b529-OSL
X-Firefox-Spdy: h2
20bet.com/app/1549.cf9c18bc5ec878d1.esm.js
104.22.34.208200 OK 366 B URL HTTP/2 20bet.com/app/1549.cf9c18bc5ec878d1.esm.js
IP 104.22.34.208:0
File type ASCII text, with very long lines (588), with no line terminators
Hash 825e42da4bd6d6efdef601e9c39b239e
a39f731bb4bbc8929f262ea18cc70fe6e4f1c1fa
bf716a16616c2b3ca5bb76949ec5d0399509e9f48ea9045cfc28b25b884395a8
GET /app/1549.cf9c18bc5ec878d1.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_20291175FC544DC8B68537A119FB1815
Cookie: btag=668128_20291175FC544DC8B68537A119FB1815; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:20 GMT
content-type: application/javascript
cf-ray: 793fc5a64f4d0a25-ARN
etag: W/"63dcff7a-24c"
last-modified: Fri, 03 Feb 2023 12:35:06 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/market-descriptions/get-all-outcomes/es
104.22.34.208200 OK 126 kB URL HTTP/2 platform.20bet.com/api/market-descriptions/get-all-outcomes/es
IP 104.22.34.208:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Size 126 kB (125724 bytes)
Hash 39724937d8326e6ebf85d2633172897c
8892afe8eade0a8d12701013e995f0dcc5e95709
b1bf0b00200f0771e3f89624fd7407baad5cf86d5a463ba187eb4046c887ddf8
GET /api/market-descriptions/get-all-outcomes/es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:20 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fc5a43e850a25-ARN
content-encoding: br
X-Firefox-Spdy: h2
serving.ads.sportradar.com/i?stm=1675475632768&e=pv&url=https%3A%2F%2F20bet.com%2Fpe%3Fbtag%3D668128_20291175FC544DC8B68537A119FB1815&page=Mejor%20casa%20de%20apuestas%20online%20%C2%BB%20Apuesta%20legalmente%20con%20la%20casa%20de%20apuestas%2020Bet&tv=js-2.14.0&tna=cf&aid=sr-tracker-20bet-com&p=web&tz=UTC&lang=en-US&cs=UTF-8&res=1280x1024&cd=24&cookie=0&eid=ad0681f0-e8c1-4f23-863a-e5f2c0384010&dtm=1675475632766&vp=0x0&ds=0x0&vid=1&sid=d67bf4f3-41c5-4c81-b0ae-398f38fed7d4&duid=88c3ad74-af38-41d7-9d20-dfc916297f1c&cx=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
54.74.252.125200 OK 43 B URL HTTP/1.1 serving.ads.sportradar.com/i?stm=1675475632768&e=pv&url=https%3A%2F%2F20bet.com%2Fpe%3Fbtag%3D668128_20291175FC544DC8B68537A119FB1815&page=Mejor%20casa%20de%20apuestas%20online%20%C2%BB%20Apuesta%20legalmente%20con%20la%20casa%20de%20apuestas%2020Bet&tv=js-2.14.0&tna=cf&aid=sr-tracker-20bet-com&p=web&tz=UTC&lang=en-US&cs=UTF-8&res=1280x1024&cd=24&cookie=0&eid=ad0681f0-e8c1-4f23-863a-e5f2c0384010&dtm=1675475632766&vp=0x0&ds=0x0&vid=1&sid=d67bf4f3-41c5-4c81-b0ae-398f38fed7d4&duid=88c3ad74-af38-41d7-9d20-dfc916297f1c&cx=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
IP 54.74.252.125:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash fb02f374b8f73825415db1bccd4bd76d
b103aa629cacdd90b39538a7561da7f8e49ad73f
caa849b179befa2645a8e2c474d2e82a76777a3305315ece911013e8ee9a916c
GET /i?stm=1675475632768&e=pv&url=https%3A%2F%2F20bet.com%2Fpe%3Fbtag%3D668128_20291175FC544DC8B68537A119FB1815&page=Mejor%20casa%20de%20apuestas%20online%20%C2%BB%20Apuesta%20legalmente%20con%20la%20casa%20de%20apuestas%2020Bet&tv=js-2.14.0&tna=cf&aid=sr-tracker-20bet-com&p=web&tz=UTC&lang=en-US&cs=UTF-8&res=1280x1024&cd=24&cookie=0&eid=ad0681f0-e8c1-4f23-863a-e5f2c0384010&dtm=1675475632766&vp=0x0&ds=0x0&vid=1&sid=d67bf4f3-41c5-4c81-b0ae-398f38fed7d4&duid=88c3ad74-af38-41d7-9d20-dfc916297f1c&cx=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 HTTP/1.1
Host: serving.ads.sportradar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Set-Cookie: _sr_ads=d973f12d-f5d5-4a99-bd3f-224ce1a0506a; Expires=Sun, 04 Feb 2024 01:53:20 GMT; Domain=sportradar.com; Path=/; Secure; HttpOnly; SameSite=None
Cache-Control: no-cache, no-store, must-revalidate
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Server: akka-http/10.1.12
Date: Sat, 04 Feb 2023 01:53:20 GMT
Content-Type: image/gif
Content-Length: 43
20bet.com/app/5875.6b4f0a791cb18950.esm.js
104.22.34.208200 OK 4.9 kB URL HTTP/2 20bet.com/app/5875.6b4f0a791cb18950.esm.js
IP 104.22.34.208:0
File type ASCII text, with very long lines (731), with no line terminators
Hash 8b758dcf962ce4d6760a8c1697800904
1557b9463b3955fb4c8f3891fcbed0cfcdd68b2d
eff9a06cfae4543452a89c3f2416ba2276d58c51ebcebc1615eeeb12e238349a
GET /app/5875.6b4f0a791cb18950.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_20291175FC544DC8B68537A119FB1815
Cookie: btag=668128_20291175FC544DC8B68537A119FB1815; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:20 GMT
content-type: application/javascript
cf-ray: 793fc5a71fd30a25-ARN
etag: W/"63dcff85-2db"
last-modified: Fri, 03 Feb 2023 12:35:17 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/v3/menu/line/es?period=0
172.67.15.187204 No Content 0 B URL HTTP/2 platform.20bet.com/api/v3/menu/line/es?period=0
IP 172.67.15.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v3/menu/line/es?period=0 HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 01:53:20 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fc5a99d88b529-OSL
X-Firefox-Spdy: h2
20bet.com/app/4089.cc1a089afebdaee0.esm.js
104.22.34.208200 OK 532 B URL HTTP/2 20bet.com/app/4089.cc1a089afebdaee0.esm.js
IP 104.22.34.208:0
File type ASCII text, with very long lines (882), with no line terminators
Hash fcc83de876f343adfa526e18467bffce
062b317256a6b41feab774d3102e78e345e9a47d
5ae86ccc9a9b63ae2fb3ae4be296c0024a3aa131acec50dc1082e4201da6c645
GET /app/4089.cc1a089afebdaee0.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_20291175FC544DC8B68537A119FB1815
Cookie: btag=668128_20291175FC544DC8B68537A119FB1815; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:20 GMT
content-type: application/javascript
cf-ray: 793fc5a918ac0a25-ARN
etag: W/"63dcff85-372"
last-modified: Fri, 03 Feb 2023 12:35:17 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/status
104.22.34.208200 OK 1.6 kB URL HTTP/2 platform.20bet.com/api/status
IP 104.22.34.208:0
File type JSON data\012- , ASCII text, with no line terminators
Hash aa129b585002f51e1b08fc57394be992
ba174208eef52f2478da7a0aa86cf0194cc0adf7
7f907cc79af688303c4c810a327e5c8a1bb98402f7670ee102e9d7ba627c3025
GET /api/status HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:20 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fc5a48e9b0a25-ARN
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/6612.8b90df75e8984f5b.esm.js
104.22.34.208200 OK 725 B URL HTTP/2 20bet.com/app/6612.8b90df75e8984f5b.esm.js
IP 104.22.34.208:0
File type ASCII text, with very long lines (1196), with no line terminators
Hash 6653f83a6e310a38013e448278543030
c64d514c816d468619cc39434264fbf054d71bf0
206d0aef3043b25e791398e4c9cb97df1f38b9db8dc9d5e0836de17ff26c5c3f
GET /app/6612.8b90df75e8984f5b.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_20291175FC544DC8B68537A119FB1815
Cookie: btag=668128_20291175FC544DC8B68537A119FB1815; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:20 GMT
content-type: application/javascript
cf-ray: 793fc5a6cf900a25-ARN
etag: W/"63dcff85-4ac"
last-modified: Fri, 03 Feb 2023 12:35:17 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/5051.bc8a43a20e262efb.esm.js
104.22.34.208200 OK 1.8 kB URL HTTP/2 20bet.com/app/5051.bc8a43a20e262efb.esm.js
IP 104.22.34.208:0
File type ASCII text, with very long lines (3101), with no line terminators
Hash 30d47f4f041224fda41828f2fb2c7774
ea94df1b4acff74f54f179c404662eef226f0271
20a96dfbe173b3f5916d644530c2f8eddb1dfdaa0651295d8e6916943d5269e9
GET /app/5051.bc8a43a20e262efb.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_20291175FC544DC8B68537A119FB1815
Cookie: btag=668128_20291175FC544DC8B68537A119FB1815; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:20 GMT
content-type: application/javascript
cf-ray: 793fc5a72fd90a25-ARN
etag: W/"63dcff85-c1d"
last-modified: Fri, 03 Feb 2023 12:35:17 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/1969.7394f3f65ee00bbc.esm.js
104.22.34.208200 OK 747 B URL HTTP/2 20bet.com/app/1969.7394f3f65ee00bbc.esm.js
IP 104.22.34.208:0
File type ASCII text, with very long lines (667), with no line terminators
Hash c375934049941e84b0c4701550d55563
4d1df4f93a5dbd40437d2c1b3173221dd4dc94b3
4a70f2800902a3ee740cbe26bf87fd5db7ec0e3e6f97e967227bfa2f4c9cfeec
GET /app/1969.7394f3f65ee00bbc.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_20291175FC544DC8B68537A119FB1815
Cookie: btag=668128_20291175FC544DC8B68537A119FB1815; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:20 GMT
content-type: application/javascript
cf-ray: 793fc5a72fd60a25-ARN
etag: W/"63dcff7f-29b"
last-modified: Fri, 03 Feb 2023 12:35:11 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash d6b60321c56dca3154f638b7c087abb1
b31df15328ce5870c604bd52acfaa4d8742b2d93
f746fa05ce7bb4c92f1bce2c27bf3a616e780e92e6d60e71e4f02d5d4de1f8c5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6015
Cache-Control: max-age=89964
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 01:53:21 GMT
Etag: "63dc5f7e-117"
Expires: Sun, 05 Feb 2023 02:52:45 GMT
Last-Modified: Fri, 03 Feb 2023 01:12:30 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash d6b60321c56dca3154f638b7c087abb1
b31df15328ce5870c604bd52acfaa4d8742b2d93
f746fa05ce7bb4c92f1bce2c27bf3a616e780e92e6d60e71e4f02d5d4de1f8c5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4012
Cache-Control: max-age=87961
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 01:53:21 GMT
Etag: "63dc5f7e-117"
Expires: Sun, 05 Feb 2023 02:19:22 GMT
Last-Modified: Fri, 03 Feb 2023 01:12:30 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash d6b60321c56dca3154f638b7c087abb1
b31df15328ce5870c604bd52acfaa4d8742b2d93
f746fa05ce7bb4c92f1bce2c27bf3a616e780e92e6d60e71e4f02d5d4de1f8c5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3258
Cache-Control: max-age=87207
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 01:53:21 GMT
Etag: "63dc5f7e-117"
Expires: Sun, 05 Feb 2023 02:06:48 GMT
Last-Modified: Fri, 03 Feb 2023 01:12:30 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 279
20bet.com/app/2742.7218039944d73442.esm.js
104.22.34.208200 OK 385 B URL HTTP/2 20bet.com/app/2742.7218039944d73442.esm.js
IP 104.22.34.208:0
File type ASCII text, with very long lines (569), with no line terminators
Hash b26bca8e21590d60d68faf8442972a78
ee9de71f8dcfd1f298434265926647256548e09e
bbdbd9082ae0dbc8136ff5a4b24f0e91b6a16dc76e24201ff6c78eb5e6bd0304
GET /app/2742.7218039944d73442.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_20291175FC544DC8B68537A119FB1815
Cookie: btag=668128_20291175FC544DC8B68537A119FB1815; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:20 GMT
content-type: application/javascript
cf-ray: 793fc5a6cf940a25-ARN
etag: W/"63dcff7a-239"
last-modified: Fri, 03 Feb 2023 12:35:06 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/3048.9609a2d0804371c8.esm.js
104.22.34.208200 OK 1.2 kB URL HTTP/2 20bet.com/app/3048.9609a2d0804371c8.esm.js
IP 104.22.34.208:0
File type ASCII text, with very long lines (1994), with no line terminators
Hash f7e34b3098e5ba27dbb3a0a1947ed8fd
3c510c365d262fd78761e59cae95e265e2ee88d1
c11079eb7fa6375c4b391d252f6a18b57758837a497c728d07c7c844b9892b7c
GET /app/3048.9609a2d0804371c8.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_20291175FC544DC8B68537A119FB1815
Cookie: btag=668128_20291175FC544DC8B68537A119FB1815; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:20 GMT
content-type: application/javascript
cf-ray: 793fc5a6cf960a25-ARN
etag: W/"63dcff85-7ca"
last-modified: Fri, 03 Feb 2023 12:35:17 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/market-group-sorting/get-all-ordered
104.22.34.208200 OK 17 kB URL HTTP/2 platform.20bet.com/api/market-group-sorting/get-all-ordered
IP 104.22.34.208:0
File type JSON data\012- , ASCII text, with very long lines (23709), with no line terminators
Hash 7ab3ef0b7680ea4df0a70ac5bb5b8143
588cb3afad19b670cce8ec3aa360e4929948474d
4d1aca6c46b276c097006494b4e97d0326384e20f9b742cb606e8457c7f76215
GET /api/market-group-sorting/get-all-ordered HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:20 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fc5a48e9a0a25-ARN
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/sport/list/-1/0/es
104.22.34.208200 OK 28 kB URL HTTP/2 platform.20bet.com/api/sport/list/-1/0/es
IP 104.22.34.208:0
File type JSON data\012- , ASCII text, with very long lines (22787), with no line terminators
Hash 87bbe8e7d3fb311cceb247851284baf4
30bc814177db4101c59074f874455811c6e9ae3a
ee8b2153abc470908fb42e7bebed48f3a4b7b8782785463047afa63dbffedb05
GET /api/sport/list/-1/0/es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:20 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fc5a40e710a25-ARN
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/event/list?isTop_eq=1&oddsExists_eq=1&competitor2Id_neq=&competitor1Id_neq=&main=1&status_in%5B%5D=0&limit=15&relations%5B%5D=league&relations%5B%5D=odds&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=players&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=es
172.67.15.187204 No Content 0 B URL HTTP/2 platform.20bet.com/api/event/list?isTop_eq=1&oddsExists_eq=1&competitor2Id_neq=&competitor1Id_neq=&main=1&status_in%5B%5D=0&limit=15&relations%5B%5D=league&relations%5B%5D=odds&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=players&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=es
IP 172.67.15.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/event/list?isTop_eq=1&oddsExists_eq=1&competitor2Id_neq=&competitor1Id_neq=&main=1&status_in%5B%5D=0&limit=15&relations%5B%5D=league&relations%5B%5D=odds&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=players&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 01:53:21 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fc5aa2ddeb529-OSL
X-Firefox-Spdy: h2
platform.20bet.com/api/v4/coupon/get?system=1&lang=es
172.67.15.187204 No Content 0 B URL HTTP/2 platform.20bet.com/api/v4/coupon/get?system=1&lang=es
IP 172.67.15.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v4/coupon/get?system=1&lang=es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 01:53:21 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fc5aa2ddcb529-OSL
X-Firefox-Spdy: h2
platform.20bet.com/api/data/get-currencies
104.22.34.208200 OK 18 kB URL HTTP/2 platform.20bet.com/api/data/get-currencies
IP 104.22.34.208:0
File type JSON data\012- , ASCII text, with very long lines (10992), with no line terminators
Hash f61025d418aa167d607eb3438aac7a03
e721c16aa6aa1fad9eab5d84987b8164cacf5ac8
e1110a4afcf7a7feec19ef84fa6772ac6262dedd9a3ace594ee953186d69ce9c
GET /api/data/get-currencies HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:20 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fc5a48e9d0a25-ARN
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/4031.b91f4417cd75a26b.esm.js
104.22.34.208200 OK 623 B URL HTTP/2 20bet.com/app/4031.b91f4417cd75a26b.esm.js
IP 104.22.34.208:0
File type ASCII text, with very long lines (1237), with no line terminators
Hash 58cc37eff1c0772eb802bfcdedbfe06f
933650825e50b026e68f347f478697e5adaf304d
677dca1e51ef3dccc12d2a3c79ea16c4b51c9b2a5eac97f2d7c703aa1dc89199
GET /app/4031.b91f4417cd75a26b.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_20291175FC544DC8B68537A119FB1815
Cookie: btag=668128_20291175FC544DC8B68537A119FB1815; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:20 GMT
content-type: application/javascript
cf-ray: 793fc5a6cf970a25-ARN
etag: W/"63dcff7f-4d5"
last-modified: Fri, 03 Feb 2023 12:35:11 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/v2/data/rates
104.22.34.208200 OK 20 kB URL HTTP/2 platform.20bet.com/api/v2/data/rates
IP 104.22.34.208:0
File type JSON data\012- , ASCII text, with very long lines (8356), with no line terminators
Hash f050ec046df9c61404e70a3669aa1069
d3a5cfa6d59993d20f73bf45d04054fc18bbdda1
4a2057e637e3dca35b0937c37f76713f77298ddf843767edf7829d9351b3b087
GET /api/v2/data/rates HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:20 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fc5a48ea30a25-ARN
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/2096.c1ad3bd039c852b6.esm.js
104.22.34.208200 OK 13 kB URL HTTP/2 20bet.com/app/2096.c1ad3bd039c852b6.esm.js
IP 104.22.34.208:0
File type ASCII text, with very long lines (4814), with no line terminators
Hash 73f06fa45340e0047d0896237693c091
f5418cb2330b0c2075045a319f0782040ddaf7f0
15f818cea3cc93118e4350151968154ac7d39145cef170cd3cde586672671b8e
GET /app/2096.c1ad3bd039c852b6.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_20291175FC544DC8B68537A119FB1815
Cookie: btag=668128_20291175FC544DC8B68537A119FB1815; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:20 GMT
content-type: application/javascript
cf-ray: 793fc5a6bf830a25-ARN
etag: W/"63dcff68-12ce"
last-modified: Fri, 03 Feb 2023 12:34:48 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/data/provinces
104.22.34.208200 OK 17 kB URL HTTP/2 platform.20bet.com/api/data/provinces
IP 104.22.34.208:0
File type JSON data\012- , ASCII text, with very long lines (1894), with no line terminators
Hash e57ea1aaf743aa6d8d8a543168a9dbd8
03b19d322fc16de1a27cbeb3d870e282d712ae32
4ed024907fc24c21618c8e3719b5917dabf47623556a4f4b84520dc8c265fd1d
GET /api/data/provinces HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:20 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fc5a48ea00a25-ARN
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/v2/ip-data
104.22.34.208200 OK 17 kB URL HTTP/2 platform.20bet.com/api/v2/ip-data
IP 104.22.34.208:0
File type JSON data\012- , ASCII text, with very long lines (734), with no line terminators
Hash 0a22d59890d91ac4a21d8be751ddec09
7a70a70ec93f916918c76f1d7c5867084aa749fe
dda82a2e95e17d399f10eafc7e11aa1f37de0e26741bfc55d48e4d9ee52270a5
GET /api/v2/ip-data HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:20 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fc5a48ea20a25-ARN
content-encoding: br
X-Firefox-Spdy: h2
track.trackingtraffo.com/pixel/js?auth=v3eu8spg&event=visit
88.214.195.156200 OK 422 B URL HTTP/1.1 track.trackingtraffo.com/pixel/js?auth=v3eu8spg&event=visit
IP 88.214.195.156:0
Hash a84da22ba993cb90a87bbc7196a83564
284dae1447b59756ec476d581d6aad1ddd3218c3
98b0ce9e2f8df8f89c2adf5bcc0cf0eaf3b43c8b7fb26418f8a72179f4e6a440
GET /pixel/js?auth=v3eu8spg&event=visit HTTP/1.1
Host: track.trackingtraffo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 04 Feb 2023 01:53:21 GMT
Content-Type: text/javascript
Content-Length: 422
Connection: keep-alive
Cache-Control: no-cache, max-age=0, must-revalidate, proxy-revalidate, no-store
Pragma: no-cache
Expires: Sat, 01 Jan 2000 00:00:00 GMT
20bet.com/app/5352.a47af8ab3119be30.esm.js
104.22.34.208200 OK 27 kB URL HTTP/2 20bet.com/app/5352.a47af8ab3119be30.esm.js
IP 104.22.34.208:0
File type ASCII text, with very long lines (954), with no line terminators
Hash eee1ec5969cb34524e7c204a9d0640c3
27d389950d79bc9b0e14265e6b280246850f001a
d2935075ecf9e289747d69bb46c3fde6fdaba3ebb784a9191d8563a4efda08fe
GET /app/5352.a47af8ab3119be30.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_20291175FC544DC8B68537A119FB1815
Cookie: btag=668128_20291175FC544DC8B68537A119FB1815; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:20 GMT
content-type: application/javascript
cf-ray: 793fc5a6cf980a25-ARN
etag: W/"63dcff7f-3ba"
last-modified: Fri, 03 Feb 2023 12:35:11 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
track.trackingtraffo.com/pixel?auth=v3eu8spg&event=visit&site=20bet.com&ln=en-US
88.214.195.156200 OK 0 B URL HTTP/1.1 track.trackingtraffo.com/pixel?auth=v3eu8spg&event=visit&site=20bet.com&ln=en-US
IP 88.214.195.156:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel?auth=v3eu8spg&event=visit&site=20bet.com&ln=en-US HTTP/1.1
Host: track.trackingtraffo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 04 Feb 2023 01:53:21 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-cache, max-age=0, must-revalidate, proxy-revalidate, no-store
Pragma: no-cache
Expires: Sat, 01 Jan 2000 00:00:00 GMT
20bet.com/assets/sport/7.svg
104.22.34.208200 OK 1.1 kB URL HTTP/2 20bet.com/assets/sport/7.svg
IP 104.22.34.208:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 9bdd2edb756f52024ca283e7f3898897
2f56d1fe1588d8e4521f5c52a25415e4e73a2c54
cbfb9ceee835e9c0609d165930b0c9696851be80c9fe832a9634efb8458147b3
GET /assets/sport/7.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_20291175FC544DC8B68537A119FB1815
Cookie: btag=668128_20291175FC544DC8B68537A119FB1815; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:21 GMT
content-type: image/svg+xml
cf-ray: 793fc5ab499a0a25-ARN
etag: W/"63dd0039-a48"
last-modified: Fri, 03 Feb 2023 12:38:17 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/sport/2.svg
104.22.34.208200 OK 1.4 kB URL HTTP/2 20bet.com/assets/sport/2.svg
IP 104.22.34.208:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1588)
Hash 61c2314442d93c9c67d81b660b4d6f3a
512c7825d738d80ae8bdab173b7f6765c0b65c33
02c2c28f46cf37d5595cec788ae53cf955c6ed1a4c1950b0ccaacb9fa8a698a7
GET /assets/sport/2.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_20291175FC544DC8B68537A119FB1815
Cookie: btag=668128_20291175FC544DC8B68537A119FB1815; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:21 GMT
content-type: image/svg+xml
cf-ray: 793fc5ab39910a25-ARN
etag: W/"63dd0049-f18"
last-modified: Fri, 03 Feb 2023 12:38:33 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/market-descriptions/get-all-markets/es
104.22.34.208200 OK 30 kB URL HTTP/2 platform.20bet.com/api/market-descriptions/get-all-markets/es
IP 104.22.34.208:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 3f8726e206b8c6477ba73207f3f35c90
7f4072801598b3f75364847c758c752f2243c8b5
27c05dacf49531d17a9b3ba22ad65d920df268debc7ef564f3e83cf4e0531080
GET /api/market-descriptions/get-all-markets/es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:20 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fc5a48e9e0a25-ARN
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/sport/1.svg
104.22.34.208200 OK 4.8 kB URL HTTP/2 20bet.com/assets/sport/1.svg
IP 104.22.34.208:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash b3b0721592696a606da873553365ea76
653f5c350f8c011d6d34b7f5572a27f2fa1fc527
7bcf2dd8b0dbbcfe2eaabdf307374c156324c9685d160dfff6f1448cf82ddff7
GET /assets/sport/1.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_20291175FC544DC8B68537A119FB1815
Cookie: btag=668128_20291175FC544DC8B68537A119FB1815; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:21 GMT
content-type: image/svg+xml
cf-ray: 793fc5ab29880a25-ARN
etag: W/"63dd0049-8f2"
last-modified: Fri, 03 Feb 2023 12:38:33 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/popular/line-menu/es
104.22.34.208200 OK 4.3 kB URL HTTP/2 platform.20bet.com/api/popular/line-menu/es
IP 104.22.34.208:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 4444683b41052c3cfed10b63c3d44fbf
f2b27e5f32abc3ac5d34f76d228d94aa8f55bf68
85eac59bdc7e8fb2e1ed7c0c60e12326e304b4c93362ea3882f2f41e2db36930
GET /api/popular/line-menu/es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:21 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fc5aa792e0a25-ARN
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/user/is-auth
104.22.34.208200 OK 4.8 kB URL HTTP/2 platform.20bet.com/api/user/is-auth
IP 104.22.34.208:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 4fe2dd33af6b43eeab3282ca8f97fd5e
08ba739d342938b2e24dc990a8ab04b9a23dcde1
ca578470f17d7ecc17253f5d3baa4281a83b74697d2bf0669db359af60d0cd87
GET /api/user/is-auth HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:21 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fc5aa99410a25-ARN
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/event/list?sportId_eq=1&limit=10&competitor2Id_neq=&competitor1Id_neq=&oddsExists_eq=1&main=1&status_in%5B%5D=2&status_in%5B%5D=1&relations%5B%5D=odds&relations%5B%5D=withMarketsCount&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=broadcasts&relations%5B%5D=statistics&relations%5B%5D=additionalInfo&relations%5B%5D=tips&lang=es
104.22.34.208200 OK 16 kB URL HTTP/2 platform.20bet.com/api/event/list?sportId_eq=1&limit=10&competitor2Id_neq=&competitor1Id_neq=&oddsExists_eq=1&main=1&status_in%5B%5D=2&status_in%5B%5D=1&relations%5B%5D=odds&relations%5B%5D=withMarketsCount&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=broadcasts&relations%5B%5D=statistics&relations%5B%5D=additionalInfo&relations%5B%5D=tips&lang=es
IP 104.22.34.208:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 5903b6f27ab6ed5ec6716e1f8f140fde
1a13860ed309d3a33a98d11082a8c42698af2208
946eb442960297a7cd7f4ce4f25aa101e3a8882a663967dbdca2e1d778bef678
GET /api/event/list?sportId_eq=1&limit=10&competitor2Id_neq=&competitor1Id_neq=&oddsExists_eq=1&main=1&status_in%5B%5D=2&status_in%5B%5D=1&relations%5B%5D=odds&relations%5B%5D=withMarketsCount&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=broadcasts&relations%5B%5D=statistics&relations%5B%5D=additionalInfo&relations%5B%5D=tips&lang=es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:21 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fc5ac9a3c0a25-ARN
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/sport/1070.svg
104.22.34.208200 OK 15 kB URL HTTP/2 20bet.com/assets/sport/1070.svg
IP 104.22.34.208:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (7328)
Hash df0fa394c8df2a54e8ac1818b537e2a2
6a8aa76aa4f528381384f03e7b90088d0b376935
6bd0923540a9b67e72a1d7c41ab0e4f7d60b0f192ab8284d6712e55f3147aa9b
GET /assets/sport/1070.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_20291175FC544DC8B68537A119FB1815
Cookie: btag=668128_20291175FC544DC8B68537A119FB1815; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:21 GMT
content-type: image/svg+xml
cf-ray: 793fc5ab49a60a25-ARN
etag: W/"63dd0051-6fa8"
last-modified: Fri, 03 Feb 2023 12:38:41 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/teams/ts_black.webp
104.22.34.208200 OK 1.5 kB URL HTTP/2 20bet.com/assets/teams/ts_black.webp
IP 104.22.34.208:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 8f33cbd14dfbd92c2033cfcfe9acbe05
888e8820b7610d71f87d221fcd380b5437a8ced7
094dbedfcdd666cc62e645d3f50190392f3ba4ee1ea122f63c0f9881980db462
GET /assets/teams/ts_black.webp HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_20291175FC544DC8B68537A119FB1815
Cookie: btag=668128_20291175FC544DC8B68537A119FB1815; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:21 GMT
content-type: image/webp
content-length: 1490
cf-ray: 793fc5af7bcd0a25-ARN
accept-ranges: bytes
etag: "63dd0039-5d2"
last-modified: Fri, 03 Feb 2023 12:38:17 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
X-Firefox-Spdy: h2
dwmu1hf7ovvid.cloudfront.net/site/upload/license_validation/9458241d-0da8-43ca-aac4-b1756ce0ba65/1674827467_1674826113_google01.webp
143.204.42.201200 OK 13 kB URL HTTP/2 dwmu1hf7ovvid.cloudfront.net/site/upload/license_validation/9458241d-0da8-43ca-aac4-b1756ce0ba65/1674827467_1674826113_google01.webp
IP 143.204.42.201:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 893x331, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 5640879b9f514c266a1cd9a77396d8e9
01436b5d74978c330336bed07a10ec3d2b0b99f3
c14b55b1ff7608476a048a78bc7c186e9c6ecda78b20ba3b035dc5e49a979c7f
GET /site/upload/license_validation/9458241d-0da8-43ca-aac4-b1756ce0ba65/1674827467_1674826113_google01.webp HTTP/1.1
Host: dwmu1hf7ovvid.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/webp
content-length: 13352
date: Fri, 03 Feb 2023 15:09:50 GMT
last-modified: Fri, 27 Jan 2023 13:51:08 GMT
etag: "5640879b9f514c266a1cd9a77396d8e9"
x-amz-version-id: ztTp6T_NLVo5JAFFnZeSlmlOdfavzTt2
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 8knDuvsGaOsWaBMDyfI8xfHuS7IntafSumBqoVwRrvbrtetmjrHEHg==
age: 38612
X-Firefox-Spdy: h2
platform.20bet.com/api/v3/menu/line/es?period=0
104.22.34.208200 OK 34 kB URL HTTP/2 platform.20bet.com/api/v3/menu/line/es?period=0
IP 104.22.34.208:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 1d2d2c5f02f3c4f356fe8955d48b6505
857398d12593d6f6a265f9bbeff2bbd4e5c83d34
e12df9a6bb1b3c4aa871d372adc76a2383a45788cf8ed4d4e11ae241248b30c3
GET /api/v3/menu/line/es?period=0 HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:21 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fc5a9e8f00a25-ARN
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/sport/31.svg
104.22.34.208200 OK 5.9 kB URL HTTP/2 20bet.com/assets/sport/31.svg
IP 104.22.34.208:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1917)
Hash 6a58f2167ca6cc091e568b05bedaf8fe
d5c06a90381520ae388ec04b869d48fb9f7414e9
39e6b63dd40ddea327f01a539a9409486e3d572f6cb343f746ea92befd8e04ad
GET /assets/sport/31.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_20291175FC544DC8B68537A119FB1815
Cookie: btag=668128_20291175FC544DC8B68537A119FB1815; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:21 GMT
content-type: image/svg+xml
cf-ray: 793fc5ac3a100a25-ARN
etag: W/"63dd0041-21d6"
last-modified: Fri, 03 Feb 2023 12:38:25 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/v3/menu/line/es?period=5
104.22.34.208200 OK 31 kB URL HTTP/2 platform.20bet.com/api/v3/menu/line/es?period=5
IP 104.22.34.208:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 56ced99ff37168cea66065b4df6f1bb3
d04ad3acc793a9ab7900d4910db1414b8d41d2bb
4ba638954bc9332a3f1146639a2f17e9b42653c0f85d8f15f5df43dc48965382
GET /api/v3/menu/line/es?period=5 HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:21 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fc5a9d8ef0a25-ARN
content-encoding: br
X-Firefox-Spdy: h2
dwmu1hf7ovvid.cloudfront.net/logos/payments/neteller.webp
143.204.42.201200 OK 4.9 kB URL HTTP/2 dwmu1hf7ovvid.cloudfront.net/logos/payments/neteller.webp
IP 143.204.42.201:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 47bb0df8a3ee01f51ed82850b4c55391
1ba733d5f5b0cf3479c70a4b2ea34e3ef8d3b217
3a0b436b5a4f864b6677521211770d0053ec43815f8c6f7c543422512e3c2fea
GET /logos/payments/neteller.webp HTTP/1.1
Host: dwmu1hf7ovvid.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 4862
last-modified: Fri, 25 Feb 2022 07:48:25 GMT
x-amz-version-id: 8RbaJ7MP7LV79qt8v0kp8zh9BB1BW52T
accept-ranges: bytes
server: AmazonS3
date: Fri, 03 Feb 2023 02:46:07 GMT
etag: "47bb0df8a3ee01f51ed82850b4c55391"
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: JQdxRAQBOL-7hqBjWi9mC0agVG3cubM5oQ0u0hVpstEarmFw42EJVg==
age: 83235
X-Firefox-Spdy: h2
dwmu1hf7ovvid.cloudfront.net/logos/payments/skrill.webp
143.204.42.201200 OK 4.4 kB URL HTTP/2 dwmu1hf7ovvid.cloudfront.net/logos/payments/skrill.webp
IP 143.204.42.201:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 9a9c594671049f82d376caa8bc23f08c
8f9a2a1eae30ff8353280e0cb0574f800dddde97
42fa953d063490d13059e1d11b64d0b50fc4c879cec56fac8cda4b83d2bea6a8
GET /logos/payments/skrill.webp HTTP/1.1
Host: dwmu1hf7ovvid.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 4360
last-modified: Fri, 25 Feb 2022 07:48:25 GMT
x-amz-version-id: v6EFlnbny3NLqAwMTVhEYyU3slRzfjts
accept-ranges: bytes
server: AmazonS3
date: Fri, 03 Feb 2023 02:46:07 GMT
etag: "9a9c594671049f82d376caa8bc23f08c"
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: dS_C9hPFOMVmLbaj2z1DX4Cpz6r14mJY-NlTcvZjBDcunguzA8yQVA==
age: 83235
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c7dca3f19d5f72804a6f1ac9e6729611
834490db5b5178a798814491bd4641a6b9ebeca4
c2985b7c81f97d919acd684eba9dc67893c9468d95d0d56524874b8951e5f791
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2094
Cache-Control: max-age=111990
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 01:53:21 GMT
Etag: "63dcc4d9-1d7"
Expires: Sun, 05 Feb 2023 08:59:51 GMT
Last-Modified: Fri, 03 Feb 2023 08:24:57 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
dwmu1hf7ovvid.cloudfront.net/logos/payments/ecopayz.webp
143.204.42.201200 OK 11 kB URL HTTP/2 dwmu1hf7ovvid.cloudfront.net/logos/payments/ecopayz.webp
IP 143.204.42.201:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 655fa02c6cfd48264806295ab9c2f3dc
c4abba9520932ed352a85b34fd59a3a6978cfd22
29bd5b67b49f82e8b22afb6502cce95d9972f580406ed3cabc58498e762831fe
GET /logos/payments/ecopayz.webp HTTP/1.1
Host: dwmu1hf7ovvid.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 11298
last-modified: Fri, 25 Feb 2022 07:48:25 GMT
x-amz-version-id: bdHaBf_POQvEHZxa2qXczjd2tqXiAluR
accept-ranges: bytes
server: AmazonS3
date: Fri, 03 Feb 2023 02:46:07 GMT
etag: "655fa02c6cfd48264806295ab9c2f3dc"
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: mVWOC4OA4Zhw_9N30BTdNAoz9PWlT-bgY615ctaaUj0yVjOIPBSsnQ==
age: 83235
X-Firefox-Spdy: h2
20bet.com/assets/teams/ts_red.webp
104.22.34.208200 OK 1.7 kB URL HTTP/2 20bet.com/assets/teams/ts_red.webp
IP 104.22.34.208:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash d1320b0cb7ec9f824158acaa04ea6013
44f617f188bd37cfb350033dbb595d78e3200314
b59467e2e36267ebeea9fc7ef9f906b2f970775b33680459a725dcd8a390a5fe
GET /assets/teams/ts_red.webp HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_20291175FC544DC8B68537A119FB1815
Cookie: btag=668128_20291175FC544DC8B68537A119FB1815; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:21 GMT
content-type: image/webp
content-length: 1724
cf-ray: 793fc5b03c240a25-ARN
accept-ranges: bytes
etag: "63dd0041-6bc"
last-modified: Fri, 03 Feb 2023 12:38:25 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
X-Firefox-Spdy: h2
dwmu1hf7ovvid.cloudfront.net/logos/payments/jeton.webp
143.204.42.201200 OK 5.9 kB URL HTTP/2 dwmu1hf7ovvid.cloudfront.net/logos/payments/jeton.webp
IP 143.204.42.201:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 5b322abc074e92690294cbc4c91e7367
2eec25886d1b942709730e2ad20bf4175ac5a670
1b0d4b8ad5f4e4a48a81be2d13a2649d6b3c7cd41a501744c2525567d0d0bab8
GET /logos/payments/jeton.webp HTTP/1.1
Host: dwmu1hf7ovvid.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 5878
last-modified: Fri, 25 Feb 2022 07:48:25 GMT
x-amz-version-id: 3LxIFrbuND7xADVUotkoJ4KLlpdKaCIO
accept-ranges: bytes
server: AmazonS3
date: Fri, 03 Feb 2023 02:46:07 GMT
etag: "5b322abc074e92690294cbc4c91e7367"
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: W-zUS4mr7oXQMlQ6JmfQOiQ_tkQorLJi8OysoOtGI-UxU-8FLRU_2A==
age: 83235
X-Firefox-Spdy: h2
dwmu1hf7ovvid.cloudfront.net/logos/payments/interac.webp
143.204.42.201200 OK 2.0 kB URL HTTP/2 dwmu1hf7ovvid.cloudfront.net/logos/payments/interac.webp
IP 143.204.42.201:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash cdab7fb995b7866403558f335543bda7
7e6664ba967fd7b2e4d974fdb935a34e05227c45
c995f3a08c8df5b312ca12754a9faf36a9ee44ace812217fcf71414ec89a707f
GET /logos/payments/interac.webp HTTP/1.1
Host: dwmu1hf7ovvid.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 1950
last-modified: Fri, 25 Feb 2022 07:48:25 GMT
x-amz-version-id: IsVRXTBPMjrUqDJ0FxzCocQI4PQQyK0X
accept-ranges: bytes
server: AmazonS3
date: Fri, 03 Feb 2023 02:46:07 GMT
etag: "cdab7fb995b7866403558f335543bda7"
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: kuEM8JSv3XmV45CMkAg7DJTu5zZdUQBmJY3PEhA6HHkU0G0OPF_jSg==
age: 83235
X-Firefox-Spdy: h2
20bet.com/assets/teams/ts_marine.webp
104.22.34.208200 OK 1.8 kB URL HTTP/2 20bet.com/assets/teams/ts_marine.webp
IP 104.22.34.208:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 882fbd4b39d2952ec83b9374fe78c99c
6fbc81d65a61d52fc6f2a5ca80dfb88ea8dc5950
b7e516ccbae412d1e889792a5d2a182844570ff8e4d954658c305a6d1d11708e
GET /assets/teams/ts_marine.webp HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_20291175FC544DC8B68537A119FB1815
Cookie: btag=668128_20291175FC544DC8B68537A119FB1815; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:22 GMT
content-type: image/webp
content-length: 1754
cf-ray: 793fc5b06c370a25-ARN
accept-ranges: bytes
etag: "63dd0049-6da"
last-modified: Fri, 03 Feb 2023 12:38:33 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
X-Firefox-Spdy: h2
dwmu1hf7ovvid.cloudfront.net/logos/payments/perfectmoney.webp
143.204.42.201200 OK 9.2 kB URL HTTP/2 dwmu1hf7ovvid.cloudfront.net/logos/payments/perfectmoney.webp
IP 143.204.42.201:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 7bdbb0621ba893bb559e51169543deb5
a8579c46d6a94a2c89f2c489da5228cc51fe5ab5
764bc6ff2e5e83dd93def92c7acfb0c1ccd094c0231bc0adab4e52dc0fbbf136
GET /logos/payments/perfectmoney.webp HTTP/1.1
Host: dwmu1hf7ovvid.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 9200
last-modified: Fri, 25 Feb 2022 07:48:25 GMT
x-amz-version-id: OO_BasJwQQO0g.jv4KPj.MPmZ8lFDBrP
accept-ranges: bytes
server: AmazonS3
date: Fri, 03 Feb 2023 02:46:07 GMT
etag: "7bdbb0621ba893bb559e51169543deb5"
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 2bKxf36Nl9pF3zHEbERW2XZ-Rnts_D6ej4mSNvMxyrkvnuuJWeOv_g==
age: 83235
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Montserrat:wght@300;400;500;600&display=swap
142.250.74.138200 OK 5.3 kB URL HTTP/2 fonts.googleapis.com/css2?family=Montserrat:wght@300;400;500;600&display=swap
IP 142.250.74.138:0
Hash 4923661fefdfbe670be68a25329912eb
6ad90e59a44ea11896e12fb1b9832e9c7088c780
53eeb9d95673ea2018aa9a7033846d58c7592a0d068ba5778033e167f9e33361
GET /css2?family=Montserrat:wght@300;400;500;600&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blancoshrimp.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 04 Feb 2023 01:53:15 GMT
date: Sat, 04 Feb 2023 01:53:15 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
platform.20bet.com/api/v2/configurations
104.22.34.208200 OK 82 kB URL HTTP/2 platform.20bet.com/api/v2/configurations
IP 104.22.34.208:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash b62a3f4a8a76669965ff3c080fe69432
d034ecf895f1481dd868aaeeab873c734a886362
2a14afa087d62e7332687be98a0dee53143afad6735d2124ca934c894cc683f4
GET /api/v2/configurations HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:20 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fc5a49ea80a25-ARN
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/teams/ts_orange.webp
104.22.34.208200 OK 1.8 kB URL HTTP/2 20bet.com/assets/teams/ts_orange.webp
IP 104.22.34.208:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 32e11fd76428d0c44b39ccd5c64970c9
b8b8183f26fa5c48db5eb7e05c42b185f00ba477
dc018beb28f16fe554e24fa460988b2ba4db6ad775738cf776e60651c7ae4b2e
GET /assets/teams/ts_orange.webp HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_20291175FC544DC8B68537A119FB1815
Cookie: btag=668128_20291175FC544DC8B68537A119FB1815; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:22 GMT
content-type: image/webp
content-length: 1848
cf-ray: 793fc5b02c110a25-ARN
accept-ranges: bytes
etag: "63dd0032-738"
last-modified: Fri, 03 Feb 2023 12:38:10 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__en.js
142.250.74.35200 OK 164 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__en.js
IP 142.250.74.35:0
File type ASCII text, with very long lines (633)
Size 164 kB (163841 bytes)
Hash fe98364486b3206867b17008f995646f
35a5e9aa210970f7abd718d99e629c6982a3cc02
1fd703cb16e3f6f3f7192109d19c69d6e5ac1cfa0feb5b105a86564b7970d28a
GET /recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 163841
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 08:53:11 GMT
expires: Wed, 31 Jan 2024 08:53:11 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 31 Jan 2023 02:51:47 GMT
content-type: text/javascript
age: 320411
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
20bet.com/assets/sport/1059.svg
104.22.34.208200 OK 9.0 kB URL HTTP/2 20bet.com/assets/sport/1059.svg
IP 104.22.34.208:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3198)
Hash 5892cf1632af18433e5c595c44f74566
141644751fa71705d3e01a90516ce1436a07812f
3f69b8c6711dd423f1df963bcf4f703b1c4b25f7b717866b1fa5681384752822
GET /assets/sport/1059.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_20291175FC544DC8B68537A119FB1815
Cookie: btag=668128_20291175FC544DC8B68537A119FB1815; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:21 GMT
content-type: image/svg+xml
cf-ray: 793fc5ab499e0a25-ARN
etag: W/"63dd0039-1fca"
last-modified: Fri, 03 Feb 2023 12:38:17 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/teams/ts_blue.webp
104.22.34.208200 OK 1.9 kB URL HTTP/2 20bet.com/assets/teams/ts_blue.webp
IP 104.22.34.208:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 4a16a0521346d6dabf88bf7132859d6e
e178f71c9c08047283e900db04d43b45a67fc3e2
3991d5a7a14c1effd84c0e1ff845f415cfa955bff6d62fe860f94a0b6a408847
GET /assets/teams/ts_blue.webp HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_20291175FC544DC8B68537A119FB1815
Cookie: btag=668128_20291175FC544DC8B68537A119FB1815; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:22 GMT
content-type: image/webp
content-length: 1850
cf-ray: 793fc5b03c220a25-ARN
accept-ranges: bytes
etag: "63dd0039-73a"
last-modified: Fri, 03 Feb 2023 12:38:17 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
X-Firefox-Spdy: h2
20bet.com/assets/teams/ts_green.webp
104.22.34.208200 OK 1.7 kB URL HTTP/2 20bet.com/assets/teams/ts_green.webp
IP 104.22.34.208:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 88d73994168be3c3d2b7b26289de1df9
300a4dbdc3bbe9b8b81ba5e032dca3eef46faa0c
90b2c071db8d20db78a924a8f7bc424a27523816ca240b4d1d32e9943c474d2d
GET /assets/teams/ts_green.webp HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_20291175FC544DC8B68537A119FB1815
Cookie: btag=668128_20291175FC544DC8B68537A119FB1815; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:22 GMT
content-type: image/webp
content-length: 1734
cf-ray: 793fc5b03c230a25-ARN
accept-ranges: bytes
etag: "63dd0032-6c6"
last-modified: Fri, 03 Feb 2023 12:38:10 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
X-Firefox-Spdy: h2
api.livechatinc.com/v3.3/customer/action/get_localization?license_id=9054575&version=ff93808ef52c6dd040640c4853b854bd_21716f53f53807807abed6ecf43750c1&language=en&group_id=24&jsonp=__lc_localization
23.36.79.16200 OK 3.8 kB URL HTTP/2 api.livechatinc.com/v3.3/customer/action/get_localization?license_id=9054575&version=ff93808ef52c6dd040640c4853b854bd_21716f53f53807807abed6ecf43750c1&language=en&group_id=24&jsonp=__lc_localization
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (10873), with no line terminators
Hash d79ca272d883316ea37d4520152b9c17
21b73f4c86e8f92be5fb242719ed8b94a88ff01f
382fdf62da78f74a1cefa2383c87b0a4e3071a56534969e0f1d204d1f544e399
GET /v3.3/customer/action/get_localization?license_id=9054575&version=ff93808ef52c6dd040640c4853b854bd_21716f53f53807807abed6ecf43750c1&language=en&group_id=24&jsonp=__lc_localization HTTP/1.1
Host: api.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
content-type: application/javascript; charset=UTF-8
legacy: 2023-06-30
vary: Accept-Encoding
cache-control: public, max-age=600
expires: Sat, 04 Feb 2023 02:03:22 GMT
date: Sat, 04 Feb 2023 01:53:22 GMT
content-length: 3786
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 92c45dc245a9155becc352af0714ce07
b9c4f04eea4517780fc3dcb3a43a76365de858eb
ba3430b98de428559eee21ac69a1d85748dc6b383ca5a088baa2bba8f3ebe6d4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1986
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 01:53:22 GMT
Last-Modified: Sat, 04 Feb 2023 01:20:16 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 314
secure.livechatinc.com/customer/action/open_chat?license_id=9054575&group=24&embedded=1&widget_version=3&unique_groups=0
23.36.79.16200 OK 2.6 kB URL HTTP/2 secure.livechatinc.com/customer/action/open_chat?license_id=9054575&group=24&embedded=1&widget_version=3&unique_groups=0
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (8824), with no line terminators
Hash e73532c0c660a631b8b058705ce26d21
ac886227ce8d418692c8496201f8bc76709b1a63
0ee4d5761027247228422c7b57c6727e95d065c52b4f68501694f1a41754ac03
GET /customer/action/open_chat?license_id=9054575&group=24&embedded=1&widget_version=3&unique_groups=0 HTTP/1.1
Host: secure.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
content-type: text/html; charset=utf-8
vary: Accept-Encoding
date: Sat, 04 Feb 2023 01:53:22 GMT
content-length: 2557
X-Firefox-Spdy: h2
ctrack.trafficjunky.net/ctrack?action=list&type=add&id=notregistered&context=20bet.com&cookiename=notregistered&age=262800&maxcookiecount=10
66.254.114.89200 OK 35 B URL HTTP/1.1 ctrack.trafficjunky.net/ctrack?action=list&type=add&id=notregistered&context=20bet.com&cookiename=notregistered&age=262800&maxcookiecount=10
IP 66.254.114.89:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /ctrack?action=list&type=add&id=notregistered&context=20bet.com&cookiename=notregistered&age=262800&maxcookiecount=10 HTTP/1.1
Host: ctrack.trafficjunky.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
server: openresty
date: Sat, 04 Feb 2023 01:53:22 GMT
content-type: image/gif
content-length: 35
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Sun, 22 Jan 1984 03:00:00 GMT
p3p: CP="IDC DSP COR CURa ADMa OUR IND PHY ONL COM STA"
pragma: no-cache
set-cookie: tj_UUID=631cd2ee2b4f4cf89a98c513c08d9583; Path=/; Domain=trafficjunky.net; Expires=Mon, 06 Mar 2023 01:53:22 GMT; Secure; SameSite=None
tj_UUID_v2=631cd2ee-2b4f-4cf8-9a98-c513c08d9583; Path=/; Domain=trafficjunky.net; Expires=Mon, 06 Mar 2023 01:53:22 GMT; Secure; SameSite=None
1918bc62c1a6d87456120b5ac922270e=notregistered; Path=/; Domain=trafficjunky.net; Expires=Sat, 05 Aug 2023 13:53:22 GMT; Secure; SameSite=None
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET,POST
access-control-allow-headers: Content-Type
access-control-max-age: 86400
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
x-request-id: 63DDBA91-42FE725901BB2249-110F8A2B
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 7a37d5f14346f4c2d32067a67ed9cbf2
9364052ccda00fe675fe8cc3f2f244161f2a2f69
c0f55cbfc7ce76856115b4557edefe0c45f2b2979ed89b39fd92d185fddb8682
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:53:22 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 31 Jan 2023 13:56:49 GMT
Expires: Tue, 07 Feb 2023 13:56:48 GMT
Etag: "9364052ccda00fe675fe8cc3f2f244161f2a2f69"
Cache-Control: max-age=302005,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793fc5b14df9b52d-OSL
20bet.com/assets/sport/4.svg
104.22.34.208200 OK 8.6 kB URL HTTP/2 20bet.com/assets/sport/4.svg
IP 104.22.34.208:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (895)
Hash 21b8ec5ae2d32c4c4aa92ca47cd8f9e7
5893be97611fa0c5aeade40d4c1a13370569cba3
92ac7f238067410948ab0348900f9c2f5553233f5a71b0d76349cf51430ce6e2
GET /assets/sport/4.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_20291175FC544DC8B68537A119FB1815
Cookie: btag=668128_20291175FC544DC8B68537A119FB1815; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:21 GMT
content-type: image/svg+xml
cf-ray: 793fc5ab49970a25-ARN
etag: W/"63dd0051-15d5"
last-modified: Fri, 03 Feb 2023 12:38:41 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/event/list?isTopLive_eq=1&competitor2Id_neq=&competitor1Id_neq=&status_in%5B%5D=2&status_in%5B%5D=1&oddsExists_eq=1&main=1&limit=15&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=players&relations%5B%5D=sportCategories&relations%5B%5D=broadcasts&relations%5B%5D=statistics&relations%5B%5D=additionalInfo&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=es
104.22.34.208200 OK 100 kB URL HTTP/2 platform.20bet.com/api/event/list?isTopLive_eq=1&competitor2Id_neq=&competitor1Id_neq=&status_in%5B%5D=2&status_in%5B%5D=1&oddsExists_eq=1&main=1&limit=15&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=players&relations%5B%5D=sportCategories&relations%5B%5D=broadcasts&relations%5B%5D=statistics&relations%5B%5D=additionalInfo&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=es
IP 104.22.34.208:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 911a58574fb341106981c6fb22b6ee13
d441bb54ce6c570af216ee2f5e3db3e9c7dd06ab
2da7717185ac5c5cc99d5abbdaa443b22b9fba3b15291899e6261f03e49e18ac
GET /api/event/list?isTopLive_eq=1&competitor2Id_neq=&competitor1Id_neq=&status_in%5B%5D=2&status_in%5B%5D=1&oddsExists_eq=1&main=1&limit=15&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=players&relations%5B%5D=sportCategories&relations%5B%5D=broadcasts&relations%5B%5D=statistics&relations%5B%5D=additionalInfo&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:21 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fc5aab9520a25-ARN
content-encoding: br
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 7a37d5f14346f4c2d32067a67ed9cbf2
9364052ccda00fe675fe8cc3f2f244161f2a2f69
c0f55cbfc7ce76856115b4557edefe0c45f2b2979ed89b39fd92d185fddb8682
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:53:22 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 31 Jan 2023 13:56:49 GMT
Expires: Tue, 07 Feb 2023 13:56:48 GMT
Etag: "9364052ccda00fe675fe8cc3f2f244161f2a2f69"
Cache-Control: max-age=302005,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793fc5b0bbe10b55-OSL
ocsp.globalsign.com/gseccovsslca2018
151.101.130.133200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 151.101.130.133:0
Hash 768ba073f2fa6c1163b46a7eaae70133
54749199c871ecb5ef29a2417cca6feb80600225
aacda2121e724f3ba8aed3af09d0456b8325ed0d094ad26934b6fc2ddc8d3ff8
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 938
Server: nginx
Content-Type: application/ocsp-response
Expires: Wed, 08 Feb 2023 01:30:08 GMT
ETag: "54749199c871ecb5ef29a2417cca6feb80600225"
Last-Modified: Sat, 04 Feb 2023 01:30:09 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sat, 04 Feb 2023 01:53:22 GMT
Age: 1393
X-Served-By: cache-qpg1244-QPG, cache-bma1673-BMA
X-Cache: MISS, HIT
X-Cache-Hits: 0, 42
X-Timer: S1675475602.238029,VS0,VE0
platform.20bet.com/api/event/list?isTop_eq=1&oddsExists_eq=1&competitor2Id_neq=&competitor1Id_neq=&main=1&status_in%5B%5D=0&limit=15&relations%5B%5D=league&relations%5B%5D=odds&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=players&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=es
104.22.34.208200 OK 86 kB URL HTTP/2 platform.20bet.com/api/event/list?isTop_eq=1&oddsExists_eq=1&competitor2Id_neq=&competitor1Id_neq=&main=1&status_in%5B%5D=0&limit=15&relations%5B%5D=league&relations%5B%5D=odds&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=players&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=es
IP 104.22.34.208:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 680f0b8e73f0c9d87da3765b9701d5a2
322f4a9c655fc943c084ab3d4a11311524db42b6
96e2647a6886b5013646a2b58e47bca3cda927ddece59813e4cfe0b6e8b4c2c9
GET /api/event/list?isTop_eq=1&oddsExists_eq=1&competitor2Id_neq=&competitor1Id_neq=&main=1&status_in%5B%5D=0&limit=15&relations%5B%5D=league&relations%5B%5D=odds&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=players&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:21 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fc5aa99430a25-ARN
content-encoding: br
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
151.101.130.133200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 151.101.130.133:0
Hash 768ba073f2fa6c1163b46a7eaae70133
54749199c871ecb5ef29a2417cca6feb80600225
aacda2121e724f3ba8aed3af09d0456b8325ed0d094ad26934b6fc2ddc8d3ff8
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 938
Server: nginx
Content-Type: application/ocsp-response
Expires: Wed, 08 Feb 2023 01:30:08 GMT
ETag: "54749199c871ecb5ef29a2417cca6feb80600225"
Last-Modified: Sat, 04 Feb 2023 01:30:09 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sat, 04 Feb 2023 01:53:22 GMT
Age: 1393
X-Served-By: cache-qpg1244-QPG, cache-bma1673-BMA
X-Cache: MISS, HIT
X-Cache-Hits: 0, 43
X-Timer: S1675475602.246609,VS0,VE0
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 7a37d5f14346f4c2d32067a67ed9cbf2
9364052ccda00fe675fe8cc3f2f244161f2a2f69
c0f55cbfc7ce76856115b4557edefe0c45f2b2979ed89b39fd92d185fddb8682
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:53:22 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 31 Jan 2023 13:56:49 GMT
Expires: Tue, 07 Feb 2023 13:56:48 GMT
Etag: "9364052ccda00fe675fe8cc3f2f244161f2a2f69"
Cache-Control: max-age=302005,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793fc5b0ffd9b50c-OSL
20bet.com/assets/sport/14.svg
104.22.34.208200 OK 1.4 kB URL HTTP/2 20bet.com/assets/sport/14.svg
IP 104.22.34.208:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (374)
Hash 36b4e45c2dc71ec04dfee7dccd724598
ca5c26fabdd42384430bccaa665711297d40af63
908e06c72030913fc8ee51f8564d2dc33aaec7e4ad29104e6feb88e3f24f47e8
GET /assets/sport/14.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_20291175FC544DC8B68537A119FB1815
Cookie: btag=668128_20291175FC544DC8B68537A119FB1815; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:21 GMT
content-type: image/svg+xml
cf-ray: 793fc5ac1a010a25-ARN
etag: W/"63dd0032-cd6"
last-modified: Fri, 03 Feb 2023 12:38:10 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
d1wfowvne3d4em.cloudfront.net/flags/NBA.svg
54.230.245.109200 OK 732 B URL HTTP/2 d1wfowvne3d4em.cloudfront.net/flags/NBA.svg
IP 54.230.245.109:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash eb77d9f274f71a770e363d1b7fc14269
6ecb6aad8e420f053da9fb2b32425bde3695d8dd
46d397e33b88bb36abc70061f2c5d1d2b055b1b9b774043b59b0a90739feb346
GET /flags/NBA.svg HTTP/1.1
Host: d1wfowvne3d4em.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 732
date: Fri, 03 Feb 2023 09:40:21 GMT
last-modified: Thu, 05 Jan 2023 15:45:57 GMT
etag: "eb77d9f274f71a770e363d1b7fc14269"
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: wFSk8KNX_vjp8Y_ONcipFzOmB9w6HAvyXNNKY-XsJPlqlsoMJMyeYA==
age: 58381
X-Firefox-Spdy: h2
d1wfowvne3d4em.cloudfront.net/flags/cr.svg
54.230.245.109200 OK 293 B URL HTTP/2 d1wfowvne3d4em.cloudfront.net/flags/cr.svg
IP 54.230.245.109:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 7b4ebd50f5274e5bfca82408ca79c32d
acc7c61a910b75de4970d54b684b0560cd833a16
12fe80c814de382b53955ab5223514278f7b4985f51c32fd1f60356280e1e5cd
GET /flags/cr.svg HTTP/1.1
Host: d1wfowvne3d4em.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 293
date: Fri, 03 Feb 2023 19:27:43 GMT
last-modified: Thu, 05 Jan 2023 15:45:59 GMT
etag: "7b4ebd50f5274e5bfca82408ca79c32d"
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: C0-Lf7Twde6yFZ6-pJLB5vHVUsn_Uc_PQS8qS92-foOqxxqBKGa8Rw==
age: 23140
X-Firefox-Spdy: h2
d1wfowvne3d4em.cloudfront.net/flags/england.svg
54.230.245.109200 OK 652 B URL HTTP/2 d1wfowvne3d4em.cloudfront.net/flags/england.svg
IP 54.230.245.109:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 08979e955a488aa6e9368f7900845221
723a8d44940bebc93620994a038ac444c1384da6
19758b639b6069444cbf1ce3fa40726515fa30fca4edfde41f53d279c1a35486
GET /flags/england.svg HTTP/1.1
Host: d1wfowvne3d4em.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 652
last-modified: Thu, 05 Jan 2023 15:46:00 GMT
accept-ranges: bytes
server: AmazonS3
date: Fri, 03 Feb 2023 14:42:56 GMT
etag: "08979e955a488aa6e9368f7900845221"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: R0XkQqM1ZhInYzpUk4mdl4C78yxnVZqRuvfUxm9-4eseWqoaXb-lDA==
age: 40227
X-Firefox-Spdy: h2
d1wfowvne3d4em.cloudfront.net/flags/de.svg
54.230.245.109200 OK 213 B URL HTTP/2 d1wfowvne3d4em.cloudfront.net/flags/de.svg
IP 54.230.245.109:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 3e726c2b6a59e6e4543c0a1534d93796
d43327d97b3e75fd3bd8d8e0103ef182c2f4c93d
226631a8fa9deee07022680ce0461b7a09b416b616c56ebcaf21f50e2b34ea8f
GET /flags/de.svg HTTP/1.1
Host: d1wfowvne3d4em.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 213
date: Fri, 03 Feb 2023 17:50:31 GMT
last-modified: Thu, 05 Jan 2023 15:46:00 GMT
etag: "3e726c2b6a59e6e4543c0a1534d93796"
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _u3rJHeSa_rdaBn0LZgnpPwSuwTEy0bDaxxIo56vgKd8lYraMbqTeg==
age: 28972
X-Firefox-Spdy: h2
x.bidswitch.net/sync?dsp_id=409&expires=14&user_group=2&user_id=88cf873a-ff7d-4444-802d-103f373a56f8&cb=9da0fb95-0ee9-4ea8-8557-983bbed6086e
3.120.119.58302 Found 0 B URL HTTP/2 x.bidswitch.net/sync?dsp_id=409&expires=14&user_group=2&user_id=88cf873a-ff7d-4444-802d-103f373a56f8&cb=9da0fb95-0ee9-4ea8-8557-983bbed6086e
IP 3.120.119.58:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?dsp_id=409&expires=14&user_group=2&user_id=88cf873a-ff7d-4444-802d-103f373a56f8&cb=9da0fb95-0ee9-4ea8-8557-983bbed6086e HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 04 Feb 2023 01:53:22 GMT
content-length: 0
cache-control: no-cache, no-store, must-revalidate
location: //match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=88cf873a-ff7d-4444-802d-103f373a56f8&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
X-Firefox-Spdy: h2
20bet.com/assets/sport/15.svg
104.22.34.208200 OK 4.0 kB URL HTTP/2 20bet.com/assets/sport/15.svg
IP 104.22.34.208:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (372)
Hash 0ef780ade2b1aebc180423ebdaf89b38
026b0b27c7e23af60822642e8d478817f0fd8640
7d5a2e1e4e1118d34add67b46289adf5d24273a2593258b1152fff06531ed66a
GET /assets/sport/15.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_20291175FC544DC8B68537A119FB1815
Cookie: btag=668128_20291175FC544DC8B68537A119FB1815; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:21 GMT
content-type: image/svg+xml
cf-ray: 793fc5ab49950a25-ARN
etag: W/"63dd0041-a14"
last-modified: Fri, 03 Feb 2023 12:38:25 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bb0e1ff82ab6199f715e00974b7f6957
74edba6943c202d060b471c30a3c626542bfac84
d982aa0ae1b32ffba27f789ad265b594dfef0bc4c55a0d0489d38b0827e6a7e2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D982AA0AE1B32FFBA27F789AD265B594DFEF0BC4C55A0D0489D38B0827E6A7E2"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4492
Expires: Sat, 04 Feb 2023 03:08:14 GMT
Date: Sat, 04 Feb 2023 01:53:22 GMT
Connection: keep-alive
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 7a37d5f14346f4c2d32067a67ed9cbf2
9364052ccda00fe675fe8cc3f2f244161f2a2f69
c0f55cbfc7ce76856115b4557edefe0c45f2b2979ed89b39fd92d185fddb8682
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 01:53:22 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 31 Jan 2023 13:56:49 GMT
Expires: Tue, 07 Feb 2023 13:56:48 GMT
Etag: "9364052ccda00fe675fe8cc3f2f244161f2a2f69"
Cache-Control: max-age=302005,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793fc5b16bf0b509-OSL
d1wfowvne3d4em.cloudfront.net/flags/pa.svg
54.230.245.109200 OK 749 B URL HTTP/2 d1wfowvne3d4em.cloudfront.net/flags/pa.svg
IP 54.230.245.109:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash d0787677f0d7c9cdaa8f6acca3f19245
0106f7695beb36379634b39507b7bb2811c06635
0bd4b6709d9ca822851f2d7c57ef9fb3c098ceeea5d239bbf8f3196b062d1d11
GET /flags/pa.svg HTTP/1.1
Host: d1wfowvne3d4em.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 749
date: Fri, 03 Feb 2023 19:27:43 GMT
last-modified: Thu, 05 Jan 2023 15:46:05 GMT
etag: "d0787677f0d7c9cdaa8f6acca3f19245"
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: hRIxc2QUa-0ZAQntkDdNmWofNvEek6xR5pCrJ1TDSNO4ICd1faDl2Q==
age: 23140
X-Firefox-Spdy: h2
main.realsrv.com/tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2
95.211.229.248200 OK 20 B URL HTTP/1.1 main.realsrv.com/tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2
IP 95.211.229.248:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2 HTTP/1.1
Host: main.realsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 01:53:22 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: goals=a%3A1%3A%7Bi%3A93090%3Ba%3A1%3A%7Bs%3A4%3A%22date%22%3Bs%3A10%3A%222023-02-03%22%3B%7D%7D; expires=Sun, 04 Feb 2024 01:53:22 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
main.exdynsrv.com/tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2
95.211.229.248200 OK 20 B URL HTTP/1.1 main.exdynsrv.com/tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2
IP 95.211.229.248:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2 HTTP/1.1
Host: main.exdynsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 01:53:22 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: goals=a%3A1%3A%7Bi%3A93090%3Ba%3A1%3A%7Bs%3A4%3A%22date%22%3Bs%3A10%3A%222023-02-03%22%3B%7D%7D; expires=Sun, 04 Feb 2024 01:53:22 GMT; path=/; domain=.exdynsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
dsp-trk.eskimi.com/tracking/cssession?tst&id=22441
34.120.139.69304 Not Modified 0 B URL HTTP/2 dsp-trk.eskimi.com/tracking/cssession?tst&id=22441
IP 34.120.139.69:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tracking/cssession?tst&id=22441 HTTP/1.1
Host: dsp-trk.eskimi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 304 Not Modified
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
date: Sat, 04 Feb 2023 01:53:22 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
20bet.com/assets/sport/13.svg
104.22.34.208200 OK 522 B URL HTTP/2 20bet.com/assets/sport/13.svg
IP 104.22.34.208:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash cc116369de466608a1c07493717e0fc7
a613a2e3c4f87b56b46d4158c05dbdc198b4b117
7c72916d3fc0565a08444725e8b2a5c634240fa89453920a8741f2862f454119
GET /assets/sport/13.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_20291175FC544DC8B68537A119FB1815
Cookie: btag=668128_20291175FC544DC8B68537A119FB1815; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:21 GMT
content-type: image/svg+xml
cf-ray: 793fc5ac19ff0a25-ARN
etag: W/"63dd0041-458"
last-modified: Fri, 03 Feb 2023 12:38:25 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
my.rtmark.net/p.js?f=sync&lr=1&partner=cd60a55da311d1562975ffab2a7f08e376179d9ae222cd454571a6753429581a
139.45.195.8200 OK 697 B URL HTTP/2 my.rtmark.net/p.js?f=sync&lr=1&partner=cd60a55da311d1562975ffab2a7f08e376179d9ae222cd454571a6753429581a
IP 139.45.195.8:0
Hash 50bd6e5705d2521bca2b787e709a056b
6216f7e6fce68eba983e254863c86f29248531b0
0f9b337808a018383c64035060134c4bbf0d8de9e9541284ab5ffaa9f42cd434
GET /p.js?f=sync&lr=1&partner=cd60a55da311d1562975ffab2a7f08e376179d9ae222cd454571a6753429581a HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 01:53:22 GMT
content-type: text/javascript
content-length: 697
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c7dca3f19d5f72804a6f1ac9e6729611
834490db5b5178a798814491bd4641a6b9ebeca4
c2985b7c81f97d919acd684eba9dc67893c9468d95d0d56524874b8951e5f791
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2095
Cache-Control: max-age=111990
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 01:53:22 GMT
Etag: "63dcc4d9-1d7"
Expires: Sun, 05 Feb 2023 08:59:52 GMT
Last-Modified: Fri, 03 Feb 2023 08:24:57 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
script.hotjar.com/modules.bca0d1c28285412bb689.js
54.230.111.93200 OK 68 kB URL HTTP/2 script.hotjar.com/modules.bca0d1c28285412bb689.js
IP 54.230.111.93:0
File type Unicode text, UTF-8 text, with very long lines (49086)
Hash e923aa360dc485b9df86355bd040c998
03c46dbd41e9d4bdf8a9e4bfbaba3f7f2e9280ec
9c7575553c5b81f9b905dbb27c8116b175b69e7472aa6597f8cace1c6434d676
GET /modules.bca0d1c28285412bb689.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 67924
date: Fri, 03 Feb 2023 13:10:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "e923aa360dc485b9df86355bd040c998"
last-modified: Fri, 03 Feb 2023 13:09:45 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ET4SXFbXVdK1XW1MAZb-8tlFxBWyBXKH-R6OK9XmWOqAi5V1DwaOSQ==
age: 45796
X-Firefox-Spdy: h2
platform.20bet.com/api/v3/menu/live/es
104.22.34.208200 OK 64 kB URL HTTP/2 platform.20bet.com/api/v3/menu/live/es
IP 104.22.34.208:0
File type JSON data\012- , ASCII text, with very long lines (18438), with no line terminators
Hash fbb11f4d451d681093d0d5327d4cad82
df760156a5c16a4c7a81286d3178fdb43f0a1599
73ca03ca5963c50fefb6e662f97825f4c2f457e521ab8363294020e8e4c128ee
GET /api/v3/menu/live/es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:21 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fc5aa49170a25-ARN
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/v4/coupon/get?system=1&lang=es
104.22.34.208200 OK 78 kB URL HTTP/2 platform.20bet.com/api/v4/coupon/get?system=1&lang=es
IP 104.22.34.208:0
File type JSON data\012- , ASCII text, with very long lines (336), with no line terminators
Hash 8a43304d4ff2d45f63b571e80a1db110
b50410bca1c05c19e211a43edf376c07fea8af42
4c86ace0ac4e55d4d8f143610660011bb08c7c523c08bcf46cefd14c90a98092
GET /api/v4/coupon/get?system=1&lang=es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:21 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
set-cookie: sid=4fbf349d248eade5acbe2fd9d0175c13; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fc5aaa9480a25-ARN
content-encoding: br
X-Firefox-Spdy: h2
main.exosrv.com/tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2
95.211.229.248200 OK 20 B URL HTTP/1.1 main.exosrv.com/tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2
IP 95.211.229.248:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2 HTTP/1.1
Host: main.exosrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 01:53:22 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: goals=a%3A1%3A%7Bi%3A93090%3Ba%3A1%3A%7Bs%3A4%3A%22date%22%3Bs%3A10%3A%222023-02-03%22%3B%7D%7D; expires=Sun, 04 Feb 2024 01:53:22 GMT; path=/; domain=.exosrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
main.exoclick.com/tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2
95.211.229.248200 OK 20 B URL HTTP/1.1 main.exoclick.com/tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2
IP 95.211.229.248:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2 HTTP/1.1
Host: main.exoclick.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 01:53:22 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: goals=a%3A1%3A%7Bi%3A93090%3Ba%3A1%3A%7Bs%3A4%3A%22date%22%3Bs%3A10%3A%222023-02-03%22%3B%7D%7D; expires=Sun, 04 Feb 2024 01:53:22 GMT; path=/; domain=.exoclick.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
e1.o.lencr.org/
23.36.77.32200 OK 344 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2b7c79543085fbac19b4685a87d251f4
fa7efeb78a102f7c17c4238829eac20c3c4e717f
80ce696d3ed78ab4dbce27c11e3b3586dc411bdc448ae2c9f8c8b15f48d8cbc2
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "80CE696D3ED78AB4DBCE27C11E3B3586DC411BDC448AE2C9F8C8B15F48D8CBC2"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10269
Expires: Sat, 04 Feb 2023 04:44:31 GMT
Date: Sat, 04 Feb 2023 01:53:22 GMT
Connection: keep-alive
tsyndicate.com/api/v1/retargeting/set/45d3301c-de08-443f-9716-ba31e2632331
136.243.134.97200 OK 35 B URL HTTP/2 tsyndicate.com/api/v1/retargeting/set/45d3301c-de08-443f-9716-ba31e2632331
IP 136.243.134.97:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /api/v1/retargeting/set/45d3301c-de08-443f-9716-ba31e2632331 HTTP/1.1
Host: tsyndicate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 01:53:22 GMT
content-type: text/plain; charset=utf-8
content-length: 35
pragma: no-cache
expires: 0
vary: *
x-api-version: 1
x-request-id: 65a4c18c4b3fc2d5
set-cookie: ts_rt_45d3301c-de08-443f-9716-ba31e2632331=AAMC; expires=Sun, 04 Feb 2024 01:53:22 GMT; path=/; HttpOnly; secure; SameSite=None
cache-control: no-cache, no-store, no-transform, must-revalidate, no-transform
x-robots-tag: none, noindex, nofollow
report-to: { "url": "https://pxl.tsyndicate.com/api/v1/heavy-ad/report", "max_age": 86401 }
X-Firefox-Spdy: h2
sentry.softlabs.com/api/9/store/?sentry_key=913196a6014545bda28200a38ba9826a&sentry_version=7
104.26.1.82200 OK 41 B URL HTTP/2 sentry.softlabs.com/api/9/store/?sentry_key=913196a6014545bda28200a38ba9826a&sentry_version=7
IP 104.26.1.82:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 3eef9f2c5dcbcefbb2f6fec41b39a7a8
5823a6e2cbaf7fbf6f258728b58c16e6ca3ddf49
2e1059e6fc540498eadb210cd10bf78030ec6eb29271a76218d52a2e714e2533
POST /api/9/store/?sentry_key=913196a6014545bda28200a38ba9826a&sentry_version=7 HTTP/1.1
Host: sentry.softlabs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20bet.com/
Content-Type: text/plain;charset=UTF-8
Origin: https://20bet.com
Content-Length: 7466
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:22 GMT
content-type: application/json
content-length: 41
access-control-allow-origin: https://20bet.com
access-control-expose-headers: retry-after, x-sentry-error, x-sentry-rate-limits
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YOjQC8FWCPOGEgEbWPMkbJyWipufYHsgrOEyZnLNRHZVsmkkn8pTfbpBHchJOqmxka2Z%2BIbPcl0rwQg6GWpmYQkzNXLUhIinbRTgdrWObSM3B3F8Ql2ErLh%2B311xcsxoBMjbWMA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793fc5b4a921b4f3-OSL
X-Firefox-Spdy: h2
x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=2&user_id=88cf873a-ff7d-4444-802d-103f373a56f8&cb=bf33d737-c189-48bd-a742-4d233928d4d4
3.120.119.58302 Found 0 B URL HTTP/2 x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=2&user_id=88cf873a-ff7d-4444-802d-103f373a56f8&cb=bf33d737-c189-48bd-a742-4d233928d4d4
IP 3.120.119.58:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ul_cb/sync?dsp_id=409&expires=14&user_group=2&user_id=88cf873a-ff7d-4444-802d-103f373a56f8&cb=bf33d737-c189-48bd-a742-4d233928d4d4 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20bet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sat, 04 Feb 2023 01:53:22 GMT
content-length: 0
cache-control: no-cache, no-store, must-revalidate
location: //match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=88cf873a-ff7d-4444-802d-103f373a56f8&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
X-Firefox-Spdy: h2
ctrack.trafficjunky.net/ctrack?action=list&type=add&id=notregistered-new&context=20bet.com&cookiename=notregistered-new&age=259200&maxcookiecount=10
66.254.114.89200 OK 35 B URL HTTP/1.1 ctrack.trafficjunky.net/ctrack?action=list&type=add&id=notregistered-new&context=20bet.com&cookiename=notregistered-new&age=259200&maxcookiecount=10
IP 66.254.114.89:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /ctrack?action=list&type=add&id=notregistered-new&context=20bet.com&cookiename=notregistered-new&age=259200&maxcookiecount=10 HTTP/1.1
Host: ctrack.trafficjunky.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
server: openresty
date: Sat, 04 Feb 2023 01:53:22 GMT
content-type: image/gif
content-length: 35
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Sun, 22 Jan 1984 03:00:00 GMT
p3p: CP="IDC DSP COR CURa ADMa OUR IND PHY ONL COM STA"
pragma: no-cache
set-cookie: tj_UUID=631cd2ee2b4f4cf89a98c513c08d9583; Path=/; Domain=trafficjunky.net; Expires=Mon, 06 Mar 2023 01:53:22 GMT; Secure; SameSite=None
tj_UUID_v2=631cd2ee-2b4f-4cf8-9a98-c513c08d9583; Path=/; Domain=trafficjunky.net; Expires=Mon, 06 Mar 2023 01:53:22 GMT; Secure; SameSite=None
614ac6550300bc7c00c3f821d11e0512=notregistered-new; Path=/; Domain=trafficjunky.net; Expires=Thu, 03 Aug 2023 01:53:22 GMT; Secure; SameSite=None
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET,POST
access-control-allow-headers: Content-Type
access-control-max-age: 86400
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
x-request-id: 63DDBA92-42FE725901BB2249-110F8AF8
cdn.livechatinc.com/widget/static/js/0.d619df13.chunk.js
23.36.79.16200 OK 15 kB URL HTTP/2 cdn.livechatinc.com/widget/static/js/0.d619df13.chunk.js
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (47599), with no line terminators
Hash f790030a4058f34f76fa8b0e0e4285cf
955ed12553baf05025f6f19f9079bad07af10bc3
5a57474ecc2a44ecf94ceae42e672745f900749479012ee2ba9eea180ee2a265
GET /widget/static/js/0.d619df13.chunk.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 11 Jan 2023 08:35:01 GMT
x-amz-version-id: fr6Gz9d8KXQbrJuaQVT4sDUpSqjnuR9Q
server: AmazonS3
content-encoding: br
etag: W/"10a3d7ac1ed37325d3341c379ee0de69"
vary: Accept-Encoding
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: M5BEPnK3INOuxV-Zd5EkJqKhsnyIsA6pc5CcKg9GF8ozNzaNoBaR7Q==
content-length: 14885
cache-control: max-age=31536000
expires: Sun, 04 Feb 2024 01:53:22 GMT
date: Sat, 04 Feb 2023 01:53:22 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
X-Firefox-Spdy: h2
d1wfowvne3d4em.cloudfront.net/flags/ar.svg
54.230.245.109200 OK 68 kB URL HTTP/2 d1wfowvne3d4em.cloudfront.net/flags/ar.svg
IP 54.230.245.109:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (407)
Hash 8d23463c03449424c196a8cbe7b52539
e8ecd8e1743e54ae77e02e539f16e20cdbb28803
1f87a28eda9f5737f5cfba5fe0665bad78678c4d0e16add6eb7684048b0a4703
GET /flags/ar.svg HTTP/1.1
Host: d1wfowvne3d4em.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/svg+xml
date: Fri, 03 Feb 2023 11:46:55 GMT
last-modified: Thu, 05 Jan 2023 15:45:57 GMT
etag: W/"d205ca1376dbe5ce35b5b926fe739959"
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: rIqKNFVfwUTBP2P-hgUnALu9mDO-LntYJ8ihXsa47KrVZSD_xrF3nA==
age: 50788
X-Firefox-Spdy: h2
d1wfowvne3d4em.cloudfront.net/flags/conmebol.svg
54.230.245.109200 OK 236 kB URL HTTP/2 d1wfowvne3d4em.cloudfront.net/flags/conmebol.svg
IP 54.230.245.109:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (12997)
Size 236 kB (236492 bytes)
Hash cbe134b5a5e5a891bd3bf779f717244f
48cde92e045c2179b7f788bcf45961f72d5fc692
00747d08937997e53defbeededb3c165be00495b34afc3cffcbc2c42e9584fe6
GET /flags/conmebol.svg HTTP/1.1
Host: d1wfowvne3d4em.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/svg+xml
date: Fri, 03 Feb 2023 16:37:22 GMT
last-modified: Thu, 05 Jan 2023 15:45:59 GMT
etag: W/"0936ae4b3e4d0dc50cc7dea9471b2d85"
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: NSu9XJsl9L9Iy3XpDul619uq13S4BMoNRJc_pvXdYRbwu-EK6wEF7w==
age: 33361
X-Firefox-Spdy: h2
trc.taboola.com/1460267/log/3/unip?item-url=https%3A%2F%2F20bet.com%2Fpe%3Fbtag%3D668128_20291175FC544DC8B68537A119FB1815&ref=&en=20betcom_notreg
151.101.65.44204 No Content 0 B URL HTTP/2 trc.taboola.com/1460267/log/3/unip?item-url=https%3A%2F%2F20bet.com%2Fpe%3Fbtag%3D668128_20291175FC544DC8B68537A119FB1815&ref=&en=20betcom_notreg
IP 151.101.65.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1460267/log/3/unip?item-url=https%3A%2F%2F20bet.com%2Fpe%3Fbtag%3D668128_20291175FC544DC8B68537A119FB1815&ref=&en=20betcom_notreg HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
content-type: image/gif
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
accept-ranges: bytes
date: Sat, 04 Feb 2023 01:53:22 GMT
via: 1.1 varnish
x-served-by: cache-bma1670-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675475603.747460,VS0,VE94
x-vcl-time-ms: 94
X-Firefox-Spdy: h2
x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=2&user_id=88cf873a-ff7d-4444-802d-103f373a56f8&cb=c7f611f5-5a7a-487c-b354-d2c4040fe909
3.120.119.58302 Found 0 B URL HTTP/2 x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=2&user_id=88cf873a-ff7d-4444-802d-103f373a56f8&cb=c7f611f5-5a7a-487c-b354-d2c4040fe909
IP 3.120.119.58:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ul_cb/sync?dsp_id=409&expires=14&user_group=2&user_id=88cf873a-ff7d-4444-802d-103f373a56f8&cb=c7f611f5-5a7a-487c-b354-d2c4040fe909 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20bet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sat, 04 Feb 2023 01:53:22 GMT
content-length: 0
cache-control: no-cache, no-store, must-revalidate
location: //match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=88cf873a-ff7d-4444-802d-103f373a56f8&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/advert.gif
87.250.250.119200 OK 43 B URL HTTP/2 mc.yandex.ru/metrika/advert.gif
IP 87.250.250.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Sat, 04 Feb 2023 01:53:22 GMT
access-control-allow-origin: *
etag: "63c93a4b-2b"
expires: Sat, 04 Feb 2023 02:53:22 GMT
accept-ranges: bytes
last-modified: Thu, 19 Jan 2023 15:40:43 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash acc6e0e956622e0edcd2ac459c12fe91
01ce4a761ffe6d45e2fbeee435681722824da8a1
21333a80669f45aee8b5b226202317f0857d8022f1f485ecc2692c380b69aad7
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 04 Feb 2023 01:53:22 GMT
Last-Modified: Sat, 04 Feb 2023 00:52:59 GMT
Server: ECS (bsa/EB20)
X-Cache: Miss from cloudfront
Via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: f_5F_4pjQaVxcnoR8hoxT9BIG3_M4FHvvSxaBzsVlT-6Ra18jiqk7Q==
Age: 3623
match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=88cf873a-ff7d-4444-802d-103f373a56f8&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
52.28.76.139204 No Content 0 B URL HTTP/2 match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=88cf873a-ff7d-4444-802d-103f373a56f8&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
IP 52.28.76.139:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=88cf873a-ff7d-4444-802d-103f373a56f8&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy= HTTP/1.1
Host: match.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20bet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 01:53:23 GMT
X-Firefox-Spdy: h2
vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html
143.204.55.101200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html
IP 143.204.55.101:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash 112fdf47cdb80b9ce3d033ed09717460
3898efa86cbf1b64dc41a90a110ed5afd6f2ae13
3bfb2e882091d872eece2eee40084183a5fcb0a7ed98c1b004850751260a4cbb
GET /box-e031119f9e9e307a08fa610f85dbfb52.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1034
date: Fri, 03 Feb 2023 13:10:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "112fdf47cdb80b9ce3d033ed09717460"
last-modified: Fri, 03 Feb 2023 13:09:45 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: KEcVoujJlwqMD1GkbPncdNYbE8uMLKvmAgJGEFKPMcFof-W-6N9bjA==
age: 45797
X-Firefox-Spdy: h2
match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=88cf873a-ff7d-4444-802d-103f373a56f8&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
52.28.76.139204 No Content 0 B URL HTTP/2 match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=88cf873a-ff7d-4444-802d-103f373a56f8&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
IP 52.28.76.139:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=88cf873a-ff7d-4444-802d-103f373a56f8&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy= HTTP/1.1
Host: match.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20bet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 01:53:23 GMT
X-Firefox-Spdy: h2
match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=88cf873a-ff7d-4444-802d-103f373a56f8&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
52.28.76.139204 No Content 0 B URL HTTP/2 match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=88cf873a-ff7d-4444-802d-103f373a56f8&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
IP 52.28.76.139:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=88cf873a-ff7d-4444-802d-103f373a56f8&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy= HTTP/1.1
Host: match.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20bet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 01:53:23 GMT
X-Firefox-Spdy: h2
d1wfowvne3d4em.cloudfront.net/flags/mx.svg
54.230.245.109200 OK 33 kB URL HTTP/2 d1wfowvne3d4em.cloudfront.net/flags/mx.svg
IP 54.230.245.109:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3715)
Hash e828c100858ae1ac44ea211d1b97d545
a5ccbe7c9444eec89511cf43ea4957f779102e22
6b3748f7c7db6b300dcec19e0d751b158d389382e6c11e9a853111cf1d41c9d5
GET /flags/mx.svg HTTP/1.1
Host: d1wfowvne3d4em.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Thu, 05 Jan 2023 15:46:04 GMT
server: AmazonS3
content-encoding: br
date: Fri, 03 Feb 2023 22:18:00 GMT
etag: W/"8ee3aa6a7feaf34c5cc806f645cfd3c6"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: IV-BnWKEy11lOLLKg_NxDaSbiueBMC2SVtG1rlXVp8xRlK_62PQWyw==
age: 12923
X-Firefox-Spdy: h2
zz.connextra.com/20Bet/dcs/tagController/tagData/d3ea3fb1f9d4
104.110.28.81200 OK 20 B URL HTTP/2 zz.connextra.com/20Bet/dcs/tagController/tagData/d3ea3fb1f9d4
IP 104.110.28.81:0
Hash 163be0a88c70ca629fd516dbaadad96a
c8830ccf3a863e489ca37f4da572bad0e05d077b
ac73670af3abed54ac6fb4695131f4099be9fbe39d6076c5d0264a6bbdae9d83
POST /20Bet/dcs/tagController/tagData/d3ea3fb1f9d4 HTTP/1.1
Host: zz.connextra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 41
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain
server: istio-envoy
access-control-allow-credentials: true
access-control-allow-origin: https://20bet.com
vary: origin,accept-encoding
p3p: CP=NOI DSP COR CURa ADMa DEVa PSAa PSDa OUR SAMa BUS IND UNI PUR COM NAV
content-encoding: gzip
x-envoy-upstream-service-time: 2
expires: Sat, 04 Feb 2023 01:53:23 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 04 Feb 2023 01:53:23 GMT
content-length: 20
set-cookie: CxtId=94875361-ef64-4f04-82b6-4341e8274679; Domain=.connextra.com; Expires=Mon, 03-Feb-2025 01:53:23 GMT; Path=/; Secure
20Bet=P%7Chomepage%7C1%7C202302040153; Domain=.connextra.com; Expires=Sun, 04-Feb-2024 01:53:23 GMT; Path=/; Secure; HttpOnly
X-Firefox-Spdy: h2
secure.adnxs.com/seg?add=30613014&t=1
37.252.171.53307 Redirection 0 B URL HTTP/1.1 secure.adnxs.com/seg?add=30613014&t=1
IP 37.252.171.53:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /seg?add=30613014&t=1 HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Sat, 04 Feb 2023 01:53:23 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://secure.adnxs.com/bounce?%2Fseg%3Fadd%3D30613014%26t%3D1
AN-X-Request-Uuid: 8e41a242-491f-4937-b4e8-a748b052b7de
Set-Cookie: uuid2=3983639959446014238; SameSite=None; Path=/; Max-Age=7776000; Expires=Fri, 05-May-2023 01:53:23 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1003.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
secure.adnxs.com/getuidnb?https%3A//zz.connextra.com/sync/data/uid/3bc1d7fd2e/%24UID
37.252.171.53200 OK 43 B URL HTTP/1.1 secure.adnxs.com/getuidnb?https%3A//zz.connextra.com/sync/data/uid/3bc1d7fd2e/%24UID
IP 37.252.171.53:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 592ebefc7104d681d57852665e9ad514
15cdf8df32aa251dd6dd590a60bf9cf74474e7c5
4b5b6b15c6255109e06720cce42a06d3aead8b7874423d9c52cb0303212c25ef
GET /getuidnb?https%3A//zz.connextra.com/sync/data/uid/3bc1d7fd2e/%24UID HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Sat, 04 Feb 2023 01:53:23 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: 78c9ef5a-bbbc-439f-986f-1ff7f187d74b
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1003.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
20bet.com/cdn-cgi/rum?
104.22.34.208204 No Content 0 B IP 104.22.34.208:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum? HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 51331
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_20291175FC544DC8B68537A119FB1815
Cookie: btag=668128_20291175FC544DC8B68537A119FB1815; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 01:53:23 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 793fc5b8bfa00a25-ARN
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
accounts.livechatinc.com/customer/token
23.36.79.16200 OK 138 B URL HTTP/2 accounts.livechatinc.com/customer/token
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text
Hash 1d100f7599a3ab4ab2fda2d4a2df8b1a
96bca05bfc14cbaed3f9ab65106798e9890305e5
5b35e9ed59dc61a5a17216d6055ca485dfd0a21a8968f01b61e1f56c4b29c1a0
POST /customer/token HTTP/1.1
Host: accounts.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 189
Origin: https://secure.livechatinc.com
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://secure.livechatinc.com
cache-control: no-cache, no-store, max-age=0, must-revalidate
content-type: application/json
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
content-length: 138
date: Sat, 04 Feb 2023 01:53:23 GMT
set-cookie: __lc_cid=6acc9e58-7792-4cdd-458f-2143da8a777e; Path=/v2/customer/token; Domain=accounts.livechatinc.com; Expires=Tue, 04 Feb 2025 01:53:23 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None
__lc_cst=26bce460197a10edf0fbe21d51c66c120a94f03e7ab5e66e02412f96e92895b5468baeac34eda26f69501fa33c8f372b6e0a69e9a6b011f7eeac74217882; Path=/v2/customer/token; Domain=accounts.livechatinc.com; Expires=Tue, 04 Feb 2025 01:53:23 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None
__lc_cid=6acc9e58-7792-4cdd-458f-2143da8a777e; Path=/customer/token; Domain=accounts.livechatinc.com; Expires=Tue, 04 Feb 2025 01:53:23 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None
__lc_cst=26bce460197a10edf0fbe21d51c66c120a94f03e7ab5e66e02412f96e92895b5468baeac34eda26f69501fa33c8f372b6e0a69e9a6b011f7eeac74217882; Path=/customer/token; Domain=accounts.livechatinc.com; Expires=Tue, 04 Feb 2025 01:53:23 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None
__oauth_redirect_detector=counter=1&t=1675475633&tag=d04bd1d0207bf0f40f275b3d6350733ee379b516; Path=/; Expires=Sat, 04 Feb 2023 01:53:53 GMT; HttpOnly; Secure; SameSite=None
X-Firefox-Spdy: h2
secure.adnxs.com/bounce?%2Fseg%3Fadd%3D30613014%26t%3D1
37.252.171.53200 OK 0 B URL HTTP/1.1 secure.adnxs.com/bounce?%2Fseg%3Fadd%3D30613014%26t%3D1
IP 37.252.171.53:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fseg%3Fadd%3D30613014%26t%3D1 HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20bet.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Sat, 04 Feb 2023 01:53:23 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: 9e89417c-29b8-4de2-a31e-c6272f46ac19
Set-Cookie: anj=dTM7k!M4/8CxrEQF']wIg2GVSjdDh#!]tbP6j2F-XstGt!@Dtu$x<4k; SameSite=None; Path=/; Max-Age=7776000; Expires=Fri, 05-May-2023 01:53:23 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1003.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
ocsp.pki.goog/s/gts1d4/sJUSxLAL5HA
142.250.74.163200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/sJUSxLAL5HA
IP 142.250.74.163:0
Hash fa144643ba11b69dc7c51b9c21a8ec97
f6b7cdd00f7441a981c4db1529e5a8e6fdb291f8
5157d36698363f4c74004749423a63916f378f350b4cf2a9da1b7c7fd50f118b
POST /s/gts1d4/sJUSxLAL5HA HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 01:53:23 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
track.customer.io/events/page.gif?name=https%3A%2F%2F20bet.com%2Fpe%3Fbtag%3D668128_20291175FC544DC8B68537A119FB1815&data%5Bbtag%5D=668128_20291175FC544DC8B68537A119FB1815&data%5Bwidth%5D=0&data%5Bheight%5D=0&c=&s=&site_id=0e8fbf60ebbf2b4f79c2×tamp=1675475636726
35.227.225.220200 OK 35 B URL HTTP/2 track.customer.io/events/page.gif?name=https%3A%2F%2F20bet.com%2Fpe%3Fbtag%3D668128_20291175FC544DC8B68537A119FB1815&data%5Bbtag%5D=668128_20291175FC544DC8B68537A119FB1815&data%5Bwidth%5D=0&data%5Bheight%5D=0&c=&s=&site_id=0e8fbf60ebbf2b4f79c2×tamp=1675475636726
IP 35.227.225.220:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /events/page.gif?name=https%3A%2F%2F20bet.com%2Fpe%3Fbtag%3D668128_20291175FC544DC8B68537A119FB1815&data%5Bbtag%5D=668128_20291175FC544DC8B68537A119FB1815&data%5Bwidth%5D=0&data%5Bheight%5D=0&c=&s=&site_id=0e8fbf60ebbf2b4f79c2×tamp=1675475636726 HTTP/1.1
Host: track.customer.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate, max-age=0
content-disposition: attachment
content-length: 35
content-transfer-encoding: binary
content-type: image/gif
date: Sat, 04 Feb 2023 01:53:23 GMT
status: 200 OK
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
api.livechatinc.com/v3.3/customer/action/check_goals?license_id=9054575
23.36.79.16200 OK 0 B URL HTTP/2 api.livechatinc.com/v3.3/customer/action/check_goals?license_id=9054575
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /v3.3/customer/action/check_goals?license_id=9054575 HTTP/1.1
Host: api.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type
Referer: https://secure.livechatinc.com/
Origin: https://secure.livechatinc.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Authorization,Content-Type
access-control-allow-origin: https://secure.livechatinc.com
vary: Accept-Encoding
content-length: 0
date: Sat, 04 Feb 2023 01:53:23 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/sJUSxLAL5HA
142.250.74.163200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/sJUSxLAL5HA
IP 142.250.74.163:0
Hash fa144643ba11b69dc7c51b9c21a8ec97
f6b7cdd00f7441a981c4db1529e5a8e6fdb291f8
5157d36698363f4c74004749423a63916f378f350b4cf2a9da1b7c7fd50f118b
POST /s/gts1d4/sJUSxLAL5HA HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 01:53:23 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
20bet.com/cdn-cgi/rum?
104.22.34.208204 No Content 0 B IP 104.22.34.208:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum? HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 464
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_20291175FC544DC8B68537A119FB1815
Cookie: btag=668128_20291175FC544DC8B68537A119FB1815; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 01:53:23 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 793fc5bb68c30a25-ARN
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
20bet.com/app/main.8912bbb1732c40fd.esm.js
104.22.34.208200 OK 0 B URL HTTP/2 20bet.com/app/main.8912bbb1732c40fd.esm.js
IP 104.22.34.208:0
GET /app/main.8912bbb1732c40fd.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_20291175FC544DC8B68537A119FB1815
Cookie: btag=668128_20291175FC544DC8B68537A119FB1815
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:19 GMT
content-type: application/javascript
cf-ray: 793fc59cbb740a25-ARN
etag: W/"63dcff74-16d44e"
last-modified: Fri, 03 Feb 2023 12:35:00 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
blancoshrimp.com/SB/PE/
104.21.73.164200 OK 0 B IP 104.21.73.164:0
Analyzer Verdict Alert fortinet Malware
GET /SB/PE/ HTTP/1.1
Host: blancoshrimp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:14 GMT
content-type: text/html
last-modified: Fri, 22 Apr 2022 08:53:29 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Z1Cuj5NfI%2F0TOENA26m59ciZSnP4j8fcpgjhiIV05zYZKGOj78R0eytbL4Ed%2BnasPcnBW77y%2BMdf5IXPNfM%2BQPi5uoeTIKt%2BUQulRpz29LF%2BkRLEk7iQVXNqADDqGAyiI0wp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793fc583d8f3b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
gml-grp.com/C.ashx?btag=a_13943b_1919c_&affid=4168&siteid=13943&adid=1919&c=PU_PE_PA_SB_DT_VOLD_BETANO&AutoR=1
188.114.96.1302 Found 0 B URL HTTP/2 gml-grp.com/C.ashx?btag=a_13943b_1919c_&affid=4168&siteid=13943&adid=1919&c=PU_PE_PA_SB_DT_VOLD_BETANO&AutoR=1
IP 188.114.96.1:0
GET /C.ashx?btag=a_13943b_1919c_&affid=4168&siteid=13943&adid=1919&c=PU_PE_PA_SB_DT_VOLD_BETANO&AutoR=1 HTTP/1.1
Host: gml-grp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: CEK=a
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sat, 04 Feb 2023 01:53:15 GMT
content-type: text/html; charset=utf-8
location: https://promos.betano.com/sportsbook-pe/index.html?btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO&utm_medium=4168&utm_source=3&siteid=13943
cache-control: private
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
x-aspnet-version: 4.0.30319
set-cookie: XYZ=3&1&148&&&&0&1&&4fc04858-9895-4938-9dbd-a430d7122f97&&a_13943b_1919&; expires=Fri, 05-May-2023 01:53:15 GMT; path=/; SameSite=None; Secure
A_1919=a=1919&r=0&fv=0&lv=0&vc=0&fc=20230204&lc=20230204015315&cc=1; expires=Fri, 05-May-2023 01:53:15 GMT; path=/; SameSite=None; Secure
PM_32=c=PU_PE_PA_SB_DT_VOLD_BETANO&s=13943&ad=1919&md=0&pm=32&d=20230204015315&ip=2728320674&r=0&ref=&RedirectParams=btag%3da_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO%26utm_medium%3d4168%26utm_source%3d3%26siteid%3d13943; expires=Fri, 05-May-2023 01:53:15 GMT; path=/; SameSite=None; Secure
CEK=a; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; SameSite=None; Secure
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AMUsbDBZisomeaKUxS7ymeYlgLV7ngOHXRAjc1WEHze2mcaxgm2pKcP9udi2CTqsIopxC%2FHMMCXEW6%2Fgln4qILu2WPHV4h1w0Ox9E9z0XRtR49ktxoXDRUPo1I7fGg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793fc58a6b03b524-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
betwarrior.bet/es/sports?register&btag=655952_E5959276B85C46628013EA0CC44CB82C
104.18.21.114301 Moved Permanently 0 B URL HTTP/2 betwarrior.bet/es/sports?register&btag=655952_E5959276B85C46628013EA0CC44CB82C
IP 104.18.21.114:0
GET /es/sports?register&btag=655952_E5959276B85C46628013EA0CC44CB82C HTTP/1.1
Host: betwarrior.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a9279%2c%22BID%22%3a3038%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675475596106)%5c%2f%22%2c%22CookieTag%22%3a%2230389279451240919C202324153%22%7d%5d
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Sat, 04 Feb 2023 01:53:19 GMT
content-type: text/html; charset=utf-8
location: /region_not_supported?register&btag=655952_E5959276B85C46628013EA0CC44CB82C
cf-ray: 793fc58d9e4cb4f9-OSL
cache-control: no-cache, private, no-store, must-revalidate, max-stale=0, post-check=0, pre-check=0
vary: Accept, Accept-Encoding
cf-cache-status: DYNAMIC
x-powered-by: Express
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s2.adform.net/banners/scripts/st/trackpoint-async.js
37.157.2.248200 OK 0 B URL HTTP/2 s2.adform.net/banners/scripts/st/trackpoint-async.js
IP 37.157.2.248:0
GET /banners/scripts/st/trackpoint-async.js HTTP/1.1
Host: s2.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promos.betano.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 01:53:18 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 29 Nov 2022 10:23:25 GMT
x-rgw-object-type: Normal
etag: W/"83eb5fafaa212c785f7393188ff817aa"
x-amz-request-id: tx0000062cf0e7d8446165f-006385e0d3-329354d9-default
access-control-allow-origin: *
cache-control: public, max-age=604800
x-cache-status: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
d1wfowvne3d4em.cloudfront.net/flags/es.svg
54.230.245.109200 OK 0 B URL HTTP/2 d1wfowvne3d4em.cloudfront.net/flags/es.svg
IP 54.230.245.109:0
GET /flags/es.svg HTTP/1.1
Host: d1wfowvne3d4em.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Thu, 05 Jan 2023 15:46:00 GMT
server: AmazonS3
content-encoding: br
date: Fri, 03 Feb 2023 21:07:08 GMT
etag: W/"50623e6a761b392b5381ce35e8a77f99"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: FZCK73Cnj8yrwsYeW9AlkOyPJJayNnKeYFNB3rJMgBZu8y_BlQ7-Xw==
age: 17175
X-Firefox-Spdy: h2
record.betsson.com/_artCMRK1bjaiQ99F8qzC3mNd7ZgqdRLk/13/
104.18.190.136301 Moved Permanently 0 B URL HTTP/2 record.betsson.com/_artCMRK1bjaiQ99F8qzC3mNd7ZgqdRLk/13/
IP 104.18.190.136:0
GET /_artCMRK1bjaiQ99F8qzC3mNd7ZgqdRLk/13/ HTTP/1.1
Host: record.betsson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Sat, 04 Feb 2023 01:53:16 GMT
content-type: text/html; charset=utf-8
location: https://in.betsson.com/pe-bono-bienvenida-21/pe/?from=JkxvchK7z8MUnUCnN-a7RGNd7ZgqdRLk-AP0846390900&affcode=AP0846390900&utm_medium=MA_Affiliates&utm_source=10687405
cache-control: private, no-cache, must-revalidate, Cache-Control: no-cache
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *
pragma: no-cache
x-powered-by: ZBan
cf-cache-status: BYPASS
set-cookie: VID1=KiwzQFAtUyxQLTMwUCxgYGAKYAo%3D; expires=Sun, 04-Feb-2024 01:53:16 GMT; Max-Age=31536000; path=/; secure; HttpOnly; SameSite=None
ZBan=JkxvchK7z8MUnUCnN-a7RGNd7ZgqdRLk; expires=Sun, 04-Feb-2024 01:53:16 GMT; Max-Age=31536000; path=/; domain=.betsson.com; secure; HttpOnly; SameSite=None
PartnerId=JkxvchK7z8MUnUCnN-a7RGNd7ZgqdRLk-Z2lnX2NwaF9wb3A%3D; expires=Mon, 06-Mar-2023 01:53:16 GMT; Max-Age=2592000; path=/; SameSite=Lax
marketingproduct=Sportsbook; expires=Mon, 06-Mar-2023 01:53:16 GMT; Max-Age=2592000; path=/; domain=.betsson.com; SameSite=Lax
vary: Accept-Encoding
server: cloudflare
cf-ray: 793fc58aef9ffab4-OSL
X-Firefox-Spdy: h2
dsp-ap.eskimi.com/v2/gtr?id=22441&url=https%3A%2F%2F20bet.com%2Fpe%3Fbtag%3D668128_20291175FC544DC8B68537A119FB1815&t=1675475635582
35.186.201.99200 OK 0 B URL HTTP/2 dsp-ap.eskimi.com/v2/gtr?id=22441&url=https%3A%2F%2F20bet.com%2Fpe%3Fbtag%3D668128_20291175FC544DC8B68537A119FB1815&t=1675475635582
IP 35.186.201.99:0
GET /v2/gtr?id=22441&url=https%3A%2F%2F20bet.com%2Fpe%3Fbtag%3D668128_20291175FC544DC8B68537A119FB1815&t=1675475635582 HTTP/1.1
Host: dsp-ap.eskimi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
set-cookie: __eConsent=1; Expires=Mon, 06 Mar 2023 01:53:22 GMT; Max-Age=2592000; Domain=.eskimi.com; Path=/; Secure; SameSite=None
__eDId=71378b36-7f97-4775-8369-b716d5264c5c; Expires=Mon, 06 Mar 2023 01:53:22 GMT; Max-Age=2592000; Domain=.eskimi.com; Path=/; Secure; SameSite=None
__eP=1; Expires=Sat, 18 Feb 2023 01:53:22 GMT; Max-Age=1209600; Domain=.eskimi.com; Path=/; Secure; SameSite=None
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
cache-control: no-cache
date: Sat, 04 Feb 2023 01:53:21 GMT
content-type: application/json
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
platform.20bet.com/api/tournaments/bet-tournament/get-active?fields%5B%5D=tournaments&fields%5B%5D=leaderboards&fields%5B%5D=authorizedUsers
104.22.34.208200 OK 0 B URL HTTP/2 platform.20bet.com/api/tournaments/bet-tournament/get-active?fields%5B%5D=tournaments&fields%5B%5D=leaderboards&fields%5B%5D=authorizedUsers
IP 104.22.34.208:0
GET /api/tournaments/bet-tournament/get-active?fields%5B%5D=tournaments&fields%5B%5D=leaderboards&fields%5B%5D=authorizedUsers HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:20 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fc5a48ea10a25-ARN
content-encoding: br
X-Firefox-Spdy: h2
tag.growthbuddy.app/tag.js?id=DV-02355017850611493202
54.74.8.139200 OK 0 B URL HTTP/2 tag.growthbuddy.app/tag.js?id=DV-02355017850611493202
IP 54.74.8.139:0
GET /tag.js?id=DV-02355017850611493202 HTTP/1.1
Host: tag.growthbuddy.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:19 GMT
content-type: application/javascript; charset=utf-8
set-cookie: INGRESSCOOKIE=1675475600.246.104.869085|5f2e1b57d78510d04b0cf9036879032b; Path=/; Secure; HttpOnly
vary: Accept-Encoding
cache-control: public, max-age=7200
x-content-type-options: nosniff
etag: "1382-4YuDa3owVc9r2LUx5CM7dj7oB9U"
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
track.adform.net/Serving/TrackPoint/?pm=2776363&ADFPageName=pe.betano%7CSportsbook&ADFdivider=%7C&ord=454442598827&ADFtpmode=2&loc=https%3A%2F%2Fpromos.betano.com%2Fsportsbook-pe%2Findex.html%3Fbtag%3Da_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO%26utm_medium%3D4168%26utm_source%3D3%26siteid%3D13943&Set1=en-US%7Cen-US%7C1280x1024%7C24
37.157.6.233302 Found 0 B URL HTTP/2 track.adform.net/Serving/TrackPoint/?pm=2776363&ADFPageName=pe.betano%7CSportsbook&ADFdivider=%7C&ord=454442598827&ADFtpmode=2&loc=https%3A%2F%2Fpromos.betano.com%2Fsportsbook-pe%2Findex.html%3Fbtag%3Da_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO%26utm_medium%3D4168%26utm_source%3D3%26siteid%3D13943&Set1=en-US%7Cen-US%7C1280x1024%7C24
IP 37.157.6.233:0
GET /Serving/TrackPoint/?pm=2776363&ADFPageName=pe.betano%7CSportsbook&ADFdivider=%7C&ord=454442598827&ADFtpmode=2&loc=https%3A%2F%2Fpromos.betano.com%2Fsportsbook-pe%2Findex.html%3Fbtag%3Da_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO%26utm_medium%3D4168%26utm_source%3D3%26siteid%3D13943&Set1=en-US%7Cen-US%7C1280x1024%7C24 HTTP/1.1
Host: track.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promos.betano.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Sat, 04 Feb 2023 01:53:18 GMT
content-type: text/html; charset=utf-8
location: https://track.adform.net/Serving/TrackPoint/?CC=1&pm=2776363&ADFPageName=pe.betano%7CSportsbook&ADFdivider=%7C&ord=454442598827&ADFtpmode=2&loc=https%3A%2F%2Fpromos.betano.com%2Fsportsbook-pe%2Findex.html%3Fbtag%3Da_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO%26utm_medium%3D4168%26utm_source%3D3%26siteid%3D13943&Set1=en-US%7Cen-US%7C1280x1024%7C24
cache-control: no-cache, no-store, must-revalidate, no-transform
pragma: no-cache
expires: -1
access-control-allow-origin: *
set-cookie: C=1; domain=adform.net; expires=Sat, 04-Mar-2023 01:53:18 GMT; path=/
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
20bet.com/app/9114.2d954ca350db845b.esm.js
104.22.34.208200 OK 0 B URL HTTP/2 20bet.com/app/9114.2d954ca350db845b.esm.js
IP 104.22.34.208:0
GET /app/9114.2d954ca350db845b.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_20291175FC544DC8B68537A119FB1815
Cookie: btag=668128_20291175FC544DC8B68537A119FB1815; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:20 GMT
content-type: application/javascript
cf-ray: 793fc5a71fd40a25-ARN
etag: W/"63dcff68-4a8"
last-modified: Fri, 03 Feb 2023 12:34:48 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/main.ec1fae44db88d4f7.css
104.22.34.208200 OK 0 B URL HTTP/2 20bet.com/app/main.ec1fae44db88d4f7.css
IP 104.22.34.208:0
GET /app/main.ec1fae44db88d4f7.css HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_20291175FC544DC8B68537A119FB1815
Cookie: btag=668128_20291175FC544DC8B68537A119FB1815
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:18 GMT
content-type: text/css
cf-ray: 793fc59a0a650a25-ARN
etag: W/"63dcff85-5e6fb"
last-modified: Fri, 03 Feb 2023 12:35:17 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/6629.5e3ae79726e54510.esm.js
104.22.34.208200 OK 0 B URL HTTP/2 20bet.com/app/6629.5e3ae79726e54510.esm.js
IP 104.22.34.208:0
GET /app/6629.5e3ae79726e54510.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_20291175FC544DC8B68537A119FB1815
Cookie: btag=668128_20291175FC544DC8B68537A119FB1815; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:19 GMT
content-type: application/javascript
cf-ray: 793fc5a27dcc0a25-ARN
etag: W/"63dcff85-860e"
last-modified: Fri, 03 Feb 2023 12:35:17 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20media.world/pe?btag=668128_20291175FC544DC8B68537A119FB1815
104.26.3.3302 Found 0 B URL HTTP/2 20media.world/pe?btag=668128_20291175FC544DC8B68537A119FB1815
IP 104.26.3.3:0
GET /pe?btag=668128_20291175FC544DC8B68537A119FB1815 HTTP/1.1
Host: 20media.world
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 04 Feb 2023 01:53:16 GMT
content-type: text/html; charset=UTF-8
location: https://20bet.com/pe?btag=668128_20291175FC544DC8B68537A119FB1815
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YtPXxFltFvTRf0WtpP%2FSN0yGMdc4JJNSnrQezZf1MVVUEYdcwFnUfiVH79NsjX6D6eh6zfUuhGYi2IrQUqepeFrGDtSj5fdum%2BlDEVFvezkZplQaxMm5dqZw6K8gWnQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793fc58d699bb4ed-OSL
X-Firefox-Spdy: h2
geolocation.onetrust.com/cookieconsentpub/v1/geo/location
104.18.27.85200 OK 0 B URL HTTP/2 geolocation.onetrust.com/cookieconsentpub/v1/geo/location
IP 104.18.27.85:0
GET /cookieconsentpub/v1/geo/location HTTP/1.1
Host: geolocation.onetrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://in.betsson.com
Connection: keep-alive
Referer: https://in.betsson.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:16 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, OPTIONS
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 793fc5910b000b3d-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
blancoshrimp.com/SB/PE
104.21.73.164301 Moved Permanently 0 B IP 104.21.73.164:0
Analyzer Verdict Alert fortinet Malware
GET /SB/PE HTTP/1.1
Host: blancoshrimp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
date: Sat, 04 Feb 2023 01:53:14 GMT
content-type: text/html
location: https://blancoshrimp.com/SB/PE/
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=R9%2BXC52wIyy0tcx2DjbKJkmYi5DZOkM3%2FG1oMw3VWSYmuCrj9fZ6xWmByQIUtV2GHYQkTTK5dYb3CQiaG19RI%2F8d4pji46BkPdI%2BXBPt8kD2gWLuBmuw9DnVNJBNfzXCKCnG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793fc58328c8b52d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
20bet.com/api/translation/get?locale=es_PE
104.22.34.208200 OK 0 B URL HTTP/2 20bet.com/api/translation/get?locale=es_PE
IP 104.22.34.208:0
GET /api/translation/get?locale=es_PE HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_20291175FC544DC8B68537A119FB1815
Cookie: btag=668128_20291175FC544DC8B68537A119FB1815
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:18 GMT
content-type: application/json
cf-ray: 793fc59bbb160a25-ARN
cache-control: no-cache, private
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers: Content-Length,Content-Range
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
megapari.com/registration/?tag=d_2032927m_25437c_
83.147.204.197308 Permanent Redirect 0 B URL HTTP/2 megapari.com/registration/?tag=d_2032927m_25437c_
IP 83.147.204.197:0
ASN #202492 Silverhill Group Holding Ltd
GET /registration/?tag=d_2032927m_25437c_ HTTP/1.1
Host: megapari.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 308 Permanent Redirect
server: nginx
date: Sat, 04 Feb 2023 01:53:16 GMT
content-type: text/html; charset=utf-8
location: https://megapari.com/registration?tag=d_2032927m_25437c_
x-frame-options: SAMEORIGIN
set-cookie: SESSION=85844e36f2648a565c2679421dc6a444; path=/; secure; HttpOnly; SameSite=Lax
ua=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
_glhf=1675493372; expires=Sat, 04-Feb-2023 02:53:16 GMT; Max-Age=3600; path=/
dnb=1; path=/; httponly; samesite=lax
auid=U5PMxWPduox13hzFA6geAg==; path=/; secure; httponly; samesite=lax
x-reason: 1079,1021
cache-control: no-cache, private
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.39.0/assets/otCommonStyles.css
104.16.149.64200 OK 0 B URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.39.0/assets/otCommonStyles.css
IP 104.16.149.64:0
GET /scripttemplates/6.39.0/assets/otCommonStyles.css HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://promotions.betsafe.com/
Origin: https://promotions.betsafe.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:17 GMT
content-type: text/css
content-md5: B55i3ZY9miZIaUrwjufy0w==
last-modified: Fri, 26 Aug 2022 16:31:09 GMT
x-ms-request-id: 4b5446dd-b01e-0162-6b84-b9d96b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 42580
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 793fc597384cb4fa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
promos.betano.com/cdn-cgi/challenge-platform/h/b/cv/result/793fc58d2b8ab523
104.17.85.89200 OK 0 B URL HTTP/2 promos.betano.com/cdn-cgi/challenge-platform/h/b/cv/result/793fc58d2b8ab523
IP 104.17.85.89:0
POST /cdn-cgi/challenge-platform/h/b/cv/result/793fc58d2b8ab523 HTTP/1.1
Host: promos.betano.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 486
Origin: https://promos.betano.com
Connection: keep-alive
Referer: https://promos.betano.com/sportsbook-pe/index.html?btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO&utm_medium=4168&utm_source=3&siteid=13943
Cookie: btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO; __cf_bm=7S4.AxFW6XoOOlxbHaRsRFmCwauZpvz_NdAE0yD2FM0-1675475596-0-ASFXD9yo5MBhW/GyH69qyGudz+plrzCgkw4fum5+wqvN1hVhjLrsfMYw4Dw/bCxIxnYG3TDBc302MTTFDqlfBIs=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:18 GMT
content-type: text/plain; charset=UTF-8
set-cookie: __cf_bm=snUzeaLLFjdSyS4ZVGslKbtoTv2gDczEkrFX6_f5PEY-1675475598-0-AabZgvWLHnRzqqbkggpIdUYlJ+P4HJemvUmo6Ih72lIFCkQFAhsZZvbCvW3jEKvcy/jQ9O+YcOWe469e8y2Juyhcz/Wz+CnMor3HmZAwMZTt3FpzPPcJYE1Zt6aPmwG9hmwZUpM5zXfu3v/ONY2RFR96WvUUoj+KJTth26/lSvky8ZgWhZ6iAauzliIbOLZP5w==; path=/; expires=Sat, 04-Feb-23 02:23:18 GMT; domain=.betano.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 793fc59778e3b523-OSL
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/data/get-countries
104.22.34.208200 OK 0 B URL HTTP/2 platform.20bet.com/api/data/get-countries
IP 104.22.34.208:0
GET /api/data/get-countries HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=88c3ad74-af38-41d7-9d20-dfc916297f1c.1675475633.1.1675475633.1675475633.d67bf4f3-41c5-4c81-b0ae-398f38fed7d4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:20 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fc5a48e9c0a25-ARN
content-encoding: br
X-Firefox-Spdy: h2
dsp-media.eskimi.com/assets/js/e/gtr.min.js?_=0.0.0.3
194.242.11.186200 OK 0 B URL HTTP/2 dsp-media.eskimi.com/assets/js/e/gtr.min.js?_=0.0.0.3
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /assets/js/e/gtr.min.js?_=0.0.0.3 HTTP/1.1
Host: dsp-media.eskimi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 01:53:22 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 692289
cdn-uid: ce2848ff-13c5-49e5-873d-af24ad423612
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31536000
etag: W/"621cbfb5-12fb"
expires: Tue, 28 Nov 2023 12:07:50 GMT
last-modified: Mon, 28 Feb 2022 12:27:33 GMT
x-content-type-options: nosniff
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/28/2022 12:07:50
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 33f00bf08c54b2eb498a0d66a587247b
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2