blancoshrimp.com/SB/PE
301 Moved Permanently 162 B IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert fortinet Malware
GET /SB/PE HTTP/1.1
Host: blancoshrimp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sun, 05 Feb 2023 07:06:48 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://blancoshrimp.com/SB/PE
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wHup4reODN0qa0itbj4x8TDhkpc%2FOpHF4QI82l98PIch9VvLM0PrfP87v4udY2ijZ5mZcSJdNVCK%2Bp1jQFm%2FWrH7HWBsmQt9UDqpuICO%2B42%2BMhikV0wAO4%2FvEpvryXNcjmxq"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7949ce371d7f0afe-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 81713f952b51a865ad9764cde68e3fdb
278c3a9c4bb2a0ffb7375f90d89a1ba6e90a766a
c2eb0d8a24ecb51af28f1c71db4b9a95c568dcf6c94b41ee8c78787a4ebebcef
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C2EB0D8A24ECB51AF28F1C71DB4B9A95C568DCF6C94B41EE8C78787A4EBEBCEF"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5474
Expires: Sun, 05 Feb 2023 08:38:03 GMT
Date: Sun, 05 Feb 2023 07:06:49 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c21ba65e44ac95470c314e068e49a9eb
17a13b13738993d889d4afa3d848dc63bf6eba64
9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66"
Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8930
Expires: Sun, 05 Feb 2023 09:35:39 GMT
Date: Sun, 05 Feb 2023 07:06:49 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Retry-After, Content-Length, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 05 Feb 2023 06:33:54 GMT
content-type: application/json
age: 1975
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash fb7b6b46e708ad73eaaa3c21e74569ae
950663c025acad81556af5aa3022ecc9d55097fe
763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16613
Expires: Sun, 05 Feb 2023 11:43:42 GMT
Date: Sun, 05 Feb 2023 07:06:49 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: tjImBqXibYXb5DhfvMAEs6OWq3qFuNpkqxeUok8F7grOvUTKpcLBms7mJUGtdOJjIYV4ApdWQc0=
x-amz-request-id: K74NG42HG407SS96
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 05 Feb 2023 06:53:10 GMT
age: 819
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 07:06:49 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash 069589713a49522908d88291501e98f1
956c4f05a398c1b7a4bab3728c1e46f51deeda9e
2947ed5ae7e533b096f05caf73ae0f9d8f2e208ba1e79b2d5151fdab372ed541
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=167386
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:49 GMT
Etag: "63df4063-117"
Expires: Tue, 07 Feb 2023 05:36:35 GMT
Last-Modified: Sun, 05 Feb 2023 05:36:35 GMT
Server: nginx
Content-Length: 279
ocsp.digicert.com/
200 OK 279 B IP
Hash 069589713a49522908d88291501e98f1
956c4f05a398c1b7a4bab3728c1e46f51deeda9e
2947ed5ae7e533b096f05caf73ae0f9d8f2e208ba1e79b2d5151fdab372ed541
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=167386
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:49 GMT
Etag: "63df4063-117"
Expires: Tue, 07 Feb 2023 05:36:35 GMT
Last-Modified: Sun, 05 Feb 2023 05:36:35 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 279
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 05 Feb 2023 06:07:20 GMT
age: 3569
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
code.jquery.com/jquery-3.6.0.slim.min.js
200 OK 25 kB URL HTTP/2 code.jquery.com/jquery-3.6.0.slim.min.js
IP
File type ASCII text, with very long lines (65241)
Hash ae3ffbb71d763d2a1ca869e4866b23ae
22723a163afd77efe96e92eaca712583612b3e73
29dda737fcaf96a8a4ea6d0dd66c6e379a4c98cf3374647388650ee6e48a462c
GET /jquery-3.6.0.slim.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://blancoshrimp.com
Connection: keep-alive
Referer: https://blancoshrimp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:49 GMT
content-encoding: gzip
content-length: 24587
content-type: application/javascript; charset=utf-8
last-modified: Wed, 16 Feb 2022 10:50:39 GMT
accept-ranges: bytes
server: nginx
etag: W/"620cd6ff-11ab4"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1675580809.dop205.sk1.t,1675580809.cds221.sk1.hn,1675580809.cds258.sk1.c
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5877
Expires: Sun, 05 Feb 2023 08:44:46 GMT
Date: Sun, 05 Feb 2023 07:06:49 GMT
Connection: keep-alive
www.securely-send.com/storage/pu_cd_pe_pa_aa_vold.js
200 OK 44 kB URL HTTP/2 www.securely-send.com/storage/pu_cd_pe_pa_aa_vold.js
IP
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (43765), with no line terminators
Hash 0ab2caa6305d4fadf461e179a16c4f81
fb888a55aef46fa62ef67adff23f34142a989037
362bbba94f4366363ac1a4009488b17b2b28243ba28d39734b5d5669cc496ae5
Analyzer Verdict Alert fortinet Phishing
GET /storage/pu_cd_pe_pa_aa_vold.js HTTP/1.1
Host: www.securely-send.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blancoshrimp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 05 Feb 2023 07:06:49 GMT
content-type: application/javascript; charset=utf-8
content-length: 43765
last-modified: Wed, 01 Feb 2023 10:07:58 GMT
etag: "63da39fe-aaf5"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Onoh1z8N4TN+RM5sh5S6bg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: MBkkfBjp3lyCs9jyWzAkuwi8XY4=
ocsp.digicert.com/
200 OK 279 B IP
Hash 605ef4084322c904d466e4a02d58ef9a
e7aaef39750b0aa57061d8051afb039a0cdf8c5c
29d37bf7a988c376262834a523323927466878eab07217f146b507bf7c0edbe4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6503
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:50 GMT
Last-Modified: Sun, 05 Feb 2023 05:18:27 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
200 OK 278 B IP
Hash 98c87b842ee91b85c85deaa4d7134d04
f8d9bceb55d99677b7a5e238c10b463f5706908b
38adb3ccd65ab4ba59b976df9c373dbe2aac464d827052144a51a818975837d2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 121
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:50 GMT
Last-Modified: Sun, 05 Feb 2023 07:04:49 GMT
Server: ECS (amb/6BBA)
X-Cache: HIT
Content-Length: 278
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 98be7fe21d059e46146a43d20c4eea92
1ec58129fea75085588be7b8baec05b0874b5274
7bb2eb5ffcd88a3b6ba7b210bdbcd4469134c9708f06befb6c616beebf8dae46
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.bet365.com/olp/open-account?affiliate=365_01155434
200 OK 4.6 kB URL HTTP/1.1 www.bet365.com/olp/open-account?affiliate=365_01155434
IP
ASN #209242 Cloudflare London, LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 777df542767364d74b4942ef08faf806
7dab96586f546ae9dff792b38824a9cf2bfafa9b
5b079571d86311c614c35128f3fa4446cfae0e63aba5ed43897f80690d72d5db
GET /olp/open-account?affiliate=365_01155434 HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 07:06:50 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ServerDetails: <!--2P2 - 86-->
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=7JE7Dbjo2oz45V6Jzgo.G6PvWJNRc1k5ruzCiYq7Muw-1675580810-0-Aaqm7/d37vNzFq1buhG+mQT9t+G/sO30AeUW1N8nvrKGGN8UVpIbCE/sDkghc0QR+l9+xclsFnCe+6GFCq9z5+w=; path=/; expires=Sun, 05-Feb-23 07:36:50 GMT; domain=.bet365.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 7949ce402c41b4e8-OSL
status.thawte.com/
200 OK 471 B IP
Hash 8e92f84de8afc40b2129faa7b5fb04b6
6be984e78f0c32fa812296bdc5e93f4f5b2558f8
ae3939ecd5c3758d65cf4a780459b594328a21404030640e9a83d3c7ecb2a4a5
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4568
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:50 GMT
Last-Modified: Sun, 05 Feb 2023 05:50:42 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
www.bet365.com/olpc/nn/143/0/1/open-account
200 OK 13 kB URL HTTP/1.1 www.bet365.com/olpc/nn/143/0/1/open-account
IP
ASN #209242 Cloudflare London, LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2285), with CRLF line terminators
Hash 933d4c74474e8497252ce83a41518c0c
63b281258cb12fe5c4268ba3a278197918bdea52
a6fc4cfc9445618e71be593a3c48398bb66f327e5b336e6188a0452879b95da5
GET /olpc/nn/143/0/1/open-account HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/olp/open-account?affiliate=365_01155434
Cookie: __cf_bm=7JE7Dbjo2oz45V6Jzgo.G6PvWJNRc1k5ruzCiYq7Muw-1675580810-0-Aaqm7/d37vNzFq1buhG+mQT9t+G/sO30AeUW1N8nvrKGGN8UVpIbCE/sDkghc0QR+l9+xclsFnCe+6GFCq9z5+w=
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 07:06:50 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 12837
Connection: keep-alive
Cache-Control: private
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Security-Policy: default-src 'self';script-src 'self' 'unsafe-inline' https://www.googletagmanager.com;frame-src 'self' http://members.bet365.com 'nonce-ReO2rXVcypXkUD0RRvIrBtCtwAw27ZqEE3pmnUDjkE8=';style-src 'self' 'unsafe-inline';img-src 'self' data: https://content001.bet365.com/ https://content001.bet365.com/SportsContent/ 'nonce-ReO2rXVcypXkUD0RRvIrBtCtwAw27ZqEE3pmnUDjkE8=';connect-src 'self' https://www.google-analytics.com http://members.bet365.com https://extra.bet365.com 'nonce-ReO2rXVcypXkUD0RRvIrBtCtwAw27ZqEE3pmnUDjkE8=';font-src 'self' data: 'nonce-ReO2rXVcypXkUD0RRvIrBtCtwAw27ZqEE3pmnUDjkE8=';
Last-Modified: Sun, 05 Feb 2023 01:05:17 GMT
CF-Cache-Status: HIT
Age: 7193
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 7949ce409c91b4e8-OSL
www.bet365.com/olpc/Content/Fonts/FTN45__W.woff2
200 OK 46 kB URL HTTP/1.1 www.bet365.com/olpc/Content/Fonts/FTN45__W.woff2
IP
ASN #209242 Cloudflare London, LLC
File type Web Open Font Format (Version 2), TrueType, length 45892, version 1.590\012- data
Hash e3596a29429736364ebfef73786a55ab
7bd9b6b18b0985c080d520610c0ab74a128d71bd
6e28311fc68644a88a32df782c7371991894bc6a6a81f8ff70f971b4470c3751
GET /olpc/Content/Fonts/FTN45__W.woff2 HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/olpc/nn/143/0/1/open-account
Cookie: __cf_bm=7JE7Dbjo2oz45V6Jzgo.G6PvWJNRc1k5ruzCiYq7Muw-1675580810-0-Aaqm7/d37vNzFq1buhG+mQT9t+G/sO30AeUW1N8nvrKGGN8UVpIbCE/sDkghc0QR+l9+xclsFnCe+6GFCq9z5+w=
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 07:06:50 GMT
Content-Length: 45892
Connection: keep-alive
Last-Modified: Sun, 05 Feb 2023 04:52:41 GMT
CF-Cache-Status: HIT
Age: 3683
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7949ce40dcacb4e8-OSL
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 98be7fe21d059e46146a43d20c4eea92
1ec58129fea75085588be7b8baec05b0874b5274
7bb2eb5ffcd88a3b6ba7b210bdbcd4469134c9708f06befb6c616beebf8dae46
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ic.aff-handler.com/C/45577?sr=1853546
302 Found 455 B URL HTTP/1.1 ic.aff-handler.com/C/45577?sr=1853546
IP
ASN #201071 Virtual Internet Services Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 7560873447e396debe5d1d6c149f71d6
375ff551832bfccb520886cd960be79772025637
b892865a8f2ea97eecd743ed8768d05af5aa6743b1ded9e9076415d0d1131a10
GET /C/45577?sr=1853546 HTTP/1.1
Host: ic.aff-handler.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Pragma: no-cache
Content-Type: text/html; charset=utf-8
Expires: 0
Location: https://es.888casino.com/exclusive-mob/spinson.htm?sr=1853546&mm_id=45577&utm_source=aff&utm_medium=casap&utm_content=100138643&utm_campaign=100138643_1853546_nodescription
Server:
X-AspNetMvc-Version: 4.0
Set-Cookie: uffiliate_click_45577_1853546_=uffiliate_click_45577_1853546_; expires=Tue, 07-Mar-2023 07:06:50 GMT; path=/; SameSite=None; Secure
srv: 1231321
Date: Sun, 05 Feb 2023 07:06:49 GMT
Content-Length: 309
ocsp.digicert.com/
200 OK 280 B IP
Hash 1b3b37d27757793509e6814f89589d6f
22042572d01b9ac988658c17a8bab52919d52565
61d8dfe37d56387215f68b428d8c3bba5d78ae8158bf2f5e1b2cc8a73d142677
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:50 GMT
Etag: "63dddcb4-117"
Server: ECS (amb/6BBA)
Content-Length: 280
gml-grp.com/C.ashx?btag=a_13943b_1919c_&affid=4168&siteid=13943&adid=1919&c=PU_PE_PA_SB_DT_VOLD_BETANO
302 Found 528 B URL HTTP/2 gml-grp.com/C.ashx?btag=a_13943b_1919c_&affid=4168&siteid=13943&adid=1919&c=PU_PE_PA_SB_DT_VOLD_BETANO
IP
Hash 7bd1e156d9a2571ef79612f6a9f85d62
d03f8ca3dc3c12c520e3a3741d5654cd668c8c0f
cbec6e23a8e05d3a294707c3c0c828674cf25d5e61b308373dae2f4ed06f5311
GET /C.ashx?btag=a_13943b_1919c_&affid=4168&siteid=13943&adid=1919&c=PU_PE_PA_SB_DT_VOLD_BETANO HTTP/1.1
Host: gml-grp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 05 Feb 2023 07:06:50 GMT
content-type: text/html; charset=utf-8
cache-control: private
location: //gml-grp.com/C.ashx?btag=a_13943b_1919c_&affid=4168&siteid=13943&adid=1919&c=PU_PE_PA_SB_DT_VOLD_BETANO&AutoR=1
x-aspnet-version: 4.0.30319
set-cookie: CEK=a; expires=Sat, 06-May-2023 07:06:50 GMT; path=/; SameSite=None; Secure
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=H36c2R5lZw%2FdSkziH6ZkboVQrHGcNn60xDWAWbG3Lh7mOVJkeA5fc3vvkPxZWRCBqXx2LhGJrQ%2Bk%2FHxpaWFbvGcIJzDKh39o3Pn2uL0Kjm3pIaagKqujmK3AY%2FQi6g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7949ce40296d1c12-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.bet365.com/olpc/olpc-styles.css?v=ADHdDai99bBc7EkexwsG2Dy6MZFuXii0weu-ag9vIh01
200 OK 125 kB URL HTTP/1.1 www.bet365.com/olpc/olpc-styles.css?v=ADHdDai99bBc7EkexwsG2Dy6MZFuXii0weu-ag9vIh01
IP
ASN #209242 Cloudflare London, LLC
File type Unicode text, UTF-8 text, with very long lines (335), with CRLF line terminators
Size 125 kB (124685 bytes)
Hash dd53b53b336bc4ed72b70391cdce8608
ef277ce9827cea6ac495e1628b6f123c91334745
2f4b5295a21a0883f6f1d490ead1f98e7516c077f48a758b5d12cce1a7ac44fe
GET /olpc/olpc-styles.css?v=ADHdDai99bBc7EkexwsG2Dy6MZFuXii0weu-ag9vIh01 HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/olpc/nn/143/0/1/open-account
Cookie: __cf_bm=7JE7Dbjo2oz45V6Jzgo.G6PvWJNRc1k5ruzCiYq7Muw-1675580810-0-Aaqm7/d37vNzFq1buhG+mQT9t+G/sO30AeUW1N8nvrKGGN8UVpIbCE/sDkghc0QR+l9+xclsFnCe+6GFCq9z5+w=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 07:06:50 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: public
Content-Encoding: gzip
Expires: Mon, 05 Feb 2024 04:52:00 GMT
Last-Modified: Sun, 05 Feb 2023 04:52:00 GMT
Vary: User-Agent,Accept-Encoding
CF-Cache-Status: HIT
Age: 7892
Server: cloudflare
CF-RAY: 7949ce410a51b4f7-OSL
ocsp.digicert.com/
200 OK 278 B IP
Hash c11cc4bce8a158d374c4c3e5badd46c4
00baabf2df701c0107cc5370a0343c3f76cb8800
43f659ec8f77f2148951b1f91075e7cdc20b2590f85d52f8be34024c5b606842
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3714
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:50 GMT
Last-Modified: Sun, 05 Feb 2023 06:04:56 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 278
www.bet365.com/olpc/olpc-scripts.js?v=KDTjkmVXa0zSSWIyyHmLFOBOjdyHlaqJQbhw88pHAIA1
200 OK 7.8 kB URL HTTP/1.1 www.bet365.com/olpc/olpc-scripts.js?v=KDTjkmVXa0zSSWIyyHmLFOBOjdyHlaqJQbhw88pHAIA1
IP
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (22529), with no line terminators
Hash 0f970d13f157c52f1f0e1eaa43d225c0
6e2bd108ccb272927e5f1ceef33697867862306f
5881568c0f146564710d8c30b9056ae1b2404d45e7cb09f9b455fedeabdcb821
GET /olpc/olpc-scripts.js?v=KDTjkmVXa0zSSWIyyHmLFOBOjdyHlaqJQbhw88pHAIA1 HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/olpc/nn/143/0/1/open-account
Cookie: __cf_bm=7JE7Dbjo2oz45V6Jzgo.G6PvWJNRc1k5ruzCiYq7Muw-1675580810-0-Aaqm7/d37vNzFq1buhG+mQT9t+G/sO30AeUW1N8nvrKGGN8UVpIbCE/sDkghc0QR+l9+xclsFnCe+6GFCq9z5+w=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 07:06:50 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 7792
Connection: keep-alive
Cache-Control: public
Content-Encoding: gzip
Expires: Mon, 05 Feb 2024 04:52:00 GMT
Last-Modified: Sun, 05 Feb 2023 04:52:00 GMT
Vary: User-Agent,Accept-Encoding
CF-Cache-Status: HIT
Age: 7862
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 7949ce412cdab4e8-OSL
e1.o.lencr.org/
200 OK 346 B IP
ASN #20940 Akamai International B.V.
Hash 924c7d00984ac226568e5f6e734438b1
f32d1c6e589fc0eea6118909d147ee59503d3747
1d9bdca7745870e5e53193204eb742c780dd580a9a49a6fbb91e3e6b12dd1e8f
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "1D9BDCA7745870E5E53193204EB742C780DD580A9A49A6FBB91E3E6B12DD1E8F"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7333
Expires: Sun, 05 Feb 2023 09:09:03 GMT
Date: Sun, 05 Feb 2023 07:06:50 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 153d0de36959c722c00df71ba86daca2
305f56a3134879ebf0828e169e903e560540c070
0cf533a798d42d1e97fb6619a411afadf9a68c92302ba852869b0c0555a47987
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.bet365.com/members/services/host/Scripts/js/ProductCommon_v1.js
200 OK 3.6 kB URL HTTP/1.1 www.bet365.com/members/services/host/Scripts/js/ProductCommon_v1.js
IP
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (9857), with no line terminators
Hash 8526418443f6bcfead67615247d3e38a
6935cb6ce3e37192afcd3d08ec3b2d9c18035d20
49fa8353e8973f41c38723a669bd3200fd658ba87d6c121eb45da4af631825aa
GET /members/services/host/Scripts/js/ProductCommon_v1.js HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/olpc/nn/143/0/1/open-account
Cookie: __cf_bm=7JE7Dbjo2oz45V6Jzgo.G6PvWJNRc1k5ruzCiYq7Muw-1675580810-0-Aaqm7/d37vNzFq1buhG+mQT9t+G/sO30AeUW1N8nvrKGGN8UVpIbCE/sDkghc0QR+l9+xclsFnCe+6GFCq9z5+w=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 07:06:50 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: 0
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
x-bet-hop: 1
Content-Encoding: gzip
Last-Modified: Sun, 05 Feb 2023 07:06:50 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7949ce40fcbbb4e8-OSL
ocsp.digicert.com/
200 OK 279 B IP
Hash 5f77b51705f8201add1507b423b83789
26d320465e032d244ef8ee35d3c3f37cf3418782
01dba66ff5cb66fb7fa167bc35212876fb7fce9c2229b58b3ff2e73521a96ffa
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=85325
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:50 GMT
Etag: "63ddffd7-117"
Expires: Mon, 06 Feb 2023 06:48:55 GMT
Last-Modified: Sat, 04 Feb 2023 06:48:55 GMT
Server: nginx
Content-Length: 279
www.bet365.com/members/services/host/Scripts/js/ProductCommon_v1.js?async
200 OK 696 B URL HTTP/1.1 www.bet365.com/members/services/host/Scripts/js/ProductCommon_v1.js?async
IP
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (993), with no line terminators
Hash ebbfe1d24eac139d686a64e47a590a14
8f0886ede4779dd2a74a6cbc2c141e437628c9ef
10d817d16165da245a31cc962773967d7b689f259c5736d20e1f464c120a508a
GET /members/services/host/Scripts/js/ProductCommon_v1.js?async HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/olpc/nn/143/0/1/open-account
Cookie: __cf_bm=7JE7Dbjo2oz45V6Jzgo.G6PvWJNRc1k5ruzCiYq7Muw-1675580810-0-Aaqm7/d37vNzFq1buhG+mQT9t+G/sO30AeUW1N8nvrKGGN8UVpIbCE/sDkghc0QR+l9+xclsFnCe+6GFCq9z5+w=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 07:06:50 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: 0
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
x-bet-hop: 1
Content-Encoding: gzip
Last-Modified: Sun, 05 Feb 2023 07:06:50 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7949ce411d3d0b69-OSL
fonts.googleapis.com/css2?family=Montserrat:wght@300;400;500;600&display=swap
200 OK 1.1 kB URL HTTP/2 fonts.googleapis.com/css2?family=Montserrat:wght@300;400;500;600&display=swap
IP
Hash 50fb803d16a793c80b12f5f53078c2ec
3e4348fdac7d68550e43e60721198f7514a9281f
bceb9dfe19e58c8c04fb788ff7aacde960e3b93e84438fd138831fbc86034698
GET /css2?family=Montserrat:wght@300;400;500;600&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blancoshrimp.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 05 Feb 2023 07:06:50 GMT
date: Sun, 05 Feb 2023 07:06:50 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-T2BKDHM
200 OK 40 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-T2BKDHM
IP
File type ASCII text, with very long lines (1759)
Hash bc9bba5788d8c79e9e2b3e0bd81ba700
a0be54a60368846dc7b5bae923b69bba987c650e
5e106457d4b5f8ce57b22a01a789a363700e2fa51ecaf5dadb59833b7dfe8879
GET /gtm.js?id=GTM-T2BKDHM HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 05 Feb 2023 07:06:50 GMT
expires: Sun, 05 Feb 2023 07:06:50 GMT
cache-control: private, max-age=900
last-modified: Sun, 05 Feb 2023 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 40088
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.bet365.com/members/services/host/Scripts/js/ProductCommon_v1.js?seed=AIDhXyCGAQAA65tGvLMm57gYThqFSzQzFz3I_AosphrO0JywVYaCX4xKnT6t&PIRXTcSdwp--z=q
200 OK 174 kB URL HTTP/1.1 www.bet365.com/members/services/host/Scripts/js/ProductCommon_v1.js?seed=AIDhXyCGAQAA65tGvLMm57gYThqFSzQzFz3I_AosphrO0JywVYaCX4xKnT6t&PIRXTcSdwp--z=q
IP
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (65536), with no line terminators
Size 174 kB (174190 bytes)
Hash 2fe5fdc1cd2434c749a699cedd62568d
72f6a1c84dc7364944bbceeda8476953e96cff4d
b2fb7e5448f919259a6077c21983132b4fbb3ae23a18ea9afb0ddf08c96706ed
GET /members/services/host/Scripts/js/ProductCommon_v1.js?seed=AIDhXyCGAQAA65tGvLMm57gYThqFSzQzFz3I_AosphrO0JywVYaCX4xKnT6t&PIRXTcSdwp--z=q HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/olpc/nn/143/0/1/open-account
Cookie: __cf_bm=7JE7Dbjo2oz45V6Jzgo.G6PvWJNRc1k5ruzCiYq7Muw-1675580810-0-Aaqm7/d37vNzFq1buhG+mQT9t+G/sO30AeUW1N8nvrKGGN8UVpIbCE/sDkghc0QR+l9+xclsFnCe+6GFCq9z5+w=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 07:06:50 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: public, max-age=3600, immutable
x-bet-hop: 1
Content-Encoding: gzip
Last-Modified: Sun, 05 Feb 2023 07:00:00 GMT
CF-Cache-Status: HIT
Age: 406
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7949ce419abab4f7-OSL
ocsp.digicert.com/
200 OK 280 B IP
Hash a023f4b2fa11c62e717e4ab0be067212
eef6603ebe0607c46d0d432e9e19eab88c37f9ca
c8429fa55a09574ba4ebc0476a7361d2f18036b42360b9205691380ab7059a6f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 830
Cache-Control: max-age=145567
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:50 GMT
Etag: "63dee7eb-118"
Expires: Mon, 06 Feb 2023 23:32:57 GMT
Last-Modified: Sat, 04 Feb 2023 23:19:07 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 280
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://blancoshrimp.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 Feb 2023 07:08:09 GMT
expires: Sat, 03 Feb 2024 07:08:09 GMT
cache-control: public, max-age=31536000
age: 172721
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 280 B IP
Hash a023f4b2fa11c62e717e4ab0be067212
eef6603ebe0607c46d0d432e9e19eab88c37f9ca
c8429fa55a09574ba4ebc0476a7361d2f18036b42360b9205691380ab7059a6f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 830
Cache-Control: max-age=145567
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:50 GMT
Etag: "63dee7eb-118"
Expires: Mon, 06 Feb 2023 23:32:57 GMT
Last-Modified: Sat, 04 Feb 2023 23:19:07 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
200 OK 280 B IP
Hash a023f4b2fa11c62e717e4ab0be067212
eef6603ebe0607c46d0d432e9e19eab88c37f9ca
c8429fa55a09574ba4ebc0476a7361d2f18036b42360b9205691380ab7059a6f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 830
Cache-Control: max-age=145567
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:50 GMT
Etag: "63dee7eb-118"
Expires: Mon, 06 Feb 2023 23:32:57 GMT
Last-Modified: Sat, 04 Feb 2023 23:19:07 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
200 OK 280 B IP
Hash a023f4b2fa11c62e717e4ab0be067212
eef6603ebe0607c46d0d432e9e19eab88c37f9ca
c8429fa55a09574ba4ebc0476a7361d2f18036b42360b9205691380ab7059a6f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 830
Cache-Control: max-age=145567
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:50 GMT
Etag: "63dee7eb-118"
Expires: Mon, 06 Feb 2023 23:32:57 GMT
Last-Modified: Sat, 04 Feb 2023 23:19:07 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 280
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 153d0de36959c722c00df71ba86daca2
305f56a3134879ebf0828e169e903e560540c070
0cf533a798d42d1e97fb6619a411afadf9a68c92302ba852869b0c0555a47987
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
content001.bet365.com/SportsContent/Global/Footer/SPORTSX2-18.png
200 OK 4.4 kB URL HTTP/1.1 content001.bet365.com/SportsContent/Global/Footer/SPORTSX2-18.png
IP
ASN #209242 Cloudflare London, LLC
File type PNG image data, 65 x 65, 8-bit/color RGBA, non-interlaced\012- data
Hash 097b1799e6f2ab026f137f91b4627384
fd6a5222f5743cccc954a311b6d30b4125179244
5af616c5e6ad0d97aa233ed4644776ca94de0cfb1a653844d8a5d9ee46e756af
GET /SportsContent/Global/Footer/SPORTSX2-18.png HTTP/1.1
Host: content001.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/
Cookie: __cf_bm=7JE7Dbjo2oz45V6Jzgo.G6PvWJNRc1k5ruzCiYq7Muw-1675580810-0-Aaqm7/d37vNzFq1buhG+mQT9t+G/sO30AeUW1N8nvrKGGN8UVpIbCE/sDkghc0QR+l9+xclsFnCe+6GFCq9z5+w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 07:06:50 GMT
Content-Type: image/png
Content-Length: 4400
Connection: keep-alive
Last-Modified: Fri, 20 Mar 2015 09:13:01 GMT
Timing-Allow-Origin: *
CF-Cache-Status: HIT
Expires: Fri, 10 Feb 2023 07:06:50 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7949ce41dbd81c16-OSL
content001.bet365.com/SportsContent/Global/Footer/GordonMoody/GordonMoody-GT-x2_Grey99.png
200 OK 5.3 kB URL HTTP/1.1 content001.bet365.com/SportsContent/Global/Footer/GordonMoody/GordonMoody-GT-x2_Grey99.png
IP
ASN #209242 Cloudflare London, LLC
File type PNG image data, 188 x 60, 8-bit gray+alpha, non-interlaced\012- data
Hash 40ed9c8ae714b944f87008ab90bb071d
32bbf71529809e6ea3521c5636838a76c7488fae
b163877ec48382be73ffdf62c6a5dc5ded37443856dde414e591dfe85b61f070
GET /SportsContent/Global/Footer/GordonMoody/GordonMoody-GT-x2_Grey99.png HTTP/1.1
Host: content001.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/
Cookie: __cf_bm=7JE7Dbjo2oz45V6Jzgo.G6PvWJNRc1k5ruzCiYq7Muw-1675580810-0-Aaqm7/d37vNzFq1buhG+mQT9t+G/sO30AeUW1N8nvrKGGN8UVpIbCE/sDkghc0QR+l9+xclsFnCe+6GFCq9z5+w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 07:06:50 GMT
Content-Type: image/png
Content-Length: 5324
Connection: keep-alive
Last-Modified: Mon, 11 Oct 2021 13:13:24 GMT
Timing-Allow-Origin: *
CF-Cache-Status: HIT
Expires: Fri, 10 Feb 2023 07:06:50 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7949ce41dddbb521-OSL
members.bet365.com/Members/Helpers/DefaultAff.aspx?affiliate=365_01155434
200 OK 177 B URL HTTP/1.1 members.bet365.com/Members/Helpers/DefaultAff.aspx?affiliate=365_01155434
IP
ASN #209242 Cloudflare London, LLC
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 475774a26d4f30240a3534bcbd2fd161
9fd7b986673786b4fc80943b330bd1c03256049e
f7541d6ca43b4da74a89ec05885dceabf1a4af132d36326cf7974a47c904c811
GET /Members/Helpers/DefaultAff.aspx?affiliate=365_01155434 HTTP/1.1
Host: members.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/
Cookie: __cf_bm=7JE7Dbjo2oz45V6Jzgo.G6PvWJNRc1k5ruzCiYq7Muw-1675580810-0-Aaqm7/d37vNzFq1buhG+mQT9t+G/sO30AeUW1N8nvrKGGN8UVpIbCE/sDkghc0QR+l9+xclsFnCe+6GFCq9z5+w=
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 07:06:50 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 177
Connection: keep-alive
Cache-Control: private
Content-Encoding: gzip
Vary: Accept-Encoding
ME-Redirect: PQB
Set-Cookie: Affiliates=Code=365_01155434%2f166298835317&prd=Sports; domain=.bet365.com; expires=Wed, 22-Mar-2023 07:06:50 GMT; path=/; secure
session=processform=0; path=/; secure
pstk=0AB67A9CB00C20EBAB1B1F529CC1CF93000003; domain=.bet365.com; path=/; secure
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7949ce414ac3b518-OSL
content001.bet365.com/SportsContent/Global/Footer/MGALICENSED.png
200 OK 2.0 kB URL HTTP/1.1 content001.bet365.com/SportsContent/Global/Footer/MGALICENSED.png
IP
ASN #209242 Cloudflare London, LLC
File type PNG image data, 88 x 44, 8-bit/color RGBA, non-interlaced\012- data
Hash d8cb8a91c78942815c69aaeea7c79162
0a36fd477b2c7d88bb67d95e806bf5838d1b39cd
057c251de5bc8825df293db443b8c9a99e01f856abe658c741a89c86b6bfa2e1
GET /SportsContent/Global/Footer/MGALICENSED.png HTTP/1.1
Host: content001.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/
Cookie: __cf_bm=7JE7Dbjo2oz45V6Jzgo.G6PvWJNRc1k5ruzCiYq7Muw-1675580810-0-Aaqm7/d37vNzFq1buhG+mQT9t+G/sO30AeUW1N8nvrKGGN8UVpIbCE/sDkghc0QR+l9+xclsFnCe+6GFCq9z5+w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 07:06:50 GMT
Content-Type: image/png
Content-Length: 1979
Connection: keep-alive
Last-Modified: Wed, 10 Jul 2019 13:20:52 GMT
Timing-Allow-Origin: *
CF-Cache-Status: HIT
Expires: Fri, 10 Feb 2023 07:06:50 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7949ce41ead9b4f7-OSL
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 5452c58c07ce8d3cade93b323b271c35
581b1e438daeb32a12feaf50f2aab17dcf3e3171
b99ea2af71e697f45db51732f7d3e8d3e50258c9c96e50a772b8c4638577140a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
content001.bet365.com/SportsContent/Global/Footer/bet365%20grey%20footer%20logo.png
200 OK 7.9 kB URL HTTP/1.1 content001.bet365.com/SportsContent/Global/Footer/bet365%20grey%20footer%20logo.png
IP
ASN #209242 Cloudflare London, LLC
File type PNG image data, 255 x 53, 8-bit/color RGBA, non-interlaced\012- data
Hash 51325bd6f5ada6b0eba71b19dda89dd7
4c67ca4f77680cd5acdcf04cac6b9a673e5ccc70
6ad4d67eed235fafc8ddfab188fa2e968ba4345718c8338bd7f4fbfafa6f8a2b
GET /SportsContent/Global/Footer/bet365%20grey%20footer%20logo.png HTTP/1.1
Host: content001.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/
Cookie: __cf_bm=7JE7Dbjo2oz45V6Jzgo.G6PvWJNRc1k5ruzCiYq7Muw-1675580810-0-Aaqm7/d37vNzFq1buhG+mQT9t+G/sO30AeUW1N8nvrKGGN8UVpIbCE/sDkghc0QR+l9+xclsFnCe+6GFCq9z5+w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 07:06:50 GMT
Content-Type: image/png
Content-Length: 7868
Connection: keep-alive
Last-Modified: Thu, 11 Jun 2015 14:13:32 GMT
Timing-Allow-Origin: *
CF-Cache-Status: HIT
Expires: Fri, 10 Feb 2023 07:06:50 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7949ce41ecfcb517-OSL
content001.bet365.com/SportsContent/Global/Footer/SPORTSX1-ESSA_2.png
200 OK 6.4 kB URL HTTP/1.1 content001.bet365.com/SportsContent/Global/Footer/SPORTSX1-ESSA_2.png
IP
ASN #209242 Cloudflare London, LLC
File type PNG image data, 162 x 35, 8-bit/color RGBA, non-interlaced\012- data
Hash 1b8c19b189cccdda7105465a474c9b4d
6ef1cecd283f484606c987259e06a22ff3aff7ae
101ca051649af6826119108f51311f70b4d58e94242c8877a2b8a9247b90f54f
GET /SportsContent/Global/Footer/SPORTSX1-ESSA_2.png HTTP/1.1
Host: content001.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/
Cookie: __cf_bm=7JE7Dbjo2oz45V6Jzgo.G6PvWJNRc1k5ruzCiYq7Muw-1675580810-0-Aaqm7/d37vNzFq1buhG+mQT9t+G/sO30AeUW1N8nvrKGGN8UVpIbCE/sDkghc0QR+l9+xclsFnCe+6GFCq9z5+w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 07:06:50 GMT
Content-Type: image/png
Content-Length: 6386
Connection: keep-alive
Last-Modified: Tue, 04 Jun 2019 13:21:41 GMT
Timing-Allow-Origin: *
CF-Cache-Status: HIT
Expires: Fri, 10 Feb 2023 07:06:50 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7949ce41f993b503-OSL
content001.bet365.com/SportsContent/Global/Footer/eCogra-Horizontal2x.png
200 OK 1.7 kB URL HTTP/1.1 content001.bet365.com/SportsContent/Global/Footer/eCogra-Horizontal2x.png
IP
ASN #209242 Cloudflare London, LLC
File type PNG image data, 206 x 48, 8-bit colormap, non-interlaced\012- data
Hash 9c970e4a7854f871873d7b1401701536
2236689845834104a586507057840c7229c7353c
d0438c85b7b5f9c21ac9a1975ccd12464f5f8cbf15d3353ee700e2617f913349
GET /SportsContent/Global/Footer/eCogra-Horizontal2x.png HTTP/1.1
Host: content001.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/
Cookie: __cf_bm=7JE7Dbjo2oz45V6Jzgo.G6PvWJNRc1k5ruzCiYq7Muw-1675580810-0-Aaqm7/d37vNzFq1buhG+mQT9t+G/sO30AeUW1N8nvrKGGN8UVpIbCE/sDkghc0QR+l9+xclsFnCe+6GFCq9z5+w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 07:06:50 GMT
Content-Type: image/png
Content-Length: 1671
Connection: keep-alive
Last-Modified: Wed, 11 Aug 2021 10:23:12 GMT
Timing-Allow-Origin: *
CF-Cache-Status: HIT
Expires: Fri, 10 Feb 2023 07:06:50 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7949ce42099bfac4-OSL
in.betsson.com/pe-bono-bienvenida-21/pe/?from=V5CB4vyLdRk6uLEWou1M5mNd7ZgqdRLk-AP0846390900&affcode=AP0846390900&utm_medium=MA_Affiliates&utm_source=10687405
200 OK 16 kB URL HTTP/2 in.betsson.com/pe-bono-bienvenida-21/pe/?from=V5CB4vyLdRk6uLEWou1M5mNd7ZgqdRLk-AP0846390900&affcode=AP0846390900&utm_medium=MA_Affiliates&utm_source=10687405
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (49496)
Hash e13f463b6de58f4f09b28dcede6fc9d6
122dba2a6e00b840b43bd3667156694b0b0245da
2623153e4e5b0ea9a9bdcc465b5592596a81cdc08eab411b59c69437872f551f
GET /pe-bono-bienvenida-21/pe/?from=V5CB4vyLdRk6uLEWou1M5mNd7ZgqdRLk-AP0846390900&affcode=AP0846390900&utm_medium=MA_Affiliates&utm_source=10687405 HTTP/1.1
Host: in.betsson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: ZBan=V5CB4vyLdRk6uLEWou1M5mNd7ZgqdRLk
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html;charset=UTF-8
content-length: 15801
date: Sun, 05 Feb 2023 07:06:50 GMT
server: Apache/2.4.52 (Ubuntu)
strict-transport-security: max-age=3153600; includeSubDomains
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: LHlgezhQMt_uF8d5ERkclBKvIuTfWpJL10MZ3XevCyUWO4vdH1hSxw==
X-Firefox-Spdy: h2
es.888casino.com/exclusive-mob/spinson.htm?sr=1853546&mm_id=45577&utm_source=aff&utm_medium=casap&utm_content=100138643&utm_campaign=100138643_1853546_nodescription
301 Moved Permanently 0 B URL HTTP/2 es.888casino.com/exclusive-mob/spinson.htm?sr=1853546&mm_id=45577&utm_source=aff&utm_medium=casap&utm_content=100138643&utm_campaign=100138643_1853546_nodescription
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /exclusive-mob/spinson.htm?sr=1853546&mm_id=45577&utm_source=aff&utm_medium=casap&utm_content=100138643&utm_campaign=100138643_1853546_nodescription HTTP/1.1
Host: es.888casino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
content-length: 0
location: https://es.888casino.com/exclusive-mob/spinson.htm?utm_campaign=100138643_1853546_nodescription&utm_content=100138643&utm_medium=casap&utm_source=aff
date: Sun, 05 Feb 2023 07:06:50 GMT
x-wcs-correlation-id: m5p5vgoHg2l1yHr0dkwLMXaDZQCdXWomlsnGGaYDhKwkRQoTkQiZ7g==
set-cookie: 888TempQueryCookie=sr%3D1853546; max-age=60; domain=888casino.com; path=/; secure; samesite=none; httponly
888Cookie=isftd%3Dfalse%26isreal%3Dfalse%26lang%3Des%26OSR%3D1853546%26RefType%3DNoReferrer%26TestData%3D%7B%22mm_id%22%3A%2245577%22%2C%22orig-lp%22%3A%22https%3A%2F%2Fes.888casino.com%2Fexclusive-mob%2Fspinson.htm%22%2C%22referrer%22%3A%22NULL%22%2C%22utm_campaign%22%3A%22100138643_1853546_nodescription%22%2C%22utm_content%22%3A%22100138643%22%2C%22utm_medium%22%3A%22casap%22%2C%22utm_source%22%3A%22aff%22%7D; max-age=604800; domain=888casino.com; path=/; secure; samesite=none; httponly
888TempContext=testdata%3D%7B%22mm_id%22%3A%2245577%22%2C%22orig-lp%22%3A%22https%3A%2F%2Fes.888casino.com%2Fexclusive-mob%2Fspinson.htm%22%2C%22referrer%22%3A%22NULL%22%2C%22utm_campaign%22%3A%22100138643_1853546_nodescription%22%2C%22utm_content%22%3A%22100138643%22%2C%22utm_medium%22%3A%22casap%22%2C%22utm_source%22%3A%22aff%22%7D; max-age=60; domain=888casino.com; path=/; secure; samesite=none; httponly
apigw-requestid: f2pNrjRMjoEEPPw=
vary: Cookie
x-cache: Miss from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: m5p5vgoHg2l1yHr0dkwLMXaDZQCdXWomlsnGGaYDhKwkRQoTkQiZ7g==
X-Firefox-Spdy: h2
e1.o.lencr.org/
200 OK 346 B IP
ASN #20940 Akamai International B.V.
Hash 924c7d00984ac226568e5f6e734438b1
f32d1c6e589fc0eea6118909d147ee59503d3747
1d9bdca7745870e5e53193204eb742c780dd580a9a49a6fbb91e3e6b12dd1e8f
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "1D9BDCA7745870E5E53193204EB742C780DD580A9A49A6FBB91E3E6B12DD1E8F"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7333
Expires: Sun, 05 Feb 2023 09:09:03 GMT
Date: Sun, 05 Feb 2023 07:06:50 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 280 B IP
Hash 6595375043b8746a01f2b63ea520716d
0c4dac167e373eb125f18c88052e40d976bcafcb
cb7e391c1543e1057e81182c6a7bc5d6582155b6f0b939e5909fe9926202fff0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=154828
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:50 GMT
Etag: "63df0f56-118"
Expires: Tue, 07 Feb 2023 02:07:18 GMT
Last-Modified: Sun, 05 Feb 2023 02:07:18 GMT
Server: nginx
Content-Length: 280
ocsp.r2m01.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP
Hash 31fa015d1adcfc89371c6ab946926fec
93630ead12c9674746dceb4df3c46101a8785065
33a4f9425f8bbb7d1050574c0873a9ed517574ad9dfa5523353fbee0f9f8ce03
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 05 Feb 2023 07:06:50 GMT
Last-Modified: Sun, 05 Feb 2023 06:27:46 GMT
Server: ECS (bsa/EB21)
X-Cache: Miss from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: wSJahQIfaBIFbXWem5gYLwbYKbQiMzKhd4j62fLFPhUKKxe4g4Cfww==
Age: 2344
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 03903c33c90c4e9137c9d50dfd02ac35
407c2389b80856a9f3321b57ad8d921a8a2c2df1
711ca0a82fc56839cf34b393cb83dbf0071bbe25a227dc5cc91deedcc4ddce85
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Sun, 05 Feb 2023 07:06:50 GMT
Server: ECS (dcb/7EA5)
X-Cache: Miss from cloudfront
Via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 0gP5XfRU_WpIwq_gnMA532t90-dETaO7UzhN6WGIFyUg6kR4LeNC-w==
media.betwarrior.bet/redirect.aspx?pid=9279&bid=3038
307 Temporary Redirect 0 B URL HTTP/2 media.betwarrior.bet/redirect.aspx?pid=9279&bid=3038
IP
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect.aspx?pid=9279&bid=3038 HTTP/1.1
Host: media.betwarrior.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
content-type: text/html
content-length: 0
location: https://betwarrior.bet/es/sports?register&btag=655952_A150827E61D146458CFCD5F1760DA759
p3p: CP="This is not a P3P policy! It is used to bypass IEs problematic handling of cookies"
x-aspnet-version: 4.0.30319
request-context: appId=cid-v1:83ffbda4-9458-475e-90ec-4427cfb5c3b0
access-control-expose-headers: Request-Context
expires: Sun, 05 Feb 2023 07:06:50 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 05 Feb 2023 07:06:50 GMT
set-cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a9279%2c%22BID%22%3a3038%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675580810810)%5c%2f%22%2c%22CookieTag%22%3a%2230389279451240919C20232576%22%7d%5d; SameSite=None;; domain=.betwarrior.bet; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; secure
NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%2240775582%7c1%22%7d%5d; domain=.betwarrior.bet; expires=Tue, 05-Feb-3022 07:06:50 GMT; path=/; secure; SameSite=Strict
server-timing: cdn-cache; desc=MISS, edge; dur=90, origin; dur=38
X-Firefox-Spdy: h2
www.bet365.com/olpc/nn/143/0/1/cookieconsentajax?
200 OK 1.4 kB URL HTTP/1.1 www.bet365.com/olpc/nn/143/0/1/cookieconsentajax?
IP
ASN #209242 Cloudflare London, LLC
File type Unicode text, UTF-8 text, with very long lines (489), with CRLF, LF line terminators
Hash 41bc7a3cb016ed2e39c03d0cc8be6b42
b18485bc2f7d8bb65434447040e3b6a7125a0509
6b68a474dc9ab3d547c5584d6a1de4360570147384669553d528ee80495e9f57
POST /olpc/nn/143/0/1/cookieconsentajax? HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.bet365.com
Connection: keep-alive
Referer: https://www.bet365.com/olpc/nn/143/0/1/open-account
Cookie: __cf_bm=7JE7Dbjo2oz45V6Jzgo.G6PvWJNRc1k5ruzCiYq7Muw-1675580810-0-Aaqm7/d37vNzFq1buhG+mQT9t+G/sO30AeUW1N8nvrKGGN8UVpIbCE/sDkghc0QR+l9+xclsFnCe+6GFCq9z5+w=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Content-Length: 0
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 07:06:50 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 1362
Connection: keep-alive
Cache-Control: private
Content-Encoding: gzip
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7949ce435c02b4f7-OSL
ocsp.digicert.com/
200 OK 280 B IP
Hash 9fcb4e4ec5e9da8220ef4140716292b7
1dbae68951363707110e992ebdcc1001a7763c6d
afbe48e22d880a5d21f03a60b069b7ea3711deee95211f5b6a2de61a0e8ed5f0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2421
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:50 GMT
Last-Modified: Sun, 05 Feb 2023 06:26:29 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 280
promos.betano.com/sportsbook-pe/d-logo.png
200 OK 39 kB URL HTTP/2 promos.betano.com/sportsbook-pe/d-logo.png
IP
File type PNG image data, 670 x 395, 8-bit/color RGBA, non-interlaced\012- data
Hash 484f62aeca1b1eefe27508e9d0f76de1
39dc53c8d9fee7511ec779a862d45e7607517c48
5f0a7a23224ab516543dacd2e872a2bea1ce7c96135bea3264e7d7a87dfe788d
GET /sportsbook-pe/d-logo.png HTTP/1.1
Host: promos.betano.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promos.betano.com/sportsbook-pe/index.html?btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO&utm_medium=4168&utm_source=3&siteid=13943
Cookie: btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO; __cf_bm=Tx6iKRfEcWV4ygAsaY4zVGm7CNa.ODiZc1RnKjSLXeA-1675580810-0-ASVySjVW4uKcUxLCG83YxYfDDtUy7JCvDDjQW206mH9rTT7SeqeUBqye/sqTqi7A9Wm95KgSLGqpzx4G249AWr0=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:50 GMT
content-type: image/png
content-length: 38743
cache-control: public, max-age=900
content-md5: SE9irsobHu/idQjp0Pdt4Q==
last-modified: Fri, 08 Apr 2022 09:53:53 GMT
etag: "0x8DA1945B09F566B"
x-ms-request-id: 80369bae-601e-0028-5f60-3773aa000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
vary: Accept-Encoding
cf-cache-status: MISS
expires: Sun, 05 Feb 2023 07:21:50 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 7949ce43bcfa1c0e-OSL
X-Firefox-Spdy: h2
promos.betano.com/sportsbook-pe/t-egr.png
200 OK 4.1 kB URL HTTP/2 promos.betano.com/sportsbook-pe/t-egr.png
IP
File type PNG image data, 220 x 38, 8-bit/color RGBA, non-interlaced\012- data
Hash e4afa4bdd856a3c400ea66aab974bf59
82d73c8d9c17d69fc91470ec441a477c58ab643e
f01125c1caf80ef3d470db700582039adbb2db3ceb3dbd052486750902c12b4f
GET /sportsbook-pe/t-egr.png HTTP/1.1
Host: promos.betano.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promos.betano.com/sportsbook-pe/index.html?btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO&utm_medium=4168&utm_source=3&siteid=13943
Cookie: btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO; __cf_bm=Tx6iKRfEcWV4ygAsaY4zVGm7CNa.ODiZc1RnKjSLXeA-1675580810-0-ASVySjVW4uKcUxLCG83YxYfDDtUy7JCvDDjQW206mH9rTT7SeqeUBqye/sqTqi7A9Wm95KgSLGqpzx4G249AWr0=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:50 GMT
content-type: image/png
content-length: 4142
cache-control: public, max-age=900
content-md5: 5K+kvdhWo8QA6maquXS/WQ==
last-modified: Fri, 08 Apr 2022 09:53:54 GMT
etag: "0x8DA1945B1966334"
x-ms-request-id: d34f535d-801e-0042-3a3b-38ab82000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
vary: Accept-Encoding
cf-cache-status: MISS
expires: Sun, 05 Feb 2023 07:21:50 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 7949ce43bcff1c0e-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/otSDKStub.js
200 OK 8.4 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/otSDKStub.js
IP
File type ASCII text, with very long lines (25592)
Hash e248bb3ed9070ee48f0b5bc674e6a49d
46a6ac373399405df390e910c580cf850dce9886
74fd866eaf62b63cec2b85eadf2245e9302107f4c8fabc25f9c3e5cd49f40a6b
GET /scripttemplates/otSDKStub.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://in.betsson.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:50 GMT
content-type: application/javascript
content-length: 8384
content-encoding: gzip
content-md5: 4ki7PtkHDuSPC1vGdOaknQ==
last-modified: Thu, 02 Feb 2023 13:33:36 GMT
etag: 0x8DB05221689032C
x-ms-request-id: 3a8b6a68-201e-0101-2064-379f4e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 44898
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7949ce43dea3b4e8-OSL
X-Firefox-Spdy: h2
promos.betano.com/sportsbook-pe/d-egr.png
200 OK 2.8 kB URL HTTP/2 promos.betano.com/sportsbook-pe/d-egr.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 4922d2df6d534b12b1cfe944655f76ad
c402d0c4dd2dbca174f7338d387f13d6190f310c
320d9072022a42f4a0667522a467ba071a36748cf5921befb148710b05119690
GET /sportsbook-pe/d-egr.png HTTP/1.1
Host: promos.betano.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promos.betano.com/sportsbook-pe/index.html?btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO&utm_medium=4168&utm_source=3&siteid=13943
Cookie: btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO; __cf_bm=Tx6iKRfEcWV4ygAsaY4zVGm7CNa.ODiZc1RnKjSLXeA-1675580810-0-ASVySjVW4uKcUxLCG83YxYfDDtUy7JCvDDjQW206mH9rTT7SeqeUBqye/sqTqi7A9Wm95KgSLGqpzx4G249AWr0=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:50 GMT
content-type: image/webp
content-length: 2764
access-control-allow-origin: *
cache-control: public, max-age=900
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=6896
content-disposition: inline; filename="d-egr.webp"
content-md5: Ny1hJPyLtIZZeipK5f74jg==
etag: "0x8DA1945B0987999"
last-modified: Fri, 08 Apr 2022 09:53:53 GMT
vary: Accept
x-ms-blob-type: BlockBlob
x-ms-lease-state: available
x-ms-lease-status: unlocked
x-ms-request-id: 00c05bf5-801e-0020-4e60-3769a5000000
x-ms-version: 2014-02-14
cf-cache-status: REVALIDATED
expires: Sun, 05 Feb 2023 07:21:50 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 7949ce43bcf71c0e-OSL
X-Firefox-Spdy: h2
promos.betano.com/sportsbook-pe/t-disclaimer.png
200 OK 724 B URL HTTP/2 promos.betano.com/sportsbook-pe/t-disclaimer.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 012aad761b15745f40e9fcc0bd14133d
14c57a1264ef7dd77bc23b07a58c3b70c54f0936
5865b80342411947bb1248e144bc4f0b83e147cf1c2412d3dc399841728fc5f4
GET /sportsbook-pe/t-disclaimer.png HTTP/1.1
Host: promos.betano.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promos.betano.com/sportsbook-pe/index.html?btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO&utm_medium=4168&utm_source=3&siteid=13943
Cookie: btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO; __cf_bm=Tx6iKRfEcWV4ygAsaY4zVGm7CNa.ODiZc1RnKjSLXeA-1675580810-0-ASVySjVW4uKcUxLCG83YxYfDDtUy7JCvDDjQW206mH9rTT7SeqeUBqye/sqTqi7A9Wm95KgSLGqpzx4G249AWr0=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:50 GMT
content-type: image/webp
content-length: 724
access-control-allow-origin: *
cache-control: public, max-age=900
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=2267
content-disposition: inline; filename="t-disclaimer.webp"
content-md5: jELwss6US7Ve+J3keH6pPA==
etag: "0x8DA1945B18CEEC0"
last-modified: Fri, 08 Apr 2022 09:53:54 GMT
vary: Accept
x-ms-blob-type: BlockBlob
x-ms-lease-state: available
x-ms-lease-status: unlocked
x-ms-request-id: e8f833be-d01e-002d-0960-37a171000000
x-ms-version: 2014-02-14
cf-cache-status: REVALIDATED
expires: Sun, 05 Feb 2023 07:21:50 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 7949ce43cd051c0e-OSL
X-Firefox-Spdy: h2
promos.betano.com/sportsbook-pe/t-logo.png
200 OK 20 kB URL HTTP/2 promos.betano.com/sportsbook-pe/t-logo.png
IP
File type PNG image data, 290 x 119, 8-bit/color RGBA, non-interlaced\012- data
Hash 24aded6370f8905819ed33311c4576b3
d8eebd6af76a6a30b4d803636b6f4bf60f395dee
8bf94f43d060c560b255b4c86320735ae5b10d25eade463c5c1982320472591f
GET /sportsbook-pe/t-logo.png HTTP/1.1
Host: promos.betano.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promos.betano.com/sportsbook-pe/index.html?btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO&utm_medium=4168&utm_source=3&siteid=13943
Cookie: btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO; __cf_bm=Tx6iKRfEcWV4ygAsaY4zVGm7CNa.ODiZc1RnKjSLXeA-1675580810-0-ASVySjVW4uKcUxLCG83YxYfDDtUy7JCvDDjQW206mH9rTT7SeqeUBqye/sqTqi7A9Wm95KgSLGqpzx4G249AWr0=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:50 GMT
content-type: image/png
content-length: 19577
cache-control: public, max-age=900
content-md5: JK3tY3D4kFgZ7TMxHEV2sw==
last-modified: Fri, 08 Apr 2022 09:53:55 GMT
etag: "0x8DA1945B1AA3672"
x-ms-request-id: 124e55f2-201e-005b-1d60-372b39000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
vary: Accept-Encoding
cf-cache-status: MISS
expires: Sun, 05 Feb 2023 07:21:50 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 7949ce43bcfc1c0e-OSL
X-Firefox-Spdy: h2
promos.betano.com/sportsbook-pe/m-disclaimer.png
200 OK 796 B URL HTTP/2 promos.betano.com/sportsbook-pe/m-disclaimer.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 979305ecc974781790e3af1374bf25be
5783308809371a4395beccc5afcc3f91138d17dc
68e8dd2a53a73d4c8caf7f68d509c7fab77d46cb25f6b793926e522a2b8c2a4c
GET /sportsbook-pe/m-disclaimer.png HTTP/1.1
Host: promos.betano.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promos.betano.com/sportsbook-pe/index.html?btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO&utm_medium=4168&utm_source=3&siteid=13943
Cookie: btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO; __cf_bm=Tx6iKRfEcWV4ygAsaY4zVGm7CNa.ODiZc1RnKjSLXeA-1675580810-0-ASVySjVW4uKcUxLCG83YxYfDDtUy7JCvDDjQW206mH9rTT7SeqeUBqye/sqTqi7A9Wm95KgSLGqpzx4G249AWr0=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:50 GMT
content-type: image/webp
content-length: 796
access-control-allow-origin: *
cache-control: public, max-age=900
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=2469
content-disposition: inline; filename="m-disclaimer.webp"
content-md5: 6dBVnmJqmrc4xDYBoI9PJQ==
etag: "0x8DA1945B14EB66A"
last-modified: Fri, 08 Apr 2022 09:53:54 GMT
vary: Accept
x-ms-blob-type: BlockBlob
x-ms-lease-state: available
x-ms-lease-status: unlocked
x-ms-request-id: 423f562a-301e-0047-293b-387959000000
x-ms-version: 2014-02-14
cf-cache-status: REVALIDATED
expires: Sun, 05 Feb 2023 07:21:50 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 7949ce43cd0d1c0e-OSL
X-Firefox-Spdy: h2
promos.betano.com/sportsbook-pe/d-disclaimer.png
200 OK 3.7 kB URL HTTP/2 promos.betano.com/sportsbook-pe/d-disclaimer.png
IP
File type PNG image data, 226 x 42, 8-bit/color RGBA, non-interlaced\012- data
Hash 207b119e7af77460d25af1b3b8323aab
8bae3fe16324d63041ecd3b3be251bd4b812bfd9
47ed298f345a072ff8a73296f23fc8e11e3e5c1c09d022bac12e7d8e2fa13696
GET /sportsbook-pe/d-disclaimer.png HTTP/1.1
Host: promos.betano.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promos.betano.com/sportsbook-pe/index.html?btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO&utm_medium=4168&utm_source=3&siteid=13943
Cookie: btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO; __cf_bm=Tx6iKRfEcWV4ygAsaY4zVGm7CNa.ODiZc1RnKjSLXeA-1675580810-0-ASVySjVW4uKcUxLCG83YxYfDDtUy7JCvDDjQW206mH9rTT7SeqeUBqye/sqTqi7A9Wm95KgSLGqpzx4G249AWr0=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:50 GMT
content-type: image/png
content-length: 3742
cache-control: public, max-age=900
content-md5: IHsRnnr3dGDSWvGzuDI6qw==
last-modified: Fri, 08 Apr 2022 09:53:53 GMT
etag: "0x8DA1945B091EADE"
x-ms-request-id: 0e183cab-701e-0046-0760-372685000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
vary: Accept-Encoding
cf-cache-status: MISS
expires: Sun, 05 Feb 2023 07:21:50 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 7949ce43bcf91c0e-OSL
X-Firefox-Spdy: h2
promos.betano.com/sportsbook-pe/m-android.png
200 OK 238 B URL HTTP/2 promos.betano.com/sportsbook-pe/m-android.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash ab0c933d8299f70289c75bca13b51574
a9f430c4e4475b969cfa874071dc924c65a24fc2
6702617ca62388454a24337b85a51a784e35e641d322d3699f6f3ea1b9096a24
GET /sportsbook-pe/m-android.png HTTP/1.1
Host: promos.betano.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promos.betano.com/sportsbook-pe/index.html?btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO&utm_medium=4168&utm_source=3&siteid=13943
Cookie: btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO; __cf_bm=Tx6iKRfEcWV4ygAsaY4zVGm7CNa.ODiZc1RnKjSLXeA-1675580810-0-ASVySjVW4uKcUxLCG83YxYfDDtUy7JCvDDjQW206mH9rTT7SeqeUBqye/sqTqi7A9Wm95KgSLGqpzx4G249AWr0=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:50 GMT
content-type: image/webp
content-length: 238
access-control-allow-origin: *
cache-control: public, max-age=900
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=1376
content-disposition: inline; filename="m-android.webp"
content-md5: 0dJQZIcxhfVLhqwvyYc0yw==
etag: "0x8DA1945B1384B86"
last-modified: Fri, 08 Apr 2022 09:53:54 GMT
vary: Accept
x-ms-blob-type: BlockBlob
x-ms-lease-state: available
x-ms-lease-status: unlocked
x-ms-request-id: 85a726d9-a01e-0045-5b60-37c7e1000000
x-ms-version: 2014-02-14
cf-cache-status: REVALIDATED
expires: Sun, 05 Feb 2023 07:21:50 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 7949ce43cd121c0e-OSL
X-Firefox-Spdy: h2
promos.betano.com/sportsbook-pe/m-logo.png
200 OK 18 kB URL HTTP/2 promos.betano.com/sportsbook-pe/m-logo.png
IP
File type PNG image data, 267 x 119, 8-bit/color RGBA, non-interlaced\012- data
Hash 3195b08b2d71621bd192827a014d3cc9
0bb198cf2cedb2598842c7d3306ffacd710609fb
47c8fbb5cc4fd8b73d029d23450344f8852fcb91ed0aca2900b3471e8797a8e2
GET /sportsbook-pe/m-logo.png HTTP/1.1
Host: promos.betano.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promos.betano.com/sportsbook-pe/index.html?btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO&utm_medium=4168&utm_source=3&siteid=13943
Cookie: btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO; __cf_bm=Tx6iKRfEcWV4ygAsaY4zVGm7CNa.ODiZc1RnKjSLXeA-1675580810-0-ASVySjVW4uKcUxLCG83YxYfDDtUy7JCvDDjQW206mH9rTT7SeqeUBqye/sqTqi7A9Wm95KgSLGqpzx4G249AWr0=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:50 GMT
content-type: image/png
content-length: 18208
cache-control: public, max-age=900
content-md5: MZWwiy1xYhvRkoJ6AU08yQ==
last-modified: Fri, 08 Apr 2022 09:53:54 GMT
etag: "0x8DA1945B16373DC"
x-ms-request-id: 4e363f4f-501e-0023-6d3b-3888c1000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
vary: Accept-Encoding
cf-cache-status: MISS
expires: Sun, 05 Feb 2023 07:21:50 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 7949ce43cd071c0e-OSL
X-Firefox-Spdy: h2
promos.betano.com/sportsbook-pe/m-egr.png
200 OK 4.5 kB URL HTTP/2 promos.betano.com/sportsbook-pe/m-egr.png
IP
File type PNG image data, 227 x 41, 8-bit/color RGBA, non-interlaced\012- data
Hash ef8a58ecf598bfeb3306bb6a4682af3f
d8d43a3a55364446010c1899bb6ee91c152115b1
c0b3aa59867168813e62ac836bff6d3187e2983c7560b2cd6d2c60973819d981
GET /sportsbook-pe/m-egr.png HTTP/1.1
Host: promos.betano.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promos.betano.com/sportsbook-pe/index.html?btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO&utm_medium=4168&utm_source=3&siteid=13943
Cookie: btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO; __cf_bm=Tx6iKRfEcWV4ygAsaY4zVGm7CNa.ODiZc1RnKjSLXeA-1675580810-0-ASVySjVW4uKcUxLCG83YxYfDDtUy7JCvDDjQW206mH9rTT7SeqeUBqye/sqTqi7A9Wm95KgSLGqpzx4G249AWr0=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:50 GMT
content-type: image/png
content-length: 4450
cache-control: public, max-age=900
content-md5: 74pY7PWYv+szBrtqRoKvPw==
last-modified: Fri, 08 Apr 2022 09:53:54 GMT
etag: "0x8DA1945B1560856"
x-ms-request-id: 0136c416-d01e-0060-2f60-376e9d000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
vary: Accept-Encoding
cf-cache-status: MISS
expires: Sun, 05 Feb 2023 07:21:50 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 7949ce43cd091c0e-OSL
X-Firefox-Spdy: h2
promos.betano.com/sportsbook-pe/t-android.png
200 OK 1.3 kB URL HTTP/2 promos.betano.com/sportsbook-pe/t-android.png
IP
File type PNG image data, 18 x 23, 8-bit/color RGBA, non-interlaced\012- data
Hash dcb361d29a10a9093977797d7709556d
2ebda4766ffc9a43a263ae557769acb74290e98f
ec5e9ef6f31345217c5fb70ca6fa42110ef992b8162ea9213edab897e3163f91
GET /sportsbook-pe/t-android.png HTTP/1.1
Host: promos.betano.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promos.betano.com/sportsbook-pe/index.html?btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO&utm_medium=4168&utm_source=3&siteid=13943
Cookie: btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO; __cf_bm=Tx6iKRfEcWV4ygAsaY4zVGm7CNa.ODiZc1RnKjSLXeA-1675580810-0-ASVySjVW4uKcUxLCG83YxYfDDtUy7JCvDDjQW206mH9rTT7SeqeUBqye/sqTqi7A9Wm95KgSLGqpzx4G249AWr0=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:50 GMT
content-type: image/png
content-length: 1349
cache-control: public, max-age=900
content-md5: 3LNh0poQqQk5d3l9dwlVbQ==
last-modified: Fri, 08 Apr 2022 09:53:54 GMT
etag: "0x8DA1945B16A29A6"
x-ms-request-id: 58fda42e-d01e-004f-6260-376356000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
vary: Accept-Encoding
cf-cache-status: MISS
expires: Sun, 05 Feb 2023 07:21:50 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 7949ce43cd061c0e-OSL
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 372a14e773fe40628b7ab6564b4e7490
6e2fbe6f3f95fe088fb77cd2e15d01c248576096
1a50434a26f02b364f8ac84bbcf599792f79ad712088c1b966bc55099cbfff4a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1A50434A26F02B364F8AC84BBCF599792F79AD712088C1B966BC55099CBFFF4A"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13745
Expires: Sun, 05 Feb 2023 10:55:55 GMT
Date: Sun, 05 Feb 2023 07:06:50 GMT
Connection: keep-alive
code.jquery.com/jquery-3.4.1.min.js
200 OK 31 kB URL HTTP/2 code.jquery.com/jquery-3.4.1.min.js
IP
File type ASCII text, with very long lines (65451)
Hash 9abb42735168ac9e960b770179b642aa
11475bf8c7244af7a820108b7762e7a3f95aa52c
df53c09a6546b3d23dc0b2d0d92c39808c5663a75f4bf1f8d035fd11b7c81243
GET /jquery-3.4.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promos.betano.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:50 GMT
content-encoding: gzip
content-length: 30638
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-15851"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1675580810.dop066.sk1.t,1675580810.cds222.sk1.hn,1675580810.cds201.sk1.c
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash 64a9509ef40501edda2827f3f4e6967a
0ea8417273d07d59a921cb931f9d2a53aa7ab56f
b65a85b9591bdf6e9ef38b737185633da548ea7431418cf9f5ea9a17537a5b31
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=105137
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:50 GMT
Etag: "63de4d3b-117"
Expires: Mon, 06 Feb 2023 12:19:07 GMT
Last-Modified: Sat, 04 Feb 2023 12:19:07 GMT
Server: nginx
Content-Length: 279
ocsp.digicert.com/
200 OK 280 B IP
Hash 88e5718ac1aac1587cae01f24efac1b3
f4eeff70d56612d03abad049d93810c2d5344b99
1700a8db77cc56986a4900f31d01d2169d6b4168df56dcdb14d2427495eadb32
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=100801
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:50 GMT
Etag: "63de3c4b-118"
Expires: Mon, 06 Feb 2023 11:06:51 GMT
Last-Modified: Sat, 04 Feb 2023 11:06:51 GMT
Server: nginx
Content-Length: 280
cdn.cookielaw.org/consent/f1dbabb7-1b41-46c6-a924-f2073e4e762d/f1dbabb7-1b41-46c6-a924-f2073e4e762d.json
200 OK 3.2 kB URL HTTP/2 cdn.cookielaw.org/consent/f1dbabb7-1b41-46c6-a924-f2073e4e762d/f1dbabb7-1b41-46c6-a924-f2073e4e762d.json
IP
File type JSON data\012- , ASCII text, with very long lines (11678), with no line terminators
Hash c0080563e159625b14e4d5a7603bf32f
940244d346abb65e1e672b4d91dcbe4d56142fe8
517b42fe901607872aaf3a5665ebb3c9bb481d327e65196b14a0c922f3b4969c
GET /consent/f1dbabb7-1b41-46c6-a924-f2073e4e762d/f1dbabb7-1b41-46c6-a924-f2073e4e762d.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://in.betsson.com
Connection: keep-alive
Referer: https://in.betsson.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:50 GMT
content-type: application/x-javascript
content-length: 3158
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: wAgFY+FZYlsU5NWnYDvzLw==
last-modified: Thu, 11 Aug 2022 11:03:34 GMT
etag: 0x8DA7B8922758CCF
x-ms-request-id: ca6e301c-801e-0161-6f8d-adda6c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 11781
expires: Mon, 06 Feb 2023 07:06:50 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7949ce446e5cb51e-OSL
X-Firefox-Spdy: h2
cdnroute.bpsgameserver.com/echo-cdn-origin/themes/betsson/1674118443/js/compressed/echo.min.js
200 OK 197 kB URL HTTP/2 cdnroute.bpsgameserver.com/echo-cdn-origin/themes/betsson/1674118443/js/compressed/echo.min.js
IP
File type Unicode text, UTF-8 text, with very long lines (32000)
Size 197 kB (196857 bytes)
Hash 8fc222aac483b14568cfeddcefcf9856
b80c9bf9fa8ec4d410ac207fd79de33ce35b8447
14dfba22254706c1604c921864b2fbc2862ab0555b6799501a6a111dfbbe205d
GET /echo-cdn-origin/themes/betsson/1674118443/js/compressed/echo.min.js HTTP/1.1
Host: cdnroute.bpsgameserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://in.betsson.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript
content-length: 196857
date: Thu, 19 Jan 2023 09:24:44 GMT
server: Apache/2.4.52 (Ubuntu)
last-modified: Thu, 19 Jan 2023 08:54:07 GMT
etag: "c29da-5f29a1366f67b-br"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sat, 18 Feb 2023 09:24:44 GMT
content-encoding: br
access-control-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: YfIj2aMGafRCqrjAxKXWR_5ItrulSxH5BkGaiAsVEyvImOoxzfXXzA==
age: 1460526
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 280 B IP
Hash d993abf2d7bd95f5247c139ca1ba2c23
0f6cc6bbfae27454b149fe2dafa48a3e54f23ead
acdbd0cbeb6576b5934d37cf0d5dca7664ee65de2c89efd334155018ad545064
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6360
Cache-Control: max-age=170522
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:51 GMT
Etag: "63df33cd-118"
Expires: Tue, 07 Feb 2023 06:28:53 GMT
Last-Modified: Sun, 05 Feb 2023 04:42:53 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 280
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 0a0ed515f7eb1f42e16e1437d7c172d0
1659fba5a86471e7cc3e442488375982562f1216
c4450e53423a723b6549b6daede82f87b9f33aecabceeb7d254b51d278bf993b
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=150475
Date: Sun, 05 Feb 2023 07:06:50 GMT
Etag: "63defe55-1d7"
Expires: Tue, 07 Feb 2023 00:54:45 GMT
Last-Modified: Sun, 05 Feb 2023 00:54:45 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: tzuYbPSAoEsirSu97zHbs-rMJTPxmMEDHJrEuMIR_158oAvWNNiW1g==
cdn.cookielaw.org/scripttemplates/6.39.0/otBannerSdk.js
200 OK 90 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.39.0/otBannerSdk.js
IP
File type ASCII text, with very long lines (65455)
Hash 669fc272b6662bb850d92e9cfedf53a7
e573ee887b0ca01445457cc338f510c559a092f4
e77f0bfe908a1ee2181992bad85721333d192528c2a00aac42077549f7d377ba
GET /scripttemplates/6.39.0/otBannerSdk.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://in.betsson.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:51 GMT
content-type: application/javascript
content-length: 90454
content-encoding: gzip
content-md5: Zp/CcrZmK7hQ2S6c/t9Tpw==
last-modified: Fri, 26 Aug 2022 16:31:04 GMT
etag: 0x8DA87805EB35DE2
x-ms-request-id: 41a1e322-301e-0173-6402-efee70000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 37791
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7949ce452feeb4e8-OSL
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash f2641351b1a47349544902a45c5bb01c
c2397eb99cd3bd8013af02da668e1f2a70343f9e
76e5b5621d052a6124d99e406677858e06e11a5b76274d3e5b8654f84f09472f
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=90006
Date: Sun, 05 Feb 2023 07:06:51 GMT
Etag: "63de1221-1d7"
Expires: Mon, 06 Feb 2023 08:06:57 GMT
Last-Modified: Sat, 04 Feb 2023 08:06:57 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: BCg3lHOEMYbC7l757cprE45Woawa_wjYuwWdVGG8YITUSbTEjRG2nA==
promotions.betsafe.com/sb-bono-de-bienvenida/pe/?from=V5CB4vyLdRk9-56pllrwoGNd7ZgqdRLk-AP0846390900&affcode=AP0846390900&utm_medium=MA_Affiliates&utm_source=10687405
200 OK 11 kB URL HTTP/2 promotions.betsafe.com/sb-bono-de-bienvenida/pe/?from=V5CB4vyLdRk9-56pllrwoGNd7ZgqdRLk-AP0846390900&affcode=AP0846390900&utm_medium=MA_Affiliates&utm_source=10687405
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (29371)
Hash 11d7c79fe52948526547c20ec42ea476
b980c3467145dc7024894fab49e6ec4bdcd30112
4e81955c64c66bec071e787a311a2defff756150c6c5940b6ed734cba763ebef
GET /sb-bono-de-bienvenida/pe/?from=V5CB4vyLdRk9-56pllrwoGNd7ZgqdRLk-AP0846390900&affcode=AP0846390900&utm_medium=MA_Affiliates&utm_source=10687405 HTTP/1.1
Host: promotions.betsafe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: ZBan=V5CB4vyLdRk9-56pllrwoGNd7ZgqdRLk
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html;charset=UTF-8
content-length: 10979
date: Sun, 05 Feb 2023 07:06:51 GMT
server: Apache/2.4.52 (Ubuntu)
strict-transport-security: max-age=3153600; includeSubDomains
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: Z9AJ7MMTI6riico3EyTuea8DjjDZU_v_uE6RRBT9H45c1Fy2x4CNGw==
X-Firefox-Spdy: h2
promo.20bet.partners/redirect.aspx?pid=191762&bid=1971&lpid=1091
307 Temporary Redirect 0 B URL HTTP/2 promo.20bet.partners/redirect.aspx?pid=191762&bid=1971&lpid=1091
IP
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect.aspx?pid=191762&bid=1971&lpid=1091 HTTP/1.1
Host: promo.20bet.partners
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
content-type: text/html
content-length: 0
location: https://20media.world/pe?btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
p3p: CP="This is not a P3P policy! It is used to bypass IEs problematic handling of cookies"
x-aspnet-version: 4.0.30319
request-context: appId=cid-v1:83ffbda4-9458-475e-90ec-4427cfb5c3b0
access-control-expose-headers: Request-Context
expires: Sun, 05 Feb 2023 07:06:51 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 05 Feb 2023 07:06:51 GMT
set-cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a191762%2c%22BID%22%3a1971%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675580811080)%5c%2f%22%2c%22CookieTag%22%3a%221971191762451240919C20232576%22%7d%5d; SameSite=None;; domain=.20bet.partners; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; secure
NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%221098132707%7c1%22%7d%5d; domain=.20bet.partners; expires=Tue, 05-Feb-3022 07:06:51 GMT; path=/; secure; SameSite=Strict
server-timing: cdn-cache; desc=MISS, edge; dur=21, origin; dur=63
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19709
Expires: Sun, 05 Feb 2023 12:35:20 GMT
Date: Sun, 05 Feb 2023 07:06:51 GMT
Connection: keep-alive
b-partner.xyz/acf687497
302 Found 882 B IP
Hash 9235bfb1f10ec739444e22c438ec0825
366a4f02c4b030e355392c23ae02bef6bcbd9894
f5086d3c1debab9d09081d65a16fca9013babf91dfcee9b22e487ea997c5cddc
GET /acf687497 HTTP/1.1
Host: b-partner.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 05 Feb 2023 07:06:50 GMT
content-type: text/html; charset=utf-8
location: https://bitslot.io/?stag=148527_63df558aa7611a4f612def1d&tracking_link=http%3A%2F%2Fb-partner.xyz%2Facf687497
set-cookie: 73d3f1ba062585bce51f=63df558aa7611a4f612def1d; Expires=Tue, 07 Mar 2023 07:06:50 GMT
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
referrer-policy: strict-origin-when-cross-origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JP9JCXA20tklPSzMTiNVJdXY9uBPpbljPpWA1GVhiTYGxnAHZeAqHLc6QlQZSeWqX7zEWhKDeLt5JFm2jsPiDH7mhhGGdGDxUOtgYg0ZGEmJPYXEY1G4Ut76SoXQvvGC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7949ce416fa40b31-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/f1dbabb7-1b41-46c6-a924-f2073e4e762d/c15e6223-6008-45c0-bd61-d5fb7c5b4f73/en-us.json
200 OK 40 kB URL HTTP/2 cdn.cookielaw.org/consent/f1dbabb7-1b41-46c6-a924-f2073e4e762d/c15e6223-6008-45c0-bd61-d5fb7c5b4f73/en-us.json
IP
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (65516), with no line terminators
Hash 0dd6140bd20d837258000e83ad0f7ee0
a831acb47c96326d64eda75503813d5e541c36ec
bfad3ccc15bf3d9503aebb428e4f375014ca1a57f2071245574fae7adbb7b6ec
GET /consent/f1dbabb7-1b41-46c6-a924-f2073e4e762d/c15e6223-6008-45c0-bd61-d5fb7c5b4f73/en-us.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://in.betsson.com/
Origin: https://in.betsson.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:51 GMT
content-type: application/x-javascript
content-length: 39904
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: DdYUC9INg3JYAA6DrQ9+4A==
last-modified: Thu, 11 Aug 2022 10:59:59 GMT
etag: 0x8DA7B88A278C412
x-ms-request-id: 3487e052-901e-00f2-1476-ad0a72000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 25473
expires: Mon, 06 Feb 2023 07:06:51 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7949ce45df4fb51e-OSL
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad60ff0-69ec-4be2-9334-41be71ca4b7f.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad60ff0-69ec-4be2-9334-41be71ca4b7f.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1a4eed23b240d04a3cd6b085cfa93375
f29b9dc3f6bbd2ba76a5a4570ce044d5f240fd00
93e8371f80c12d3753842e36001dbb8d3dc2223b10a594639752cd816c492d4e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad60ff0-69ec-4be2-9334-41be71ca4b7f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10905
x-amzn-requestid: 093778fc-231c-452f-a6fc-15f4eb41ade0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmNJCEDzIAMFmxA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8c239-7f56d6e56392f373541db219;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:24:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: jIvBQjGh9JzWQM0YpEYiqP5CcBrkwqLVjAYhMWJ1P1H0MRkm7kpnpg==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 22:12:06 GMT
age: 32085
etag: "f29b9dc3f6bbd2ba76a5a4570ce044d5f240fd00"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c8da623-73ab-4c2d-afaa-03d28de3a280.png
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c8da623-73ab-4c2d-afaa-03d28de3a280.png
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3e0c38abfcd86f8074d4182d49fc354f
1367bebb73fa652695242100b26c394f1bfe4457
e42d110060133ac05e6cdfafa6473c55473220fdc7eaf03e3a89f58aa3603670
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c8da623-73ab-4c2d-afaa-03d28de3a280.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 11056
x-amzn-requestid: 4acc3364-4a33-4934-bdcb-41284d952113
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPFrwEW4IAMF_Tg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf8317-33872f461a2faab552322837;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:04:55 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XhPm-ZDoEjlgeiXUwMRQZ5pOMs4qJzXagWZg302DcrYpUm5X7O8ZZA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 21:46:47 GMT
age: 33604
etag: "1367bebb73fa652695242100b26c394f1bfe4457"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F030e2301-116b-4cdd-ae90-c5bbc86e9669.jpeg
200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F030e2301-116b-4cdd-ae90-c5bbc86e9669.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b1092c4dd4d9ca4d09462ae46e1dd7c1
17444ff60be1afbc40d3653fa936f9eaf9478068
ea8362c7249080b34288ee675f70333607fc3be37e716fdcf63e4901849def9f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F030e2301-116b-4cdd-ae90-c5bbc86e9669.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7288
x-amzn-requestid: 1aa297f5-2f9a-45be-b823-1eb4d5887769
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f1WrwH-iIAMFyhQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ded17e-2b630b4a302b8ae118883b71;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 21:43:26 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: z2oKgp1keqEkvN6jjsUepMbrxD4JCXKAOHrMNJHcuXN0CpulUh5GLA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 21:43:39 GMT
etag: "17444ff60be1afbc40d3653fa936f9eaf9478068"
content-type: image/jpeg
age: 33792
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg
200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5b6c30ad03669b66bf2f63b3edd69882
e630bd132b52b965a5ade646ea8a165d1abf6d7b
f8233d879ec17fd91909655ff8881f2ebfad84272fde3ed5e5be37580378a989
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5014
x-amzn-requestid: a434aae4-fe4b-4fc7-9b7e-eeb552484e8a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi3bIE0aoAMF6YQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76c47-5556d14757190c842bbc6b06;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 07:05:43 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: k6YqagXr3Wr-u1uDKojEnIGW0CxU5yvWPtlzNpzoIvmg9F-rJb9uFQ==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 14:53:45 GMT
age: 58386
etag: "e630bd132b52b965a5ade646ea8a165d1abf6d7b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F94063a59-0665-4d1d-89f4-785b4ab501d8.jpeg
200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F94063a59-0665-4d1d-89f4-785b4ab501d8.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bee08788da5b88dde69aeb1d4de005c9
537c7a19a9395a60452b6b0b3ae08d47f4705181
02365d88ae9ff3ace3f29509df0e436ab0838d44714ef0f25dea463d665f794a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F94063a59-0665-4d1d-89f4-785b4ab501d8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6486
x-amzn-requestid: 544d13b9-8d45-4029-88e0-280f27cc0fa3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi4-SHN1IAMFSkw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76ec1-3f1ee84f53fe45cc01439a28;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 07:16:17 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: TtyPO9j12ZpU3XdElRgCrqB4XNERrppavwJZJn5As8mqjjDLyZBmsw==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 21:43:39 GMT
age: 33792
etag: "537c7a19a9395a60452b6b0b3ae08d47f4705181"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
es.888casino.com/exclusive-mob/spinson.htm?utm_campaign=100138643_1853546_nodescription&utm_content=100138643&utm_medium=casap&utm_source=aff
200 OK 25 kB URL HTTP/2 es.888casino.com/exclusive-mob/spinson.htm?utm_campaign=100138643_1853546_nodescription&utm_content=100138643&utm_medium=casap&utm_source=aff
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2886)
Hash e2c4da0000672d1e2bf0bb07a4d7c5c2
3bd8276a48da24514f2dbc62b71ce41ff8e85abd
e8d1f976951146a92d4629524ef2864f286c0baa752e2c0e34f104ebd7ab414b
GET /exclusive-mob/spinson.htm?utm_campaign=100138643_1853546_nodescription&utm_content=100138643&utm_medium=casap&utm_source=aff HTTP/1.1
Host: es.888casino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: 888TempQueryCookie=sr%3D1853546; 888Cookie=isftd%3Dfalse%26isreal%3Dfalse%26lang%3Des%26OSR%3D1853546%26RefType%3DNoReferrer%26TestData%3D%7B%22mm_id%22%3A%2245577%22%2C%22orig-lp%22%3A%22https%3A%2F%2Fes.888casino.com%2Fexclusive-mob%2Fspinson.htm%22%2C%22referrer%22%3A%22NULL%22%2C%22utm_campaign%22%3A%22100138643_1853546_nodescription%22%2C%22utm_content%22%3A%22100138643%22%2C%22utm_medium%22%3A%22casap%22%2C%22utm_source%22%3A%22aff%22%7D; 888TempContext=testdata%3D%7B%22mm_id%22%3A%2245577%22%2C%22orig-lp%22%3A%22https%3A%2F%2Fes.888casino.com%2Fexclusive-mob%2Fspinson.htm%22%2C%22referrer%22%3A%22NULL%22%2C%22utm_campaign%22%3A%22100138643_1853546_nodescription%22%2C%22utm_content%22%3A%22100138643%22%2C%22utm_medium%22%3A%22casap%22%2C%22utm_source%22%3A%22aff%22%7D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
date: Sun, 05 Feb 2023 07:06:50 GMT
srv: 44304334
p3p: CP="Read our privacy policy at http://www.888.com/security-and-privacy/privacy-policy.htm"
content-security-policy: frame-ancestors 'self' *.genesazrak.com *.888casinoarabic.net *.arabiccasino888.com *.casinoarabic888.com *.casinoarabic-888.com *.888-casinoarabic.com *.888casino-arabic.com http://wrapper.safe-installation.com/ https://wrapper.safe-installation.com/ http://localhost:* https://localhost:* *.bingosys.net *.secured-igaming-usa.com *.888.pt *.sisportsbook.com *.888poker.de *.888slots.de *.safe-iplay.com *.safe-installation.com *.payoutscentral.com *.triple8holdem.com *.888.com *.secured-qa.com *.secured-registration.com *.secureutils.com *.images4us.com *.onlinepersonalmessages.com *.888sport.com *.888sport.es *.888sport.it *.888sport.dk *.888sport.ro *.888sport.se *.888sport.us *.888sport.de *.777.com *.personalinfoonline.com *.888.de *.888casino.com *.888poker.com *.888casino.dk *.888poker.dk *.888.de *.888casino.ro *.888poker.ro *.888casino.se *.888poker.se *.888casino.es *.888poker.es *.888casino.it *.888poker.it *.888casino.us *.888poker.us *.888ladies.com *.888.pt cmsp *.harrahscasino.com *.wsop.com *.delawarepark.com *.doverdowns.com *.harringtongamingonline.com *.secured-igaming-services.com *.secured-igaming-usa.com *.igaming-services.com *.888.ca *.888casino.ca *.888poker.ca *.888sport.ca *.888.nl *.888casino.nl *.888poker.nl *.888sport.nl *.ar-888-casino.com *.888casino-ar.com *.ar888-casino.com *.arab888-casino.com *.casinoelarab-888.com *.alarab-888casino.com *.casinoalarab-888.com *.888casino-alarab.com *.888casino-arabian.com *.arabian-888casino.com *.888-casino-arabian.com *.888-casino-alarab.com *.ballysdover.com *.888casino-uae.com *.playat888-games.com *.888casino-game.com *.online-arabic-casino.net *.tripleeight.live *.playat888online.com *.888games-uae.com *.triple-eight-games.com *.play-casino-now.com *.888slots-uae.com *.888-uae.com *.mrgreen.de *.mrgreen.se *.mrgreen.com *.mrgreen.dk
x-wcs-correlation-id: Z-PIeQiEmhAQOPIEZbX6xr6g2oA_4mbgrxpZN9eAQtTsRPOskpV-IA==
set-cookie: 888TempQueryCookie=; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=888casino.com; path=/; secure; samesite=none; httponly
888TempContext=; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=888casino.com; path=/; secure; samesite=none; httponly
888Cookie=isftd%3Dfalse%26isreal%3Dfalse%26lang%3Des%26OSR%3D1853546%26RefType%3DNoReferrer%26TestData%3D%7B%22mm_id%22%3A%2245577%22%2C%22orig-lp%22%3A%22https%3A%2F%2Fes.888casino.com%2Fexclusive-mob%2Fspinson.htm%22%2C%22referrer%22%3A%22NULL%22%2C%22utm_campaign%22%3A%22100138643_1853546_nodescription%22%2C%22utm_content%22%3A%22100138643%22%2C%22utm_medium%22%3A%22casap%22%2C%22utm_source%22%3A%22aff%22%7D; max-age=604800; domain=888casino.com; path=/; secure; samesite=none; httponly
apigw-requestid: f2pNsgwlDoEEJBA=
content-encoding: br
vary: Accept-Encoding,User-Agent,Cookie
x-cache: Miss from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: Z-PIeQiEmhAQOPIEZbX6xr6g2oA_4mbgrxpZN9eAQtTsRPOskpV-IA==
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash bc47a9da7fd822506fbbd85c2174ebfc
615972e33f2ef6c4da92dde831398485e2ace04f
954ef70016d4073400cd0194d8cb0987ab2f3840292fa26163265130a378945a
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 05 Feb 2023 07:06:51 GMT
Last-Modified: Sun, 05 Feb 2023 06:41:46 GMT
Server: ECS (nyb/1D2F)
X-Cache: Miss from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: XF7R3lKPDgezsDoKX7UFqrawc0YBoDnmiyjfpSzGXsCrBPwZOBIVUQ==
Age: 1505
ocsp.digicert.com/
200 OK 280 B IP
Hash 0b1ce3f8acf202f3be998cd0a8ce9ca4
c5ab843824b462f6c424968cd85ea1ce53be73d8
3480e6cd22591897de7bcb7b18f291140475f26eee9ee2afdcfef151d0a48bd2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:51 GMT
Etag: "63de7066-118"
Server: ECS (amb/6B73)
Content-Length: 280
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/loader/index.es2017.js
200 OK 78 B URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/loader/index.es2017.js
IP
Hash 0fdc437b89bf46bca8fc492a05b5cb3c
ee8d395e2b61dbfaeae938b1c1e0bd56cfbf0397
6ac3b56975178012793ab68fbb1431305008beb77881d51ee26ae00a41e0cad7
GET /prod/common/complib/loader/index.es2017.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://in.betsson.com
Connection: keep-alive
Referer: https://in.betsson.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: dkun2Ngq1B5Iy3pp9PgLDneSuJO3bSp+pI0uWYqnXqEXxGiCL0fw6IOuUAlsurA/sIexglRstIE=
x-amz-request-id: DZRFMXFMKA84F3AY
Date: Sun, 05 Feb 2023 07:06:52 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 01 Feb 2023 15:22:34 GMT
ETag: "0fdc437b89bf46bca8fc492a05b5cb3c"
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 78
promos.betano.com/cdn-cgi/challenge-platform/h/b/scripts/alpha/invisible.js?ts=1675569600
200 OK 17 kB URL HTTP/2 promos.betano.com/cdn-cgi/challenge-platform/h/b/scripts/alpha/invisible.js?ts=1675569600
IP
File type ASCII text, with very long lines (40018), with no line terminators
Hash 054f0813777b98a80e40df9d9dd000fe
bf2d34eb81436c3ac6de50b73da02aafc55b3532
535b41dc8ebcfe369ae3547bda0402c9e5a2433c4ebd253f3e219344aeb7e623
GET /cdn-cgi/challenge-platform/h/b/scripts/alpha/invisible.js?ts=1675569600 HTTP/1.1
Host: promos.betano.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO; __cf_bm=Tx6iKRfEcWV4ygAsaY4zVGm7CNa.ODiZc1RnKjSLXeA-1675580810-0-ASVySjVW4uKcUxLCG83YxYfDDtUy7JCvDDjQW206mH9rTT7SeqeUBqye/sqTqi7A9Wm95KgSLGqpzx4G249AWr0=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:51 GMT
content-type: application/javascript; charset=UTF-8
cache-control: max-age=14400, public
vary: accept-encoding
x-control-type-options: nosniff
server: cloudflare
cf-ray: 7949ce452dad1c0e-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 0a0ed515f7eb1f42e16e1437d7c172d0
1659fba5a86471e7cc3e442488375982562f1216
c4450e53423a723b6549b6daede82f87b9f33aecabceeb7d254b51d278bf993b
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=150474
Date: Sun, 05 Feb 2023 07:06:51 GMT
Etag: "63defe55-1d7"
Expires: Tue, 07 Feb 2023 00:54:45 GMT
Last-Modified: Sun, 05 Feb 2023 00:54:45 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: FwGwaM7KbeSiUe95i0cSaSdCFmqUbz2dDjsmNNAHJKC-lEZiXbWJEA==
megapari.com//registration/?tag=d_2032927m_25437c_
301 Moved Permanently 0 B URL HTTP/2 megapari.com//registration/?tag=d_2032927m_25437c_
IP
ASN #202492 Silverhill Group Holding Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET //registration/?tag=d_2032927m_25437c_ HTTP/1.1
Host: megapari.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Sun, 05 Feb 2023 07:06:51 GMT
content-type: text/html; charset=utf-8
content-length: 0
x-frame-options: SAMEORIGIN
set-cookie: SESSION=2c0839ace8afab5d985647d564a34dce; path=/; secure; HttpOnly; SameSite=Lax
ua=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
auid=U5PMxWPfVYuN6z9NA9ZQAg==; path=/; secure; httponly; samesite=lax
location: /registration/?tag=d_2032927m_25437c_
x-reason: 100
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 280 B IP
Hash 2ded4269919793ac89338412d697b4ca
e0f5d87f3f84f61266593d54f1b089a75ffa3d32
8df21f809c81ac86914ccc04bdfcfa9a1cc18fdc864236dc4beb4e7803a57dcc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1748
Cache-Control: max-age=149345
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:51 GMT
Etag: "63def318-118"
Expires: Tue, 07 Feb 2023 00:35:56 GMT
Last-Modified: Sun, 05 Feb 2023 00:06:48 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 280
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/polyfills/index.js
200 OK 1.1 kB URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/polyfills/index.js
IP
Hash d584dac684dbfccbd3271d63a2c59ed1
81d1179f903109a0d78f99626fea0b7466ce29ea
954f4ed0d5d08ce0bf5307007eaaf3d7c7c062a3d112b147b8710af544a4a844
GET /prod/common/complib/esm/polyfills/index.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://in.betsson.com
Connection: keep-alive
Referer: https://cbt-gecko-storage.s3.eu-central-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 9tzJMwi12HNrpiD3ws8O/+qgirVsKYHkQeFgdvpMczjtfWJsMUunUqnjasndSpQlQZi9n1GBF9o=
x-amz-request-id: DZRFCFA53DX5N0BY
Date: Sun, 05 Feb 2023 07:06:52 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 01 Feb 2023 15:22:34 GMT
ETag: "d584dac684dbfccbd3271d63a2c59ed1"
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 1143
megapari.com/registration/?tag=d_2032927m_25437c_
308 Permanent Redirect 470 B URL HTTP/2 megapari.com/registration/?tag=d_2032927m_25437c_
IP
ASN #202492 Silverhill Group Holding Ltd
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 2a83b73f5a0db9cec812d739c213cbc3
8021b3c4344b6e4856b741821dba9e5dbe3c829a
02433486a582bfbc108a114d3b08c80a9dd5b6fb2eedaecea640a6230a72db02
GET /registration/?tag=d_2032927m_25437c_ HTTP/1.1
Host: megapari.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 308 Permanent Redirect
server: nginx
date: Sun, 05 Feb 2023 07:06:51 GMT
content-type: text/html; charset=utf-8
location: https://megapari.com/registration?tag=d_2032927m_25437c_
x-frame-options: SAMEORIGIN
set-cookie: SESSION=ce5a35aeb6ccfa93e96f07f3be2d7af0; path=/; secure; HttpOnly; SameSite=Lax
ua=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
_glhf=1675598587; expires=Sun, 05-Feb-2023 08:06:51 GMT; Max-Age=3600; path=/
dnb=1; path=/; httponly; samesite=lax
auid=U5PMxWPfVYuN6z9NA9ZSAg==; path=/; secure; httponly; samesite=lax
x-reason: 1079,1021
cache-control: no-cache, private
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/loader.js
200 OK 4.3 kB URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/loader.js
IP
File type Java source, ASCII text, with very long lines (3280)
Hash 1dee864a18a5c118812abfad81713014
090d7df3c71c641a2c4eb4b5151a7da3a176d40a
6e6c279c4bc498ae566b6bb9ee399c19be757dc99e47c6b8b9211c23f254b075
GET /prod/common/complib/esm/loader.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://in.betsson.com
Connection: keep-alive
Referer: https://cbt-gecko-storage.s3.eu-central-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: /HFuDkKMDHuiUK5A/HykgJnO7QQ3BPZkqwHTnPwdYVZh27VOtVjTzJ6oZSNKCZ4xGvYBK9Y3LAE=
x-amz-request-id: DZR38T59H6G5TBQT
Date: Sun, 05 Feb 2023 07:06:52 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 01 Feb 2023 15:22:34 GMT
ETag: "1dee864a18a5c118812abfad81713014"
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 4322
cdn.cookielaw.org/scripttemplates/6.39.0/assets/otFlat.json
200 OK 3.0 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.39.0/assets/otFlat.json
IP
File type JSON data\012- , ASCII text, with very long lines (11118)
Hash 5f1f3dee54d56068cc422c2e182af30c
307e86761b9ecbc0262af0358acfc0e0b95e7ea5
482ea2a9ca60ee6292211fcbfb5ea4b28ef501cd7be34899a43384c8f9a113e8
GET /scripttemplates/6.39.0/assets/otFlat.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://in.betsson.com/
Origin: https://in.betsson.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:51 GMT
content-type: application/json
content-length: 3007
content-encoding: gzip
content-md5: Xx897lTVYGjMQiwuGCrzDA==
last-modified: Fri, 26 Aug 2022 16:30:55 GMT
etag: 0x8DA87805972EF22
x-ms-request-id: ff9313ca-501e-0141-3078-b9b6a0000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 81568
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7949ce4959b3b51e-OSL
X-Firefox-Spdy: h2
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/app-globals-0f993ce5.js
200 OK 64 B URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/app-globals-0f993ce5.js
IP
Hash 8372a2a3eccde49725077fdf00761935
f153edb0551d43830e36a1c5957a3496cc855c0a
cb534efe547cb9d9ba2853d713e575e0ca10c4f154733406372df2bb40514f80
GET /prod/common/complib/esm/app-globals-0f993ce5.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://in.betsson.com
Connection: keep-alive
Referer: https://cbt-gecko-storage.s3.eu-central-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: c7XKoAZTI7I2AwW5NwhIpVhQ/j5JROziAwiDQXS02ZvRZHhUp2ZlYlwtRjrIhAM6BhSs/OmmdUs=
x-amz-request-id: DZREWHRX8NVG40R0
Date: Sun, 05 Feb 2023 07:06:52 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 01 Feb 2023 15:22:34 GMT
ETag: "8372a2a3eccde49725077fdf00761935"
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 64
cdn.cookielaw.org/consent/2caa4cad-e958-4659-ab40-48264f2a57bf/2caa4cad-e958-4659-ab40-48264f2a57bf.json
200 OK 3.2 kB URL HTTP/2 cdn.cookielaw.org/consent/2caa4cad-e958-4659-ab40-48264f2a57bf/2caa4cad-e958-4659-ab40-48264f2a57bf.json
IP
File type JSON data\012- , ASCII text, with very long lines (11678), with no line terminators
Hash 752170a600a8f416176ba289c1bb1091
3c70431a33756a791ff480b02a7fe0c559650880
e3c7edd865421a09750a060b20cc1e8f09324ef44a0cebf18e1db9acc1a304c4
GET /consent/2caa4cad-e958-4659-ab40-48264f2a57bf/2caa4cad-e958-4659-ab40-48264f2a57bf.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://promotions.betsafe.com
Connection: keep-alive
Referer: https://promotions.betsafe.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:51 GMT
content-type: application/x-javascript
content-length: 3157
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: dSFwpgCo9BYXa6KJwbsQkQ==
last-modified: Thu, 11 Aug 2022 10:28:17 GMT
etag: 0x8DA7B84346DFAA7
x-ms-request-id: 10e18dd0-501e-006c-598d-ad7335000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 25647
expires: Mon, 06 Feb 2023 07:06:51 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7949ce4999feb51e-OSL
X-Firefox-Spdy: h2
www.bitslot.io/?stag=148527_63df558aa7611a4f612def1d&tracking_link=http%3A%2F%2Fb-partner.xyz%2Facf687497
403 Forbidden 4.9 kB URL HTTP/2 www.bitslot.io/?stag=148527_63df558aa7611a4f612def1d&tracking_link=http%3A%2F%2Fb-partner.xyz%2Facf687497
IP
Hash 4b752de3720d7a3b858448a0f9c6e8ac
e0603b69b13190af2212a1db04a3fc3c8b2d1d88
e0c708aed43702fd50cb13a15f108a5f626c3e88a6e23de06a77f7da57f974a2
GET /?stag=148527_63df558aa7611a4f612def1d&tracking_link=http%3A%2F%2Fb-partner.xyz%2Facf687497 HTTP/1.1
Host: www.bitslot.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
date: Sun, 05 Feb 2023 07:06:50 GMT
content-type: text/html; charset=UTF-8
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-frame-options: SAMEORIGIN
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 7949ce4488f20b31-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash ac85d3e0a8ec2827b2e3f0eca3336919
4b630e134dcb05e77c44e313f22f2214b51841a2
d1747dfa46c4ca2dcc3239bd1376ae7401b4b3e7b8d260dc4162b9b8208cd6f7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5559
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:51 GMT
Last-Modified: Sun, 05 Feb 2023 05:34:12 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/index-c8ce0eba.js
200 OK 146 kB URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/index-c8ce0eba.js
IP
File type ASCII text, with very long lines (1726)
Size 146 kB (146308 bytes)
Hash 98e671a31d29c2283e57432b06911d14
1d0a598b3f57212e64fefdbdc2c71c02f9089800
05af1e15f9140851b7d1b9251cd98e4ed80bbb7c86ec84fd67e82cace03fdeeb
GET /prod/common/complib/esm/index-c8ce0eba.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://in.betsson.com
Connection: keep-alive
Referer: https://cbt-gecko-storage.s3.eu-central-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: fwXpJ0kzg0a8rEOJijc2095N5qSfAbhMDEO7qE8ARqzb4Iy1G3+l3MYJLF+43k3qCikUzb0HE7A=
x-amz-request-id: DZR2X55D9D4VDPJ4
Date: Sun, 05 Feb 2023 07:06:52 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 01 Feb 2023 15:22:34 GMT
ETag: "98e671a31d29c2283e57432b06911d14"
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 146308
cdn.cookielaw.org/scripttemplates/6.39.0/assets/otCommonStyles.css
200 OK 24 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.39.0/assets/otCommonStyles.css
IP
File type ASCII text, with very long lines (11231)
Hash 450fc64c824953b13db7410dbce69a9b
81b2aef51312ef6c75df3a471a75ae60a41d86b5
2d9aff81903a4d2a5ec912e4b2ee338622aeaa5a8bc58fa03030fd00530a70ea
GET /scripttemplates/6.39.0/assets/otCommonStyles.css HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://in.betsson.com/
Origin: https://in.betsson.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:51 GMT
content-type: text/css
content-md5: B55i3ZY9miZIaUrwjufy0w==
last-modified: Fri, 26 Aug 2022 16:31:09 GMT
x-ms-request-id: 0b4a44af-901e-00d0-1978-b96444000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 81568
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7949ce4969bdb51e-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/loader/index.es2017.js
304 Not Modified 146 B URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/loader/index.es2017.js
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /prod/common/complib/loader/index.es2017.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://promotions.betsafe.com
Connection: keep-alive
Referer: https://promotions.betsafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
If-None-Match: "0fdc437b89bf46bca8fc492a05b5cb3c"
HTTP/1.1 304 Not Modified
x-amz-id-2: 8dnmug1wzXpzAPMH8TzX2NE2qdp+DTzmrU8Li0+hSbXNPgrE/I2Q3H9Oq9SsIBBXfd34l/Fm7Ms=
x-amz-request-id: DZR7VBBYCQNWAPJN
Date: Sun, 05 Feb 2023 07:06:52 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 01 Feb 2023 15:22:34 GMT
ETag: "0fdc437b89bf46bca8fc492a05b5cb3c"
Server: AmazonS3
connect.facebook.net/en_US/fbevents.js
200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP
File type ASCII text, with very long lines (64348)
Hash dd1f85cc598419df61e254e53f9ec1ef
f86c0ee563f5b7a01e1d40b566f2bc184a32380f
c06f52b233c835b03292f39cb847507a03bb971066bf91341b58a580244398c0
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promos.betano.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: GD3oQGOAj7ciAnQVxavcADBw8tr06MDx2PMA0qxBeH2crRTnWM0sUufBzBe7h3EMkgV0mJLpwWnFmlNLTWcNYA==
content-length: 27843
x-fb-trip-id: 1679558926
date: Sun, 05 Feb 2023 07:06:51 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash ac85d3e0a8ec2827b2e3f0eca3336919
4b630e134dcb05e77c44e313f22f2214b51841a2
d1747dfa46c4ca2dcc3239bd1376ae7401b4b3e7b8d260dc4162b9b8208cd6f7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5559
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:51 GMT
Last-Modified: Sun, 05 Feb 2023 05:34:12 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/loader.js
304 Not Modified 0 B URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/loader.js
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /prod/common/complib/esm/loader.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://promotions.betsafe.com
Connection: keep-alive
Referer: https://cbt-gecko-storage.s3.eu-central-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
If-None-Match: "1dee864a18a5c118812abfad81713014"
HTTP/1.1 304 Not Modified
x-amz-id-2: v9wnIVLoYxeSrVRYfyeX/PWF/pLKgD2AbsGpNT5SByIf1hXbu7EegUCcI7bwavHHHKH6Rdm/mcw=
x-amz-request-id: DZRCAPXV2TWS9E30
Date: Sun, 05 Feb 2023 07:06:52 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 01 Feb 2023 15:22:34 GMT
ETag: "1dee864a18a5c118812abfad81713014"
Server: AmazonS3
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/polyfills/index.js
304 Not Modified 0 B URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/polyfills/index.js
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /prod/common/complib/esm/polyfills/index.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://promotions.betsafe.com
Connection: keep-alive
Referer: https://cbt-gecko-storage.s3.eu-central-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
If-None-Match: "d584dac684dbfccbd3271d63a2c59ed1"
HTTP/1.1 304 Not Modified
x-amz-id-2: PSyl7p7pgsMQtjuV9yuw+qwdvQuhAIpKOp5VU56iRbypJzzO3RoKgUjSLclaMJEmF9OUC2olMJE=
x-amz-request-id: DZRA9HHZKXTFJ5JS
Date: Sun, 05 Feb 2023 07:06:52 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 01 Feb 2023 15:22:34 GMT
ETag: "d584dac684dbfccbd3271d63a2c59ed1"
Server: AmazonS3
cdn.cookielaw.org/logos/ef1e7412-c61f-4d80-8864-afd77df9fe19/f1dbabb7-1b41-46c6-a924-f2073e4e762d/e2b09f74-8c8c-441e-9884-ffa585cc341f/betsson.png
200 OK 8.5 kB URL HTTP/2 cdn.cookielaw.org/logos/ef1e7412-c61f-4d80-8864-afd77df9fe19/f1dbabb7-1b41-46c6-a924-f2073e4e762d/e2b09f74-8c8c-441e-9884-ffa585cc341f/betsson.png
IP
File type PNG image data, 318 x 57, 8-bit/color RGBA, non-interlaced\012- data
Hash 859aca7869c488ed6b04eb203250c4e1
fea586929aede21efa8ccbc87024dc21e1aaaf2b
ebf3c2f1ce0729ecee607abcd13b46df41d46f9e7b33dc71b44e488fbac42f0c
GET /logos/ef1e7412-c61f-4d80-8864-afd77df9fe19/f1dbabb7-1b41-46c6-a924-f2073e4e762d/e2b09f74-8c8c-441e-9884-ffa585cc341f/betsson.png HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://in.betsson.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:51 GMT
content-type: application/octet-stream
content-length: 8535
content-md5: hZrKeGnEiO1rBOsgMlDE4Q==
last-modified: Mon, 01 Jun 2020 09:26:09 GMT
etag: 0x8D8060DD16450A8
x-ms-request-id: e93db895-b01e-0126-7caf-590507000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 14762
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7949ce4adbffb4e8-OSL
X-Firefox-Spdy: h2
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/app-globals-0f993ce5.js
304 Not Modified 146 B URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/app-globals-0f993ce5.js
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /prod/common/complib/esm/app-globals-0f993ce5.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://promotions.betsafe.com
Connection: keep-alive
Referer: https://cbt-gecko-storage.s3.eu-central-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
If-None-Match: "8372a2a3eccde49725077fdf00761935"
HTTP/1.1 304 Not Modified
x-amz-id-2: BkO/XdMzJYUBPV4pPPTX7hjH2DVJQlQ2vPgMixJYyLLR4wc2S0GQhs7RW1Xe291ZqBdFiZSXbWs=
x-amz-request-id: BJNGT20YZXZKX5KK
Date: Sun, 05 Feb 2023 07:06:53 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 01 Feb 2023 15:22:34 GMT
ETag: "8372a2a3eccde49725077fdf00761935"
Server: AmazonS3
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/index-c8ce0eba.js
304 Not Modified 0 B URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/index-c8ce0eba.js
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /prod/common/complib/esm/index-c8ce0eba.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://promotions.betsafe.com
Connection: keep-alive
Referer: https://cbt-gecko-storage.s3.eu-central-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
If-None-Match: "98e671a31d29c2283e57432b06911d14"
HTTP/1.1 304 Not Modified
x-amz-id-2: MwTSwe/67PCLKZbU48aoeDHzL/kjlp6uKWSmQ6/0LQuuOuR9d+9nP9wv3hLQTo8tVVspGWba7Us=
x-amz-request-id: BJNQ8Y0HTZ8RXF0K
Date: Sun, 05 Feb 2023 07:06:53 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 01 Feb 2023 15:22:34 GMT
ETag: "98e671a31d29c2283e57432b06911d14"
Server: AmazonS3
s2.adform.net/banners/scripts/st/trackpoint-async.js
200 OK 47 kB URL HTTP/2 s2.adform.net/banners/scripts/st/trackpoint-async.js
IP
Hash c9d4154c38eea24c09232f261443a868
3b4f1b5def60fcaef35c5b7f62097fa1782803a5
ba4aaa4d96b507b179f19694fadb4848a00165092608be4f1c286498f7343516
GET /banners/scripts/st/trackpoint-async.js HTTP/1.1
Host: s2.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promos.betano.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 07:06:52 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 29 Nov 2022 10:23:25 GMT
x-rgw-object-type: Normal
etag: W/"83eb5fafaa212c785f7393188ff817aa"
x-amz-request-id: tx00000ea5be29143837370-006385e0d3-32941e2b-default
access-control-allow-origin: *
cache-control: public, max-age=604800
x-cache-status: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/2caa4cad-e958-4659-ab40-48264f2a57bf/c15e6223-6008-45c0-bd61-d5fb7c5b4f73/en-us.json
200 OK 33 kB URL HTTP/2 cdn.cookielaw.org/consent/2caa4cad-e958-4659-ab40-48264f2a57bf/c15e6223-6008-45c0-bd61-d5fb7c5b4f73/en-us.json
IP
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (65516), with no line terminators
Hash c5c47deef535fa3085e76fc339c7d6cd
6d4e5d82150d1422f4db55415c44a01dc0571cb2
f2175def3985a6973e5170f34233c0ad2b1ca2927a1b7a18a7d363109b4a9bff
GET /consent/2caa4cad-e958-4659-ab40-48264f2a57bf/c15e6223-6008-45c0-bd61-d5fb7c5b4f73/en-us.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://promotions.betsafe.com/
Origin: https://promotions.betsafe.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:52 GMT
content-type: application/x-javascript
content-length: 32682
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: xcR97vU1+jCF52/DOcfWzQ==
last-modified: Thu, 11 Aug 2022 10:30:36 GMT
etag: 0x8DA7B8487AC805D
x-ms-request-id: f023086f-e01e-0018-078c-adf573000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 66435
expires: Mon, 06 Feb 2023 07:06:52 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7949ce4cfcafb51e-OSL
X-Firefox-Spdy: h2
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/cbt-footer.entry.js
200 OK 15 kB URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/cbt-footer.entry.js
IP
File type C++ source text\012- Java source, ASCII text, with very long lines (4837)
Hash 13e026cd20ab6e3d04d97b4e6d831c23
b43989b8125b7e2c9d096d389a65ef43a7833fc6
dcdacdc267f6f3cca03b8225c9ed74392627df790023230be3306dd25c10a34c
GET /prod/common/complib/esm/cbt-footer.entry.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://in.betsson.com
Connection: keep-alive
Referer: https://cbt-gecko-storage.s3.eu-central-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: F65FrX0F2MLs5/F1gtlpqFx6oEw5okyyT5/VOFJyqogreT01CLKEZq4waO9MpcdStR0vpe1ZK40=
x-amz-request-id: BJNV0ABAYG4XPW7R
Date: Sun, 05 Feb 2023 07:06:53 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 01 Feb 2023 15:22:34 GMT
ETag: "13e026cd20ab6e3d04d97b4e6d831c23"
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 15116
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/cbt-footer.entry.js
304 Not Modified 0 B URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/cbt-footer.entry.js
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /prod/common/complib/esm/cbt-footer.entry.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://promotions.betsafe.com
Connection: keep-alive
Referer: https://cbt-gecko-storage.s3.eu-central-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
If-None-Match: "13e026cd20ab6e3d04d97b4e6d831c23"
HTTP/1.1 304 Not Modified
x-amz-id-2: 8fd5EmjXXgPOrPVEyPxBLUj+ZVGXdbA1+UkviLZzWsXupWMWNqKpe09rAEUdW5BJHkR/dk1R6GI=
x-amz-request-id: BJNQP6QMG29SY84Q
Date: Sun, 05 Feb 2023 07:06:53 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 01 Feb 2023 15:22:34 GMT
ETag: "13e026cd20ab6e3d04d97b4e6d831c23"
Server: AmazonS3
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/const-6eaf0a26.js
200 OK 145 B URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/const-6eaf0a26.js
IP
Hash 5a3e80c9c806e8b73d6e3023558b6973
f9e09308c0aab87ee21495928b0799c8e0e37577
ac3c500f15515186e6ba3ba3bec6a918b13f8623abd6aee8c61a018d5b93bf44
GET /prod/common/complib/esm/const-6eaf0a26.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://in.betsson.com
Connection: keep-alive
Referer: https://cbt-gecko-storage.s3.eu-central-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: sDwRIX+A/gzyn+Zd2VeyfPCxAd9D0gy2mMYEiXpO5OwcBIw5FePlHvOvU91sM5sdMEYZS2+37FA=
x-amz-request-id: BJNP82SCPKG8EGEZ
Date: Sun, 05 Feb 2023 07:06:53 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 01 Feb 2023 15:22:34 GMT
ETag: "5a3e80c9c806e8b73d6e3023558b6973"
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 145
track.adform.net/Serving/TrackPoint/?CC=1&pm=2776363&ADFPageName=pe.betano%7CSportsbook&ADFdivider=%7C&ord=854421546754&ADFtpmode=2&loc=https%3A%2F%2Fpromos.betano.com%2Fsportsbook-pe%2Findex.html%3Fbtag%3Da_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO%26utm_medium%3D4168%26utm_source%3D3%26siteid%3D13943&Set1=en-US%7Cen-US%7C1280x1024%7C24
200 OK 194 B URL HTTP/2 track.adform.net/Serving/TrackPoint/?CC=1&pm=2776363&ADFPageName=pe.betano%7CSportsbook&ADFdivider=%7C&ord=854421546754&ADFtpmode=2&loc=https%3A%2F%2Fpromos.betano.com%2Fsportsbook-pe%2Findex.html%3Fbtag%3Da_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO%26utm_medium%3D4168%26utm_source%3D3%26siteid%3D13943&Set1=en-US%7Cen-US%7C1280x1024%7C24
IP
File type ASCII text, with CRLF line terminators
Hash ff17a732b946d3207ae8156e8101ef89
79b561c7e1fb0f2cca4fd9901ed08f55f0763178
79fd5c4b12e3778a7cf7b4d7de58d52ed60c82495b4cb91e711a7f7b410728f1
GET /Serving/TrackPoint/?CC=1&pm=2776363&ADFPageName=pe.betano%7CSportsbook&ADFdivider=%7C&ord=854421546754&ADFtpmode=2&loc=https%3A%2F%2Fpromos.betano.com%2Fsportsbook-pe%2Findex.html%3Fbtag%3Da_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO%26utm_medium%3D4168%26utm_source%3D3%26siteid%3D13943&Set1=en-US%7Cen-US%7C1280x1024%7C24 HTTP/1.1
Host: track.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://promos.betano.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 07:06:52 GMT
content-type: text/javascript; charset=utf-8
content-length: 194
cache-control: no-cache, no-store, must-revalidate, no-transform
pragma: no-cache
content-encoding: gzip
expires: -1
vary: Accept-Encoding
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/buildQueryParams-c973808d.js
200 OK 697 B URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/buildQueryParams-c973808d.js
IP
Hash 67f7419202508dd74f0b825c7aef2016
3033673d54259f9b6d1a4c0d05807c4708621f99
a6f8bde448949f7d7d97d1f45b007456e7e1bad138a043494a02406abcae83d6
GET /prod/common/complib/esm/buildQueryParams-c973808d.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://in.betsson.com
Connection: keep-alive
Referer: https://cbt-gecko-storage.s3.eu-central-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: Qzo+Q2CCEe3hK/2VI/1nZMEsk04MAyE46u43K9K3UgY6uC1+m10IbMXLdIIcO/vony7a+q5bRq4=
x-amz-request-id: BJNNK97CCXXGRP27
Date: Sun, 05 Feb 2023 07:06:53 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 01 Feb 2023 15:22:34 GMT
ETag: "67f7419202508dd74f0b825c7aef2016"
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 697
megapari.com/registration?tag=d_2032927m_25437c_
200 OK 40 kB URL HTTP/2 megapari.com/registration?tag=d_2032927m_25437c_
IP
ASN #202492 Silverhill Group Holding Ltd
Hash 9a386c290c5e4f3eaa26c5066ce5ffeb
12e32ae55c69ff3a2fe579e113871bc67ad388d2
7f9084a4104d846a135a51ad0a7b29c9368b15a1004c96935e935555bd844b10
GET /registration?tag=d_2032927m_25437c_ HTTP/1.1
Host: megapari.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 07:06:51 GMT
content-type: text/html; charset=utf-8
x-frame-options: SAMEORIGIN
set-cookie: SESSION=c5da945d61f554b715ed4b5b18aeab68; path=/; secure; HttpOnly; SameSite=Lax
ua=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
_glhf=1675598587; expires=Sun, 05-Feb-2023 08:06:51 GMT; Max-Age=3600; path=/
referral_values=%7B%22type%22%3A%22reflinkid%22%2C%22val%22%3A%22d_2032927m_25437c_%22%2C%22additional%22%3A%7B%22name_tag%22%3A%22tag%22%2C%22ref_partner_id%22%3Anull%2C%22bw_%22%3Anull%7D%7D; expires=Thu, 06-Apr-2023 07:06:51 GMT; Max-Age=5184000; path=/; HttpOnly
is_rtl=1; expires=Mon, 05-Feb-2024 07:06:51 GMT; Max-Age=31536000; path=/; HttpOnly
disallow_sport=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; HttpOnly
visit=1-f33038f35d7d32e257eb9dd2251446b2; path=/; HttpOnly
referral_values=%7B%22type%22%3A%22reflinkid%22%2C%22val%22%3A%22d_2032927m_25437c_%22%2C%22additional%22%3A%7B%22name_tag%22%3A%22tag%22%2C%22ref_partner_id%22%3Anull%2C%22bw_%22%3Anull%7D%7D; expires=Thu, 06-Apr-2023 07:06:51 GMT; Max-Age=5184000; path=/; HttpOnly
reflinkid=d_2032927m_25437c_; expires=Sun, 05-Mar-2023 07:06:51 GMT; Max-Age=2419200; path=/; HttpOnly
fast_coupon=true; expires=Sun, 12-Feb-2023 07:06:51 GMT; Max-Age=604800; path=/
v3fr=1; expires=Wed, 08-Feb-2023 07:06:51 GMT; Max-Age=259200; path=/; HttpOnly; SameSite=lax
lng=en; expires=Tue, 07-Mar-2023 07:06:51 GMT; Max-Age=2592000; path=/
flaglng=en; expires=Tue, 07-Mar-2023 07:06:51 GMT; Max-Age=2592000; path=/
auid=U5PMxWPfVYuN6z9NA9ZTAg==; path=/; secure; httponly; samesite=lax
vary: Accept-Encoding
content-encoding: br
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
betwarrior.bet/region_not_supported?register&btag=655952_A150827E61D146458CFCD5F1760DA759
301 Moved Permanently 2.7 kB URL HTTP/2 betwarrior.bet/region_not_supported?register&btag=655952_A150827E61D146458CFCD5F1760DA759
IP
File type C++ source text\012- Java source, ASCII text
Hash 549e1e838b861fb0ef54f6cf614836bd
73269b0bdfa4c49ab371d76b4bbc7979e9dfe8a0
3d07cc1632f1a6bf09ebff1a148a8edcde5f2547b37ee881e7fef5d3909a1f58
GET /region_not_supported?register&btag=655952_A150827E61D146458CFCD5F1760DA759 HTTP/1.1
Host: betwarrior.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a9279%2c%22BID%22%3a3038%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675580810810)%5c%2f%22%2c%22CookieTag%22%3a%2230389279451240919C20232576%22%7d%5d
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Sun, 05 Feb 2023 07:06:52 GMT
location: /region_not_supported
cf-ray: 7949ce49689f0b41-OSL
cf-cache-status: DYNAMIC
x-powered-by: Express
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/mergeQueryParams-88a359e0.js
200 OK 624 B URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/mergeQueryParams-88a359e0.js
IP
Hash 9aea40615e4e048e215b623517189c3c
50a9728b7bd0abd51b76ab11f30b31c9bb9c694b
8289f147df083108e3e860c31962a0771e6bb25e8cf39d5d4b39aeb25b02b534
GET /prod/common/complib/esm/mergeQueryParams-88a359e0.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://in.betsson.com
Connection: keep-alive
Referer: https://cbt-gecko-storage.s3.eu-central-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: wrQkcLTwJDEyuflO824R3nnIECegyY1KZomFREkl+H7ETF8y66Rt4MFnyacRSoEl1AmWXJQZ9do=
x-amz-request-id: BJNS9ZE6T2Z71X2W
Date: Sun, 05 Feb 2023 07:06:53 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 01 Feb 2023 15:22:34 GMT
ETag: "9aea40615e4e048e215b623517189c3c"
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 624
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/const-6eaf0a26.js
304 Not Modified 0 B URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/const-6eaf0a26.js
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /prod/common/complib/esm/const-6eaf0a26.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://promotions.betsafe.com
Connection: keep-alive
Referer: https://cbt-gecko-storage.s3.eu-central-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
If-None-Match: "5a3e80c9c806e8b73d6e3023558b6973"
HTTP/1.1 304 Not Modified
x-amz-id-2: G1H9n/PvzuI/wJ4ANM5OuhE8CjjPZCZtJqgzm4zJpnrJdLyU138SgtJAVCb+u7xXmcm1XkATzHA=
x-amz-request-id: BJNS5BAFVC1T8V1Q
Date: Sun, 05 Feb 2023 07:06:53 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 01 Feb 2023 15:22:34 GMT
ETag: "5a3e80c9c806e8b73d6e3023558b6973"
Server: AmazonS3
20bet.com/pe?btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
200 OK 7.8 kB URL HTTP/2 20bet.com/pe?btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (6130), with CRLF, LF line terminators
Hash b9c4f6a9eb9d446e7f61018862e97973
370cea14561237139a6974ee8c45c964d598d586
3cd5688e2fb643b297c565e7ce19b8708daa210169d3e6c76c1a16cae8fe53e1
GET /pe?btag=668128_3BC752C963894CA4B8C71E6D9BF8518F HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:52 GMT
content-type: text/html; charset=UTF-8
cf-ray: 7949ce47de14b4f9-OSL
cache-control: max-age=0, must-revalidate, private
expires: Sun, 05 Feb 2023 07:06:52 GMT
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers: Content-Length,Content-Range
set-cookie: btag=668128_3BC752C963894CA4B8C71E6D9BF8518F; expires=Sun, 05-Mar-2023 00:00:00 GMT; Max-Age=2393588; path=/; secure; samesite=none
preferred-language=pe; path=/; secure; httponly; samesite=lax
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/mergeQueryParams-88a359e0.js
304 Not Modified 0 B URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/mergeQueryParams-88a359e0.js
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /prod/common/complib/esm/mergeQueryParams-88a359e0.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://promotions.betsafe.com
Connection: keep-alive
Referer: https://cbt-gecko-storage.s3.eu-central-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
If-None-Match: "9aea40615e4e048e215b623517189c3c"
HTTP/1.1 304 Not Modified
x-amz-id-2: JYPpI6nmggBaWv+cUqROKEmh9hI9Ky2lxwS0t7wVyHhnkvDqN9GyEsh0ZzXQm6b3PJ0Kwm4czcQ=
x-amz-request-id: BJNQWYA7V4D52962
Date: Sun, 05 Feb 2023 07:06:53 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 01 Feb 2023 15:22:34 GMT
ETag: "9aea40615e4e048e215b623517189c3c"
Server: AmazonS3
20bet.com/custom-assets/mainloader.gif
200 OK 304 kB URL HTTP/2 20bet.com/custom-assets/mainloader.gif
IP
File type GIF image data, version 89a, 400 x 400\012- data
Size 304 kB (303571 bytes)
Hash 323a31f4cce6bcd83935bbccf0f665da
7ba68a35bec60487944b77a69f91c88556f7017a
9e9d2f310ed323e2649b69229dd077995f5c2217c12bc07c66ea3f17dbc1dafa
GET /custom-assets/mainloader.gif HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
Cookie: btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:52 GMT
content-type: image/gif
content-length: 303571
cf-ray: 7949ce500ba0b4f9-OSL
accept-ranges: bytes
age: 3458
cache-control: public, max-age=14400
last-modified: Sun, 05 Feb 2023 06:09:14 GMT
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers: Content-Length,Content-Range
server: cloudflare
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 278 B IP
Hash 6aefb70fad66455d4639d0f3eb57f01b
fcaad323ea9292c1a6a33889af408ebddb1cba10
b62ee4abe6080c6a95543a48f3224eb31ef7a8fc200fac4a9874c8e54790e7bd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5560
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:52 GMT
Last-Modified: Sun, 05 Feb 2023 05:34:12 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
200 OK 280 B IP
Hash 2f8f694e49b5ffd4eff7c0fc3dd41306
1f4e93edc4f47c5d0a769609a6f61fad305cb931
935e4072b6bcc39e1cc2e94e807865d0b7d4ef9b333cb78187e53fb7693a5c5d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6519
Cache-Control: max-age=95825
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:52 GMT
Etag: "63de0f66-118"
Expires: Mon, 06 Feb 2023 09:43:57 GMT
Last-Modified: Sat, 04 Feb 2023 07:55:18 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
200 OK 278 B IP
Hash 09f81fcccfb2c03bd37174d8790e70e8
3d50d8d3ce63be9c6816d0afcab8d541fffac883
83a54fc2b907b6f2b04ab6114dec3637f6d95430579f8b5b5a6bf6a12e56e74c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4293
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:52 GMT
Last-Modified: Sun, 05 Feb 2023 05:55:19 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 278
20bet.com/app/main.ec1fae44db88d4f7.css
200 OK 62 kB URL HTTP/2 20bet.com/app/main.ec1fae44db88d4f7.css
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 44ea37f77fda8a2021c5c6c4de214386
9dc7ec96509c32dace457dbc9f98ae97cf04c366
955b04be8c71fef0ee270a42c87b0b6c7bedf077416f40d8dd51ce43077d3e7f
GET /app/main.ec1fae44db88d4f7.css HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
Cookie: btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:52 GMT
content-type: text/css
cf-ray: 7949ce4ffb9bb4f9-OSL
etag: W/"63dcff74-5e6fb"
last-modified: Fri, 03 Feb 2023 12:35:00 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=542391013994393&ev=PageView&dl=https%3A%2F%2Fpromos.betano.com%2Fsportsbook-pe%2Findex.html%3Fbtag%3Da_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO%26utm_medium%3D4168%26utm_source%3D3%26siteid%3D13943&rl=&if=true&ts=1675580852061&cd[AffiliateID]=13943&sw=1280&sh=1024&v=2.9.95&r=stable&a=tmSimo-GTM-WebTemplate&ec=1&o=30&cs_est=true&it=1675580851200&coo=false&tm=1&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=542391013994393&ev=PageView&dl=https%3A%2F%2Fpromos.betano.com%2Fsportsbook-pe%2Findex.html%3Fbtag%3Da_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO%26utm_medium%3D4168%26utm_source%3D3%26siteid%3D13943&rl=&if=true&ts=1675580852061&cd[AffiliateID]=13943&sw=1280&sh=1024&v=2.9.95&r=stable&a=tmSimo-GTM-WebTemplate&ec=1&o=30&cs_est=true&it=1675580851200&coo=false&tm=1&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=542391013994393&ev=PageView&dl=https%3A%2F%2Fpromos.betano.com%2Fsportsbook-pe%2Findex.html%3Fbtag%3Da_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO%26utm_medium%3D4168%26utm_source%3D3%26siteid%3D13943&rl=&if=true&ts=1675580852061&cd[AffiliateID]=13943&sw=1280&sh=1024&v=2.9.95&r=stable&a=tmSimo-GTM-WebTemplate&ec=1&o=30&cs_est=true&it=1675580851200&coo=false&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promos.betano.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sun, 05 Feb 2023 07:06:52 GMT
X-Firefox-Spdy: h2
cdn.cookielaw.org/logos/static/poweredBy_ot_logo.svg
200 OK 223 kB URL HTTP/2 cdn.cookielaw.org/logos/static/poweredBy_ot_logo.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (61473)
Size 223 kB (222828 bytes)
Hash a56772d45b66c1a6b4407e4a8bbb928d
c2350029680b4a8891af71fdb4cc74b839240726
16e367042b646e046d750f1826e0b83061215b435a98651c00fdd6bace296659
GET /logos/static/poweredBy_ot_logo.svg HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://in.betsson.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:51 GMT
content-type: image/svg+xml
content-md5: LpuayL42jB78xRllx0vkOw==
last-modified: Thu, 02 Feb 2023 13:33:38 GMT
x-ms-request-id: 37e5f1ab-101e-00ca-7f5b-374b2b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 32288
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7949ce4adc04b4e8-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
20bet.com/configuration.js
200 OK 1.3 kB URL HTTP/2 20bet.com/configuration.js
IP
Hash 39ba7fabf21195e3d747a59ce4d32831
6ee12c486a36799f62be500a3dcce58afc71a0cd
f3b07926e0b29fe1949aeb7d53cf40caeba6ea5d97973acee2fc0e7b7bc087aa
GET /configuration.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
Cookie: btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:53 GMT
content-type: text/javascript; charset=UTF-8
cf-ray: 7949ce4ffb9cb4f9-OSL
cache-control: no-cache, no-store, private
vary: Accept-Encoding
cf-cache-status: BYPASS
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers: Content-Length,Content-Range
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com/apg-seal.js
200 OK 51 kB URL HTTP/2 c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com/apg-seal.js
IP
Hash da7c1a6388c608a38f40a416492fc234
ea7acf28fb6284c770395f8dd480886f5719f735
eaadad6b05e2de5c1e911317b66ae7a067f94407b6c0e72ffb3492b1be8f168e
Analyzer Verdict Alert fortinet Malware
GET /apg-seal.js HTTP/1.1
Host: c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
date: Sun, 05 Feb 2023 07:04:47 GMT
x-powered-by: Express
cache-control: max-age=300
etag: W/"dc9-JMPHQsh/jVc2bMLFlGYqVwKaaz0"
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7949cb42cda3924d-FRA
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: lmmP8Tmynt8ffR53ifwaQd4jfXMWANp21VdmriB_MGJiFitaiN3uzw==
age: 125
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash fd57f3f7606f895af30a961d0a4dc067
60a612dad42bd7fd935074808b04cbe5488c345a
e9f4f487ac37f8ede1fa67ccdf5b2eb5656abb1d9a71542021399471e15bfdfe
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2125
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:53 GMT
Last-Modified: Sun, 05 Feb 2023 06:31:28 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
aswpsdkus.com/notify/v1/ua-sdk.min.js
200 OK 43 kB URL HTTP/2 aswpsdkus.com/notify/v1/ua-sdk.min.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 1cda07a2bbc55dcaf684954e7d897c40
ad0c471c1cd361f7a4ef8deb825aa63eb1b01029
8e12a7991dda2a0e6cbd6ba7423a98ea668c2f47a83f7b70180d21b1f3893270
GET /notify/v1/ua-sdk.min.js HTTP/1.1
Host: aswpsdkus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtyN8uBuXBr9mbdtqE2D5DiqXRmgKD-k54E8thWBulCfZvPOsTBtyf0jwjhV_whhUfWoxpIpum-DcHxhnTCnq6P04C36fN1
vary: X-Goog-Allowed-Resources
x-goog-generation: 1673371354401478
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 42942
content-encoding: gzip
x-goog-hash: crc32c=CzJWog==, md5=HNoHorvFXcr2hJVOfYl8QA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 42942
server: UploadServer
date: Sun, 05 Feb 2023 07:04:03 GMT
expires: Sun, 05 Feb 2023 07:09:03 GMT
cache-control: public,max-age=300,no-transform
age: 170
last-modified: Tue, 10 Jan 2023 17:22:34 GMT
etag: "1cda07a2bbc55dcaf684954e7d897c40"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash fd57f3f7606f895af30a961d0a4dc067
60a612dad42bd7fd935074808b04cbe5488c345a
e9f4f487ac37f8ede1fa67ccdf5b2eb5656abb1d9a71542021399471e15bfdfe
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2125
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:53 GMT
Last-Modified: Sun, 05 Feb 2023 06:31:28 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
tm.ads.sportradar.com/dist/tag-manager.js?id=STM-AAAACT
200 OK 31 kB URL HTTP/2 tm.ads.sportradar.com/dist/tag-manager.js?id=STM-AAAACT
IP
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
Hash c107cbeae2be0d4f1d241b9fd672457d
a017d05ff36c646bfa755b60c25e0f67f723de6d
3aac2aa9d355d442078788e431cc0f96baa3f893389c422659323d7602c0261d
GET /dist/tag-manager.js?id=STM-AAAACT HTTP/1.1
Host: tm.ads.sportradar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
apigw-requestid: f2oHnhlrjoEEPbg=
vary: Accept-Encoding
content-encoding: gzip
content-length: 31257
date: Sun, 05 Feb 2023 07:06:53 GMT
cache-control: max-age=900, public
x-n: S
X-Firefox-Spdy: h2
tracker.ads.sportradar.com/dist/tracker.js
200 OK 12 kB URL HTTP/2 tracker.ads.sportradar.com/dist/tracker.js
IP
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (34755)
Hash b34b13d85152f71b7fd15289c78c0583
0bb20191b022bbd0e75f2bbce7f6332886079c2c
7a3fc57394ecc6745eb6e18745aa1e5e5d05cb2237c4d0d754ab43d33863a84c
GET /dist/tracker.js HTTP/1.1
Host: tracker.ads.sportradar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 20 Jan 2021 14:51:32 GMT
accept-ranges: bytes
server: AmazonS3
etag: "5ff82a1c468a89919e9437d33e0402cb"
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: lilTPTQwiFh0VJWkVzsVkg926mhW28TGKyOiSnBsA59oGt4a5kFU3Q==
vary: Accept-Encoding
content-encoding: gzip
content-length: 11553
date: Sun, 05 Feb 2023 07:06:53 GMT
cache-control: max-age=900, public
X-Firefox-Spdy: h2
tracker.ads.sportradar.com/dist//sp-2.14.0.js
200 OK 30 kB URL HTTP/2 tracker.ads.sportradar.com/dist//sp-2.14.0.js
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (64903)
Hash 44f237857b8d03f32b53fe551e83c95a
91536fe6c60d947d29dfcb5f04d09b752b5ccf03
a5e10dc2f3c729300afe8fe24aa430f57d91fdefa8112c0b35dd424ba612caa7
GET /dist//sp-2.14.0.js HTTP/1.1
Host: tracker.ads.sportradar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 20 Jan 2021 14:51:32 GMT
accept-ranges: bytes
server: AmazonS3
etag: "8dba669b94e3865c9205ef8fd15ee4d1"
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: -pbphpFQJyu9Nsi2p1LGt7DQE698REkbCvUvYwK6DlYBv7KIUUoEFQ==
vary: Accept-Encoding
content-encoding: gzip
content-length: 30370
unused62: 8096267
date: Sun, 05 Feb 2023 07:06:53 GMT
cache-control: max-age=900, public
X-Firefox-Spdy: h2
secure.adnxs.com/seg?add=32401244&t=1
307 Redirection 0 B URL HTTP/1.1 secure.adnxs.com/seg?add=32401244&t=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /seg?add=32401244&t=1 HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Sun, 05 Feb 2023 07:06:53 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://secure.adnxs.com/bounce?%2Fseg%3Fadd%3D32401244%26t%3D1
AN-X-Request-Uuid: d9bfefbc-4560-4b90-a6f5-a0d3c0e8ce3f
Set-Cookie: uuid2=4589984152776954839; SameSite=None; Path=/; Max-Age=7776000; Expires=Sat, 06-May-2023 07:06:53 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 950.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
zz.connextra.com/dcs/tagController/tag/d3ea3fb1f9d4/homepage
200 OK 16 kB URL HTTP/2 zz.connextra.com/dcs/tagController/tag/d3ea3fb1f9d4/homepage
IP
File type HTML document text\012- exported SGML document, ASCII text, with very long lines (2407)
Hash f5c6ed464a100daeec24c257b81aeba4
f73b688dfff651a1342f8f36b2763f16e8fa976e
c62f6ae2fe15b2279beb5110c4d7827a39865b01b4b53caabcbe5686c8eae626
GET /dcs/tagController/tag/d3ea3fb1f9d4/homepage HTTP/1.1
Host: zz.connextra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript;charset=utf-8
content-length: 16263
server: istio-envoy
content-encoding: gzip
x-envoy-upstream-service-time: 2
cache-control: must-revalidate, max-age=28
expires: Sun, 05 Feb 2023 07:07:21 GMT
date: Sun, 05 Feb 2023 07:06:53 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 4a52f72b6297de8de3e4271c8b214b2a
95b8a142738683544d844476d79abbfdaeaf466e
39488ead7b33f5c3100c8f5548142cf77a85ae408f602d1a0ae83b7a1f62c551
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39488EAD7B33F5C3100C8F5548142CF77A85AE408F602D1A0AE83B7A1F62C551"
Last-Modified: Fri, 03 Feb 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1552
Expires: Sun, 05 Feb 2023 07:32:45 GMT
Date: Sun, 05 Feb 2023 07:06:53 GMT
Connection: keep-alive
ocsp.godaddy.com/
200 OK 1.8 kB IP
Hash 4eca2bcaacc646f19f5097502b87fdfd
499543468fb84f0113b789f7b38d19bc85beadad
18cd41f31c7d1b90147aee2783ce21c1a4d7be98a86bc565033e49d29e3a374e
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sun, 05 Feb 2023 07:06:53 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sat, 04 Feb 2023 20:51:50 GMT
Expires: Sun, 05 Feb 2023 20:51:50 GMT
ETag: "499543468fb84f0113b789f7b38d19bc85beadad"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
20bet.com/app/runtime.3565d56e138e89a0.esm.js
200 OK 17 kB URL HTTP/2 20bet.com/app/runtime.3565d56e138e89a0.esm.js
IP
File type ASCII text, with very long lines (10030), with no line terminators
Hash 185ee8f7bbc816e144f75a9967fc192a
c6d71f9d5ff9d253257d45c354511c7fb9058f2b
2cd3b3912ef50a61e2605dfdbbfeb15fdcfecc7fb0472863bdff4082e5c5b57c
GET /app/runtime.3565d56e138e89a0.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
Cookie: btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:53 GMT
content-type: application/javascript
cf-ray: 7949ce53be33b4f9-OSL
etag: W/"63dcff74-272e"
last-modified: Fri, 03 Feb 2023 12:35:00 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
ocsp.godaddy.com/
200 OK 1.8 kB IP
Hash 4eca2bcaacc646f19f5097502b87fdfd
499543468fb84f0113b789f7b38d19bc85beadad
18cd41f31c7d1b90147aee2783ce21c1a4d7be98a86bc565033e49d29e3a374e
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sun, 05 Feb 2023 07:06:53 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sat, 04 Feb 2023 20:51:50 GMT
Expires: Sun, 05 Feb 2023 20:51:50 GMT
ETag: "499543468fb84f0113b789f7b38d19bc85beadad"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
betwarrior.bet/es/sports?register&btag=655952_A150827E61D146458CFCD5F1760DA759
301 Moved Permanently 214 B URL HTTP/2 betwarrior.bet/es/sports?register&btag=655952_A150827E61D146458CFCD5F1760DA759
IP
File type HTML document, ASCII text, with no line terminators
Hash 1def3c96b6bdc366d56111ea7d6d512c
af92c3daf21a40ffc72f90035b51a3b775468492
ffd8d9e88e0814803f1d67ece82c3c2d628e7d0d66c794b2c0973bdfa1aefcb7
GET /es/sports?register&btag=655952_A150827E61D146458CFCD5F1760DA759 HTTP/1.1
Host: betwarrior.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a9279%2c%22BID%22%3a3038%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675580810810)%5c%2f%22%2c%22CookieTag%22%3a%2230389279451240919C20232576%22%7d%5d
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Sun, 05 Feb 2023 07:06:51 GMT
content-type: text/html; charset=utf-8
location: /region_not_supported?register&btag=655952_A150827E61D146458CFCD5F1760DA759
cf-ray: 7949ce444e180b41-OSL
cache-control: no-cache, private, no-store, must-revalidate, max-stale=0, post-check=0, pre-check=0
vary: Accept, Accept-Encoding
cf-cache-status: DYNAMIC
x-powered-by: Express
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.entrust.net/
200 OK 1.6 kB IP
Hash 7dfc033b72537a53c99210c2eb309efd
961b3216216445efd8ecb6ffa5a64e7d18ded079
14dcca4daf96749b87976baba27b25e50ef36d20ee5e538cf53071d0ffa4f3c9
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "14DCCA4DAF96749B87976BABA27B25E50EF36D20EE5E538CF53071D0FFA4F3C9"
Last-Modified: Sat, 04 Feb 2023 18:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=2472
Expires: Sun, 05 Feb 2023 07:48:05 GMT
Date: Sun, 05 Feb 2023 07:06:53 GMT
Connection: keep-alive
ocsp.entrust.net/
200 OK 1.6 kB IP
Hash 7dfc033b72537a53c99210c2eb309efd
961b3216216445efd8ecb6ffa5a64e7d18ded079
14dcca4daf96749b87976baba27b25e50ef36d20ee5e538cf53071d0ffa4f3c9
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "14DCCA4DAF96749B87976BABA27B25E50EF36D20EE5E538CF53071D0FFA4F3C9"
Last-Modified: Sat, 04 Feb 2023 18:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=2472
Expires: Sun, 05 Feb 2023 07:48:05 GMT
Date: Sun, 05 Feb 2023 07:06:53 GMT
Connection: keep-alive
20bet.com/api/translation/get?locale=es_PE
200 OK 40 kB URL HTTP/2 20bet.com/api/translation/get?locale=es_PE
IP
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash e53125753f66327dcf258449688e260c
23f6446c15d1eaddaab53fd28af7caae796fb2a9
5a3509c1b03eb1784367478166605ccc0220fe19c6a0f49deb71e19cbd80c466
GET /api/translation/get?locale=es_PE HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
Cookie: btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:53 GMT
content-type: application/json
cf-ray: 7949ce525d26b4f9-OSL
cache-control: no-cache, private
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers: Content-Length,Content-Range
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
a.sportradarserving.com/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
302 Moved Temporarily 0 B URL HTTP/1.1 a.sportradarserving.com/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId= HTTP/1.1
Host: a.sportradarserving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Sun, 05 Feb 2023 07:06:53 GMT
Location: https://a.sportradarserving.com/ul_cb/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
Set-Cookie: zuuid=57fef564-01e8-4612-aefe-2beaf03a68dd; path=/; expires=Mon, 05-Feb-2024 07:06:53 GMT; domain=sportradarserving.com; samesite=none; secure
c=1675580813; path=/; expires=Mon, 05-Feb-2024 07:06:53 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1675580813; path=/; expires=Mon, 05-Feb-2024 07:06:53 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 0
Connection: keep-alive
a.sportradarserving.com/pixel?type=js&aid=1121&id=1859
302 Moved Temporarily 0 B URL HTTP/1.1 a.sportradarserving.com/pixel?type=js&aid=1121&id=1859
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel?type=js&aid=1121&id=1859 HTTP/1.1
Host: a.sportradarserving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Sun, 05 Feb 2023 07:06:53 GMT
Location: https://a.sportradarserving.com/ul_cb/pixel?type=js&aid=1121&id=1859
Set-Cookie: zuuid=b857597d-56eb-4850-bbc5-171949f99b40; path=/; expires=Mon, 05-Feb-2024 07:06:53 GMT; domain=sportradarserving.com; samesite=none; secure
c=1675580813; path=/; expires=Mon, 05-Feb-2024 07:06:53 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1675580813; path=/; expires=Mon, 05-Feb-2024 07:06:53 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 0
Connection: keep-alive
20bet.com/app/vendor.7f46fa567274024c.esm.js
200 OK 472 kB URL HTTP/2 20bet.com/app/vendor.7f46fa567274024c.esm.js
IP
File type ASCII text, with very long lines (65451)
Size 472 kB (472075 bytes)
Hash 2c8d524ae2ac927c99de99520ab77472
8a01c0752340a5cf21763b06d8d81ea86ca06fd1
ebce19ca1eca229762f1051a11d3aa2b5a3a0c014721c7101749adc0464da18c
GET /app/vendor.7f46fa567274024c.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
Cookie: btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:53 GMT
content-type: application/javascript
cf-ray: 7949ce53be35b4f9-OSL
etag: W/"63dcff6a-251c87"
last-modified: Fri, 03 Feb 2023 12:34:50 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
a.sportradarserving.com/ul_cb/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
302 Moved Temporarily 0 B URL HTTP/1.1 a.sportradarserving.com/ul_cb/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ul_cb/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId= HTTP/1.1
Host: a.sportradarserving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20bet.com/
Connection: keep-alive
Cookie: zuuid=b857597d-56eb-4850-bbc5-171949f99b40; c=1675580813; zuuid_lu=1675580813
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Sun, 05 Feb 2023 07:06:54 GMT
Location: https://x.bidswitch.net/syncd?dsp_id=409&user_group=1&user_id=b857597d-56eb-4850-bbc5-171949f99b40&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3Db857597d-56eb-4850-bbc5-171949f99b40
Set-Cookie: zuuid=b857597d-56eb-4850-bbc5-171949f99b40; path=/; expires=Mon, 05-Feb-2024 07:06:54 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1675580814; path=/; expires=Mon, 05-Feb-2024 07:06:54 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k=1; path=/; expires=Mon, 05-Feb-2024 07:06:54 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k_lu=1675580814; path=/; expires=Mon, 05-Feb-2024 07:06:54 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 0
Connection: keep-alive
a.sportradarserving.com/ul_cb/pixel?type=js&aid=1121&id=1859
200 OK 1.5 kB URL HTTP/1.1 a.sportradarserving.com/ul_cb/pixel?type=js&aid=1121&id=1859
IP
File type ASCII text, with very long lines (1527), with no line terminators
Hash 200c64f0973836b6f3f7798eb2854762
7b434ced196b569e4d7e5414fbb343c62c7fa012
5d7ad59fe54e1b6f00af4b1f8c5463a2437bbad22fd3d8a7de013e22b0d0859f
GET /ul_cb/pixel?type=js&aid=1121&id=1859 HTTP/1.1
Host: a.sportradarserving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20bet.com/
Connection: keep-alive
Cookie: zuuid=b857597d-56eb-4850-bbc5-171949f99b40; c=1675580813; zuuid_lu=1675580813
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store, must-revalidate
Content-Type: text/javascript; charset=UTF-8
Date: Sun, 05 Feb 2023 07:06:54 GMT
Set-Cookie: zuuid=b857597d-56eb-4850-bbc5-171949f99b40; path=/; expires=Mon, 05-Feb-2024 07:06:54 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1675580814; path=/; expires=Mon, 05-Feb-2024 07:06:54 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k=1; path=/; expires=Mon, 05-Feb-2024 07:06:54 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k_lu=1675580814; path=/; expires=Mon, 05-Feb-2024 07:06:54 GMT; domain=sportradarserving.com; samesite=none; secure
bss=!bidswitch,444838014; path=/; expires=Mon, 05-Feb-2024 07:06:54 GMT; domain=sportradarserving.com; samesite=none; secure
cm2=!bidswitch,444910014; path=/; expires=Mon, 05-Feb-2024 07:06:54 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 1527
Connection: keep-alive
platform.20bet.com/api/v2/ip-data
204 No Content 0 B URL HTTP/2 platform.20bet.com/api/v2/ip-data
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v2/ip-data HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sun, 05 Feb 2023 07:06:54 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7949ce594968b4f9-OSL
X-Firefox-Spdy: h2
platform.20bet.com/api/data/get-countries
204 No Content 0 B URL HTTP/2 platform.20bet.com/api/data/get-countries
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/data/get-countries HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sun, 05 Feb 2023 07:06:54 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7949ce59596cb4f9-OSL
X-Firefox-Spdy: h2
platform.20bet.com/api/tournaments/bet-tournament/get-active?fields%5B%5D=tournaments&fields%5B%5D=leaderboards&fields%5B%5D=authorizedUsers
204 No Content 0 B URL HTTP/2 platform.20bet.com/api/tournaments/bet-tournament/get-active?fields%5B%5D=tournaments&fields%5B%5D=leaderboards&fields%5B%5D=authorizedUsers
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/tournaments/bet-tournament/get-active?fields%5B%5D=tournaments&fields%5B%5D=leaderboards&fields%5B%5D=authorizedUsers HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sun, 05 Feb 2023 07:06:54 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7949ce597995b4f9-OSL
X-Firefox-Spdy: h2
apis.sharechat.com/self-serve-service/v1/external/selfServe/sdk/SG3eKxKT7W/get
200 OK 57 B URL HTTP/2 apis.sharechat.com/self-serve-service/v1/external/selfServe/sdk/SG3eKxKT7W/get
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash b743f3d65555324eb815a39dbfda117e
854c81927d8fd17fd8cb66503d8d2a0912293007
b93f1daec177bd721359292bba935c7f95c000e39bc8eb2f5f86eee34957e0f4
GET /self-serve-service/v1/external/selfServe/sdk/SG3eKxKT7W/get HTTP/1.1
Host: apis.sharechat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:54 GMT
content-type: application/json;charset=utf-8
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: https://20bet.com
vary: Origin
etag: W/"1f-6dkZ0odeH7r21LA6dRUG6G17Ebs"
via: 1.1 google
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=jnNgevXmxnhKHHIvy8OYb92t2aQkHAAZ1YlA4B3E39Q-1675580814-0-AZE9HGe5wiILWz2EM48kx1nD4+mdl+vTsO+UGFKVoFAMMjJVvphX6tB6NL3NZqieF9eIgNnEsn2QN+jBB++5Nfc=; path=/; expires=Sun, 05-Feb-23 07:36:54 GMT; domain=.sharechat.com; HttpOnly; Secure; SameSite=None
_cfuvid=6y6JIA_O81KmIEHao8FjQd2GHbi3bJcsyki3wobN3k4-1675580814291-0-604800000; path=/; domain=.sharechat.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7949ce56bea20afe-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
platform.20bet.com/api/data/get-currencies
204 No Content 0 B URL HTTP/2 platform.20bet.com/api/data/get-currencies
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/data/get-currencies HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sun, 05 Feb 2023 07:06:54 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7949ce597994b4f9-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash a78b06ca527ce7542b24b349e0485d8b
6f5e5126c1c9d40c9ba09d58e1755d2ca39d02ab
bc7dc156ab8b2b33422fff0922e219246eb1d12469d10ac8007416fed41ac473
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
platform.20bet.com/api/v2/data/rates
204 No Content 0 B URL HTTP/2 platform.20bet.com/api/v2/data/rates
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v2/data/rates HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sun, 05 Feb 2023 07:06:54 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7949ce59a9adb4f9-OSL
X-Firefox-Spdy: h2
20bet.com/app/polyfills.5e91295279033faf.esm.js
200 OK 36 kB URL HTTP/2 20bet.com/app/polyfills.5e91295279033faf.esm.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash c84e9a3b9dc9f83c4137283f080075a3
456fa4cf228be080fdbe77b39ca80d588ddf1a07
0aead96f99ed77ae8d496a1ef53b1995b33e3e28873bdbc608c0e4b662b5ec68
GET /app/polyfills.5e91295279033faf.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
Cookie: btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:53 GMT
content-type: application/javascript
cf-ray: 7949ce53be32b4f9-OSL
etag: W/"63dcff68-17687"
last-modified: Fri, 03 Feb 2023 12:34:48 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/market-group-sorting/get-all-ordered
204 No Content 0 B URL HTTP/2 platform.20bet.com/api/market-group-sorting/get-all-ordered
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/market-group-sorting/get-all-ordered HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sun, 05 Feb 2023 07:06:54 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7949ce59e8f7991e-ARN
X-Firefox-Spdy: h2
20bet.com/app/8416.089b97ec0fb7c863.esm.js
200 OK 403 B URL HTTP/2 20bet.com/app/8416.089b97ec0fb7c863.esm.js
IP
File type ASCII text, with very long lines (730), with no line terminators
Hash b6f7a2d1512551402a34fbc3e674a868
c99ad1b55ef3acc9b86ea83dca20b028f91293d5
fff957b37cd1f1ca98ce0b21b9c342e71035df7de401c60910672152daa0fc4f
GET /app/8416.089b97ec0fb7c863.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
Cookie: btag=668128_3BC752C963894CA4B8C71E6D9BF8518F; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:54 GMT
content-type: application/javascript
cf-ray: 7949ce58b921b4f9-OSL
etag: W/"63dcff85-2da"
last-modified: Fri, 03 Feb 2023 12:35:17 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/status
204 No Content 0 B URL HTTP/2 platform.20bet.com/api/status
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/status HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 204 No Content
date: Sun, 05 Feb 2023 07:06:54 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7949ce59e8f8991e-ARN
X-Firefox-Spdy: h2
20bet.com/app/main.8912bbb1732c40fd.esm.js
200 OK 383 kB URL HTTP/2 20bet.com/app/main.8912bbb1732c40fd.esm.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Size 383 kB (382790 bytes)
Hash 4f197930031bc01287144aae025a0749
102ecf9f169f7981d53b4288e8152b1987673d36
3a500212a8eff34008b8e7fb448d68d0fd18846d22a32518930e921a2e6eaa38
GET /app/main.8912bbb1732c40fd.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
Cookie: btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:53 GMT
content-type: application/javascript
cf-ray: 7949ce53be31b4f9-OSL
etag: W/"63dcff6e-16d44e"
last-modified: Fri, 03 Feb 2023 12:34:54 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js?render=6LeYXFIiAAAAAEinEF15OsBYNq5UXwmor7zuYO0g
200 OK 582 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6LeYXFIiAAAAAEinEF15OsBYNq5UXwmor7zuYO0g
IP
File type ASCII text, with very long lines (884), with no line terminators
Hash ba7bb8d0f4a363974a8f8a7918525f56
21578c80622cfa09dd55675c574827248e185f71
4494386bc89af9d8806675ff70d4cc53281aeeb01b9f841f3174b98da5f76076
GET /recaptcha/api.js?render=6LeYXFIiAAAAAEinEF15OsBYNq5UXwmor7zuYO0g HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Sun, 05 Feb 2023 07:06:54 GMT
date: Sun, 05 Feb 2023 07:06:54 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 582
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
20bet.com/app/common.68e049bd60bde3ea.css
200 OK 1.0 kB URL HTTP/2 20bet.com/app/common.68e049bd60bde3ea.css
IP
File type assembler source, ASCII text, with very long lines (3432), with no line terminators
Hash 123d265c3ce0fb8dddaf2cd6a897380f
b31f26da9fbfbd426549cbdb0aeb6983c934a04b
75d4985bec6ceb2f8f459471c7dce506deadf23af4860c2fcdbceaa7d5df71f8
GET /app/common.68e049bd60bde3ea.css HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
Cookie: btag=668128_3BC752C963894CA4B8C71E6D9BF8518F; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:54 GMT
content-type: text/css
cf-ray: 7949ce58a915b4f9-OSL
etag: W/"63dcff7a-d68"
last-modified: Fri, 03 Feb 2023 12:35:06 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/sport/list/-1/0/es
204 No Content 0 B URL HTTP/2 platform.20bet.com/api/sport/list/-1/0/es
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/sport/list/-1/0/es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 204 No Content
date: Sun, 05 Feb 2023 07:06:54 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7949ce5a090c991e-ARN
X-Firefox-Spdy: h2
platform.20bet.com/api/v2/ip-data
200 OK 919 B URL HTTP/2 platform.20bet.com/api/v2/ip-data
IP
File type ASCII text, with no line terminators
Hash ff8e3714b50eab2dd50a69cf515f30bd
552a0867b4d15c947c5a334c4e90abdc952cbb3c
41dd1f64e32dc9bd679930d35659d38cb6dcc20156a66f23466baa6059bab22c
GET /api/v2/ip-data HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:54 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7949ce5a4a22b4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/custom-assets/logo.webp
200 OK 14 kB URL HTTP/2 20bet.com/custom-assets/logo.webp
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 38810a32194964dbdbf543e2a93e6a8c
e6c250ae7a2dd04c3473b6c03880c59960cabd74
7e7b70fbac7c9bd957367ddf9e51c883b7705307315a74899e94e04b0f1d6cd3
GET /custom-assets/logo.webp HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
Cookie: btag=668128_3BC752C963894CA4B8C71E6D9BF8518F; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:54 GMT
content-type: image/webp
content-length: 13882
cf-ray: 7949ce5ccbe0b4f9-OSL
accept-ranges: bytes
age: 3454
cache-control: public, max-age=14400
last-modified: Sun, 05 Feb 2023 06:09:20 GMT
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers: Content-Length,Content-Range
server: cloudflare
X-Firefox-Spdy: h2
platform.20bet.com/api/v2/configurations
200 OK 8.9 kB URL HTTP/2 platform.20bet.com/api/v2/configurations
IP
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash a5fbd04efca83c4cb28f8327e3c1adcf
42ade53467e17d4ff62dd2a006b997c0fe9935ef
83660693c2d68347fd4b925e2534a4938ea831e4e67f79d2f8121eac23826f5b
GET /api/v2/configurations HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:54 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7949ce5a9a68b4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/data/get-countries
200 OK 8.8 kB URL HTTP/2 platform.20bet.com/api/data/get-countries
IP
File type ASCII text, with very long lines (6226), with no line terminators
Hash bc5ae07ab9dbde622ef760f06506a57b
d846d2b8137e64501e48bb0219ae194a4fd9cc82
b442a07f3bd3d16aeaab037082cd78dcfb49aa892fa04749631e292f0566f049
GET /api/data/get-countries HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:54 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7949ce5a4a23b4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/sport/list/-1/0/es
200 OK 730 kB URL HTTP/2 platform.20bet.com/api/sport/list/-1/0/es
IP
File type ASCII text, with very long lines (65536), with no line terminators
Size 730 kB (730127 bytes)
Hash 4c9506b7fa7ef1932f882f2dd100d16b
45289c381d64335b8dce0aa5f7a5ca2f735558ca
07dccf193ce62c2736ba62a7c2b5f2e3d0821f3214ee20e213506c3a181111fb
GET /api/sport/list/-1/0/es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:54 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7949ce5afa9cb4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/1742.157c0f3c644cecdb.esm.js
200 OK 8.0 kB URL HTTP/2 20bet.com/app/1742.157c0f3c644cecdb.esm.js
IP
File type ASCII text, with very long lines (1849), with no line terminators
Hash a53c0b6153be08a81e209be9eadbce12
c06a0382446a85952228e07f5c0e80acb51fb4dc
16ac0806ea99b6bfb31acb3b49b830daac47ebb14204b024614095918c27e0ec
GET /app/1742.157c0f3c644cecdb.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
Cookie: btag=668128_3BC752C963894CA4B8C71E6D9BF8518F; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:55 GMT
content-type: application/javascript
cf-ray: 7949ce5d7c52b4f9-OSL
etag: W/"63dcff68-739"
last-modified: Fri, 03 Feb 2023 12:34:48 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/market-descriptions/get-all-outcomes/es
200 OK 15 kB URL HTTP/2 platform.20bet.com/api/market-descriptions/get-all-outcomes/es
IP
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash a5a135ba268e361c8f71b5a693d7e873
5b6472e37f51b4ce11f295d75e32f8f988cb95bc
ed40102078b371d6a753315751400d9386650edc5d831e49747f63d874060686
GET /api/market-descriptions/get-all-outcomes/es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:54 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7949ce5ada8cb4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 278 B IP
Hash d9caf07c51cf381abfb3ea705974b4ba
9d2a6b4fde28a4c01173f6b2943006b39fcd66d0
87ebd8f8291b7430874d36b8508b8b0aa6530a7d8f683125c9f8ad780a9ac2e6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 780
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:55 GMT
Etag: "63df0284-116"
Last-Modified: Sun, 05 Feb 2023 06:53:55 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 278
platform.20bet.com/api/match-statuses/get-all/es
200 OK 8.2 kB URL HTTP/2 platform.20bet.com/api/match-statuses/get-all/es
IP
File type ASCII text, with very long lines (3842), with no line terminators
Hash 335731ffd99b69dc29c5ad350b045ef0
23973f9a6c687d2d1efdf56017d621df5987cfef
19825070ff334381c26aeee6d7f2d2f7021b1d5cf700bb2271d58978132f8a7a
GET /api/match-statuses/get-all/es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:54 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7949ce5aca83b4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 278 B IP
Hash d9caf07c51cf381abfb3ea705974b4ba
9d2a6b4fde28a4c01173f6b2943006b39fcd66d0
87ebd8f8291b7430874d36b8508b8b0aa6530a7d8f683125c9f8ad780a9ac2e6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 780
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:55 GMT
Etag: "63df0284-116"
Last-Modified: Sun, 05 Feb 2023 06:53:55 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 278
cdn.softswiss.net/i/s4/softswiss/AztecMagicDeluxe.webp
200 OK 11 kB URL HTTP/2 cdn.softswiss.net/i/s4/softswiss/AztecMagicDeluxe.webp
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 190x190, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0e798d7fd0b2b215ab93f826402a78ba
edf1572b82e7a41e631a88b95e1f36b1b7a313a5
9a23457a09a069e2fb1da411a072b466a036fbff97c4f30b221ba2784963298d
GET /i/s4/softswiss/AztecMagicDeluxe.webp HTTP/1.1
Host: cdn.softswiss.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:55 GMT
content-type: image/webp
content-length: 10792
last-modified: Thu, 27 Jun 2019 06:47:09 GMT
etag: "5d14666d-2a28"
expires: Sun, 05 Feb 2023 13:46:19 GMT
cache-control: max-age=86400
referrer-policy: strict-origin-when-cross-origin
cf-cache-status: HIT
age: 61867
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7949ce61bb000b61-OSL
X-Firefox-Spdy: h2
platform.20bet.com/api/data/provinces
200 OK 56 kB URL HTTP/2 platform.20bet.com/api/data/provinces
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash b726a1a797bea72c1b00402fd887fc64
8678164d15cdddae0ab3a76f9f9411bc59182c20
ea9efad3787611800fbed9aa89170340c55b894523845aaa5d88e18170518169
GET /api/data/provinces HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:54 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7949ce5a6a31b4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/2742.7218039944d73442.esm.js
200 OK 16 kB URL HTTP/2 20bet.com/app/2742.7218039944d73442.esm.js
IP
File type ASCII text, with very long lines (569), with no line terminators
Hash b2bb70bf331ab748bfc4347bf3f455bb
1d810a38d77f3007f5b65b997cf64e2c68d1ec19
73243e883a68ea49115f673864337e1d620fa931c0e9b4994115e037baafee6e
GET /app/2742.7218039944d73442.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
Cookie: btag=668128_3BC752C963894CA4B8C71E6D9BF8518F; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:55 GMT
content-type: application/javascript
cf-ray: 7949ce5d8c61b4f9-OSL
etag: W/"63dcff6e-239"
last-modified: Fri, 03 Feb 2023 12:34:54 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/tournaments/bet-tournament/get-active?fields%5B%5D=tournaments&fields%5B%5D=leaderboards&fields%5B%5D=authorizedUsers
200 OK 20 kB URL HTTP/2 platform.20bet.com/api/tournaments/bet-tournament/get-active?fields%5B%5D=tournaments&fields%5B%5D=leaderboards&fields%5B%5D=authorizedUsers
IP
File type ASCII text, with very long lines (3466), with no line terminators
Hash 84a7456d29dfe3fe895613f512ec44b7
1ea0539a48ebc66ac27983baa5fc9554a37941fe
24621e4db0f9a0c7bf28999f894da08a16740f9edfaa5d3363128a49b87172da
GET /api/tournaments/bet-tournament/get-active?fields%5B%5D=tournaments&fields%5B%5D=leaderboards&fields%5B%5D=authorizedUsers HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:54 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7949ce5a5a27b4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/market-group-sorting/get-all-ordered
200 OK 66 kB URL HTTP/2 platform.20bet.com/api/market-group-sorting/get-all-ordered
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 669df5d38e5eee540bd4cdbaa5a0294f
5b8fd6e5eb0b2cb07ca735f7544d6558b1b0a1a5
062fe0e09a019a555ef6f84358d368e3074bf27b3f519764efb4199ff6545a4d
GET /api/market-group-sorting/get-all-ordered HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:54 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7949ce5aaa6db4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.softswiss.net/i/s4/softswiss/BookOfPyramids.webp
200 OK 15 kB URL HTTP/2 cdn.softswiss.net/i/s4/softswiss/BookOfPyramids.webp
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 190x190, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 6f37627ad10ae76809cf8f92fd25ae2e
412ff32762c33f475442fbf244878a614be5cc7f
b97809dea4401eefcd3e08039f56f6efe967331296e87eb8a63de2a4b5de942a
GET /i/s4/softswiss/BookOfPyramids.webp HTTP/1.1
Host: cdn.softswiss.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:55 GMT
content-type: image/webp
content-length: 15368
last-modified: Fri, 23 Apr 2021 09:50:03 GMT
etag: "6082984b-3c08"
expires: Sun, 05 Feb 2023 13:46:19 GMT
cache-control: max-age=86400
referrer-policy: strict-origin-when-cross-origin
cf-cache-status: HIT
age: 61867
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7949ce61fb280b61-OSL
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash 50f52293e1b9386e2617ce890b226aa0
dfd88d17dfcc3fe0877f0eaa1dfa368625985b6a
3b2aef917a90a806f8ba3eb16a82beec567f146a22b1f2a1ae04d6e08cb2d202
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 07:06:55 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 18:28:18 GMT
Expires: Sat, 11 Feb 2023 18:28:17 GMT
Etag: "dfd88d17dfcc3fe0877f0eaa1dfa368625985b6a"
Cache-Control: max-age=558681,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7949ce5e2d620b06-OSL
serving.ads.sportradar.com/i?stm=1675580852983&e=pv&url=https%3A%2F%2F20bet.com%2Fpe%3Fbtag%3D668128_3BC752C963894CA4B8C71E6D9BF8518F&page=Mejor%20casa%20de%20apuestas%20online%20%C2%BB%20Apuesta%20legalmente%20con%20la%20casa%20de%20apuestas%2020Bet&tv=js-2.14.0&tna=cf&aid=sr-tracker-20bet-com&p=web&tz=UTC&lang=en-US&cs=UTF-8&res=1280x1024&cd=24&cookie=0&eid=4bc1ed8f-2423-497f-96e0-20184c189e78&dtm=1675580852981&vp=0x0&ds=0x0&vid=1&sid=eb7f76f9-ce80-4a3b-a07b-9634496c8d0f&duid=d28c1456-34fa-4db5-9841-03cd324a5ac9&cx=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
200 OK 43 B URL HTTP/1.1 serving.ads.sportradar.com/i?stm=1675580852983&e=pv&url=https%3A%2F%2F20bet.com%2Fpe%3Fbtag%3D668128_3BC752C963894CA4B8C71E6D9BF8518F&page=Mejor%20casa%20de%20apuestas%20online%20%C2%BB%20Apuesta%20legalmente%20con%20la%20casa%20de%20apuestas%2020Bet&tv=js-2.14.0&tna=cf&aid=sr-tracker-20bet-com&p=web&tz=UTC&lang=en-US&cs=UTF-8&res=1280x1024&cd=24&cookie=0&eid=4bc1ed8f-2423-497f-96e0-20184c189e78&dtm=1675580852981&vp=0x0&ds=0x0&vid=1&sid=eb7f76f9-ce80-4a3b-a07b-9634496c8d0f&duid=d28c1456-34fa-4db5-9841-03cd324a5ac9&cx=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
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash fb02f374b8f73825415db1bccd4bd76d
b103aa629cacdd90b39538a7561da7f8e49ad73f
caa849b179befa2645a8e2c474d2e82a76777a3305315ece911013e8ee9a916c
GET /i?stm=1675580852983&e=pv&url=https%3A%2F%2F20bet.com%2Fpe%3Fbtag%3D668128_3BC752C963894CA4B8C71E6D9BF8518F&page=Mejor%20casa%20de%20apuestas%20online%20%C2%BB%20Apuesta%20legalmente%20con%20la%20casa%20de%20apuestas%2020Bet&tv=js-2.14.0&tna=cf&aid=sr-tracker-20bet-com&p=web&tz=UTC&lang=en-US&cs=UTF-8&res=1280x1024&cd=24&cookie=0&eid=4bc1ed8f-2423-497f-96e0-20184c189e78&dtm=1675580852981&vp=0x0&ds=0x0&vid=1&sid=eb7f76f9-ce80-4a3b-a07b-9634496c8d0f&duid=d28c1456-34fa-4db5-9841-03cd324a5ac9&cx=eyJzY2hlbWEiOiJpZ2x1OmNvbS5zbm93cGxvd2FuYWx5dGljcy5zbm93cGxvdy9jb250ZXh0cy9qc29uc2NoZW1hLzEtMC0wIiwiZGF0YSI6W3sic2NoZW1hIjoiaWdsdTpjb20uZ29vZ2xlLmFuYWx5dGljcy9jb29raWVzL2pzb25zY2hlbWEvMS0wLTAiLCJkYXRhIjp7fX0seyJzY2hlbWEiOiJpZ2x1OmNvbS5zcG9ydHJhZGFyLmFkcy9kc3AvanNvbnNjaGVtYS8xLTAtMCIsImRhdGEiOnsiZHNwX3R5cGUiOiJqcyIsImRzcF9haWQiOiIxMTIxIiwiZHNwX2lkIjoiMTg1OSJ9fSx7InNjaGVtYSI6ImlnbHU6Y29tLnNwb3J0cmFkYXIuYWRzL3RhZ21hbmFnZXIvanNvbnNjaGVtYS8xLTAtMCIsImRhdGEiOnsiY29udGFpbmVySWQiOiJTVE0tQUFBQUNUIiwiZXZlbnROYW1lIjoidHJhY2sucGFnZS52aWV3IiwiYWZmaWxpYXRlSWQiOiIxMTIxIiwiYWZmaWxpYXRlVHlwZSI6ImFkdmVydGlzZXIifX1dfQ HTTP/1.1
Host: serving.ads.sportradar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Set-Cookie: _sr_ads=ae708798-762b-43c3-85ac-62c323fc70e8; Expires=Mon, 05 Feb 2024 07:06:55 GMT; Domain=sportradar.com; Path=/; Secure; HttpOnly; SameSite=None
Cache-Control: no-cache, no-store, must-revalidate
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Server: akka-http/10.1.12
Date: Sun, 05 Feb 2023 07:06:55 GMT
Content-Type: image/gif
Content-Length: 43
track.trackingtraffo.com/pixel/js?auth=v3eu8spg&event=visit
200 OK 422 B URL HTTP/1.1 track.trackingtraffo.com/pixel/js?auth=v3eu8spg&event=visit
IP
Hash a84da22ba993cb90a87bbc7196a83564
284dae1447b59756ec476d581d6aad1ddd3218c3
98b0ce9e2f8df8f89c2adf5bcc0cf0eaf3b43c8b7fb26418f8a72179f4e6a440
GET /pixel/js?auth=v3eu8spg&event=visit HTTP/1.1
Host: track.trackingtraffo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 05 Feb 2023 07:06:55 GMT
Content-Type: text/javascript
Content-Length: 422
Connection: keep-alive
Cache-Control: no-cache, max-age=0, must-revalidate, proxy-revalidate, no-store
Pragma: no-cache
Expires: Sat, 01 Jan 2000 00:00:00 GMT
dwmu1hf7ovvid.cloudfront.net/logos/payments/mastercard.webp
200 OK 2.4 kB URL HTTP/2 dwmu1hf7ovvid.cloudfront.net/logos/payments/mastercard.webp
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 9819535f317a470cbe091587c3419fbe
9b5b6c30ca2c5190847498f23b144ff39c74b9d4
12bc46c585e9aaa0d800549310c3038384bb5158eccd4439d2b6223703192fa9
GET /logos/payments/mastercard.webp HTTP/1.1
Host: dwmu1hf7ovvid.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 2386
date: Sat, 04 Feb 2023 09:14:08 GMT
last-modified: Fri, 25 Feb 2022 07:48:25 GMT
etag: "9819535f317a470cbe091587c3419fbe"
x-amz-version-id: u7PXjQfxDKbNI6fOoUgizj8N9fNa7yWT
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Ij3evo7kOVQ01i6OixTum7m9jukYW5jhjVC3BkxeeiG_oSZUKUbZFQ==
age: 78768
X-Firefox-Spdy: h2
dwmu1hf7ovvid.cloudfront.net/logos/payments/dinners_discover.webp
200 OK 4.9 kB URL HTTP/2 dwmu1hf7ovvid.cloudfront.net/logos/payments/dinners_discover.webp
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 6ea8d660b5467827c912554aabe647d5
4570f9ecbcb61f9a2c44cd16ab737fb0e2b4cebd
2221037740fca246343805287f1d37d254f7942155f6b4c8572ac553f1bad5c6
GET /logos/payments/dinners_discover.webp HTTP/1.1
Host: dwmu1hf7ovvid.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 4926
date: Sat, 04 Feb 2023 09:14:08 GMT
last-modified: Fri, 25 Feb 2022 07:48:25 GMT
etag: "6ea8d660b5467827c912554aabe647d5"
x-amz-version-id: UHAkVVlDSlfVyn0QaFp_FgwNMMIk82nh
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: jo0Z6KyzCWNehbte09GLZ0_tSQmgBsD1vLPsbZK6kdoVNaWpuGDdng==
age: 78768
X-Firefox-Spdy: h2
dwmu1hf7ovvid.cloudfront.net/site/upload/license_validation/9458241d-0da8-43ca-aac4-b1756ce0ba65/1674827467_1674826113_google01.webp
200 OK 13 kB URL HTTP/2 dwmu1hf7ovvid.cloudfront.net/site/upload/license_validation/9458241d-0da8-43ca-aac4-b1756ce0ba65/1674827467_1674826113_google01.webp
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 893x331, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 5640879b9f514c266a1cd9a77396d8e9
01436b5d74978c330336bed07a10ec3d2b0b99f3
c14b55b1ff7608476a048a78bc7c186e9c6ecda78b20ba3b035dc5e49a979c7f
GET /site/upload/license_validation/9458241d-0da8-43ca-aac4-b1756ce0ba65/1674827467_1674826113_google01.webp HTTP/1.1
Host: dwmu1hf7ovvid.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/webp
content-length: 13352
last-modified: Fri, 27 Jan 2023 13:51:08 GMT
x-amz-version-id: ztTp6T_NLVo5JAFFnZeSlmlOdfavzTt2
accept-ranges: bytes
server: AmazonS3
date: Sat, 04 Feb 2023 15:09:55 GMT
etag: "5640879b9f514c266a1cd9a77396d8e9"
x-cache: Hit from cloudfront
via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: oa21Y38zJcaSE7uqjQ4dLMho23N-SypAxjlqndY_nu6SI_ZL7WOwSg==
age: 57421
X-Firefox-Spdy: h2
20bet.com/app/5352.a47af8ab3119be30.esm.js
200 OK 74 kB URL HTTP/2 20bet.com/app/5352.a47af8ab3119be30.esm.js
IP
File type ASCII text, with very long lines (954), with no line terminators
Hash 9f0136c922261668cc4d6190d34fd988
299d9e804616a866fff8d81cbc24b328d3e67149
ad67d91ea63bf7b6537ffaa086a26a66b070288189a8137e219672e6a3b1c9c5
GET /app/5352.a47af8ab3119be30.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
Cookie: btag=668128_3BC752C963894CA4B8C71E6D9BF8518F; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:55 GMT
content-type: application/javascript
cf-ray: 7949ce5d8c6bb4f9-OSL
etag: W/"63dcff68-3ba"
last-modified: Fri, 03 Feb 2023 12:34:48 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
dwmu1hf7ovvid.cloudfront.net/logos/payments/visa.webp
200 OK 6.6 kB URL HTTP/2 dwmu1hf7ovvid.cloudfront.net/logos/payments/visa.webp
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash ee2fad6bac293e4ca7ab69e783d4e2cd
f11c25ce6201ed8431bf370ba8163a8b96a629ea
75e10393bb2bf4d84cf86b733f85db33b66e7bf6e2538dc601d8772d2bfcad87
GET /logos/payments/visa.webp HTTP/1.1
Host: dwmu1hf7ovvid.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 6550
date: Sat, 04 Feb 2023 09:14:08 GMT
last-modified: Fri, 25 Feb 2022 07:48:25 GMT
etag: "ee2fad6bac293e4ca7ab69e783d4e2cd"
x-amz-version-id: pIXrhOThuPwmmXfQM00f4w8j43Wb2AWV
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: uwjAWpPcV35YAESXyOVsGlD5Ls2gQhESjCjbExL9bNYKyjCO7GaYOg==
age: 78768
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash b68d4a6cf7f62209a53a6bc8faa30e2e
2aeb0905d69ebf20ae69eab047e1cda0c19e69a5
76fe4dea9b234331919dcfaccd4543c05e475a97e692c68ef2882d11a3052c7e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2284
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:55 GMT
Last-Modified: Sun, 05 Feb 2023 06:28:51 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
dwmu1hf7ovvid.cloudfront.net/logos/payments/interac.webp
200 OK 2.0 kB URL HTTP/2 dwmu1hf7ovvid.cloudfront.net/logos/payments/interac.webp
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash cdab7fb995b7866403558f335543bda7
7e6664ba967fd7b2e4d974fdb935a34e05227c45
c995f3a08c8df5b312ca12754a9faf36a9ee44ace812217fcf71414ec89a707f
GET /logos/payments/interac.webp HTTP/1.1
Host: dwmu1hf7ovvid.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 1950
date: Sat, 04 Feb 2023 09:14:08 GMT
last-modified: Fri, 25 Feb 2022 07:48:25 GMT
etag: "cdab7fb995b7866403558f335543bda7"
x-amz-version-id: IsVRXTBPMjrUqDJ0FxzCocQI4PQQyK0X
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 78OyPn8U9NZ3Zmv4tAApC3EqOsdcx6jcSfYnhycESVTOhV6tT21DxQ==
age: 78768
X-Firefox-Spdy: h2
dwmu1hf7ovvid.cloudfront.net/logos/payments/skrill.webp
200 OK 4.4 kB URL HTTP/2 dwmu1hf7ovvid.cloudfront.net/logos/payments/skrill.webp
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 9a9c594671049f82d376caa8bc23f08c
8f9a2a1eae30ff8353280e0cb0574f800dddde97
42fa953d063490d13059e1d11b64d0b50fc4c879cec56fac8cda4b83d2bea6a8
GET /logos/payments/skrill.webp HTTP/1.1
Host: dwmu1hf7ovvid.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 4360
date: Sat, 04 Feb 2023 09:14:08 GMT
last-modified: Fri, 25 Feb 2022 07:48:25 GMT
etag: "9a9c594671049f82d376caa8bc23f08c"
x-amz-version-id: v6EFlnbny3NLqAwMTVhEYyU3slRzfjts
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: YK194Ld9JqTrUxOW55Y4bs7LsSGd7-pj7WGGQPAIU2HSiF0ueWqR1Q==
age: 78768
X-Firefox-Spdy: h2
platform.20bet.com/api/data/get-currencies
200 OK 5.9 kB URL HTTP/2 platform.20bet.com/api/data/get-currencies
IP
File type JSON data\012- , ASCII text, with very long lines (10992), with no line terminators
Hash 513c71e65ac6955477f8a015f24c660a
2991d19dfa5e745eafe22acf0ca41f19e714f2dd
fa268e683efa96f60c1063474936c691c99dffdc3d720faf7c2eb035fc02d3a7
GET /api/data/get-currencies HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:54 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7949ce5a7a45b4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
a.exoclick.com/tag_gen.js
200 OK 515 B URL HTTP/1.1 a.exoclick.com/tag_gen.js
IP
File type ASCII text, with very long lines (1030), with no line terminators
Hash 628e0302068ade64b5f411f39d5ce7e5
ff1a609269f34bad5ae67ed1678df3f7b905d018
c583ceaeae2e9a05e25c27b61520710f16b8b98ca7f9087a75ae90a040b8bc3f
GET /tag_gen.js HTTP/1.1
Host: a.exoclick.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 07:06:55 GMT
Connection: Keep-Alive
Content-Encoding: gzip
Content-Length: 515
Content-Type: application/javascript
Accept-Ranges: bytes
Cache-Control: max-age=10800
Server: nginx
etag: W/"a56c0470b9aa925085e51a6271a"
X-HW: 1675580815.dop226.sk1.t,1675580815.cds240.sk1.shn,1675580815.dop226.sk1.t,1675580815.cds251.sk1.c
Access-Control-Allow-Origin: *, *
dwmu1hf7ovvid.cloudfront.net/logos/payments/jeton.webp
200 OK 5.9 kB URL HTTP/2 dwmu1hf7ovvid.cloudfront.net/logos/payments/jeton.webp
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 5b322abc074e92690294cbc4c91e7367
2eec25886d1b942709730e2ad20bf4175ac5a670
1b0d4b8ad5f4e4a48a81be2d13a2649d6b3c7cd41a501744c2525567d0d0bab8
GET /logos/payments/jeton.webp HTTP/1.1
Host: dwmu1hf7ovvid.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 5878
date: Sat, 04 Feb 2023 09:14:08 GMT
last-modified: Fri, 25 Feb 2022 07:48:25 GMT
etag: "5b322abc074e92690294cbc4c91e7367"
x-amz-version-id: 3LxIFrbuND7xADVUotkoJ4KLlpdKaCIO
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: kNDpdg8KAK5E5UUr4jCsBksoCMEmYBl7Zu4XTD_WizDjHNbZO__mvQ==
age: 78768
X-Firefox-Spdy: h2
dwmu1hf7ovvid.cloudfront.net/logos/payments/cryptocurrency.webp
200 OK 5.3 kB URL HTTP/2 dwmu1hf7ovvid.cloudfront.net/logos/payments/cryptocurrency.webp
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 4923661fefdfbe670be68a25329912eb
6ad90e59a44ea11896e12fb1b9832e9c7088c780
53eeb9d95673ea2018aa9a7033846d58c7592a0d068ba5778033e167f9e33361
GET /logos/payments/cryptocurrency.webp HTTP/1.1
Host: dwmu1hf7ovvid.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 5348
date: Sat, 04 Feb 2023 09:14:08 GMT
last-modified: Fri, 25 Feb 2022 07:48:25 GMT
etag: "4923661fefdfbe670be68a25329912eb"
x-amz-version-id: b72gvm3FoOVUU.rPJwpoK6me7DPM5VqB
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: yO_E8t8CmC8WS3vvQhijfnNhgUTXdHeA0wDWZZInWsRgmZ1zJBBREg==
age: 78768
X-Firefox-Spdy: h2
dwmu1hf7ovvid.cloudfront.net/logos/payments/perfectmoney.webp
200 OK 9.2 kB URL HTTP/2 dwmu1hf7ovvid.cloudfront.net/logos/payments/perfectmoney.webp
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 7bdbb0621ba893bb559e51169543deb5
a8579c46d6a94a2c89f2c489da5228cc51fe5ab5
764bc6ff2e5e83dd93def92c7acfb0c1ccd094c0231bc0adab4e52dc0fbbf136
GET /logos/payments/perfectmoney.webp HTTP/1.1
Host: dwmu1hf7ovvid.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 9200
date: Sat, 04 Feb 2023 09:14:08 GMT
last-modified: Fri, 25 Feb 2022 07:48:25 GMT
etag: "7bdbb0621ba893bb559e51169543deb5"
x-amz-version-id: OO_BasJwQQO0g.jv4KPj.MPmZ8lFDBrP
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: hS9aUaSaz_rS3uqi9tltyAxK106D_6OY7QhSsiwQYFyeVz9O7fe7VQ==
age: 78768
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 314 B IP
Hash 67f883e201fd0fc7c5b107d91b1ad4ea
2fca677bb0b67e3ed174cc5dc3707e30366046b3
d0a842bf7e76e790c51a12e84f1945786fa17f928d1fb0aefbfbb5691994ef49
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5252
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:55 GMT
Last-Modified: Sun, 05 Feb 2023 05:39:23 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 314
platform.20bet.com/api/v2/data/rates
200 OK 13 kB URL HTTP/2 platform.20bet.com/api/v2/data/rates
IP
File type JSON data\012- , ASCII text, with very long lines (8358), with no line terminators
Hash 1f1164a267a0991e0be7710ac7e02572
9f6601364200c3e2c78344bbc98b9aada5c3b16f
dff73862cf69688767b8952f71dc8bc8278d80a8af81b0f11f3b95213f334756
GET /api/v2/data/rates HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:54 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7949ce5a8a4bb4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP
Hash 7d5a683115d8ea72c415abdea091fa1f
c93970b5763ffdc0b3e9384d707437832d870b93
8f821a70038d960920a5b2f2905fbf8d8cf163db63fcd52790d425bae4592b8d
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 07:06:56 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Thu, 09 Feb 2023 04:17:43 GMT
ETag: "c93970b5763ffdc0b3e9384d707437832d870b93"
Last-Modified: Sun, 05 Feb 2023 04:17:44 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3246
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7949ce640d89b512-OSL
ocsp.globalsign.com/gseccovsslca2018
200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP
Hash 7d5a683115d8ea72c415abdea091fa1f
c93970b5763ffdc0b3e9384d707437832d870b93
8f821a70038d960920a5b2f2905fbf8d8cf163db63fcd52790d425bae4592b8d
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 07:06:56 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Thu, 09 Feb 2023 04:17:43 GMT
ETag: "c93970b5763ffdc0b3e9384d707437832d870b93"
Last-Modified: Sun, 05 Feb 2023 04:17:44 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3246
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7949ce64081cb51b-OSL
20bet.com/app/4031.b91f4417cd75a26b.esm.js
200 OK 164 kB URL HTTP/2 20bet.com/app/4031.b91f4417cd75a26b.esm.js
IP
File type ASCII text, with very long lines (1237), with no line terminators
Size 164 kB (164464 bytes)
Hash b3bfdae1faf589c65444506b967683de
2907c0ae3f6817313799819dd135b3bd3f95a8d1
9b81fbb8741c24ab8c633dfe1470bd792a4e3fed2ab25be30c4cad16a767e88a
GET /app/4031.b91f4417cd75a26b.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
Cookie: btag=668128_3BC752C963894CA4B8C71E6D9BF8518F; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:55 GMT
content-type: application/javascript
cf-ray: 7949ce5d8c6ab4f9-OSL
etag: W/"63dcff6e-4d5"
last-modified: Fri, 03 Feb 2023 12:34:54 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
ctrack.trafficjunky.net/ctrack?action=list&type=add&id=notregistered&context=20bet.com&cookiename=notregistered&age=262800&maxcookiecount=10
200 OK 35 B URL HTTP/1.1 ctrack.trafficjunky.net/ctrack?action=list&type=add&id=notregistered&context=20bet.com&cookiename=notregistered&age=262800&maxcookiecount=10
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /ctrack?action=list&type=add&id=notregistered&context=20bet.com&cookiename=notregistered&age=262800&maxcookiecount=10 HTTP/1.1
Host: ctrack.trafficjunky.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
server: openresty
date: Sun, 05 Feb 2023 07:06:56 GMT
content-type: image/gif
content-length: 35
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Sun, 22 Jan 1984 03:00:00 GMT
p3p: CP="IDC DSP COR CURa ADMa OUR IND PHY ONL COM STA"
pragma: no-cache
set-cookie: tj_UUID=631cd2ee2b4f4cf89a98c513c08d9583; Path=/; Domain=trafficjunky.net; Expires=Tue, 07 Mar 2023 07:06:56 GMT; Secure; SameSite=None
tj_UUID_v2=631cd2ee-2b4f-4cf8-9a98-c513c08d9583; Path=/; Domain=trafficjunky.net; Expires=Tue, 07 Mar 2023 07:06:56 GMT; Secure; SameSite=None
1918bc62c1a6d87456120b5ac922270e=notregistered; Path=/; Domain=trafficjunky.net; Expires=Sun, 06 Aug 2023 19:06:56 GMT; Secure; SameSite=None
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET,POST
access-control-allow-headers: Content-Type
access-control-max-age: 86400
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
x-request-id: 63DF558F-42FE725901BB6FA4-155F3F5B
ocsp.sectigo.com/
200 OK 471 B IP
Hash bbd90245f244e76d9f45706b1fb5ae58
1e15a0d03d74175f976310f2db334050485ed546
03fda0816cd373e36f33630fc50b4fb5e5852fb1f2c65175b98437386c436dd4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 07:06:56 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 01:56:49 GMT
Expires: Sat, 11 Feb 2023 01:56:48 GMT
Etag: "1e15a0d03d74175f976310f2db334050485ed546"
Cache-Control: max-age=499191,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7949ce640fdeb521-OSL
20bet.com/app/common.3697a9055d1996ae.esm.js
200 OK 11 kB URL HTTP/2 20bet.com/app/common.3697a9055d1996ae.esm.js
IP
File type ASCII text, with very long lines (32302), with no line terminators
Hash 5b1b296e109e36ea30401ca5f56d4ac4
c297512089cdbf6afc73ad31aa18f0012a72fde9
1bba4a271dbd74d07d1b64d4437f43df916766ca7c491006df6157d122111df3
GET /app/common.3697a9055d1996ae.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
Cookie: btag=668128_3BC752C963894CA4B8C71E6D9BF8518F; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:54 GMT
content-type: application/javascript
cf-ray: 7949ce58a91eb4f9-OSL
etag: W/"63dcff7f-7e2e"
last-modified: Fri, 03 Feb 2023 12:35:11 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash bbd90245f244e76d9f45706b1fb5ae58
1e15a0d03d74175f976310f2db334050485ed546
03fda0816cd373e36f33630fc50b4fb5e5852fb1f2c65175b98437386c436dd4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 07:06:56 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 01:56:49 GMT
Expires: Sat, 11 Feb 2023 01:56:48 GMT
Etag: "1e15a0d03d74175f976310f2db334050485ed546"
Cache-Control: max-age=499191,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7949ce645e781c0a-OSL
x.bidswitch.net/syncd?dsp_id=409&user_group=1&user_id=b857597d-56eb-4850-bbc5-171949f99b40&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3Db857597d-56eb-4850-bbc5-171949f99b40
302 Found 0 B URL HTTP/2 x.bidswitch.net/syncd?dsp_id=409&user_group=1&user_id=b857597d-56eb-4850-bbc5-171949f99b40&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3Db857597d-56eb-4850-bbc5-171949f99b40
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /syncd?dsp_id=409&user_group=1&user_id=b857597d-56eb-4850-bbc5-171949f99b40&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3Db857597d-56eb-4850-bbc5-171949f99b40 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20bet.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 05 Feb 2023 07:06:56 GMT
content-length: 0
location: https://x.bidswitch.net/ul_cb/syncd?dsp_id=409&user_group=1&user_id=b857597d-56eb-4850-bbc5-171949f99b40&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3Db857597d-56eb-4850-bbc5-171949f99b40
cache-control: no-cache, no-store, must-revalidate
set-cookie: tuuid=87cfc102-0b02-4512-90be-735a46db5a56; path=/; expires=Mon, 05-Feb-2024 07:06:56 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675580816; path=/; expires=Mon, 05-Feb-2024 07:06:56 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1675580816; path=/; expires=Mon, 05-Feb-2024 07:06:56 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675580816; path=/; expires=Mon, 05-Feb-2024 07:06:56 GMT; domain=.bidswitch.net; samesite=none; secure
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/tag.js
200 OK 74 kB URL HTTP/2 mc.yandex.ru/metrika/tag.js
IP
File type Unicode text, UTF-8 (with BOM) text, with very long lines (659)
Hash a236c7014c1f1a1e52d356f59e5d665a
b66c638eb2346287364c37725819bbab1f409d66
ad2d57579e453af0eac49156840bcd1dcfbd802a82135af98f41f714d7e698f2
GET /metrika/tag.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 73769
date: Sun, 05 Feb 2023 07:06:56 GMT
access-control-allow-origin: *
etag: "63c93a4b-12029"
expires: Sun, 05 Feb 2023 08:06:56 GMT
last-modified: Thu, 19 Jan 2023 15:40:43 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: application/javascript
content-encoding: br
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/watch.js
200 OK 58 kB URL HTTP/2 mc.yandex.ru/metrika/watch.js
IP
File type Unicode text, UTF-8 (with BOM) text, with very long lines (554)
Hash 315a601116a9b3b0fbc85feb58375ba4
5d283ed923d0b3beb8a2ec4e80c2958d1d132fbf
251ba0fc04953e3615e7c19a9a10c5d6a4f25cc03bef190f8a5e7c6cd72a991a
GET /metrika/watch.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 58140
date: Sun, 05 Feb 2023 07:06:56 GMT
access-control-allow-origin: *
etag: "63c93a4b-e31c"
expires: Sun, 05 Feb 2023 08:06:56 GMT
last-modified: Thu, 19 Jan 2023 15:40:43 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: application/javascript
content-encoding: br
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash bbd90245f244e76d9f45706b1fb5ae58
1e15a0d03d74175f976310f2db334050485ed546
03fda0816cd373e36f33630fc50b4fb5e5852fb1f2c65175b98437386c436dd4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 07:06:56 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 01:56:49 GMT
Expires: Sat, 11 Feb 2023 01:56:48 GMT
Etag: "1e15a0d03d74175f976310f2db334050485ed546"
Cache-Control: max-age=499191,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7949ce640d64b527-OSL
20bet.com/app/6612.8b90df75e8984f5b.esm.js
200 OK 726 B URL HTTP/2 20bet.com/app/6612.8b90df75e8984f5b.esm.js
IP
File type ASCII text, with very long lines (1196), with no line terminators
Hash 38ca879d58277da2f703fdd8d0e5ae14
726f2f9dd381ba0f95f7d492beb6c64a7c24acb3
9a09e59dd8c6d35eab7981ca9810076ee7b6a6b715016c59f095a192cda3ed30
GET /app/6612.8b90df75e8984f5b.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
Cookie: btag=668128_3BC752C963894CA4B8C71E6D9BF8518F; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:55 GMT
content-type: application/javascript
cf-ray: 7949ce5d7c59b4f9-OSL
etag: W/"63dcff74-4ac"
last-modified: Fri, 03 Feb 2023 12:35:00 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash bbd90245f244e76d9f45706b1fb5ae58
1e15a0d03d74175f976310f2db334050485ed546
03fda0816cd373e36f33630fc50b4fb5e5852fb1f2c65175b98437386c436dd4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 07:06:56 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 01:56:49 GMT
Expires: Sat, 11 Feb 2023 01:56:48 GMT
Etag: "1e15a0d03d74175f976310f2db334050485ed546"
Cache-Control: max-age=499191,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7949ce64581ab521-OSL
ocsp.sectigo.com/
200 OK 471 B IP
Hash bbd90245f244e76d9f45706b1fb5ae58
1e15a0d03d74175f976310f2db334050485ed546
03fda0816cd373e36f33630fc50b4fb5e5852fb1f2c65175b98437386c436dd4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 07:06:56 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 01:56:49 GMT
Expires: Sat, 11 Feb 2023 01:56:48 GMT
Etag: "1e15a0d03d74175f976310f2db334050485ed546"
Cache-Control: max-age=499191,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7949ce6408c70b06-OSL
x.bidswitch.net/sync?dsp_id=409&expires=14&user_group=2&user_id=b857597d-56eb-4850-bbc5-171949f99b40&cb=a4632b99-6049-4dfa-9f4d-c2e3eb93d717
302 Found 0 B URL HTTP/2 x.bidswitch.net/sync?dsp_id=409&expires=14&user_group=2&user_id=b857597d-56eb-4850-bbc5-171949f99b40&cb=a4632b99-6049-4dfa-9f4d-c2e3eb93d717
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?dsp_id=409&expires=14&user_group=2&user_id=b857597d-56eb-4850-bbc5-171949f99b40&cb=a4632b99-6049-4dfa-9f4d-c2e3eb93d717 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 05 Feb 2023 07:06:56 GMT
content-length: 0
cache-control: no-cache, no-store, must-revalidate
location: //match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=b857597d-56eb-4850-bbc5-171949f99b40&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
X-Firefox-Spdy: h2
x.bidswitch.net/syncd?dsp_id=409&user_id=b857597d-56eb-4850-bbc5-171949f99b40&user_group=2&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D
302 Found 0 B URL HTTP/2 x.bidswitch.net/syncd?dsp_id=409&user_id=b857597d-56eb-4850-bbc5-171949f99b40&user_group=2&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /syncd?dsp_id=409&user_id=b857597d-56eb-4850-bbc5-171949f99b40&user_group=2&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 05 Feb 2023 07:06:56 GMT
content-length: 0
location: https://x.bidswitch.net/ul_cb/syncd?dsp_id=409&user_id=b857597d-56eb-4850-bbc5-171949f99b40&user_group=2&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D
cache-control: no-cache, no-store, must-revalidate
set-cookie: tuuid=efeebc2f-916e-4db8-88d3-7eedef8466c6; path=/; expires=Mon, 05-Feb-2024 07:06:56 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675580816; path=/; expires=Mon, 05-Feb-2024 07:06:56 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1675580816; path=/; expires=Mon, 05-Feb-2024 07:06:56 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675580816; path=/; expires=Mon, 05-Feb-2024 07:06:56 GMT; domain=.bidswitch.net; samesite=none; secure
X-Firefox-Spdy: h2
track.trackingtraffo.com/pixel?auth=v3eu8spg&event=visit&site=20bet.com&ln=en-US
200 OK 0 B URL HTTP/1.1 track.trackingtraffo.com/pixel?auth=v3eu8spg&event=visit&site=20bet.com&ln=en-US
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel?auth=v3eu8spg&event=visit&site=20bet.com&ln=en-US HTTP/1.1
Host: track.trackingtraffo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 05 Feb 2023 07:06:56 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-cache, max-age=0, must-revalidate, proxy-revalidate, no-store
Pragma: no-cache
Expires: Sat, 01 Jan 2000 00:00:00 GMT
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 3f42c0d1cd34dd1d6e27d8d13e2034fa
aee1e48ed0450d58d165714bec4be7307eede096
8c057825608d7e340ab1b69839c5a73316162b0afbea1f759c2d6acb6e3f9035
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8C057825608D7E340AB1B69839C5A73316162B0AFBEA1F759C2D6ACB6E3F9035"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6969
Expires: Sun, 05 Feb 2023 09:03:05 GMT
Date: Sun, 05 Feb 2023 07:06:56 GMT
Connection: keep-alive
main.realsrv.com/tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2
200 OK 20 B URL HTTP/1.1 main.realsrv.com/tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2
IP
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2 HTTP/1.1
Host: main.realsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 05 Feb 2023 07:06:56 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: goals=a%3A1%3A%7Bi%3A93090%3Ba%3A1%3A%7Bs%3A4%3A%22date%22%3Bs%3A10%3A%222023-02-05%22%3B%7D%7D; expires=Mon, 05 Feb 2024 07:06:56 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
static.hotjar.com/c/hotjar-2053477.js?sv=6
200 OK 3.5 kB URL HTTP/2 static.hotjar.com/c/hotjar-2053477.js?sv=6
IP
File type ASCII text, with very long lines (7460)
Hash 2f5dc3684b4968b2ce5edc2bf88e2272
63c8e1454c9e8f3a360f95b5978088ae7687f743
e7f98de85e1333cf96b849f9fcd1586cbcea9330c3cc721199847b2888ea4f32
GET /c/hotjar-2053477.js?sv=6 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Sun, 05 Feb 2023 07:05:56 GMT
access-control-allow-origin: *
cache-control: max-age=60
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
etag: W/263ea3f313d6cbc3cf74e6635eb236c5
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: kDVz2e6SDVLhpFJWSl7RqG4d9dETVyWDv7Ir-grUJ01t5rNq15pKjg==
age: 59
X-Firefox-Spdy: h2
dsp-trk.eskimi.com/tracking/cssession?tst&id=22441
304 Not Modified 0 B URL HTTP/2 dsp-trk.eskimi.com/tracking/cssession?tst&id=22441
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tracking/cssession?tst&id=22441 HTTP/1.1
Host: dsp-trk.eskimi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 304 Not Modified
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
date: Sun, 05 Feb 2023 07:06:56 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash b68d4a6cf7f62209a53a6bc8faa30e2e
2aeb0905d69ebf20ae69eab047e1cda0c19e69a5
76fe4dea9b234331919dcfaccd4543c05e475a97e692c68ef2882d11a3052c7e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2285
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 07:06:56 GMT
Last-Modified: Sun, 05 Feb 2023 06:28:51 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
my.rtmark.net/p.js?f=sync&lr=1&partner=cd60a55da311d1562975ffab2a7f08e376179d9ae222cd454571a6753429581a
200 OK 2.4 kB URL HTTP/2 my.rtmark.net/p.js?f=sync&lr=1&partner=cd60a55da311d1562975ffab2a7f08e376179d9ae222cd454571a6753429581a
IP
Hash b0f993be0aa42ece8cfc96e9defab869
a8dd963db3d064e65c7f9311879f9996f27bf9c7
300b3e781cfef1abef25f791164e53ce2b5cc2d32276e997c84a19095ee50dae
GET /p.js?f=sync&lr=1&partner=cd60a55da311d1562975ffab2a7f08e376179d9ae222cd454571a6753429581a HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 07:06:56 GMT
content-type: text/javascript
content-length: 697
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
script.hotjar.com/modules.bca0d1c28285412bb689.js
200 OK 68 kB URL HTTP/2 script.hotjar.com/modules.bca0d1c28285412bb689.js
IP
File type Unicode text, UTF-8 text, with very long lines (49086)
Hash e923aa360dc485b9df86355bd040c998
03c46dbd41e9d4bdf8a9e4bfbaba3f7f2e9280ec
9c7575553c5b81f9b905dbb27c8116b175b69e7472aa6597f8cace1c6434d676
GET /modules.bca0d1c28285412bb689.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 67924
date: Fri, 03 Feb 2023 13:10:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "e923aa360dc485b9df86355bd040c998"
last-modified: Fri, 03 Feb 2023 13:09:45 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: V0cbXPZPm9V_EczDz_I1lVVTP74QNQWAKdgcS_X3w9sFIaGpUeg2Xg==
age: 151010
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/advert.gif
200 OK 43 B URL HTTP/2 mc.yandex.ru/metrika/advert.gif
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Sun, 05 Feb 2023 07:06:56 GMT
access-control-allow-origin: *
etag: "63c93a4b-2b"
expires: Sun, 05 Feb 2023 08:06:56 GMT
accept-ranges: bytes
last-modified: Thu, 19 Jan 2023 15:40:43 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
x.bidswitch.net/ul_cb/syncd?dsp_id=409&user_group=1&user_id=b857597d-56eb-4850-bbc5-171949f99b40&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3Db857597d-56eb-4850-bbc5-171949f99b40
200 OK 43 B URL HTTP/2 x.bidswitch.net/ul_cb/syncd?dsp_id=409&user_group=1&user_id=b857597d-56eb-4850-bbc5-171949f99b40&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3Db857597d-56eb-4850-bbc5-171949f99b40
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/syncd?dsp_id=409&user_group=1&user_id=b857597d-56eb-4850-bbc5-171949f99b40&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3Db857597d-56eb-4850-bbc5-171949f99b40 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20bet.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:56 GMT
content-type: image/gif
content-length: 43
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=2&user_id=b857597d-56eb-4850-bbc5-171949f99b40&cb=ca59102b-b066-4131-b94b-d222224d2d4e
302 Found 0 B URL HTTP/2 x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=2&user_id=b857597d-56eb-4850-bbc5-171949f99b40&cb=ca59102b-b066-4131-b94b-d222224d2d4e
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ul_cb/sync?dsp_id=409&expires=14&user_group=2&user_id=b857597d-56eb-4850-bbc5-171949f99b40&cb=ca59102b-b066-4131-b94b-d222224d2d4e HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20bet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sun, 05 Feb 2023 07:06:56 GMT
content-length: 0
cache-control: no-cache, no-store, must-revalidate
location: //match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=b857597d-56eb-4850-bbc5-171949f99b40&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
X-Firefox-Spdy: h2
main.exoclick.com/tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2
200 OK 20 B URL HTTP/1.1 main.exoclick.com/tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2
IP
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2 HTTP/1.1
Host: main.exoclick.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 05 Feb 2023 07:06:56 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: goals=a%3A1%3A%7Bi%3A93090%3Ba%3A1%3A%7Bs%3A4%3A%22date%22%3Bs%3A10%3A%222023-02-05%22%3B%7D%7D; expires=Mon, 05 Feb 2024 07:06:56 GMT; path=/; domain=.exoclick.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
main.exosrv.com/tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2
200 OK 20 B URL HTTP/1.1 main.exosrv.com/tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2
IP
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2 HTTP/1.1
Host: main.exosrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 05 Feb 2023 07:06:56 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: goals=a%3A1%3A%7Bi%3A93090%3Ba%3A1%3A%7Bs%3A4%3A%22date%22%3Bs%3A10%3A%222023-02-05%22%3B%7D%7D; expires=Mon, 05 Feb 2024 07:06:56 GMT; path=/; domain=.exosrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
e1.o.lencr.org/
200 OK 344 B IP
ASN #20940 Akamai International B.V.
Hash b7889cb5791a70d6b2869304f2a681ed
4013f7d37fc6537343b2893fa0832169f845d683
4ea4f5e31d9540567c893350668131f6e6e0ff447d3bc05239ce01a35205cb7e
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "4EA4F5E31D9540567C893350668131F6E6E0FF447D3BC05239CE01A35205CB7E"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8833
Expires: Sun, 05 Feb 2023 09:34:09 GMT
Date: Sun, 05 Feb 2023 07:06:56 GMT
Connection: keep-alive
platform.20bet.com/api/v3/menu/line/es?period=0
204 No Content 0 B URL HTTP/2 platform.20bet.com/api/v3/menu/line/es?period=0
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v3/menu/line/es?period=0 HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sun, 05 Feb 2023 07:06:57 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7949ce6abc56991e-ARN
X-Firefox-Spdy: h2
platform.20bet.com/api/v3/menu/line/es?period=5
204 No Content 0 B URL HTTP/2 platform.20bet.com/api/v3/menu/line/es?period=5
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v3/menu/line/es?period=5 HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sun, 05 Feb 2023 07:06:57 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7949ce6acc5b991e-ARN
X-Firefox-Spdy: h2
platform.20bet.com/api/popular/line-menu/es
204 No Content 0 B URL HTTP/2 platform.20bet.com/api/popular/line-menu/es
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/popular/line-menu/es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sun, 05 Feb 2023 07:06:57 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7949ce6aec62991e-ARN
X-Firefox-Spdy: h2
platform.20bet.com/api/v4/coupon/get?system=1&lang=es
204 No Content 0 B URL HTTP/2 platform.20bet.com/api/v4/coupon/get?system=1&lang=es
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v4/coupon/get?system=1&lang=es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sun, 05 Feb 2023 07:06:57 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7949ce6aec66991e-ARN
X-Firefox-Spdy: h2
tsyndicate.com/api/v1/retargeting/set/45d3301c-de08-443f-9716-ba31e2632331
200 OK 35 B URL HTTP/2 tsyndicate.com/api/v1/retargeting/set/45d3301c-de08-443f-9716-ba31e2632331
IP
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /api/v1/retargeting/set/45d3301c-de08-443f-9716-ba31e2632331 HTTP/1.1
Host: tsyndicate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 07:06:57 GMT
content-type: text/plain; charset=utf-8
content-length: 35
pragma: no-cache
expires: 0
vary: *
x-api-version: 1
x-request-id: ca0de568899133b8
set-cookie: ts_rt_45d3301c-de08-443f-9716-ba31e2632331=AAMC; expires=Mon, 05 Feb 2024 07:06:57 GMT; path=/; HttpOnly; secure; SameSite=None
cache-control: no-cache, no-store, no-transform, must-revalidate, no-transform
x-robots-tag: none, noindex, nofollow
report-to: { "url": "https://pxl.tsyndicate.com/api/v1/heavy-ad/report", "max_age": 86401 }
X-Firefox-Spdy: h2
platform.20bet.com/api/v3/menu/live/es
204 No Content 0 B URL HTTP/2 platform.20bet.com/api/v3/menu/live/es
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v3/menu/live/es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sun, 05 Feb 2023 07:06:57 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7949ce6aec61991e-ARN
X-Firefox-Spdy: h2
platform.20bet.com/api/event/list?isTop_eq=1&oddsExists_eq=1&competitor2Id_neq=&competitor1Id_neq=&main=1&status_in%5B%5D=0&limit=15&relations%5B%5D=league&relations%5B%5D=odds&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=players&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=es
204 No Content 0 B URL HTTP/2 platform.20bet.com/api/event/list?isTop_eq=1&oddsExists_eq=1&competitor2Id_neq=&competitor1Id_neq=&main=1&status_in%5B%5D=0&limit=15&relations%5B%5D=league&relations%5B%5D=odds&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=players&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=es
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/event/list?isTop_eq=1&oddsExists_eq=1&competitor2Id_neq=&competitor1Id_neq=&main=1&status_in%5B%5D=0&limit=15&relations%5B%5D=league&relations%5B%5D=odds&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=players&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sun, 05 Feb 2023 07:06:57 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7949ce6afc72991e-ARN
X-Firefox-Spdy: h2
platform.20bet.com/api/user/is-auth
204 No Content 0 B URL HTTP/2 platform.20bet.com/api/user/is-auth
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/user/is-auth HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sun, 05 Feb 2023 07:06:57 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7949ce6b0c7a991e-ARN
X-Firefox-Spdy: h2
platform.20bet.com/api/event/list?isTopLive_eq=1&competitor2Id_neq=&competitor1Id_neq=&status_in%5B%5D=2&status_in%5B%5D=1&oddsExists_eq=1&main=1&limit=15&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=players&relations%5B%5D=sportCategories&relations%5B%5D=broadcasts&relations%5B%5D=statistics&relations%5B%5D=additionalInfo&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=es
204 No Content 48 kB URL HTTP/2 platform.20bet.com/api/event/list?isTopLive_eq=1&competitor2Id_neq=&competitor1Id_neq=&status_in%5B%5D=2&status_in%5B%5D=1&oddsExists_eq=1&main=1&limit=15&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=players&relations%5B%5D=sportCategories&relations%5B%5D=broadcasts&relations%5B%5D=statistics&relations%5B%5D=additionalInfo&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=es
IP
Hash d86d43342ea4de98e69dbb3dfd9284d1
f9bdac09e49689ab2a4e72d146b102699ba92ca3
325bb30c6c2de65e810b8d01046d0db039bb8e23c425513ac432416f97220438
OPTIONS /api/event/list?isTopLive_eq=1&competitor2Id_neq=&competitor1Id_neq=&status_in%5B%5D=2&status_in%5B%5D=1&oddsExists_eq=1&main=1&limit=15&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=players&relations%5B%5D=sportCategories&relations%5B%5D=broadcasts&relations%5B%5D=statistics&relations%5B%5D=additionalInfo&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sun, 05 Feb 2023 07:06:57 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7949ce6b1c81991e-ARN
X-Firefox-Spdy: h2
sentry.softlabs.com/api/9/store/?sentry_key=913196a6014545bda28200a38ba9826a&sentry_version=7
200 OK 41 B URL HTTP/2 sentry.softlabs.com/api/9/store/?sentry_key=913196a6014545bda28200a38ba9826a&sentry_version=7
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 43a03d16cfa21d0a04c6fae7bb149282
b340e65e70ab53bce9e285f2651129b3e359d18c
a55162557baf77ba36ad6446cca203899853c7f0f89b864bf427902a22749b95
POST /api/9/store/?sentry_key=913196a6014545bda28200a38ba9826a&sentry_version=7 HTTP/1.1
Host: sentry.softlabs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20bet.com/
Content-Type: text/plain;charset=UTF-8
Origin: https://20bet.com
Content-Length: 4194
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:57 GMT
content-type: application/json
content-length: 41
access-control-allow-origin: https://20bet.com
access-control-expose-headers: retry-after, x-sentry-error, x-sentry-rate-limits
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6joV1t4Plbh74XWV%2FqA6TsZQz9BMukgg6VEq5DzsQlK%2F8MyiyJXbYrCm1h7ojXcQnxeQQ3DvePk8g2H4LosD%2FZws9G7Re9xwQO6O90ZCrdQqr9JUdcV9SSWp7WdT%2B5MfF2E3VQw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7949ce6a4d84b4ed-OSL
X-Firefox-Spdy: h2
ocsp.r2m02.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP
Hash 802471d0289c0feef8b695c9aa2ef58f
58131a1708a301fda2b765e0a2d9da54bebfeb10
2f23e531860dec269b62cacda0b831a5bf3e9a3449f2e214ce103e923a84edd4
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 05 Feb 2023 07:06:57 GMT
Last-Modified: Sun, 05 Feb 2023 05:33:25 GMT
Server: ECS (nyb/1D05)
X-Cache: Miss from cloudfront
Via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: AZj0GbxIgD-Pf4OPOC0F32XQZ3woaNp3rFb8oqx81NCiTVU9JGpXOQ==
Age: 5613
vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html
200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash 112fdf47cdb80b9ce3d033ed09717460
3898efa86cbf1b64dc41a90a110ed5afd6f2ae13
3bfb2e882091d872eece2eee40084183a5fcb0a7ed98c1b004850751260a4cbb
GET /box-e031119f9e9e307a08fa610f85dbfb52.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1034
date: Fri, 03 Feb 2023 13:10:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "112fdf47cdb80b9ce3d033ed09717460"
last-modified: Fri, 03 Feb 2023 13:09:45 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: v8kiBJcaYHqoR1_7CFskY_tcxkcvWbjMYeZErac-Q5ryLpXK2Zt3Rg==
age: 151011
X-Firefox-Spdy: h2
ocsp.r2m02.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP
Hash 802471d0289c0feef8b695c9aa2ef58f
58131a1708a301fda2b765e0a2d9da54bebfeb10
2f23e531860dec269b62cacda0b831a5bf3e9a3449f2e214ce103e923a84edd4
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Sun, 05 Feb 2023 07:06:57 GMT
Etag: "63de17ba-1d7"
Server: ECS (dcb/7EC6)
X-Cache: Miss from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 3kFB_E0RC0z3FdgztiGZicIfozhFCJp3DyvoPvlrdmnjFwmhrcKNbw==
ocsp.r2m02.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP
Hash 802471d0289c0feef8b695c9aa2ef58f
58131a1708a301fda2b765e0a2d9da54bebfeb10
2f23e531860dec269b62cacda0b831a5bf3e9a3449f2e214ce103e923a84edd4
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=94865
Date: Sun, 05 Feb 2023 07:06:57 GMT
Etag: "63de17ba-1d7"
Expires: Mon, 06 Feb 2023 09:28:02 GMT
Last-Modified: Sat, 04 Feb 2023 08:30:50 GMT
Server: ECS (dcb/7F83)
X-Cache: Miss from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: G8mvglPJCxA_958aXLYmg2k7xLMYwL9lWmriKITrjjZHCY1yLP-qhg==
Age: 3432
ocsp.r2m02.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP
Hash 802471d0289c0feef8b695c9aa2ef58f
58131a1708a301fda2b765e0a2d9da54bebfeb10
2f23e531860dec269b62cacda0b831a5bf3e9a3449f2e214ce103e923a84edd4
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Sun, 05 Feb 2023 07:06:57 GMT
Server: ECS (dcb/7F15)
X-Cache: Miss from cloudfront
Via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 1FaaRU5c0Wj_c0i0dhqehBvhWJG30uXWiUvIcmtgFn6sd2r6-_rxdg==
cdn.livechatinc.com/tracking.js
200 OK 26 kB URL HTTP/2 cdn.livechatinc.com/tracking.js
IP
ASN #20940 Akamai International B.V.
Hash ad168b14a5b7efd5137559bade93ad14
7ba3e2c551fdf2879a757fbfcf5f42590269d010
3a4a1053c09137d9d25d118699d7389e019da7a9597b95a7504311b87111909c
GET /tracking.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Wed, 25 Jan 2023 08:47:12 GMT
x-amz-version-id: iNzmqDcn1iRKaLiTk37THrDgz9osPO8C
server: AmazonS3
content-encoding: br
etag: W/"29e075294399875f6fd4bdaa0f4a20e4"
vary: Accept-Encoding
x-amz-cf-pop: AMS54-C1
x-amz-cf-id: qzl-0Ag5XGkDv_kWLbnI4JJvQy7icD_Dvire8pnIpy79iQNET2NH5w==
content-length: 26103
cache-control: max-age=28800
expires: Sun, 05 Feb 2023 15:06:57 GMT
date: Sun, 05 Feb 2023 07:06:57 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
X-Firefox-Spdy: h2
platform.20bet.com/api/user/is-auth
200 OK 256 B URL HTTP/2 platform.20bet.com/api/user/is-auth
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 3cf2cbcb60dc92bd341796f0af362e6c
d5411362ffe8e1509625e806535d64d1f6027cd5
03191b407f624654b4ee2842f491a3423b3f19f7e7c71c39a052b08695bff005
GET /api/user/is-auth HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:57 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7949ce6b4e5bb4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.r2m02.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP
Hash 802471d0289c0feef8b695c9aa2ef58f
58131a1708a301fda2b765e0a2d9da54bebfeb10
2f23e531860dec269b62cacda0b831a5bf3e9a3449f2e214ce103e923a84edd4
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Sun, 05 Feb 2023 07:06:57 GMT
Etag: "63de17ba-1d7"
Server: ECS (dcb/7F7F)
X-Cache: Miss from cloudfront
Via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: t8SMpRn8xNhiOHRm6HRRvXnsEFGg7BJJtlpES5T3OwnmsqGrT68s2w==
20bet.com/assets/sport/2.svg
200 OK 1.4 kB URL HTTP/2 20bet.com/assets/sport/2.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1588)
Hash 61c2314442d93c9c67d81b660b4d6f3a
512c7825d738d80ae8bdab173b7f6765c0b65c33
02c2c28f46cf37d5595cec788ae53cf955c6ed1a4c1950b0ccaacb9fa8a698a7
GET /assets/sport/2.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
Cookie: btag=668128_3BC752C963894CA4B8C71E6D9BF8518F; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:57 GMT
content-type: image/svg+xml
cf-ray: 7949ce6caf80b4f9-OSL
etag: W/"63dd0032-f18"
last-modified: Fri, 03 Feb 2023 12:38:10 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/1549.cf9c18bc5ec878d1.esm.js
200 OK 5.3 kB URL HTTP/2 20bet.com/app/1549.cf9c18bc5ec878d1.esm.js
IP
File type ASCII text, with very long lines (588), with no line terminators
Hash 95d1528cec182e952c444b896970e5bd
718a2381ba94b196f22ec91be92e95bdfd423141
de81386d5b71eefdc9ecb64c44e49a2ce240d7f2d17b06fce325596f652a4bd0
GET /app/1549.cf9c18bc5ec878d1.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
Cookie: btag=668128_3BC752C963894CA4B8C71E6D9BF8518F; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:55 GMT
content-type: application/javascript
cf-ray: 7949ce5d0bfcb4f9-OSL
etag: W/"63dcff6e-24c"
last-modified: Fri, 03 Feb 2023 12:34:54 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
games-cms.shapegamesbw.com/query
200 OK 0 B URL HTTP/2 games-cms.shapegamesbw.com/query
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /query HTTP/1.1
Host: games-cms.shapegamesbw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://betwarrior.bet/
Origin: https://betwarrior.bet
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:57 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: Content-Type
access-control-allow-methods: POST
access-control-allow-origin: https://betwarrior.bet
vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Firefox-Spdy: h2
platform.20bet.com/api/v3/menu/line/es?period=0
200 OK 29 kB URL HTTP/2 platform.20bet.com/api/v3/menu/line/es?period=0
IP
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash bb32a961963df48dc7a95e85289023f1
ba7ff6f2dbdec38e07a899c8f907cd4e7e2f5604
11be3468819c2c842bbc155a96c05d4c07bcc01d6aa65d15c8ecea8998abd0fa
GET /api/v3/menu/line/es?period=0 HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:57 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7949ce6b0df6b4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
games-cms.shapegamesbw.com/query
200 OK 0 B URL HTTP/2 games-cms.shapegamesbw.com/query
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /query HTTP/1.1
Host: games-cms.shapegamesbw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://betwarrior.bet/
Origin: https://betwarrior.bet
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:57 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: Content-Type
access-control-allow-methods: POST
access-control-allow-origin: https://betwarrior.bet
vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Firefox-Spdy: h2
platform.20bet.com/api/event/list?sportId_eq=1&period=5&limit=10&competitor2Id_neq=&competitor1Id_neq=&oddsExists_eq=1&status_in%5B%5D=0&main=1&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=tips&relations%5B%5D=sportCategories&relations%5B%5D=withMarketsCount&lang=es
204 No Content 0 B URL HTTP/2 platform.20bet.com/api/event/list?sportId_eq=1&period=5&limit=10&competitor2Id_neq=&competitor1Id_neq=&oddsExists_eq=1&status_in%5B%5D=0&main=1&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=tips&relations%5B%5D=sportCategories&relations%5B%5D=withMarketsCount&lang=es
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/event/list?sportId_eq=1&period=5&limit=10&competitor2Id_neq=&competitor1Id_neq=&oddsExists_eq=1&status_in%5B%5D=0&main=1&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=tips&relations%5B%5D=sportCategories&relations%5B%5D=withMarketsCount&lang=es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sun, 05 Feb 2023 07:06:57 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7949ce6e1e3e991e-ARN
X-Firefox-Spdy: h2
20bet.com/assets/sport/22.svg
200 OK 1.6 kB URL HTTP/2 20bet.com/assets/sport/22.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (341)
Hash ece0976a4c002886b98aee4599701054
8bf7214a9a2ad7955b4a350a91a77b90683aba76
6f20175d9027ffbecda9505851bcc967e1bd5f1def92c1ae205ec6c0836e95c1
GET /assets/sport/22.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
Cookie: btag=668128_3BC752C963894CA4B8C71E6D9BF8518F; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:57 GMT
content-type: image/svg+xml
cf-ray: 7949ce6ccf9eb4f9-OSL
etag: W/"63dd0039-905"
last-modified: Fri, 03 Feb 2023 12:38:17 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/v3/menu/line/es?period=5
200 OK 25 kB URL HTTP/2 platform.20bet.com/api/v3/menu/line/es?period=5
IP
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash dfd1a620b745f5ada146a05f57bff6d6
3e3da01e81c2e1f446d0edde2493d08052e28d77
38f19a3fe706a3a0ff678803a17d40039956bed6d77327399a98bcaaa5dd9aca
GET /api/v3/menu/line/es?period=5 HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:57 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7949ce6b0e0db4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/teams/ts_rose.webp
200 OK 1.8 kB URL HTTP/2 20bet.com/assets/teams/ts_rose.webp
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 19ba1e0b01ca14f99e3538dbaa5e0d8e
f806fee3d7dfe2df6e93dfbf798828024efbe367
8f8b4c3beba9d41fa572c8e140ff15aafed6c9d4b6178ee9b3098edf5a4a4699
GET /assets/teams/ts_rose.webp HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
Cookie: btag=668128_3BC752C963894CA4B8C71E6D9BF8518F; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:57 GMT
content-type: image/webp
content-length: 1834
cf-ray: 7949ce6e58dbb4f9-OSL
accept-ranges: bytes
etag: "63dd0041-72a"
last-modified: Fri, 03 Feb 2023 12:38:25 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
X-Firefox-Spdy: h2
20bet.com/assets/sport/14.svg
200 OK 3.2 kB URL HTTP/2 20bet.com/assets/sport/14.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (374)
Hash fd0a1e1c4907c33691f65ff77b1ffab7
aa726a91f9f2ce5f405b535acc00dc990fd30939
2d0286ce265975e2d9237aae067d5bffe6ed633f389a480cd683886e8c782ec0
GET /assets/sport/14.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
Cookie: btag=668128_3BC752C963894CA4B8C71E6D9BF8518F; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:57 GMT
content-type: image/svg+xml
cf-ray: 7949ce6d7825b4f9-OSL
etag: W/"63dd0039-cd6"
last-modified: Fri, 03 Feb 2023 12:38:17 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/teams/ts_yellow.webp
200 OK 1.7 kB URL HTTP/2 20bet.com/assets/teams/ts_yellow.webp
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash d8c9e282720a64d23a449f907eb6751a
acb0a199fe445f1e418880c88042d2ac01339b1e
8e4ff853d9319a9ffb56ec71ce4b4c470bcea600d070ae48f775240cb040473e
GET /assets/teams/ts_yellow.webp HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
Cookie: btag=668128_3BC752C963894CA4B8C71E6D9BF8518F; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:57 GMT
content-type: image/webp
content-length: 1734
cf-ray: 7949ce6e68e6b4f9-OSL
accept-ranges: bytes
etag: "63dd0039-6c6"
last-modified: Fri, 03 Feb 2023 12:38:17 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
X-Firefox-Spdy: h2
20bet.com/assets/sport/1056.svg
200 OK 2.2 kB URL HTTP/2 20bet.com/assets/sport/1056.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (356)
Hash d98bf7d625f036248b60e3a7455d1c32
b4b236fc89f37d37b84d4715bd2339539b2828a5
2eabcf49eb37ab26450d31aa7515bb488961634669fa1b2af763861da6584847
GET /assets/sport/1056.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
Cookie: btag=668128_3BC752C963894CA4B8C71E6D9BF8518F; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:57 GMT
content-type: image/svg+xml
cf-ray: 7949ce6cdfaab4f9-OSL
etag: W/"63dd0032-2ca"
last-modified: Fri, 03 Feb 2023 12:38:10 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/sport/16.svg
200 OK 7.6 kB URL HTTP/2 20bet.com/assets/sport/16.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3136)
Hash 22d407eb070e0cd4a33b4eceb8c782e1
c256e7cc1f5818e0f0549aeb4b6cf7a8132017a0
3aad9f05f783862abf60fb17af60e5ef0eeddcaa4dd1b2cd3be867c57f01d009
GET /assets/sport/16.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
Cookie: btag=668128_3BC752C963894CA4B8C71E6D9BF8518F; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:57 GMT
content-type: image/svg+xml
cf-ray: 7949ce6d8837b4f9-OSL
etag: W/"63dd0032-3c17"
last-modified: Fri, 03 Feb 2023 12:38:10 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
api.livechatinc.com/v3.3/customer/action/get_configuration?license_id=9054575&version=299780.12.12.43723.2881.1356.1580.16.3.3.3.244.1801&group_id=24&jsonp=__lc_static_config
200 OK 1.4 kB URL HTTP/2 api.livechatinc.com/v3.3/customer/action/get_configuration?license_id=9054575&version=299780.12.12.43723.2881.1356.1580.16.3.3.3.244.1801&group_id=24&jsonp=__lc_static_config
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (3985), with no line terminators
Hash f8a43b2efa034178ecd264425287b9c0
41a5d4178b27a0a5859e4d4978b5765972e5cd0f
528296be7cd0d1d14f29ad581f947066003fcbc3cfc0ebc69a2c124385ece401
GET /v3.3/customer/action/get_configuration?license_id=9054575&version=299780.12.12.43723.2881.1356.1580.16.3.3.3.244.1801&group_id=24&jsonp=__lc_static_config HTTP/1.1
Host: api.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
content-type: application/javascript; charset=UTF-8
legacy: 2023-06-30
vary: Accept-Encoding
content-length: 1388
cache-control: public, max-age=553
expires: Sun, 05 Feb 2023 07:16:10 GMT
date: Sun, 05 Feb 2023 07:06:57 GMT
X-Firefox-Spdy: h2
20bet.com/assets/sport/1.svg
200 OK 3.2 kB URL HTTP/2 20bet.com/assets/sport/1.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 04d7c755b94e7e1493730c560992cf50
cf2573997fc5378e47c5d424c6b30397646a6efa
ed5c253ed6117392e22560a74ef6f5e9eca17c04bbaa4b3fe2f2cc4a20516794
GET /assets/sport/1.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
Cookie: btag=668128_3BC752C963894CA4B8C71E6D9BF8518F; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:57 GMT
content-type: image/svg+xml
cf-ray: 7949ce6c9f6ab4f9-OSL
etag: W/"63dd0039-8f2"
last-modified: Fri, 03 Feb 2023 12:38:17 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg
200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8e0be7db14d930d6227443314bcd1747
4e42e2ad289dfe5bd9a55d34fd768f7532bdf71d
baedfbdb08a67f9ff4c698f7e65b08d7e4c5078d0a4233e6bff529b44812735a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 12967
x-amzn-requestid: 38c58626-f4ad-4e2b-ad71-a628519d2ea2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmEdHFwCoAMFhxQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8b453-7da6d0c1093468d320caaa1e;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 06:25:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: t8dZTwod1-pZr8ACfp-6gfEu0TA3kGpfJrQeF8VgLg2tlrt03sa6Bg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 03:40:08 GMT
age: 12410
etag: "4e42e2ad289dfe5bd9a55d34fd768f7532bdf71d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
20bet.com/assets/teams/ts_marine.webp
200 OK 1.8 kB URL HTTP/2 20bet.com/assets/teams/ts_marine.webp
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 882fbd4b39d2952ec83b9374fe78c99c
6fbc81d65a61d52fc6f2a5ca80dfb88ea8dc5950
b7e516ccbae412d1e889792a5d2a182844570ff8e4d954658c305a6d1d11708e
GET /assets/teams/ts_marine.webp HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
Cookie: btag=668128_3BC752C963894CA4B8C71E6D9BF8518F; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:58 GMT
content-type: image/webp
content-length: 1754
cf-ray: 7949ce70ca88b4f9-OSL
accept-ranges: bytes
etag: "63dd0049-6da"
last-modified: Fri, 03 Feb 2023 12:38:33 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
X-Firefox-Spdy: h2
api.livechatinc.com/v3.3/customer/action/get_localization?license_id=9054575&version=ff93808ef52c6dd040640c4853b854bd_21716f53f53807807abed6ecf43750c1&language=en&group_id=24&jsonp=__lc_localization
200 OK 3.8 kB URL HTTP/2 api.livechatinc.com/v3.3/customer/action/get_localization?license_id=9054575&version=ff93808ef52c6dd040640c4853b854bd_21716f53f53807807abed6ecf43750c1&language=en&group_id=24&jsonp=__lc_localization
IP
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (10873), with no line terminators
Hash d79ca272d883316ea37d4520152b9c17
21b73f4c86e8f92be5fb242719ed8b94a88ff01f
382fdf62da78f74a1cefa2383c87b0a4e3071a56534969e0f1d204d1f544e399
GET /v3.3/customer/action/get_localization?license_id=9054575&version=ff93808ef52c6dd040640c4853b854bd_21716f53f53807807abed6ecf43750c1&language=en&group_id=24&jsonp=__lc_localization HTTP/1.1
Host: api.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
content-type: application/javascript; charset=UTF-8
legacy: 2023-06-30
vary: Accept-Encoding
cache-control: public, max-age=552
expires: Sun, 05 Feb 2023 07:16:10 GMT
date: Sun, 05 Feb 2023 07:06:58 GMT
content-length: 3786
X-Firefox-Spdy: h2
secure.livechatinc.com/customer/action/open_chat?license_id=9054575&group=24&embedded=1&widget_version=3&unique_groups=0
200 OK 4.2 kB URL HTTP/2 secure.livechatinc.com/customer/action/open_chat?license_id=9054575&group=24&embedded=1&widget_version=3&unique_groups=0
IP
ASN #20940 Akamai International B.V.
Hash 6b57ab76812445b8d87be852cd6da746
97f175995c8f7f0648e7d197936c79cc04f37f6d
bd2933fcf25839f3695f865c93d9602a6c47282d70d7634204ae7f9f8c697bcd
GET /customer/action/open_chat?license_id=9054575&group=24&embedded=1&widget_version=3&unique_groups=0 HTTP/1.1
Host: secure.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
content-type: text/html; charset=utf-8
vary: Accept-Encoding
date: Sun, 05 Feb 2023 07:06:58 GMT
content-length: 2557
X-Firefox-Spdy: h2
20bet.com/assets/teams/ts_green.webp
200 OK 1.7 kB URL HTTP/2 20bet.com/assets/teams/ts_green.webp
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 88d73994168be3c3d2b7b26289de1df9
300a4dbdc3bbe9b8b81ba5e032dca3eef46faa0c
90b2c071db8d20db78a924a8f7bc424a27523816ca240b4d1d32e9943c474d2d
GET /assets/teams/ts_green.webp HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
Cookie: btag=668128_3BC752C963894CA4B8C71E6D9BF8518F; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:58 GMT
content-type: image/webp
content-length: 1734
cf-ray: 7949ce70ba85b4f9-OSL
accept-ranges: bytes
etag: "63dd0039-6c6"
last-modified: Fri, 03 Feb 2023 12:38:17 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
X-Firefox-Spdy: h2
20bet.com/assets/teams/ts_orange.webp
200 OK 1.8 kB URL HTTP/2 20bet.com/assets/teams/ts_orange.webp
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 32e11fd76428d0c44b39ccd5c64970c9
b8b8183f26fa5c48db5eb7e05c42b185f00ba477
dc018beb28f16fe554e24fa460988b2ba4db6ad775738cf776e60651c7ae4b2e
GET /assets/teams/ts_orange.webp HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
Cookie: btag=668128_3BC752C963894CA4B8C71E6D9BF8518F; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:58 GMT
content-type: image/webp
content-length: 1848
cf-ray: 7949ce70ba86b4f9-OSL
accept-ranges: bytes
etag: "63dd0049-738"
last-modified: Fri, 03 Feb 2023 12:38:33 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
X-Firefox-Spdy: h2
ctrack.trafficjunky.net/ctrack?action=list&type=add&id=notregistered-new&context=20bet.com&cookiename=notregistered-new&age=259200&maxcookiecount=10
200 OK 35 B URL HTTP/1.1 ctrack.trafficjunky.net/ctrack?action=list&type=add&id=notregistered-new&context=20bet.com&cookiename=notregistered-new&age=259200&maxcookiecount=10
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /ctrack?action=list&type=add&id=notregistered-new&context=20bet.com&cookiename=notregistered-new&age=259200&maxcookiecount=10 HTTP/1.1
Host: ctrack.trafficjunky.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
server: openresty
date: Sun, 05 Feb 2023 07:06:58 GMT
content-type: image/gif
content-length: 35
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Sun, 22 Jan 1984 03:00:00 GMT
p3p: CP="IDC DSP COR CURa ADMa OUR IND PHY ONL COM STA"
pragma: no-cache
set-cookie: tj_UUID=631cd2ee2b4f4cf89a98c513c08d9583; Path=/; Domain=trafficjunky.net; Expires=Tue, 07 Mar 2023 07:06:58 GMT; Secure; SameSite=None
tj_UUID_v2=631cd2ee-2b4f-4cf8-9a98-c513c08d9583; Path=/; Domain=trafficjunky.net; Expires=Tue, 07 Mar 2023 07:06:58 GMT; Secure; SameSite=None
614ac6550300bc7c00c3f821d11e0512=notregistered-new; Path=/; Domain=trafficjunky.net; Expires=Fri, 04 Aug 2023 07:06:58 GMT; Secure; SameSite=None
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET,POST
access-control-allow-headers: Content-Type
access-control-max-age: 86400
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
x-request-id: 63DF5590-42FE725901BB6FA4-155F4412
20bet.com/assets/sport/1051.svg
200 OK 2.4 kB URL HTTP/2 20bet.com/assets/sport/1051.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2179)
Hash 7ad728cf8afbf8963ebd47cf29a37e33
2bcc8da321fd9d0b7905e2dac56f4f0d5034067b
b6bcbbd3c6578d9f1114f639d4430a880f1c7c511ca30f6f98943a5b82f264c6
GET /assets/sport/1051.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
Cookie: btag=668128_3BC752C963894CA4B8C71E6D9BF8518F; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:57 GMT
content-type: image/svg+xml
cf-ray: 7949ce6d8841b4f9-OSL
etag: W/"63dd0049-1682"
last-modified: Fri, 03 Feb 2023 12:38:33 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/sport/1070.svg
200 OK 34 kB URL HTTP/2 20bet.com/assets/sport/1070.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (7328)
Hash 1a83724516d04a5ea7fa09545bbf4e3a
1cbeaf375f4b4983b543147ba80cd7948ebe320f
f2018c41aeb34535c7be1cc55c2d8de5845ee6009ce0a863e843effcaa89c9e5
GET /assets/sport/1070.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
Cookie: btag=668128_3BC752C963894CA4B8C71E6D9BF8518F; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:57 GMT
content-type: image/svg+xml
cf-ray: 7949ce6cdfabb4f9-OSL
etag: W/"63dd0041-6fa8"
last-modified: Fri, 03 Feb 2023 12:38:25 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/event/list?isTopLive_eq=1&competitor2Id_neq=&competitor1Id_neq=&status_in%5B%5D=2&status_in%5B%5D=1&oddsExists_eq=1&main=1&limit=15&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=players&relations%5B%5D=sportCategories&relations%5B%5D=broadcasts&relations%5B%5D=statistics&relations%5B%5D=additionalInfo&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=es
200 OK 30 kB URL HTTP/2 platform.20bet.com/api/event/list?isTopLive_eq=1&competitor2Id_neq=&competitor1Id_neq=&status_in%5B%5D=2&status_in%5B%5D=1&oddsExists_eq=1&main=1&limit=15&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=players&relations%5B%5D=sportCategories&relations%5B%5D=broadcasts&relations%5B%5D=statistics&relations%5B%5D=additionalInfo&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=es
IP
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 302a90c59e10b7674b385ae236220a6b
24c12a55008433a9b09f599d805f60ed02f4b78f
fb91db431746d316c997d45222334cbbda8ee5f21d96e444232b52781800189c
GET /api/event/list?isTopLive_eq=1&competitor2Id_neq=&competitor1Id_neq=&status_in%5B%5D=2&status_in%5B%5D=1&oddsExists_eq=1&main=1&limit=15&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=players&relations%5B%5D=sportCategories&relations%5B%5D=broadcasts&relations%5B%5D=statistics&relations%5B%5D=additionalInfo&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:57 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7949ce6b5e60b4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/sport/1067.svg
200 OK 4.3 kB URL HTTP/2 20bet.com/assets/sport/1067.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 7aa124684b6229b62eb20216cf1fda80
65b5e8fd2109ea80c307d7b2e3a35c448a66e350
c30ff95c2440cd8ba044310fa72b25566328a41083073785489c26fbf67a1539
GET /assets/sport/1067.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
Cookie: btag=668128_3BC752C963894CA4B8C71E6D9BF8518F; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:57 GMT
content-type: image/svg+xml
cf-ray: 7949ce6cdfaeb4f9-OSL
etag: W/"63dd0041-474"
last-modified: Fri, 03 Feb 2023 12:38:25 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/sport/12.svg
200 OK 3.5 kB URL HTTP/2 20bet.com/assets/sport/12.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (347)
Hash e271cbf6fee5c3a3771a044c45f4f867
0f24c66ba3330142de67c652b2a6c66335264f83
1c1506a668bd71155506230ee469a70f5b3bf732bbca5735424443e0cd5191bc
GET /assets/sport/12.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
Cookie: btag=668128_3BC752C963894CA4B8C71E6D9BF8518F; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:57 GMT
content-type: image/svg+xml
cf-ray: 7949ce6cdfacb4f9-OSL
etag: W/"63dd0049-c74"
last-modified: Fri, 03 Feb 2023 12:38:33 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/event/list?sportId_eq=1&period=5&limit=10&competitor2Id_neq=&competitor1Id_neq=&oddsExists_eq=1&status_in%5B%5D=0&main=1&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=tips&relations%5B%5D=sportCategories&relations%5B%5D=withMarketsCount&lang=es
200 OK 43 kB URL HTTP/2 platform.20bet.com/api/event/list?sportId_eq=1&period=5&limit=10&competitor2Id_neq=&competitor1Id_neq=&oddsExists_eq=1&status_in%5B%5D=0&main=1&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=tips&relations%5B%5D=sportCategories&relations%5B%5D=withMarketsCount&lang=es
IP
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 5e5ce278271890cbd98f537e3e5d0d9a
02e892ac4ed542744fcb19096f131bdbc2b8772b
42cd1b24ca1faf61c4b334b8b0b6423862656b9378fe8f02c17727db75e58c50
GET /api/event/list?sportId_eq=1&period=5&limit=10&competitor2Id_neq=&competitor1Id_neq=&oddsExists_eq=1&status_in%5B%5D=0&main=1&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=tips&relations%5B%5D=sportCategories&relations%5B%5D=withMarketsCount&lang=es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:58 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7949ce6e58d3b4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
games-cms.shapegamesbw.com/query
200 OK 551 B URL HTTP/2 games-cms.shapegamesbw.com/query
IP
File type JSON data\012- , ASCII text, with very long lines (2452), with no line terminators
Hash b38f78d411e70d8b29ecf0f552614f60
751532f1308c90f5ee0025b4781cba1fdc289d59
2bee0e29ddac375dc656603e2678df05dd18b7616e7f9d1407b4431b2ae27527
POST /query HTTP/1.1
Host: games-cms.shapegamesbw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://betwarrior.bet/
Content-Type: application/json
Origin: https://betwarrior.bet
Content-Length: 302
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:58 GMT
content-type: application/json
content-length: 551
access-control-allow-credentials: true
access-control-allow-origin: https://betwarrior.bet
content-encoding: gzip
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 7747482ad48551c80c7099680c497b3a
369de8f8c56917f793d8f8c425c8ab6204832159
3f6a47246c40f0b1ebb5de42929e4f084c7908f41b6f1fe74f286ed27306cae0
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 05 Feb 2023 07:06:58 GMT
Last-Modified: Sun, 05 Feb 2023 06:12:39 GMT
Server: ECS (bsa/EB19)
X-Cache: Miss from cloudfront
Via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: JIjxpwq-foQ9kmEgQ4azEearDxmB8PhHch32BLel9UGDatRoCscuUA==
Age: 3259
20bet.com/assets/sport/30.svg
200 OK 962 B URL HTTP/2 20bet.com/assets/sport/30.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (529)
Hash dd39d126f3acc98929af32ae9881d73d
0ab00a2aeb7115c36e989cddf8ed08db055852d5
5e2f7d5c2dd43e4fb071d8c68d3ce494e6bd2f0cfb0755dba9d6cae3d913c098
GET /assets/sport/30.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
Cookie: btag=668128_3BC752C963894CA4B8C71E6D9BF8518F; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:57 GMT
content-type: image/svg+xml
cf-ray: 7949ce6d8840b4f9-OSL
etag: W/"63dd0041-8f6"
last-modified: Fri, 03 Feb 2023 12:38:25 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/status
200 OK 0 B URL HTTP/2 platform.20bet.com/api/status
IP
GET /api/status HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:54 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7949ce5aaa74b4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/sport/15.svg
200 OK 0 B URL HTTP/2 20bet.com/assets/sport/15.svg
IP
GET /assets/sport/15.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
Cookie: btag=668128_3BC752C963894CA4B8C71E6D9BF8518F; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:57 GMT
content-type: image/svg+xml
cf-ray: 7949ce6caf88b4f9-OSL
etag: W/"63dd0041-a14"
last-modified: Fri, 03 Feb 2023 12:38:25 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/sport/1122.svg
200 OK 0 B URL HTTP/2 20bet.com/assets/sport/1122.svg
IP
GET /assets/sport/1122.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
Cookie: btag=668128_3BC752C963894CA4B8C71E6D9BF8518F; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:57 GMT
content-type: image/svg+xml
cf-ray: 7949ce6ccf9fb4f9-OSL
etag: W/"63dd0051-168c"
last-modified: Fri, 03 Feb 2023 12:38:41 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/sport/13.svg
200 OK 0 B URL HTTP/2 20bet.com/assets/sport/13.svg
IP
GET /assets/sport/13.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
Cookie: btag=668128_3BC752C963894CA4B8C71E6D9BF8518F; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:57 GMT
content-type: image/svg+xml
cf-ray: 7949ce6ccfa9b4f9-OSL
etag: W/"63dd002a-458"
last-modified: Fri, 03 Feb 2023 12:38:02 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
d1wfowvne3d4em.cloudfront.net/flags/wta.svg
200 OK 0 B URL HTTP/2 d1wfowvne3d4em.cloudfront.net/flags/wta.svg
IP
GET /flags/wta.svg HTTP/1.1
Host: d1wfowvne3d4em.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/svg+xml
date: Sat, 04 Feb 2023 19:26:23 GMT
last-modified: Thu, 05 Jan 2023 15:46:08 GMT
etag: W/"d011c82a3d0387c21c74f2fe6bd64cd7"
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: t7mN22uKsGv-JH0-heEwNXSByb_-XiPQkDNtzHo1wUJ1KENc6URgcA==
age: 42036
X-Firefox-Spdy: h2
platform.20bet.com/api/popular/line-menu/es
200 OK 0 B URL HTTP/2 platform.20bet.com/api/popular/line-menu/es
IP
GET /api/popular/line-menu/es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:57 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7949ce6b1e1fb4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
d1wfowvne3d4em.cloudfront.net/flags/footballInternational.svg
200 OK 0 B URL HTTP/2 d1wfowvne3d4em.cloudfront.net/flags/footballInternational.svg
IP
GET /flags/footballInternational.svg HTTP/1.1
Host: d1wfowvne3d4em.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Thu, 05 Jan 2023 15:46:01 GMT
server: AmazonS3
content-encoding: br
date: Sat, 04 Feb 2023 15:18:57 GMT
etag: W/"63d428899135429f7eb074c482090072"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: a0x6qRueKUBm2wFnBXHF13_kraNLaSWqZUeAaNr3zxDmxiivJvzslA==
age: 56882
X-Firefox-Spdy: h2
20bet.com/app/3388.582acb98c66b3fc9.esm.js
200 OK 0 B URL HTTP/2 20bet.com/app/3388.582acb98c66b3fc9.esm.js
IP
GET /app/3388.582acb98c66b3fc9.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
Cookie: btag=668128_3BC752C963894CA4B8C71E6D9BF8518F; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:57 GMT
content-type: application/javascript
cf-ray: 7949ce6f3994b4f9-OSL
etag: W/"63dcff74-68e"
last-modified: Fri, 03 Feb 2023 12:35:00 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/6485.c5e5798c269cfd52.esm.js
200 OK 0 B URL HTTP/2 20bet.com/app/6485.c5e5798c269cfd52.esm.js
IP
GET /app/6485.c5e5798c269cfd52.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
Cookie: btag=668128_3BC752C963894CA4B8C71E6D9BF8518F; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:54 GMT
content-type: application/javascript
cf-ray: 7949ce58b920b4f9-OSL
etag: W/"63dcff68-30e"
last-modified: Fri, 03 Feb 2023 12:34:48 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
refpaiozdg.top/L?tag=d_2032927m_25437c_&site=2032927&ad=25437&r=registration/
303 See Other 0 B URL HTTP/2 refpaiozdg.top/L?tag=d_2032927m_25437c_&site=2032927&ad=25437&r=registration/
IP
GET /L?tag=d_2032927m_25437c_&site=2032927&ad=25437&r=registration/ HTTP/1.1
Host: refpaiozdg.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 303 See Other
server: nginx
date: Sun, 05 Feb 2023 07:06:50 GMT
cache-control: private
location: https://megapari.com:443//registration/?tag=d_2032927m_25437c_
x-aspnetmvc-version: 5.0
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
20media.world/pe?btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
302 Found 0 B URL HTTP/2 20media.world/pe?btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
IP
GET /pe?btag=668128_3BC752C963894CA4B8C71E6D9BF8518F HTTP/1.1
Host: 20media.world
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 05 Feb 2023 07:06:51 GMT
content-type: text/html; charset=UTF-8
location: https://20bet.com/pe?btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GoXK7dq449PTC5icyEJknwIc5kT7y%2BW8Y1S5kB8pCNgtQu1CPdnD0Xbj1nGE0bXEPPCzCVRqU1AWTtAdnXO2Xwrkz3EAhmSm0qFLSvAYRqD6B3cBpi%2FbQS4xoKWYZVE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7949ce466c16b500-OSL
X-Firefox-Spdy: h2
games-cms.shapegamesbw.com/query
200 OK 0 B URL HTTP/2 games-cms.shapegamesbw.com/query
IP
POST /query HTTP/1.1
Host: games-cms.shapegamesbw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://betwarrior.bet/
Content-Type: application/json
Origin: https://betwarrior.bet
Content-Length: 520
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:58 GMT
content-type: application/json
access-control-allow-credentials: true
access-control-allow-origin: https://betwarrior.bet
content-encoding: gzip
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
record.betsson.com/_artCMRK1bjaiQ99F8qzC3mNd7ZgqdRLk/13/
301 Moved Permanently 0 B URL HTTP/2 record.betsson.com/_artCMRK1bjaiQ99F8qzC3mNd7ZgqdRLk/13/
IP
GET /_artCMRK1bjaiQ99F8qzC3mNd7ZgqdRLk/13/ HTTP/1.1
Host: record.betsson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Sun, 05 Feb 2023 07:06:50 GMT
content-type: text/html; charset=utf-8
location: https://in.betsson.com/pe-bono-bienvenida-21/pe/?from=V5CB4vyLdRk6uLEWou1M5mNd7ZgqdRLk-AP0846390900&affcode=AP0846390900&utm_medium=MA_Affiliates&utm_source=10687405
cache-control: private, no-cache, must-revalidate, Cache-Control: no-cache
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *
pragma: no-cache
x-powered-by: ZBan
cf-cache-status: BYPASS
set-cookie: VID1=KiwzQFEsIzhRLUNAWS0wYGAKYAo%3D; expires=Mon, 05-Feb-2024 07:06:50 GMT; Max-Age=31536000; path=/; secure; HttpOnly; SameSite=None
ZBan=V5CB4vyLdRk6uLEWou1M5mNd7ZgqdRLk; expires=Mon, 05-Feb-2024 07:06:50 GMT; Max-Age=31536000; path=/; domain=.betsson.com; secure; HttpOnly; SameSite=None
PartnerId=V5CB4vyLdRk6uLEWou1M5mNd7ZgqdRLk-Z2lnX2NwaF9wb3A%3D; expires=Tue, 07-Mar-2023 07:06:50 GMT; Max-Age=2592000; path=/; SameSite=Lax
marketingproduct=Sportsbook; expires=Tue, 07-Mar-2023 07:06:50 GMT; Max-Age=2592000; path=/; domain=.betsson.com; SameSite=Lax
vary: Accept-Encoding
server: cloudflare
cf-ray: 7949ce413ca6b4fd-OSL
X-Firefox-Spdy: h2
promos.betano.com/cdn-cgi/challenge-platform/h/b/cv/result/7949ce42ecaf1c0e
200 OK 0 B URL HTTP/2 promos.betano.com/cdn-cgi/challenge-platform/h/b/cv/result/7949ce42ecaf1c0e
IP
POST /cdn-cgi/challenge-platform/h/b/cv/result/7949ce42ecaf1c0e HTTP/1.1
Host: promos.betano.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 486
Origin: https://promos.betano.com
Connection: keep-alive
Referer: https://promos.betano.com/sportsbook-pe/index.html?btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO&utm_medium=4168&utm_source=3&siteid=13943
Cookie: btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO; __cf_bm=Tx6iKRfEcWV4ygAsaY4zVGm7CNa.ODiZc1RnKjSLXeA-1675580810-0-ASVySjVW4uKcUxLCG83YxYfDDtUy7JCvDDjQW206mH9rTT7SeqeUBqye/sqTqi7A9Wm95KgSLGqpzx4G249AWr0=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:51 GMT
content-type: text/plain; charset=UTF-8
set-cookie: __cf_bm=O4isMbzjgbTzlEvJbLctQMlh6rXxL5cxYogswX4e6gA-1675580811-0-Adf79DO/Yt/B89GoHAJfHF/5Dn6vJBAN98KRDJRj3JpkF5m4jyTptz/LBkJSoztwKlvUeGCsfqPilRf7rX/mhvbDMWaaykxrGfERkVvtoCoEaJVwOnunKKa9KAddY+xxqe6ZaueeB+AZ8vKc4ZygoGDiKxtgPL3r8lRxMMw+ytb9GeLwHivyRU4ZSOSMZDYRyg==; path=/; expires=Sun, 05-Feb-23 07:36:51 GMT; domain=.betano.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7949ce486f4b1c0e-OSL
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/6629.5e3ae79726e54510.esm.js
200 OK 0 B URL HTTP/2 20bet.com/app/6629.5e3ae79726e54510.esm.js
IP
GET /app/6629.5e3ae79726e54510.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
Cookie: btag=668128_3BC752C963894CA4B8C71E6D9BF8518F; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:54 GMT
content-type: application/javascript
cf-ray: 7949ce58a914b4f9-OSL
etag: W/"63dcff68-860e"
last-modified: Fri, 03 Feb 2023 12:34:48 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
casino.cur.a8r.games/public/sg.js
200 OK 0 B URL HTTP/2 casino.cur.a8r.games/public/sg.js
IP
GET /public/sg.js HTTP/1.1
Host: casino.cur.a8r.games
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:52 GMT
content-type: text/javascript; charset=utf-8
strict-transport-security: max-age=15724800; includeSubDomains
last-modified: Sun, 05 Feb 2023 05:15:53 GMT
cf-cache-status: HIT
age: 6092
expires: Sun, 05 Feb 2023 11:06:52 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
server: cloudflare
cf-ray: 7949ce509c1eb529-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.onesignal.com/sdks/OneSignalSDK.js
200 OK 0 B URL HTTP/2 cdn.onesignal.com/sdks/OneSignalSDK.js
IP
GET /sdks/OneSignalSDK.js HTTP/1.1
Host: cdn.onesignal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:52 GMT
content-type: application/javascript
etag: W/"ae63ef8ff03da61fffaa7f165729897a"
access-control-allow-headers: OneSignal-Subscription-Id
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 3031
expires: Wed, 08 Feb 2023 07:06:52 GMT
cache-control: public, max-age=259200
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains
server: cloudflare
cf-ray: 7949ce50a812b4fd-OSL
content-encoding: br
X-Firefox-Spdy: h2
ws-cdn001.akamaized.net/7693683943e78a298c36d469e68b47d8/widgetloader
200 OK 0 B URL HTTP/2 ws-cdn001.akamaized.net/7693683943e78a298c36d469e68b47d8/widgetloader
IP
ASN #20940 Akamai International B.V.
GET /7693683943e78a298c36d469e68b47d8/widgetloader HTTP/1.1
Host: ws-cdn001.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-security-policy: frame-ancestors 'self' https://st-cdn001.akamaized.net https://ls-cdn001.akamaized.net
cache-control: public, max-age=120, stale-while-revalidate=60, immutable
etag: "dbd94835299851de14a09ce08183eb22-ad178b20a3ae52f75aa81f88f35a1d95"
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
x-ing-v: 2
content-length: 60140
date: Sun, 05 Feb 2023 07:06:53 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
bitslot.io/?stag=148527_63df558aa7611a4f612def1d&tracking_link=http%3A%2F%2Fb-partner.xyz%2Facf687497
301 Moved Permanently 0 B URL HTTP/2 bitslot.io/?stag=148527_63df558aa7611a4f612def1d&tracking_link=http%3A%2F%2Fb-partner.xyz%2Facf687497
IP
GET /?stag=148527_63df558aa7611a4f612def1d&tracking_link=http%3A%2F%2Fb-partner.xyz%2Facf687497 HTTP/1.1
Host: bitslot.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Sun, 05 Feb 2023 07:06:50 GMT
location: https://www.bitslot.io/?stag=148527_63df558aa7611a4f612def1d&tracking_link=http%3A%2F%2Fb-partner.xyz%2Facf687497
cache-control: max-age=3600
expires: Sun, 05 Feb 2023 08:06:50 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 7949ce4458e30b31-OSL
X-Firefox-Spdy: h2
20bet.com/assets/sport/19.svg
200 OK 0 B URL HTTP/2 20bet.com/assets/sport/19.svg
IP
GET /assets/sport/19.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
Cookie: btag=668128_3BC752C963894CA4B8C71E6D9BF8518F; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:57 GMT
content-type: image/svg+xml
cf-ray: 7949ce6d883fb4f9-OSL
etag: W/"63dd0041-8b0"
last-modified: Fri, 03 Feb 2023 12:38:25 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/sport/10.svg
200 OK 0 B URL HTTP/2 20bet.com/assets/sport/10.svg
IP
GET /assets/sport/10.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
Cookie: btag=668128_3BC752C963894CA4B8C71E6D9BF8518F; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:57 GMT
content-type: image/svg+xml
cf-ray: 7949ce6ccfa8b4f9-OSL
etag: W/"63dd002a-16ac"
last-modified: Fri, 03 Feb 2023 12:38:02 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
200 OK 0 B URL HTTP/2 static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
IP
GET /beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:52 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2022.10.1
last-modified: Fri, 21 Oct 2022 01:56:09 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 7949ce505b8a1c0e-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
platform.20bet.com/api/v3/menu/live/es
200 OK 0 B URL HTTP/2 platform.20bet.com/api/v3/menu/live/es
IP
GET /api/v3/menu/live/es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:57 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7949ce6b2e2cb4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/market-descriptions/get-all-markets/es
200 OK 0 B URL HTTP/2 platform.20bet.com/api/market-descriptions/get-all-markets/es
IP
GET /api/market-descriptions/get-all-markets/es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:54 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7949ce5aaa71b4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/sport/7.svg
200 OK 0 B URL HTTP/2 20bet.com/assets/sport/7.svg
IP
GET /assets/sport/7.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
Cookie: btag=668128_3BC752C963894CA4B8C71E6D9BF8518F; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:57 GMT
content-type: image/svg+xml
cf-ray: 7949ce6cbf91b4f9-OSL
etag: W/"63dd0049-a48"
last-modified: Fri, 03 Feb 2023 12:38:33 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/event/list?isTop_eq=1&oddsExists_eq=1&competitor2Id_neq=&competitor1Id_neq=&main=1&status_in%5B%5D=0&limit=15&relations%5B%5D=league&relations%5B%5D=odds&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=players&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=es
200 OK 0 B URL HTTP/2 platform.20bet.com/api/event/list?isTop_eq=1&oddsExists_eq=1&competitor2Id_neq=&competitor1Id_neq=&main=1&status_in%5B%5D=0&limit=15&relations%5B%5D=league&relations%5B%5D=odds&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=players&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=es
IP
GET /api/event/list?isTop_eq=1&oddsExists_eq=1&competitor2Id_neq=&competitor1Id_neq=&main=1&status_in%5B%5D=0&limit=15&relations%5B%5D=league&relations%5B%5D=odds&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=players&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:57 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7949ce6b3e40b4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
blancoshrimp.com/SB/PE
301 Moved Permanently 0 B IP
Analyzer Verdict Alert fortinet Malware
GET /SB/PE HTTP/1.1
Host: blancoshrimp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
date: Sun, 05 Feb 2023 07:06:49 GMT
content-type: text/html
location: https://blancoshrimp.com/SB/PE/
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jIWPvqeGW8zmzqomnJ1eHhCa5gUfwtmGjACkGhBjZop%2Bh9UaoS8vdIIJT6qOra7IEcMbuyTZtuMiG4VXiFf7zZSqhskol7uY51osFfTrOBMaqaNZ6MBZR9tq9kIuzzYrccxw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7949ce39ed0ab515-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
promos.betano.com/custom.js
200 OK 0 B URL HTTP/2 promos.betano.com/custom.js
IP
GET /custom.js HTTP/1.1
Host: promos.betano.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promos.betano.com/sportsbook-pe/index.html?btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO&utm_medium=4168&utm_source=3&siteid=13943
Cookie: btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO; __cf_bm=Tx6iKRfEcWV4ygAsaY4zVGm7CNa.ODiZc1RnKjSLXeA-1675580810-0-ASVySjVW4uKcUxLCG83YxYfDDtUy7JCvDDjQW206mH9rTT7SeqeUBqye/sqTqi7A9Wm95KgSLGqpzx4G249AWr0=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:50 GMT
content-type: application/javascript
content-md5: oX+ccSVA/q/xYPyQvNAF4A==
last-modified: Thu, 20 Oct 2022 14:42:41 GMT
etag: W/"0x8DAB2A9575D808C"
x-ms-request-id: 2c54070b-a01e-0055-4148-2b0289000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
vary: Accept-Encoding
cf-cache-status: MISS
expires: Sun, 05 Feb 2023 07:11:50 GMT
cache-control: public, max-age=300
server: cloudflare
cf-ray: 7949ce43bcf61c0e-OSL
content-encoding: br
X-Firefox-Spdy: h2
geolocation.onetrust.com/cookieconsentpub/v1/geo/location
200 OK 0 B URL HTTP/2 geolocation.onetrust.com/cookieconsentpub/v1/geo/location
IP
GET /cookieconsentpub/v1/geo/location HTTP/1.1
Host: geolocation.onetrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://promotions.betsafe.com
Connection: keep-alive
Referer: https://promotions.betsafe.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:51 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, OPTIONS
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7949ce4a2f76b4ff-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
gml-grp.com/C.ashx?btag=a_13943b_1919c_&affid=4168&siteid=13943&adid=1919&c=PU_PE_PA_SB_DT_VOLD_BETANO&AutoR=1
302 Found 0 B URL HTTP/2 gml-grp.com/C.ashx?btag=a_13943b_1919c_&affid=4168&siteid=13943&adid=1919&c=PU_PE_PA_SB_DT_VOLD_BETANO&AutoR=1
IP
GET /C.ashx?btag=a_13943b_1919c_&affid=4168&siteid=13943&adid=1919&c=PU_PE_PA_SB_DT_VOLD_BETANO&AutoR=1 HTTP/1.1
Host: gml-grp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: CEK=a
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sun, 05 Feb 2023 07:06:50 GMT
content-type: text/html; charset=utf-8
location: https://promos.betano.com/sportsbook-pe/index.html?btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO&utm_medium=4168&utm_source=3&siteid=13943
cache-control: private
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
x-aspnet-version: 4.0.30319
set-cookie: XYZ=3&1&148&&&&0&1&&666a3c03-69ea-4dcf-b273-d20d2b487ce2&&a_13943b_1919&; expires=Sat, 06-May-2023 07:06:50 GMT; path=/; SameSite=None; Secure
A_1919=a=1919&r=0&fv=0&lv=0&vc=0&fc=20230205&lc=20230205070650&cc=1; expires=Sat, 06-May-2023 07:06:50 GMT; path=/; SameSite=None; Secure
PM_32=c=PU_PE_PA_SB_DT_VOLD_BETANO&s=13943&ad=1919&md=0&pm=32&d=20230205070650&ip=2728320643&r=0&ref=&RedirectParams=btag%3da_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO%26utm_medium%3d4168%26utm_source%3d3%26siteid%3d13943; expires=Sat, 06-May-2023 07:06:50 GMT; path=/; SameSite=None; Secure
CEK=a; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; SameSite=None; Secure
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Muykizv0z%2FOffy%2Fp0p1hOVmxAK3W2RzK1yBPP%2B3xTqibJPAzUGLfys%2FThdiwWdoUOJYoygKcNuGsJw7a%2F9pGpkxMr4yCxYEqh9tnd5hjkPs3MhSZyd91sYf9tKSn6w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7949ce4099961c12-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
promos.betano.com/sportsbook-pe/index.html?btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO&utm_medium=4168&utm_source=3&siteid=13943
200 OK 0 B URL HTTP/2 promos.betano.com/sportsbook-pe/index.html?btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO&utm_medium=4168&utm_source=3&siteid=13943
IP
GET /sportsbook-pe/index.html?btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO&utm_medium=4168&utm_source=3&siteid=13943 HTTP/1.1
Host: promos.betano.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:50 GMT
content-type: text/html; charset=utf-8
cache-control: public, max-age=900, immutable
content-md5: /a1O1GTKRv7FirGh5ttbLw==
last-modified: Fri, 08 Apr 2022 09:53:52 GMT
x-ms-request-id: d3271fe5-601e-004a-113b-38b18d000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cf-cache-status: DYNAMIC
vary: Accept-Encoding
set-cookie: btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO;max-age=2592000; domain=.betano.com;path=/;secure;samesite=none;httponly
__cf_bm=Tx6iKRfEcWV4ygAsaY4zVGm7CNa.ODiZc1RnKjSLXeA-1675580810-0-ASVySjVW4uKcUxLCG83YxYfDDtUy7JCvDDjQW206mH9rTT7SeqeUBqye/sqTqi7A9Wm95KgSLGqpzx4G249AWr0=; path=/; expires=Sun, 05-Feb-23 07:36:50 GMT; domain=.betano.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7949ce42ecaf1c0e-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdnroute.bpsgameserver.com/echo-cdn-origin/themes/betsson/1674118443/css/compressed/betsson.min.css
200 OK 0 B URL HTTP/2 cdnroute.bpsgameserver.com/echo-cdn-origin/themes/betsson/1674118443/css/compressed/betsson.min.css
IP
GET /echo-cdn-origin/themes/betsson/1674118443/css/compressed/betsson.min.css HTTP/1.1
Host: cdnroute.bpsgameserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://in.betsson.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
date: Thu, 19 Jan 2023 09:24:44 GMT
server: Apache/2.4.52 (Ubuntu)
last-modified: Thu, 19 Jan 2023 08:54:06 GMT
etag: "e44fe-5f29a13538cc5-br"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sat, 18 Feb 2023 09:24:44 GMT
content-encoding: br
access-control-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: ZS0ejWZmskvNfDrl2jqe0wtfN0bQ2zz3P333LPKqWD2CZpLmTbwq1w==
age: 1460526
X-Firefox-Spdy: h2
20bet.com/app/styles.09f1d7fd866591ab.css
200 OK 0 B URL HTTP/2 20bet.com/app/styles.09f1d7fd866591ab.css
IP
GET /app/styles.09f1d7fd866591ab.css HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
Cookie: btag=668128_3BC752C963894CA4B8C71E6D9BF8518F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:52 GMT
content-type: text/css
cf-ray: 7949ce4ffb9ab4f9-OSL
etag: W/"63dcff70-23c8a"
last-modified: Fri, 03 Feb 2023 12:34:56 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
geolocation.onetrust.com/cookieconsentpub/v1/geo/location
200 OK 0 B URL HTTP/2 geolocation.onetrust.com/cookieconsentpub/v1/geo/location
IP
GET /cookieconsentpub/v1/geo/location HTTP/1.1
Host: geolocation.onetrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://in.betsson.com
Connection: keep-alive
Referer: https://in.betsson.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:51 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, OPTIONS
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7949ce44ebd5b4ff-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
record.betsafe.com/_artCMRK1bjZCnN6gMv_or2Nd7ZgqdRLk/15/
301 Moved Permanently 0 B URL HTTP/2 record.betsafe.com/_artCMRK1bjZCnN6gMv_or2Nd7ZgqdRLk/15/
IP
GET /_artCMRK1bjZCnN6gMv_or2Nd7ZgqdRLk/15/ HTTP/1.1
Host: record.betsafe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Sun, 05 Feb 2023 07:06:50 GMT
content-type: text/html; charset=utf-8
location: https://promotions.betsafe.com/sb-bono-de-bienvenida/pe/?from=V5CB4vyLdRk9-56pllrwoGNd7ZgqdRLk-AP0846390900&affcode=AP0846390900&utm_medium=MA_Affiliates&utm_source=10687405
cache-control: private, no-cache, must-revalidate, Cache-Control: no-cache
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *
pragma: no-cache
x-powered-by: ZBan
cf-cache-status: BYPASS
set-cookie: VID1=KiwzQFEsIzhRLUNAWS1AYGAKYAo%3D; expires=Mon, 05-Feb-2024 07:06:50 GMT; Max-Age=31536000; path=/; secure; HttpOnly; SameSite=None
ZBan=V5CB4vyLdRk9-56pllrwoGNd7ZgqdRLk; expires=Mon, 05-Feb-2024 07:06:50 GMT; Max-Age=31536000; path=/; domain=.betsafe.com; secure; HttpOnly; SameSite=None
PartnerId=V5CB4vyLdRk9-56pllrwoGNd7ZgqdRLk-Z2lnX2NwaF9wb3A%3D; expires=Tue, 07-Mar-2023 07:06:50 GMT; Max-Age=2592000; path=/; SameSite=Lax
marketingproduct=Sportsbook; expires=Tue, 07-Mar-2023 07:06:50 GMT; Max-Age=2592000; path=/; domain=.betsafe.com; SameSite=Lax
vary: Accept-Encoding
server: cloudflare
cf-ray: 7949ce417e860b55-OSL
X-Firefox-Spdy: h2
dsp-ap.eskimi.com/v2/gtr?id=22441&url=https%3A%2F%2F20bet.com%2Fpe%3Fbtag%3D668128_3BC752C963894CA4B8C71E6D9BF8518F&t=1675580855863
200 OK 0 B URL HTTP/2 dsp-ap.eskimi.com/v2/gtr?id=22441&url=https%3A%2F%2F20bet.com%2Fpe%3Fbtag%3D668128_3BC752C963894CA4B8C71E6D9BF8518F&t=1675580855863
IP
GET /v2/gtr?id=22441&url=https%3A%2F%2F20bet.com%2Fpe%3Fbtag%3D668128_3BC752C963894CA4B8C71E6D9BF8518F&t=1675580855863 HTTP/1.1
Host: dsp-ap.eskimi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
set-cookie: __eConsent=1; Expires=Tue, 07 Mar 2023 07:06:56 GMT; Max-Age=2592000; Domain=.eskimi.com; Path=/; Secure; SameSite=None
__eDId=f44ac63c-4dae-4144-9c55-e3b49ef0e3c4; Expires=Tue, 07 Mar 2023 07:06:56 GMT; Max-Age=2592000; Domain=.eskimi.com; Path=/; Secure; SameSite=None
__eP=1; Expires=Sun, 19 Feb 2023 07:06:56 GMT; Max-Age=1209600; Domain=.eskimi.com; Path=/; Secure; SameSite=None
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
cache-control: no-cache
date: Sun, 05 Feb 2023 07:06:56 GMT
content-type: application/json
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
d1wfowvne3d4em.cloudfront.net/flags/ug.svg
200 OK 0 B URL HTTP/2 d1wfowvne3d4em.cloudfront.net/flags/ug.svg
IP
GET /flags/ug.svg HTTP/1.1
Host: d1wfowvne3d4em.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/svg+xml
date: Sat, 04 Feb 2023 11:37:05 GMT
last-modified: Thu, 05 Jan 2023 15:46:07 GMT
etag: W/"be11ef3932f4010356d708d10c60f1e9"
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: q1zN-vL27BGDLHGUgfeV62QBQUR_g_j2lxRt2ZWYzMQouvr8YNwa-w==
age: 70194
X-Firefox-Spdy: h2
platform.20bet.com/api/v4/coupon/get?system=1&lang=es
200 OK 0 B URL HTTP/2 platform.20bet.com/api/v4/coupon/get?system=1&lang=es
IP
GET /api/v4/coupon/get?system=1&lang=es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=d28c1456-34fa-4db5-9841-03cd324a5ac9.1675580853.1.1675580853.1675580853.eb7f76f9-ce80-4a3b-a07b-9634496c8d0f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:57 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
set-cookie: sid=5adf08b4a0cdd802b32a3d2790a171aa; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7949ce6b2e23b4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
blancoshrimp.com/SB/PE/
200 OK 0 B IP
Analyzer Verdict Alert fortinet Malware
GET /SB/PE/ HTTP/1.1
Host: blancoshrimp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 07:06:49 GMT
content-type: text/html
last-modified: Fri, 22 Apr 2022 08:53:29 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=40ujtmt74ysE1PVJFhRoyIt4ZlZn%2F%2FaESOP%2BIljMY1F6JaTO6R93j8YZMbk4dWMC8MoyE2BJ0Hlxx3yeAt2ds7cbcK5f2UnVOL%2FOjVvihgkRhUlB35CtOu5RuxuK9A7yQIGa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7949ce3aed9eb515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
172.67.146.68
23.36.76.226
5.226.179.10
3.121.138.183
104.18.32.68
77.88.21.119
95.211.229.246
37.157.3.29
83.147.204.197
63.33.93.29
104.85.191.64
217.147.127.42
18.228.20.229