blancoshrimp.com/SB/PE
104.21.73.164301 Moved Permanently 162 B IP 104.21.73.164:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert fortinet Malware
GET /SB/PE HTTP/1.1
Host: blancoshrimp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Wed, 08 Feb 2023 19:54:24 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://blancoshrimp.com/SB/PE
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=R65dU2qOLAqIuDBGkGBBUYSzILAOW4YPxaCw77z%2FX04%2BjfJbRMOSVNtUhxYVypuPKt0pukq9A%2BuNWHqXr5jZNFWTRE%2BdDEmnTiGSY%2F7CaawFQmX7PInkQPeVR2xs%2BXDIiyq7"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7966eabe5a801bfe-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dca68db7aea32f6683ce8d542c078f04
19c495238df74fca680e21f18627ff94de5dd2e5
35cab3987fc0e4a41b305cb208c1e33fa38ce8bdfd9f386c3dc0411dd4d5ac61
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35CAB3987FC0E4A41B305CB208C1E33FA38CE8BDFD9F386C3DC0411DD4D5AC61"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6557
Expires: Wed, 08 Feb 2023 21:43:41 GMT
Date: Wed, 08 Feb 2023 19:54:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 565c1bbc5c1c40be1988b3bf6fd9dc1a
cfdba5bc597130461dd67bf6cda53183be592493
60ceb36a8329c92fc49a3caf50daf511a38e01eac21a07d7a0a838166bea058d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "60CEB36A8329C92FC49A3CAF50DAF511A38E01EAC21A07D7A0A838166BEA058D"
Last-Modified: Mon, 06 Feb 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8547
Expires: Wed, 08 Feb 2023 22:16:51 GMT
Date: Wed, 08 Feb 2023 19:54:24 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 08 Feb 2023 19:34:13 GMT
content-type: application/json
age: 1211
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cc14b0d2f7c451f6431dc87ba54d1d60
bab8bfda6fa3e2f17125353f5147211787dc25d0
b58fe18a5cc8fe5aaf49ba7eadd0ef34692892e68e9c52eb5bb56ea27e1300ad
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B58FE18A5CC8FE5AAF49BA7EADD0EF34692892E68E9C52EB5BB56EA27E1300AD"
Last-Modified: Mon, 06 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3138
Expires: Wed, 08 Feb 2023 20:46:42 GMT
Date: Wed, 08 Feb 2023 19:54:24 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: yaeuARnrA+kSyBijEVttA+4SLprfV/Ajt3Tu3xRb/yWnaQNyZtLLuXclbuSkmu5vsR0b+oBLe5s=
x-amz-request-id: 5JGNXDB5KEDR73QZ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 08 Feb 2023 19:46:05 GMT
age: 499
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 1b6040862bea9c1c45428a8a1c921000
c893caa7822fd59a3b835fc631bc2392316de1ff
a112b003ab5b2a6104adfd52da68ba9a491c9ba6b6ec3d5c39b45d99cd80e07e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4137
Cache-Control: max-age=125463
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 19:54:24 GMT
Etag: "63e334de-117"
Expires: Fri, 10 Feb 2023 06:45:27 GMT
Last-Modified: Wed, 08 Feb 2023 05:36:30 GMT
Server: ECS (amb/6BA3)
X-Cache: HIT
Content-Length: 279
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 19:54:24 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 1b6040862bea9c1c45428a8a1c921000
c893caa7822fd59a3b835fc631bc2392316de1ff
a112b003ab5b2a6104adfd52da68ba9a491c9ba6b6ec3d5c39b45d99cd80e07e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4137
Cache-Control: max-age=125463
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 19:54:24 GMT
Etag: "63e334de-117"
Expires: Fri, 10 Feb 2023 06:45:27 GMT
Last-Modified: Wed, 08 Feb 2023 05:36:30 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 279
code.jquery.com/jquery-3.6.0.slim.min.js
69.16.175.42200 OK 25 kB URL HTTP/2 code.jquery.com/jquery-3.6.0.slim.min.js
IP 69.16.175.42:0
File type ASCII text, with very long lines (65241)
Hash ae3ffbb71d763d2a1ca869e4866b23ae
22723a163afd77efe96e92eaca712583612b3e73
29dda737fcaf96a8a4ea6d0dd66c6e379a4c98cf3374647388650ee6e48a462c
GET /jquery-3.6.0.slim.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://blancoshrimp.com
Connection: keep-alive
Referer: https://blancoshrimp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:25 GMT
content-encoding: gzip
content-length: 24587
content-type: application/javascript; charset=utf-8
last-modified: Wed, 16 Feb 2022 10:50:39 GMT
accept-ranges: bytes
server: nginx
etag: W/"620cd6ff-11ab4"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1675886065.dop221.sk1.t,1675886065.cds241.sk1.hn,1675886065.cds258.sk1.c
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Content-Type, Expires, Pragma, Retry-After, Last-Modified, ETag, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 08 Feb 2023 19:51:20 GMT
age: 185
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9b88bae61bca33aba8aa99f6128db8d9
a07b61fb2458917699613fcae68710941b595416
54915c2f79822732e06a592d027da421ad1e7a6458c545f98333db25612b3dea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "54915C2F79822732E06A592D027DA421AD1E7A6458C545F98333DB25612B3DEA"
Last-Modified: Mon, 06 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9035
Expires: Wed, 08 Feb 2023 22:25:00 GMT
Date: Wed, 08 Feb 2023 19:54:25 GMT
Connection: keep-alive
blancoshrimp.com/SB/PE
172.67.146.68301 Moved Permanently 37 kB IP 172.67.146.68:0
Hash efddada612b74baceedeb74106e9dc38
023ef2d2977a90c6b3a80f4fdf10d3e344ed211a
8f8a0501eac2c95d28025342432de08b5e4f2a7b423de895bcf8186f1c09b566
Analyzer Verdict Alert fortinet Malware
GET /SB/PE HTTP/1.1
Host: blancoshrimp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
date: Wed, 08 Feb 2023 19:54:24 GMT
content-type: text/html
location: https://blancoshrimp.com/SB/PE/
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yK16hEeeTGS5zW71nzbWbxdIhkW09OocWuQXmbvNbR9ivOmBIfcf68cfBFSJ080ScKiLRqr%2BEeqRsMwqnF7NUKXkXzPuCCp1v%2BPPNjRdtnmy0CDZa%2BhHhfUZa3EWRK9zUO0W"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7966eac02d92b515-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.securely-send.com/storage/pu_cd_pe_pa_aa_vold.js
161.35.78.172200 OK 44 kB URL HTTP/2 www.securely-send.com/storage/pu_cd_pe_pa_aa_vold.js
IP 161.35.78.172:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (43765), with no line terminators
Hash 0ab2caa6305d4fadf461e179a16c4f81
fb888a55aef46fa62ef67adff23f34142a989037
362bbba94f4366363ac1a4009488b17b2b28243ba28d39734b5d5669cc496ae5
Analyzer Verdict Alert fortinet Phishing
GET /storage/pu_cd_pe_pa_aa_vold.js HTTP/1.1
Host: www.securely-send.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blancoshrimp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Wed, 08 Feb 2023 19:54:25 GMT
content-type: application/javascript; charset=utf-8
content-length: 43765
last-modified: Wed, 01 Feb 2023 10:07:58 GMT
etag: "63da39fe-aaf5"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
push.services.mozilla.com/
44.229.10.174101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.229.10.174:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: /pgps1CajANGWqf5H+bP8g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: G9rDdwyWIPHSV9W7en0Ay7FRo5c=
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 49a6d3be4a621790b694d49ac21d78bc
c2248046799cc9ca56803c3cdb64752a10264292
98d6c44b40fd7f64054df000d6d22a160a94d100b8cd9ef848f04e4b2182c9b0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5794
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 19:54:25 GMT
Last-Modified: Wed, 08 Feb 2023 18:17:51 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 9533e44dd53c70a127740c85699c2c13
7d8bce276b4d9df3f9ded760403c1b52bc8a7a6c
4ba330e5b7acfff9a371b44921641924450542edcf97beae6762d7f79655ee78
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5416
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 19:54:25 GMT
Etag: "63e345de-118"
Last-Modified: Wed, 08 Feb 2023 18:24:09 GMT
Server: ECS (amb/6BA3)
X-Cache: HIT
Content-Length: 280
www.bet365.com/olp/open-account?affiliate=365_01155434
5.226.179.10200 OK 4.6 kB URL HTTP/1.1 www.bet365.com/olp/open-account?affiliate=365_01155434
IP 5.226.179.10:0
ASN #209242 Cloudflare London, LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 777df542767364d74b4942ef08faf806
7dab96586f546ae9dff792b38824a9cf2bfafa9b
5b079571d86311c614c35128f3fa4446cfae0e63aba5ed43897f80690d72d5db
GET /olp/open-account?affiliate=365_01155434 HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 19:54:25 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ServerDetails: <!--2P2 - 86-->
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=bdrRDdqI1_gO7KsYb.w4KMLCoLw3hjNeHChO3.ck0lY-1675886065-0-ASDcc3xG7LFW2wceltSdv0dx5NcgxP8ca4AiFyqnR3yvDyBT63TnjnvAPgPQ4jmwXUtdtsZlt8iZWhaiqg+UNuY=; path=/; expires=Wed, 08-Feb-23 20:24:25 GMT; domain=.bet365.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 7966eac5d83f1bfa-OSL
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash ac03b93865f3e298237591dc9afad569
44dcf39a770c302e7d73f576c40faa99f103d454
1281bba5bcf5975c16461fcc076978943e3b55e49367b840dfb0f30842f3ed47
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=125677
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 19:54:25 GMT
Etag: "63e345de-116"
Expires: Fri, 10 Feb 2023 06:49:02 GMT
Last-Modified: Wed, 08 Feb 2023 06:49:02 GMT
Server: nginx
Content-Length: 278
www.bet365.com/olpc/nn/143/0/1/open-account
5.226.179.10200 OK 13 kB URL HTTP/1.1 www.bet365.com/olpc/nn/143/0/1/open-account
IP 5.226.179.10:0
ASN #209242 Cloudflare London, LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2285), with CRLF line terminators
Hash 361f7084c6a9f490cdbe7e1b357277fb
511ade025b1f037dc6005dab77dc22d4e8742ca9
244fff2be5ae888b5d42d505f005de7585326a74dbbe00f9904f944fa505e869
GET /olpc/nn/143/0/1/open-account HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/olp/open-account?affiliate=365_01155434
Cookie: __cf_bm=bdrRDdqI1_gO7KsYb.w4KMLCoLw3hjNeHChO3.ck0lY-1675886065-0-ASDcc3xG7LFW2wceltSdv0dx5NcgxP8ca4AiFyqnR3yvDyBT63TnjnvAPgPQ4jmwXUtdtsZlt8iZWhaiqg+UNuY=
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 19:54:25 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 12840
Connection: keep-alive
Cache-Control: private
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Security-Policy: default-src 'self';script-src 'self' 'unsafe-inline' https://www.googletagmanager.com;frame-src 'self' http://members.bet365.com 'nonce-7ZckNJAK9Ng+S+0bS+vOFdgVXQjBysCqx65voPXNeTg=';style-src 'self' 'unsafe-inline';img-src 'self' data: https://content001.bet365.com/ https://content001.bet365.com/SportsContent/ 'nonce-7ZckNJAK9Ng+S+0bS+vOFdgVXQjBysCqx65voPXNeTg=';connect-src 'self' https://www.google-analytics.com http://members.bet365.com https://extra.bet365.com 'nonce-7ZckNJAK9Ng+S+0bS+vOFdgVXQjBysCqx65voPXNeTg=';font-src 'self' data: 'nonce-7ZckNJAK9Ng+S+0bS+vOFdgVXQjBysCqx65voPXNeTg=';
Last-Modified: Wed, 08 Feb 2023 14:18:58 GMT
CF-Cache-Status: HIT
Age: 5657
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 7966eac669601bfa-OSL
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 049c90be7abd0dae2d52d2417f1303ad
278b02d9d054384945f1d9bc8e4edeb2c7b3fd22
2cdadf14a91c7a6f64405797aad1549b5582315ea3d4a79c62456c8815d1664b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6365
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 19:54:25 GMT
Last-Modified: Wed, 08 Feb 2023 18:08:20 GMT
Server: ECS (amb/6BA3)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 3af3ee0ed959a22ee157c89a60d662b1
89adaf8b7a04178def439958d6292da959c62b2b
36548afe4876592025dccb16ad77ce252cea50ab72fe7c6e930e083631b4d0aa
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4875
Cache-Control: max-age=94915
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 19:54:25 GMT
Etag: "63e2baa9-118"
Expires: Thu, 09 Feb 2023 22:16:20 GMT
Last-Modified: Tue, 07 Feb 2023 20:55:05 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 280
www.bet365.com/olpc/Content/Fonts/FTN45__W.woff2
5.226.179.10200 OK 46 kB URL HTTP/1.1 www.bet365.com/olpc/Content/Fonts/FTN45__W.woff2
IP 5.226.179.10:0
ASN #209242 Cloudflare London, LLC
File type Web Open Font Format (Version 2), TrueType, length 45892, version 1.590\012- data
Hash e3596a29429736364ebfef73786a55ab
7bd9b6b18b0985c080d520610c0ab74a128d71bd
6e28311fc68644a88a32df782c7371991894bc6a6a81f8ff70f971b4470c3751
GET /olpc/Content/Fonts/FTN45__W.woff2 HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/olpc/nn/143/0/1/open-account
Cookie: __cf_bm=bdrRDdqI1_gO7KsYb.w4KMLCoLw3hjNeHChO3.ck0lY-1675886065-0-ASDcc3xG7LFW2wceltSdv0dx5NcgxP8ca4AiFyqnR3yvDyBT63TnjnvAPgPQ4jmwXUtdtsZlt8iZWhaiqg+UNuY=
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 19:54:25 GMT
Content-Length: 45892
Connection: keep-alive
Last-Modified: Wed, 08 Feb 2023 18:18:33 GMT
CF-Cache-Status: HIT
Age: 5518
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7966eac6a9971bfa-OSL
www.bet365.com/olpc/olpc-scripts.js?v=QiTdi93Kjo0gOLPeEMbGjBwZr56JrtuCD56Ga17ZGYM1
5.226.179.10200 OK 17 kB URL HTTP/1.1 www.bet365.com/olpc/olpc-scripts.js?v=QiTdi93Kjo0gOLPeEMbGjBwZr56JrtuCD56Ga17ZGYM1
IP 5.226.179.10:0
ASN #209242 Cloudflare London, LLC
Hash 025d53691640d248d5877fc87ccd03ea
8d3348660bbbe7e088d9a71162d021c7b3370ef8
916e80bb01bfad17e1c5fe41da5eb16d5c92223103f163f3507c500afb4e8de9
GET /olpc/olpc-scripts.js?v=QiTdi93Kjo0gOLPeEMbGjBwZr56JrtuCD56Ga17ZGYM1 HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/olpc/nn/143/0/1/open-account
Cookie: __cf_bm=bdrRDdqI1_gO7KsYb.w4KMLCoLw3hjNeHChO3.ck0lY-1675886065-0-ASDcc3xG7LFW2wceltSdv0dx5NcgxP8ca4AiFyqnR3yvDyBT63TnjnvAPgPQ4jmwXUtdtsZlt8iZWhaiqg+UNuY=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 19:54:25 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 9965
Connection: keep-alive
Cache-Control: public
Content-Encoding: gzip
Expires: Thu, 08 Feb 2024 10:18:25 GMT
Last-Modified: Wed, 08 Feb 2023 10:18:25 GMT
Vary: User-Agent,Accept-Encoding
CF-Cache-Status: HIT
Age: 5746
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 7966eac6c9cc1bfa-OSL
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 8d5417d247d259e3c0186136b83d9f75
49fbcf99a352669aee2559579ef73fa60f46d38d
3c013921158ec27e44d5e80a5108557de80a27f38089ac3a52c6c1cf5636f585
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 19:54:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 325a8a10ce2837a8c6820e30572d181c
195d6189f0f10fcb301fce3af4c27028bbcb9eaa
2f1a0e948582fa64266617acc77e9beb71c5031d9cffe1bed1393a554f259810
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 19:54:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.bet365.com/olpc/olpc-styles.css?v=OUCNRoz5UJA_hlonvvM-zKypUxxoB69C1PKm61WNx101
5.226.179.10200 OK 128 kB URL HTTP/1.1 www.bet365.com/olpc/olpc-styles.css?v=OUCNRoz5UJA_hlonvvM-zKypUxxoB69C1PKm61WNx101
IP 5.226.179.10:0
ASN #209242 Cloudflare London, LLC
File type Unicode text, UTF-8 text, with very long lines (335), with CRLF line terminators
Size 128 kB (128522 bytes)
Hash 70c566a3f45d214eb461698a7039aeec
91577629b42f6b6feac44540599606e777922121
572bcd269e50b62ebdd6b42cd36e0e0bc62796cfbe975dc375547674619ce655
GET /olpc/olpc-styles.css?v=OUCNRoz5UJA_hlonvvM-zKypUxxoB69C1PKm61WNx101 HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/olpc/nn/143/0/1/open-account
Cookie: __cf_bm=bdrRDdqI1_gO7KsYb.w4KMLCoLw3hjNeHChO3.ck0lY-1675886065-0-ASDcc3xG7LFW2wceltSdv0dx5NcgxP8ca4AiFyqnR3yvDyBT63TnjnvAPgPQ4jmwXUtdtsZlt8iZWhaiqg+UNuY=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 19:54:25 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: public
Content-Encoding: gzip
Expires: Thu, 08 Feb 2024 10:18:25 GMT
Last-Modified: Wed, 08 Feb 2023 10:18:25 GMT
Vary: User-Agent,Accept-Encoding
CF-Cache-Status: HIT
Age: 5746
Server: cloudflare
CF-RAY: 7966eac6e92bb4f9-OSL
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2bc8cfc91f9a77a2eeb73abc55308585
55b3f3ad0f7aff8fc047605061b3974178417701
cb84292c63cd8fe0afdedb3aa56f87e7482182c3b9d2b6db98a38966748083aa
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6073
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 19:54:25 GMT
Last-Modified: Wed, 08 Feb 2023 18:13:13 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
www.googletagmanager.com/gtm.js?id=GTM-T2BKDHM
142.250.74.40200 OK 40 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-T2BKDHM
IP 142.250.74.40:0
File type ASCII text, with very long lines (1759)
Hash e00adb4e1323f98bbe09cfd052e3e8d1
414da4bcd628c2bcd9d457947207fa7df2870bfe
12b1e91f7f312166a57141c2230f15f6b28ccb9acc97f8acffdd54661c71d6b8
GET /gtm.js?id=GTM-T2BKDHM HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 08 Feb 2023 19:54:25 GMT
expires: Wed, 08 Feb 2023 19:54:25 GMT
cache-control: private, max-age=900
last-modified: Wed, 08 Feb 2023 18:39:10 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 40265
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.bet365.com/members/services/host/Scripts/js/ProductCommon_v1.js?async
5.226.179.10200 OK 691 B URL HTTP/1.1 www.bet365.com/members/services/host/Scripts/js/ProductCommon_v1.js?async
IP 5.226.179.10:0
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (990), with no line terminators
Hash 8ea51c11c59cb02a558a058d94512f41
289ac2c7fe746507651935d947210ef72f694394
1d12e3555519d4080059ff551ab46ea47ccd4ea451b0b41da0b672985a529285
GET /members/services/host/Scripts/js/ProductCommon_v1.js?async HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/olpc/nn/143/0/1/open-account
Cookie: __cf_bm=bdrRDdqI1_gO7KsYb.w4KMLCoLw3hjNeHChO3.ck0lY-1675886065-0-ASDcc3xG7LFW2wceltSdv0dx5NcgxP8ca4AiFyqnR3yvDyBT63TnjnvAPgPQ4jmwXUtdtsZlt8iZWhaiqg+UNuY=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 19:54:25 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: 0
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
x-bet-hop: 1
Content-Encoding: gzip
Last-Modified: Wed, 08 Feb 2023 19:54:25 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7966eac6ed3fb4ee-OSL
fonts.googleapis.com/css2?family=Montserrat:wght@300;400;500;600&display=swap
142.250.74.106200 OK 1.1 kB URL HTTP/2 fonts.googleapis.com/css2?family=Montserrat:wght@300;400;500;600&display=swap
IP 142.250.74.106:0
Hash d2e3e7c3dff1f07f4f4d06d6202a2c6f
fc7d746123a0c7c6f8e2ec43e2630905e5cc446d
5b00b131c65458950d80101327a90c500a1e3a3f0dd2dbf12c3a0223eb0a0d4c
GET /css2?family=Montserrat:wght@300;400;500;600&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blancoshrimp.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 08 Feb 2023 19:54:25 GMT
date: Wed, 08 Feb 2023 19:54:25 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.bet365.com/members/services/host/Scripts/js/ProductCommon_v1.js
5.226.179.10200 OK 3.6 kB URL HTTP/1.1 www.bet365.com/members/services/host/Scripts/js/ProductCommon_v1.js
IP 5.226.179.10:0
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (9857), with no line terminators
Hash 8526418443f6bcfead67615247d3e38a
6935cb6ce3e37192afcd3d08ec3b2d9c18035d20
49fa8353e8973f41c38723a669bd3200fd658ba87d6c121eb45da4af631825aa
GET /members/services/host/Scripts/js/ProductCommon_v1.js HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/olpc/nn/143/0/1/open-account
Cookie: __cf_bm=bdrRDdqI1_gO7KsYb.w4KMLCoLw3hjNeHChO3.ck0lY-1675886065-0-ASDcc3xG7LFW2wceltSdv0dx5NcgxP8ca4AiFyqnR3yvDyBT63TnjnvAPgPQ4jmwXUtdtsZlt8iZWhaiqg+UNuY=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 19:54:25 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: 0
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
x-bet-hop: 1
Content-Encoding: gzip
Last-Modified: Wed, 08 Feb 2023 19:54:25 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7966eac6eb0c0b02-OSL
ic.aff-handler.com/C/45577?sr=1853546
217.147.127.42302 Found 309 B URL HTTP/1.1 ic.aff-handler.com/C/45577?sr=1853546
IP 217.147.127.42:0
ASN #201071 Virtual Internet Services Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 5db039a4ff38ac0d980b415ad5d379ad
d826fe8c8cc3a805fc4c0b1ecee760c658c74e1c
52dacdb6e718e9c07c74819561740db6d88cbd68a4e02c3e1262f92583f36bef
GET /C/45577?sr=1853546 HTTP/1.1
Host: ic.aff-handler.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Pragma: no-cache
Content-Type: text/html; charset=utf-8
Expires: 0
Location: https://es.888casino.com/exclusive-mob/spinson.htm?sr=1853546&mm_id=45577&utm_source=aff&utm_medium=casap&utm_content=100138643&utm_campaign=100138643_1853546_nodescription
Server:
X-AspNetMvc-Version: 4.0
Set-Cookie: uffiliate_click_45577_1853546_=uffiliate_click_45577_1853546_; expires=Fri, 10-Mar-2023 19:54:25 GMT; path=/; SameSite=None; Secure
srv: 1231321
Date: Wed, 08 Feb 2023 19:54:24 GMT
Content-Length: 309
www.bet365.com/members/services/host/Scripts/js/ProductCommon_v1.js?seed=AMCagTKGAQAAjywl4B8Ip7dP7ANUdMc-jdYBEG-BS3yBlfp-CAc3_iDl1Dtm&PIRXTcSdwp--z=q
5.226.179.10200 OK 179 kB URL HTTP/1.1 www.bet365.com/members/services/host/Scripts/js/ProductCommon_v1.js?seed=AMCagTKGAQAAjywl4B8Ip7dP7ANUdMc-jdYBEG-BS3yBlfp-CAc3_iDl1Dtm&PIRXTcSdwp--z=q
IP 5.226.179.10:0
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (65536), with no line terminators
Size 179 kB (178654 bytes)
Hash c973e7d62d9562d361e324dc32195765
c1ddd941946d34c66335e11cf1d8bb682d3c6989
ec012634ea8bee408afa78b6a5cae960a63c8ef974a831ac46aea82d45f50323
GET /members/services/host/Scripts/js/ProductCommon_v1.js?seed=AMCagTKGAQAAjywl4B8Ip7dP7ANUdMc-jdYBEG-BS3yBlfp-CAc3_iDl1Dtm&PIRXTcSdwp--z=q HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/olpc/nn/143/0/1/open-account
Cookie: __cf_bm=bdrRDdqI1_gO7KsYb.w4KMLCoLw3hjNeHChO3.ck0lY-1675886065-0-ASDcc3xG7LFW2wceltSdv0dx5NcgxP8ca4AiFyqnR3yvDyBT63TnjnvAPgPQ4jmwXUtdtsZlt8iZWhaiqg+UNuY=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 19:54:25 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: public, max-age=3600, immutable
x-bet-hop: 1
Content-Encoding: gzip
Last-Modified: Wed, 08 Feb 2023 19:30:00 GMT
CF-Cache-Status: HIT
Age: 1465
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7966eac779fcb4f9-OSL
members.bet365.com/Members/Helpers/DefaultAff.aspx?affiliate=365_01155434
5.226.179.10200 OK 177 B URL HTTP/1.1 members.bet365.com/Members/Helpers/DefaultAff.aspx?affiliate=365_01155434
IP 5.226.179.10:0
ASN #209242 Cloudflare London, LLC
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 475774a26d4f30240a3534bcbd2fd161
9fd7b986673786b4fc80943b330bd1c03256049e
f7541d6ca43b4da74a89ec05885dceabf1a4af132d36326cf7974a47c904c811
GET /Members/Helpers/DefaultAff.aspx?affiliate=365_01155434 HTTP/1.1
Host: members.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/
Cookie: __cf_bm=bdrRDdqI1_gO7KsYb.w4KMLCoLw3hjNeHChO3.ck0lY-1675886065-0-ASDcc3xG7LFW2wceltSdv0dx5NcgxP8ca4AiFyqnR3yvDyBT63TnjnvAPgPQ4jmwXUtdtsZlt8iZWhaiqg+UNuY=
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 19:54:25 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 177
Connection: keep-alive
Cache-Control: private
Content-Encoding: gzip
Vary: Accept-Encoding
ME-Redirect: PQB
Set-Cookie: Affiliates=Code=365_01155434&prd=Sports; domain=.bet365.com; expires=Sat, 25-Mar-2023 19:54:25 GMT; path=/; secure
session=processform=0; path=/; secure
pstk=6DAE70B5A32C5F6996C98023E713345C000003; domain=.bet365.com; path=/; secure
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7966eac6c904b505-OSL
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 0333fa3e34f17f01e9829bd8ee662c23
be4c7a8599038facc49c73d6d14451023bc919e7
8b4ad992549334395b268f43cf73150ed0dfe58801cf9595c3e245ea92dea7d9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 19:54:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
promo.20bet.partners/redirect.aspx?pid=191762&bid=1971&lpid=1091
95.101.10.185307 Temporary Redirect 0 B URL HTTP/2 promo.20bet.partners/redirect.aspx?pid=191762&bid=1971&lpid=1091
IP 95.101.10.185:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect.aspx?pid=191762&bid=1971&lpid=1091 HTTP/1.1
Host: promo.20bet.partners
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
content-type: text/html
content-length: 0
location: https://20media.world/pe?btag=668128_092508971B8E40D1818935D0BBD4ADB8
p3p: CP="This is not a P3P policy! It is used to bypass IEs problematic handling of cookies"
x-aspnet-version: 4.0.30319
request-context: appId=cid-v1:83ffbda4-9458-475e-90ec-4427cfb5c3b0
access-control-expose-headers: Request-Context
expires: Wed, 08 Feb 2023 19:54:25 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 08 Feb 2023 19:54:25 GMT
set-cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a191762%2c%22BID%22%3a1971%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675886065878)%5c%2f%22%2c%22CookieTag%22%3a%221971191762451240919C2023281954%22%7d%5d; SameSite=None;; domain=.20bet.partners; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; secure
NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%221106562784%7c1%22%7d%5d; domain=.20bet.partners; expires=Fri, 08-Feb-3022 19:54:25 GMT; path=/; secure; SameSite=Strict
server-timing: cdn-cache; desc=MISS, edge; dur=20, origin; dur=63
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 3f3962ef574ee0069c41f7cbcabd1ef3
c4b6aefa8563432c5e5901488c38ae7da3c83fd7
9518b917cc6f0b1724d687d6aac4d8c1851d46949eeb4926acdb26a84728fdc0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 19:54:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
record.betsafe.com/_artCMRK1bjZCnN6gMv_or2Nd7ZgqdRLk/15/
104.18.192.136301 Moved Permanently 279 B URL HTTP/2 record.betsafe.com/_artCMRK1bjZCnN6gMv_or2Nd7ZgqdRLk/15/
IP 104.18.192.136:0
Hash 4ebdbc1bc444e5c42b3d84802c666188
7614930f1c26122466088760c4114e30f02aab92
3786b1eae99bed67b63b5d2508a813de5b322521e2c12f8ffad6aeb5b2c72044
GET /_artCMRK1bjZCnN6gMv_or2Nd7ZgqdRLk/15/ HTTP/1.1
Host: record.betsafe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Wed, 08 Feb 2023 19:54:25 GMT
content-type: text/html; charset=utf-8
location: https://promotions.betsafe.com/sb-bono-de-bienvenida/pe/?from=6H1e0GaRehfBv5aj1vswWWNd7ZgqdRLk-AP0846390900&affcode=AP0846390900&utm_medium=MA_Affiliates&utm_source=10687405
cache-control: private, no-cache, must-revalidate, Cache-Control: no-cache
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *
pragma: no-cache
x-powered-by: ZBan
cf-cache-status: BYPASS
set-cookie: VID1=KiwzQFIsIzRSLTM4UC1QYGAKYAo%3D; expires=Thu, 08-Feb-2024 19:54:25 GMT; Max-Age=31536000; path=/; secure; HttpOnly; SameSite=None
ZBan=6H1e0GaRehfBv5aj1vswWWNd7ZgqdRLk; expires=Thu, 08-Feb-2024 19:54:25 GMT; Max-Age=31536000; path=/; domain=.betsafe.com; secure; HttpOnly; SameSite=None
PartnerId=6H1e0GaRehfBv5aj1vswWWNd7ZgqdRLk-Z2lnX2NwaF9wb3A%3D; expires=Fri, 10-Mar-2023 19:54:25 GMT; Max-Age=2592000; path=/; SameSite=Lax
marketingproduct=Sportsbook; expires=Fri, 10-Mar-2023 19:54:25 GMT; Max-Age=2592000; path=/; domain=.betsafe.com; SameSite=Lax
vary: Accept-Encoding
server: cloudflare
cf-ray: 7966eac669b4fac4-OSL
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
142.250.74.35200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://blancoshrimp.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 Feb 2023 07:08:09 GMT
expires: Sat, 03 Feb 2024 07:08:09 GMT
cache-control: public, max-age=31536000
age: 477976
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 4ebdbc1bc444e5c42b3d84802c666188
7614930f1c26122466088760c4114e30f02aab92
3786b1eae99bed67b63b5d2508a813de5b322521e2c12f8ffad6aeb5b2c72044
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4790
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 19:54:25 GMT
Last-Modified: Wed, 08 Feb 2023 18:34:36 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 4ebdbc1bc444e5c42b3d84802c666188
7614930f1c26122466088760c4114e30f02aab92
3786b1eae99bed67b63b5d2508a813de5b322521e2c12f8ffad6aeb5b2c72044
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3297
Cache-Control: max-age=101982
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 19:54:25 GMT
Etag: "63e2dc6e-117"
Expires: Fri, 10 Feb 2023 00:14:07 GMT
Last-Modified: Tue, 07 Feb 2023 23:19:10 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 784c18f4da57c06b59f3b08cfaa55097
c56238a13f6ca2ac5d604107bb7da2bad300ac0d
8f4b9720d0e6aaefca690e910ecc854053de6dd82eb02bc9736ea48df988a42e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=91094
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 19:54:25 GMT
Etag: "63e2bec7-117"
Expires: Thu, 09 Feb 2023 21:12:39 GMT
Last-Modified: Tue, 07 Feb 2023 21:12:39 GMT
Server: nginx
Content-Length: 279
content001.bet365.com/SportsContent/Global/Footer/SPORTSX2-18.png
5.226.179.10200 OK 4.4 kB URL HTTP/1.1 content001.bet365.com/SportsContent/Global/Footer/SPORTSX2-18.png
IP 5.226.179.10:0
ASN #209242 Cloudflare London, LLC
File type PNG image data, 65 x 65, 8-bit/color RGBA, non-interlaced\012- data
Hash 097b1799e6f2ab026f137f91b4627384
fd6a5222f5743cccc954a311b6d30b4125179244
5af616c5e6ad0d97aa233ed4644776ca94de0cfb1a653844d8a5d9ee46e756af
GET /SportsContent/Global/Footer/SPORTSX2-18.png HTTP/1.1
Host: content001.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/
Cookie: __cf_bm=bdrRDdqI1_gO7KsYb.w4KMLCoLw3hjNeHChO3.ck0lY-1675886065-0-ASDcc3xG7LFW2wceltSdv0dx5NcgxP8ca4AiFyqnR3yvDyBT63TnjnvAPgPQ4jmwXUtdtsZlt8iZWhaiqg+UNuY=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 19:54:25 GMT
Content-Type: image/png
Content-Length: 4400
Connection: keep-alive
Last-Modified: Fri, 20 Mar 2015 09:13:01 GMT
Timing-Allow-Origin: *
CF-Cache-Status: HIT
Expires: Mon, 13 Feb 2023 19:54:25 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7966eac82e42b50b-OSL
content001.bet365.com/SportsContent/Global/Footer/SPORTSX1-ESSA_2.png
5.226.179.10200 OK 6.4 kB URL HTTP/1.1 content001.bet365.com/SportsContent/Global/Footer/SPORTSX1-ESSA_2.png
IP 5.226.179.10:0
ASN #209242 Cloudflare London, LLC
File type PNG image data, 162 x 35, 8-bit/color RGBA, non-interlaced\012- data
Hash 1b8c19b189cccdda7105465a474c9b4d
6ef1cecd283f484606c987259e06a22ff3aff7ae
101ca051649af6826119108f51311f70b4d58e94242c8877a2b8a9247b90f54f
GET /SportsContent/Global/Footer/SPORTSX1-ESSA_2.png HTTP/1.1
Host: content001.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/
Cookie: __cf_bm=bdrRDdqI1_gO7KsYb.w4KMLCoLw3hjNeHChO3.ck0lY-1675886065-0-ASDcc3xG7LFW2wceltSdv0dx5NcgxP8ca4AiFyqnR3yvDyBT63TnjnvAPgPQ4jmwXUtdtsZlt8iZWhaiqg+UNuY=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 19:54:26 GMT
Content-Type: image/png
Content-Length: 6386
Connection: keep-alive
Last-Modified: Tue, 04 Jun 2019 13:21:41 GMT
Timing-Allow-Origin: *
CF-Cache-Status: HIT
Expires: Mon, 13 Feb 2023 19:54:26 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7966eac83f120afe-OSL
content001.bet365.com/SportsContent/Global/Footer/MGALICENSED.png
5.226.179.10200 OK 2.0 kB URL HTTP/1.1 content001.bet365.com/SportsContent/Global/Footer/MGALICENSED.png
IP 5.226.179.10:0
ASN #209242 Cloudflare London, LLC
File type PNG image data, 88 x 44, 8-bit/color RGBA, non-interlaced\012- data
Hash d8cb8a91c78942815c69aaeea7c79162
0a36fd477b2c7d88bb67d95e806bf5838d1b39cd
057c251de5bc8825df293db443b8c9a99e01f856abe658c741a89c86b6bfa2e1
GET /SportsContent/Global/Footer/MGALICENSED.png HTTP/1.1
Host: content001.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/
Cookie: __cf_bm=bdrRDdqI1_gO7KsYb.w4KMLCoLw3hjNeHChO3.ck0lY-1675886065-0-ASDcc3xG7LFW2wceltSdv0dx5NcgxP8ca4AiFyqnR3yvDyBT63TnjnvAPgPQ4jmwXUtdtsZlt8iZWhaiqg+UNuY=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 19:54:26 GMT
Content-Type: image/png
Content-Length: 1979
Connection: keep-alive
Last-Modified: Wed, 10 Jul 2019 13:20:52 GMT
Timing-Allow-Origin: *
CF-Cache-Status: HIT
Expires: Mon, 13 Feb 2023 19:54:26 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7966eac83c79b4f3-OSL
content001.bet365.com/SportsContent/Global/Footer/bet365%20grey%20footer%20logo.png
5.226.179.10200 OK 7.9 kB URL HTTP/1.1 content001.bet365.com/SportsContent/Global/Footer/bet365%20grey%20footer%20logo.png
IP 5.226.179.10:0
ASN #209242 Cloudflare London, LLC
File type PNG image data, 255 x 53, 8-bit/color RGBA, non-interlaced\012- data
Hash 51325bd6f5ada6b0eba71b19dda89dd7
4c67ca4f77680cd5acdcf04cac6b9a673e5ccc70
6ad4d67eed235fafc8ddfab188fa2e968ba4345718c8338bd7f4fbfafa6f8a2b
GET /SportsContent/Global/Footer/bet365%20grey%20footer%20logo.png HTTP/1.1
Host: content001.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/
Cookie: __cf_bm=bdrRDdqI1_gO7KsYb.w4KMLCoLw3hjNeHChO3.ck0lY-1675886065-0-ASDcc3xG7LFW2wceltSdv0dx5NcgxP8ca4AiFyqnR3yvDyBT63TnjnvAPgPQ4jmwXUtdtsZlt8iZWhaiqg+UNuY=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 19:54:26 GMT
Content-Type: image/png
Content-Length: 7868
Connection: keep-alive
Last-Modified: Thu, 11 Jun 2015 14:13:32 GMT
Timing-Allow-Origin: *
CF-Cache-Status: HIT
Expires: Mon, 13 Feb 2023 19:54:26 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7966eac84ab8b50f-OSL
content001.bet365.com/SportsContent/Global/Footer/GordonMoody/GordonMoody-GT-x2_Grey99.png
5.226.179.10200 OK 5.3 kB URL HTTP/1.1 content001.bet365.com/SportsContent/Global/Footer/GordonMoody/GordonMoody-GT-x2_Grey99.png
IP 5.226.179.10:0
ASN #209242 Cloudflare London, LLC
File type PNG image data, 188 x 60, 8-bit gray+alpha, non-interlaced\012- data
Hash 40ed9c8ae714b944f87008ab90bb071d
32bbf71529809e6ea3521c5636838a76c7488fae
b163877ec48382be73ffdf62c6a5dc5ded37443856dde414e591dfe85b61f070
GET /SportsContent/Global/Footer/GordonMoody/GordonMoody-GT-x2_Grey99.png HTTP/1.1
Host: content001.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/
Cookie: __cf_bm=bdrRDdqI1_gO7KsYb.w4KMLCoLw3hjNeHChO3.ck0lY-1675886065-0-ASDcc3xG7LFW2wceltSdv0dx5NcgxP8ca4AiFyqnR3yvDyBT63TnjnvAPgPQ4jmwXUtdtsZlt8iZWhaiqg+UNuY=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 19:54:26 GMT
Content-Type: image/png
Content-Length: 5324
Connection: keep-alive
Last-Modified: Mon, 11 Oct 2021 13:13:24 GMT
Timing-Allow-Origin: *
CF-Cache-Status: HIT
Expires: Mon, 13 Feb 2023 19:54:26 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7966eac84e82b500-OSL
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 3f3962ef574ee0069c41f7cbcabd1ef3
c4b6aefa8563432c5e5901488c38ae7da3c83fd7
9518b917cc6f0b1724d687d6aac4d8c1851d46949eeb4926acdb26a84728fdc0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 19:54:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
promotions.betsafe.com/sb-bono-de-bienvenida/pe/?from=6H1e0GaRehfBv5aj1vswWWNd7ZgqdRLk-AP0846390900&affcode=AP0846390900&utm_medium=MA_Affiliates&utm_source=10687405
54.230.111.103200 OK 11 kB URL HTTP/2 promotions.betsafe.com/sb-bono-de-bienvenida/pe/?from=6H1e0GaRehfBv5aj1vswWWNd7ZgqdRLk-AP0846390900&affcode=AP0846390900&utm_medium=MA_Affiliates&utm_source=10687405
IP 54.230.111.103:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (29371)
Hash ea143124a9bbb6e917818427415fbb77
6faa44ea6502ca0d48caeee2dac8d4a454360340
9abd9bdde6c27570550c70e78c4ee4b8cf99f8409ce82b185d122281cad435a0
GET /sb-bono-de-bienvenida/pe/?from=6H1e0GaRehfBv5aj1vswWWNd7ZgqdRLk-AP0846390900&affcode=AP0846390900&utm_medium=MA_Affiliates&utm_source=10687405 HTTP/1.1
Host: promotions.betsafe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: ZBan=6H1e0GaRehfBv5aj1vswWWNd7ZgqdRLk
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html;charset=UTF-8
content-length: 10980
date: Wed, 08 Feb 2023 19:54:26 GMT
server: Apache/2.4.52 (Ubuntu)
strict-transport-security: max-age=3153600; includeSubDomains
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: IOD0CP618GUBB9vn1VVeSh0DTWygSV1u6o7n0XGAkou_N7Oe2KtPzg==
X-Firefox-Spdy: h2
content001.bet365.com/SportsContent/Global/Footer/eCogra-Horizontal2x.png
5.226.179.10200 OK 1.7 kB URL HTTP/1.1 content001.bet365.com/SportsContent/Global/Footer/eCogra-Horizontal2x.png
IP 5.226.179.10:0
ASN #209242 Cloudflare London, LLC
File type PNG image data, 206 x 48, 8-bit colormap, non-interlaced\012- data
Hash 9c970e4a7854f871873d7b1401701536
2236689845834104a586507057840c7229c7353c
d0438c85b7b5f9c21ac9a1975ccd12464f5f8cbf15d3353ee700e2617f913349
GET /SportsContent/Global/Footer/eCogra-Horizontal2x.png HTTP/1.1
Host: content001.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bet365.com/
Cookie: __cf_bm=bdrRDdqI1_gO7KsYb.w4KMLCoLw3hjNeHChO3.ck0lY-1675886065-0-ASDcc3xG7LFW2wceltSdv0dx5NcgxP8ca4AiFyqnR3yvDyBT63TnjnvAPgPQ4jmwXUtdtsZlt8iZWhaiqg+UNuY=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 19:54:26 GMT
Content-Type: image/png
Content-Length: 1671
Connection: keep-alive
Last-Modified: Wed, 11 Aug 2021 10:23:12 GMT
Timing-Allow-Origin: *
CF-Cache-Status: HIT
Expires: Mon, 13 Feb 2023 19:54:26 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7966eac85bc6fac4-OSL
in.betsson.com/pe-bono-bienvenida-21/pe/?from=6H1e0GaRehdNdc1QwIELdGNd7ZgqdRLk-AP0846390900&affcode=AP0846390900&utm_medium=MA_Affiliates&utm_source=10687405
54.230.111.57200 OK 16 kB URL HTTP/2 in.betsson.com/pe-bono-bienvenida-21/pe/?from=6H1e0GaRehdNdc1QwIELdGNd7ZgqdRLk-AP0846390900&affcode=AP0846390900&utm_medium=MA_Affiliates&utm_source=10687405
IP 54.230.111.57:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (49496)
Hash d6bf189fb6ae6edde55bdf613a837434
8792aa150d069fd9e3524b937ac16ef162723ee4
fbd044df2617dba71e73a8a755d73bc6684e837bf42394d0c414f3940086575b
GET /pe-bono-bienvenida-21/pe/?from=6H1e0GaRehdNdc1QwIELdGNd7ZgqdRLk-AP0846390900&affcode=AP0846390900&utm_medium=MA_Affiliates&utm_source=10687405 HTTP/1.1
Host: in.betsson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: ZBan=6H1e0GaRehdNdc1QwIELdGNd7ZgqdRLk
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html;charset=UTF-8
content-length: 15799
date: Wed, 08 Feb 2023 19:54:26 GMT
server: Apache/2.4.52 (Ubuntu)
strict-transport-security: max-age=3153600; includeSubDomains
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: M2jILekbI8zFtUC6uWHR9euSsc0BobhdDFrsZeN3R4toHbyQsHnAmA==
X-Firefox-Spdy: h2
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash 08833bec88dc3cd2574c205be1872aa5
f77690801199a1e4dc17a5e9e3a7fdd93e654dac
24be74c5277efe6ac0bc73182f50b17ee01bd48e17aa104b71a7f270a04af1dd
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=138895
Date: Wed, 08 Feb 2023 19:54:26 GMT
Etag: "63e36feb-1d7"
Expires: Fri, 10 Feb 2023 10:29:21 GMT
Last-Modified: Wed, 08 Feb 2023 09:48:27 GMT
Server: ECS (nyb/1D27)
X-Cache: Miss from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: zZiteiVIYQigMUL2DXDxz6LiEwGy7nxpjR9cZ_0cHmqYDr1tw1kLTg==
Age: 2454
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 66fe05c16f6fa9eee5708d40ca83f676
5b85fe43a5ac9a21ab46d688afbc1a7690619078
64ac147e82a3727f1eb0c6ae2f67eba5fc2264d1231d1fdd4d4407c1cc09ad76
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2938
Cache-Control: max-age=157421
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 19:54:26 GMT
Etag: "63e3b665-117"
Expires: Fri, 10 Feb 2023 15:38:07 GMT
Last-Modified: Wed, 08 Feb 2023 14:49:09 GMT
Server: ECS (amb/6BB2)
X-Cache: HIT
Content-Length: 279
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 8c2fc658b0de9f22e011430e0a3bcf83
26fe06db6504e75c19537613c14218bed9b0e3ec
87c528dd378c38e870c4a55dd01cb192149374280926a1aa8b765ebbc90b835c
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=108651
Date: Wed, 08 Feb 2023 19:54:26 GMT
Etag: "63e2f2d5-1d7"
Expires: Fri, 10 Feb 2023 02:05:17 GMT
Last-Modified: Wed, 08 Feb 2023 00:54:45 GMT
Server: ECS (dcb/7F15)
X-Cache: Miss from cloudfront
Via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 8hluc-OvLTmk6JDyxYybwEUfoXMTRVqXS7vjFURi-LK6_gfWQl2SDw==
Age: 4232
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash fb8d92169f6cdb1421896aabc97cfa73
8e844c89adb53f50b7f4f5e716bff2742363c22e
df7c94da2f44020a610b6597b883ad97630071f37da6900cd3f73326aac1dead
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=163836
Date: Wed, 08 Feb 2023 19:54:26 GMT
Etag: "63e3daee-1d7"
Expires: Fri, 10 Feb 2023 17:25:02 GMT
Last-Modified: Wed, 08 Feb 2023 17:25:02 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ACcZi_75hZqV1YBPfPuakA2gHYyLI8jzeNTHejkNjBvmIXWuvPcLKg==
www.bet365.com/olpc/nn/143/0/1/cookieconsentajax?
5.226.179.10200 OK 1.4 kB URL HTTP/1.1 www.bet365.com/olpc/nn/143/0/1/cookieconsentajax?
IP 5.226.179.10:0
ASN #209242 Cloudflare London, LLC
File type Unicode text, UTF-8 text, with very long lines (489), with CRLF, LF line terminators
Hash 41bc7a3cb016ed2e39c03d0cc8be6b42
b18485bc2f7d8bb65434447040e3b6a7125a0509
6b68a474dc9ab3d547c5584d6a1de4360570147384669553d528ee80495e9f57
POST /olpc/nn/143/0/1/cookieconsentajax? HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.bet365.com
Connection: keep-alive
Referer: https://www.bet365.com/olpc/nn/143/0/1/open-account
Cookie: __cf_bm=bdrRDdqI1_gO7KsYb.w4KMLCoLw3hjNeHChO3.ck0lY-1675886065-0-ASDcc3xG7LFW2wceltSdv0dx5NcgxP8ca4AiFyqnR3yvDyBT63TnjnvAPgPQ4jmwXUtdtsZlt8iZWhaiqg+UNuY=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Content-Length: 0
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 19:54:26 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 1362
Connection: keep-alive
Cache-Control: private
Content-Encoding: gzip
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7966eac95d05b4f9-OSL
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 3a9622b66047e190b3cfc6195bdd7fab
bcca83d7c2ffd3cfa85977f482b55652a3bc7125
0d60e19adb8a372154df24d216dab417781072d7adc8ca0a734b8b9084f0a7fa
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3671
Cache-Control: max-age=127562
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 19:54:26 GMT
Etag: "63e33ee5-117"
Expires: Fri, 10 Feb 2023 07:20:28 GMT
Last-Modified: Wed, 08 Feb 2023 06:19:17 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 784c18f4da57c06b59f3b08cfaa55097
c56238a13f6ca2ac5d604107bb7da2bad300ac0d
8f4b9720d0e6aaefca690e910ecc854053de6dd82eb02bc9736ea48df988a42e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1
Cache-Control: max-age=91094
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 19:54:26 GMT
Etag: "63e2bec7-117"
Expires: Thu, 09 Feb 2023 21:12:40 GMT
Last-Modified: Tue, 07 Feb 2023 21:12:39 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 504d4ef5773938e882c697ac19771357
4a595c35d041da0b9c1c4677756e454b8e416f67
cf18390c3d0e8e97e9d7447d2ee96ffacf6da5bf4513ad946d66de50f768b6eb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 19:54:26 GMT
Etag: "63e2e797-118"
Server: ECS (amb/6BA3)
Content-Length: 280
cdn.cookielaw.org/scripttemplates/otSDKStub.js
104.16.148.64200 OK 8.4 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/otSDKStub.js
IP 104.16.148.64:0
File type ASCII text, with very long lines (25592)
Hash e248bb3ed9070ee48f0b5bc674e6a49d
46a6ac373399405df390e910c580cf850dce9886
74fd866eaf62b63cec2b85eadf2245e9302107f4c8fabc25f9c3e5cd49f40a6b
GET /scripttemplates/otSDKStub.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promotions.betsafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:26 GMT
content-type: application/javascript
content-length: 8384
content-encoding: gzip
content-md5: 4ki7PtkHDuSPC1vGdOaknQ==
last-modified: Tue, 07 Feb 2023 03:31:54 GMT
etag: 0x8DB08BBDBD1EB59
x-ms-request-id: 48ca73e2-001e-0134-6752-3b311b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 4550
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7966eaca0d781c02-OSL
X-Firefox-Spdy: h2
es.888casino.com/exclusive-mob/spinson.htm?sr=1853546&mm_id=45577&utm_source=aff&utm_medium=casap&utm_content=100138643&utm_campaign=100138643_1853546_nodescription
54.230.111.96301 Moved Permanently 0 B URL HTTP/2 es.888casino.com/exclusive-mob/spinson.htm?sr=1853546&mm_id=45577&utm_source=aff&utm_medium=casap&utm_content=100138643&utm_campaign=100138643_1853546_nodescription
IP 54.230.111.96:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /exclusive-mob/spinson.htm?sr=1853546&mm_id=45577&utm_source=aff&utm_medium=casap&utm_content=100138643&utm_campaign=100138643_1853546_nodescription HTTP/1.1
Host: es.888casino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
content-length: 0
location: https://es.888casino.com/exclusive-mob/spinson.htm?utm_campaign=100138643_1853546_nodescription&utm_content=100138643&utm_medium=casap&utm_source=aff
date: Wed, 08 Feb 2023 19:54:26 GMT
x-wcs-correlation-id: 3c_1ycWHaGxLm94kuYdSWpfzXMJMv3-RYhkgDRZiDuCuAK_vCQGLlg==
set-cookie: 888TempQueryCookie=sr%3D1853546; max-age=60; domain=888casino.com; path=/; secure; samesite=none; httponly
888Cookie=isftd%3Dfalse%26isreal%3Dfalse%26lang%3Des%26OSR%3D1853546%26RefType%3DNoReferrer%26TestData%3D%7B%22mm_id%22%3A%2245577%22%2C%22orig-lp%22%3A%22https%3A%2F%2Fes.888casino.com%2Fexclusive-mob%2Fspinson.htm%22%2C%22referrer%22%3A%22NULL%22%2C%22utm_campaign%22%3A%22100138643_1853546_nodescription%22%2C%22utm_content%22%3A%22100138643%22%2C%22utm_medium%22%3A%22casap%22%2C%22utm_source%22%3A%22aff%22%7D; max-age=604800; domain=888casino.com; path=/; secure; samesite=none; httponly
888TempContext=testdata%3D%7B%22mm_id%22%3A%2245577%22%2C%22orig-lp%22%3A%22https%3A%2F%2Fes.888casino.com%2Fexclusive-mob%2Fspinson.htm%22%2C%22referrer%22%3A%22NULL%22%2C%22utm_campaign%22%3A%22100138643_1853546_nodescription%22%2C%22utm_content%22%3A%22100138643%22%2C%22utm_medium%22%3A%22casap%22%2C%22utm_source%22%3A%22aff%22%7D; max-age=60; domain=888casino.com; path=/; secure; samesite=none; httponly
apigw-requestid: ACSd4h0cjoEEP8w=
vary: Cookie
x-cache: Miss from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 3c_1ycWHaGxLm94kuYdSWpfzXMJMv3-RYhkgDRZiDuCuAK_vCQGLlg==
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 2dd8d00b2c2a57f14ffe1dc99f840889
05dded87048e9e6a49719297e71a2f286053622c
d7f924b381368cd7f6ca21040d81e8104a65d9290b7f0aee8fb3e2b010d5773a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1915
Cache-Control: max-age=143063
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 19:54:26 GMT
Etag: "63e3824f-117"
Expires: Fri, 10 Feb 2023 11:38:49 GMT
Last-Modified: Wed, 08 Feb 2023 11:06:55 GMT
Server: ECS (amb/6B88)
X-Cache: HIT
Content-Length: 279
cdn.cookielaw.org/consent/2caa4cad-e958-4659-ab40-48264f2a57bf/2caa4cad-e958-4659-ab40-48264f2a57bf.json
104.16.148.64200 OK 3.2 kB URL HTTP/2 cdn.cookielaw.org/consent/2caa4cad-e958-4659-ab40-48264f2a57bf/2caa4cad-e958-4659-ab40-48264f2a57bf.json
IP 104.16.148.64:0
File type JSON data\012- , ASCII text, with very long lines (11678), with no line terminators
Hash 752170a600a8f416176ba289c1bb1091
3c70431a33756a791ff480b02a7fe0c559650880
e3c7edd865421a09750a060b20cc1e8f09324ef44a0cebf18e1db9acc1a304c4
GET /consent/2caa4cad-e958-4659-ab40-48264f2a57bf/2caa4cad-e958-4659-ab40-48264f2a57bf.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://promotions.betsafe.com
Connection: keep-alive
Referer: https://promotions.betsafe.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:26 GMT
content-type: application/x-javascript
content-length: 3157
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: dSFwpgCo9BYXa6KJwbsQkQ==
last-modified: Thu, 11 Aug 2022 10:28:17 GMT
etag: 0x8DA7B84346DFAA7
x-ms-request-id: 10e18dd0-501e-006c-598d-ad7335000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 67888
expires: Thu, 09 Feb 2023 19:54:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7966eaca896bb521-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/f1dbabb7-1b41-46c6-a924-f2073e4e762d/f1dbabb7-1b41-46c6-a924-f2073e4e762d.json
104.16.148.64200 OK 3.2 kB URL HTTP/2 cdn.cookielaw.org/consent/f1dbabb7-1b41-46c6-a924-f2073e4e762d/f1dbabb7-1b41-46c6-a924-f2073e4e762d.json
IP 104.16.148.64:0
File type JSON data\012- , ASCII text, with very long lines (11678), with no line terminators
Hash c0080563e159625b14e4d5a7603bf32f
940244d346abb65e1e672b4d91dcbe4d56142fe8
517b42fe901607872aaf3a5665ebb3c9bb481d327e65196b14a0c922f3b4969c
GET /consent/f1dbabb7-1b41-46c6-a924-f2073e4e762d/f1dbabb7-1b41-46c6-a924-f2073e4e762d.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://in.betsson.com
Connection: keep-alive
Referer: https://in.betsson.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:26 GMT
content-type: application/x-javascript
content-length: 3158
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: wAgFY+FZYlsU5NWnYDvzLw==
last-modified: Thu, 11 Aug 2022 11:03:34 GMT
etag: 0x8DA7B8922758CCF
x-ms-request-id: ca6e301c-801e-0161-6f8d-adda6c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 47810
expires: Thu, 09 Feb 2023 19:54:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7966eaca9975b521-OSL
X-Firefox-Spdy: h2
b-partner.xyz/acf687497
172.67.218.53302 Found 100 kB IP 172.67.218.53:0
Hash f070a4a00947fd92a915c41a7b519d51
ec7758452ef1280a0caca2098fddf28db5895b55
7a956c69c092fc367a857e65c372315d754aff8ad4aa4c14655bd7980813a293
GET /acf687497 HTTP/1.1
Host: b-partner.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 08 Feb 2023 19:54:26 GMT
content-type: text/html; charset=utf-8
location: https://bitslot.io/?stag=148527_63e3fdf298978e419d8c8685&tracking_link=http%3A%2F%2Fb-partner.xyz%2Facf687497
set-cookie: 73d3f1ba062585bce51f=63e3fdf298978e419d8c8685; Expires=Fri, 10 Mar 2023 19:54:26 GMT
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
referrer-policy: strict-origin-when-cross-origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6kG6SSLIVW0EtVZ1P0qZuVkN0k4uiqQ%2FYPDJhjvOeH6QvAMLCi2RlGSSCUM2GPiiA6U1R89xZwb58HS7L%2FGHsnotYKOzLSdGWKmxuqjiCkHSQMEGW9RwhHEmpibzQfqg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7966eac87c97b4eb-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7c6ac380150dc098d59dbb6f2ecd5c44
a8551e549614479d7e3884432415b8d3b230ec32
38927d950c54a01a212c1a960d94bdd065116293fcc525a77a14d0d83ccf0a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "38927D950C54A01A212C1A960D94BDD065116293FCC525A77A14D0D83CCF0A69"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11650
Expires: Wed, 08 Feb 2023 23:08:36 GMT
Date: Wed, 08 Feb 2023 19:54:26 GMT
Connection: keep-alive
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash 08833bec88dc3cd2574c205be1872aa5
f77690801199a1e4dc17a5e9e3a7fdd93e654dac
24be74c5277efe6ac0bc73182f50b17ee01bd48e17aa104b71a7f270a04af1dd
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 08 Feb 2023 19:54:26 GMT
Last-Modified: Wed, 08 Feb 2023 18:57:59 GMT
Server: ECS (nyb/1D2F)
X-Cache: Miss from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: GYikcJa9EpkXoXMZBUb14sm3fMeDuA_y3cF7L8Hb9YPsUBHceJrsFw==
Age: 3387
record.betsson.com/_artCMRK1bjaiQ99F8qzC3mNd7ZgqdRLk/13/
104.18.190.136301 Moved Permanently 279 B URL HTTP/2 record.betsson.com/_artCMRK1bjaiQ99F8qzC3mNd7ZgqdRLk/13/
IP 104.18.190.136:0
Hash 08d827599d6e17ec20d1e0ee75678fee
6a5ef595a553bf56a2d77580abf6c7e52d6c743c
8383c49e6fb801f926fe44ed60d2686b38c0232f47e2b989f7abdecfe6991519
GET /_artCMRK1bjaiQ99F8qzC3mNd7ZgqdRLk/13/ HTTP/1.1
Host: record.betsson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Wed, 08 Feb 2023 19:54:25 GMT
content-type: text/html; charset=utf-8
location: https://in.betsson.com/pe-bono-bienvenida-21/pe/?from=6H1e0GaRehdNdc1QwIELdGNd7ZgqdRLk-AP0846390900&affcode=AP0846390900&utm_medium=MA_Affiliates&utm_source=10687405
cache-control: private, no-cache, must-revalidate, Cache-Control: no-cache
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *
pragma: no-cache
x-powered-by: ZBan
cf-cache-status: BYPASS
set-cookie: VID1=KiwzQFIsIzRSLTM4UC4wYGAKYAo%3D; expires=Thu, 08-Feb-2024 19:54:25 GMT; Max-Age=31536000; path=/; secure; HttpOnly; SameSite=None
ZBan=6H1e0GaRehdNdc1QwIELdGNd7ZgqdRLk; expires=Thu, 08-Feb-2024 19:54:25 GMT; Max-Age=31536000; path=/; domain=.betsson.com; secure; HttpOnly; SameSite=None
PartnerId=6H1e0GaRehdNdc1QwIELdGNd7ZgqdRLk-Z2lnX2NwaF9wb3A%3D; expires=Fri, 10-Mar-2023 19:54:25 GMT; Max-Age=2592000; path=/; SameSite=Lax
marketingproduct=Sportsbook; expires=Fri, 10-Mar-2023 19:54:25 GMT; Max-Age=2592000; path=/; domain=.betsson.com; SameSite=Lax
vary: Accept-Encoding
server: cloudflare
cf-ray: 7966eac6c8f91c06-OSL
X-Firefox-Spdy: h2
cdnroute.bpsgameserver.com/echo-cdn-origin/themes/betsafe/1675687163/js/compressed/echo.min.js
54.230.111.113200 OK 197 kB URL HTTP/2 cdnroute.bpsgameserver.com/echo-cdn-origin/themes/betsafe/1675687163/js/compressed/echo.min.js
IP 54.230.111.113:0
File type Unicode text, UTF-8 text, with very long lines (32000)
Size 197 kB (196857 bytes)
Hash 8fc222aac483b14568cfeddcefcf9856
b80c9bf9fa8ec4d410ac207fd79de33ce35b8447
14dfba22254706c1604c921864b2fbc2862ab0555b6799501a6a111dfbbe205d
GET /echo-cdn-origin/themes/betsafe/1675687163/js/compressed/echo.min.js HTTP/1.1
Host: cdnroute.bpsgameserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promotions.betsafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript
content-length: 196857
date: Mon, 06 Feb 2023 12:49:43 GMT
server: Apache/2.4.52 (Ubuntu)
last-modified: Mon, 06 Feb 2023 12:43:14 GMT
etag: "c29da-5f4075fe08357-br"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Wed, 08 Mar 2023 12:49:43 GMT
content-encoding: br
access-control-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: qnwgyzWkKhUihqccjNJni6bcrQGhicxGIGhEUuN0GLR8pnZarENbaw==
age: 198283
X-Firefox-Spdy: h2
cdnroute.bpsgameserver.com/echo-cdn-origin/themes/betsafe/1675687163/css/compressed/betsafe.min.css
54.230.111.113200 OK 20 kB URL HTTP/2 cdnroute.bpsgameserver.com/echo-cdn-origin/themes/betsafe/1675687163/css/compressed/betsafe.min.css
IP 54.230.111.113:0
File type Unicode text, UTF-8 text, with very long lines (64798), with no line terminators
Hash d4232fc0bc31fa7f977e5f9af38d1cd4
939244f3ee384271d7cb5f45fbac7d67b44a70c3
76fceccd0e81b9e6e57292a32f8ea3693796205a89a4adb71b8fa8dbbdd5258b
GET /echo-cdn-origin/themes/betsafe/1675687163/css/compressed/betsafe.min.css HTTP/1.1
Host: cdnroute.bpsgameserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promotions.betsafe.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
content-length: 20087
date: Mon, 06 Feb 2023 12:49:43 GMT
server: Apache/2.4.52 (Ubuntu)
last-modified: Mon, 06 Feb 2023 12:43:13 GMT
etag: "28fb7-5f4075fd27991-br"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Wed, 08 Mar 2023 12:49:43 GMT
content-encoding: br
access-control-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: pc8cp3c-NqBExdO0ja6oE_Zdso1EJcjcn1ZfcQ7YS5RydvqTAPhrPg==
age: 198283
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 08d827599d6e17ec20d1e0ee75678fee
6a5ef595a553bf56a2d77580abf6c7e52d6c743c
8383c49e6fb801f926fe44ed60d2686b38c0232f47e2b989f7abdecfe6991519
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3634
Cache-Control: max-age=121741
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 19:54:26 GMT
Etag: "63e3284d-117"
Expires: Fri, 10 Feb 2023 05:43:27 GMT
Last-Modified: Wed, 08 Feb 2023 04:42:53 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 279
20media.world/pe?btag=668128_092508971B8E40D1818935D0BBD4ADB8
104.26.2.3302 Found 0 B URL HTTP/2 20media.world/pe?btag=668128_092508971B8E40D1818935D0BBD4ADB8
IP 104.26.2.3:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pe?btag=668128_092508971B8E40D1818935D0BBD4ADB8 HTTP/1.1
Host: 20media.world
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 08 Feb 2023 19:54:26 GMT
content-type: text/html; charset=UTF-8
location: https://20bet.com/pe?btag=668128_092508971B8E40D1818935D0BBD4ADB8
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1zOGjNB4NZT%2FwTDMML18t5KFXJvWdSWQf8tO11vxSLYHr8nr%2FMzrd6Aady2y1vDPOSt4B%2FDJnK%2FV4IOV8w1g%2BJUIXQv1b0H06cimvxWgfZP6r7TLMXUEHClrW0Yo0KQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7966eac91f4c1c16-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 9533e44dd53c70a127740c85699c2c13
7d8bce276b4d9df3f9ded760403c1b52bc8a7a6c
4ba330e5b7acfff9a371b44921641924450542edcf97beae6762d7f79655ee78
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5417
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 19:54:26 GMT
Last-Modified: Wed, 08 Feb 2023 18:24:09 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 280
media.betwarrior.bet/redirect.aspx?pid=9279&bid=3038
23.36.79.16307 Temporary Redirect 0 B URL HTTP/2 media.betwarrior.bet/redirect.aspx?pid=9279&bid=3038
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect.aspx?pid=9279&bid=3038 HTTP/1.1
Host: media.betwarrior.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
content-type: text/html
content-length: 0
location: https://betwarrior.bet/es/sports?register&btag=655952_A8946486889E4214A6D96FC6F271395D
p3p: CP="This is not a P3P policy! It is used to bypass IEs problematic handling of cookies"
x-aspnet-version: 4.0.30319
request-context: appId=cid-v1:83ffbda4-9458-475e-90ec-4427cfb5c3b0
access-control-expose-headers: Request-Context
expires: Wed, 08 Feb 2023 19:54:26 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 08 Feb 2023 19:54:26 GMT
set-cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a9279%2c%22BID%22%3a3038%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675886066580)%5c%2f%22%2c%22CookieTag%22%3a%2230389279451240919C2023281954%22%7d%5d; SameSite=None;; domain=.betwarrior.bet; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; secure
NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%2243228517%7c1%22%7d%5d; domain=.betwarrior.bet; expires=Fri, 08-Feb-3022 19:54:26 GMT; path=/; secure; SameSite=Strict
server-timing: cdn-cache; desc=MISS, edge; dur=20, origin; dur=38, ak_p; desc="465523_388255500_282402792_5784_3169_4_0";dur=1
X-Firefox-Spdy: h2
cdnroute.bpsgameserver.com/echo-cdn-origin/themes/betsson/1675687187/js/compressed/echo.min.js
54.230.111.113200 OK 471 B URL HTTP/2 cdnroute.bpsgameserver.com/echo-cdn-origin/themes/betsson/1675687187/js/compressed/echo.min.js
IP 54.230.111.113:0
Hash ab169aa259149aef7133a17a84522922
f3678f28f157aed611fc6c3cb124beaaba7ef82b
018b63f7d0e68a69e1166ca896ef3be0b557aef050bb4e1a7a99f9be575b6358
GET /echo-cdn-origin/themes/betsson/1675687187/js/compressed/echo.min.js HTTP/1.1
Host: cdnroute.bpsgameserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://in.betsson.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript
content-length: 196857
date: Mon, 06 Feb 2023 13:08:18 GMT
server: Apache/2.4.52 (Ubuntu)
last-modified: Mon, 06 Feb 2023 12:43:25 GMT
etag: "c29da-5f407608c157c-br"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Wed, 08 Mar 2023 13:08:18 GMT
content-encoding: br
access-control-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: Ak5EcAxw2IVDZC91OLYTKV9Oi5bKBb3UvLg1PHRKC5nPDFFQbNQKHw==
age: 197168
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 26c336364ff0384494c52a7e7f0903d9
5be1121093e3096c884cf0744a68113e9df5bf17
3cf7a1f9be5db75ba337cfa78d02b44ee117afb2eec3312132fc77f2fbeb03c1
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 08 Feb 2023 19:54:26 GMT
Last-Modified: Wed, 08 Feb 2023 19:12:21 GMT
Server: ECS (nyb/1D14)
X-Cache: Miss from cloudfront
Via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: IlwfmX6m7oXKJ5jLab1NYSyZTJEa6ShsHALF7WSMFHrYiWEjN7TQEA==
Age: 2525
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/loader/index.es2017.js
52.219.168.157200 OK 78 B URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/loader/index.es2017.js
IP 52.219.168.157:0
Hash 0fdc437b89bf46bca8fc492a05b5cb3c
ee8d395e2b61dbfaeae938b1c1e0bd56cfbf0397
6ac3b56975178012793ab68fbb1431305008beb77881d51ee26ae00a41e0cad7
GET /prod/common/complib/loader/index.es2017.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://promotions.betsafe.com
Connection: keep-alive
Referer: https://promotions.betsafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: uh8QWN/xBZUk0KGBTFcQY74ibEd/HkItGZ0xtwteFaG4NSNoNtVStrDI/BoPN5kqs9va42eofXw=
x-amz-request-id: 8DCFSMXCZNGCH2T3
Date: Wed, 08 Feb 2023 19:54:27 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 08 Feb 2023 11:35:17 GMT
ETag: "0fdc437b89bf46bca8fc492a05b5cb3c"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 78
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/loader/index.es2017.js
52.219.168.157200 OK 78 B URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/loader/index.es2017.js
IP 52.219.168.157:0
Hash 0fdc437b89bf46bca8fc492a05b5cb3c
ee8d395e2b61dbfaeae938b1c1e0bd56cfbf0397
6ac3b56975178012793ab68fbb1431305008beb77881d51ee26ae00a41e0cad7
GET /prod/common/complib/loader/index.es2017.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://in.betsson.com
Connection: keep-alive
Referer: https://in.betsson.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: sM39NAbNGhFdrjcMWFJoQ5KLeFhwbdQQ8mm8/7m5jGDyw4/AyG6YiAf3wjq70AlX84A5tlDur0w=
x-amz-request-id: 8DC7P6RV98KCAFEA
Date: Wed, 08 Feb 2023 19:54:27 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 08 Feb 2023 11:35:17 GMT
ETag: "0fdc437b89bf46bca8fc492a05b5cb3c"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 78
cdn.cookielaw.org/scripttemplates/6.39.0/otBannerSdk.js
104.16.148.64200 OK 90 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.39.0/otBannerSdk.js
IP 104.16.148.64:0
File type ASCII text, with very long lines (65455)
Hash 669fc272b6662bb850d92e9cfedf53a7
e573ee887b0ca01445457cc338f510c559a092f4
e77f0bfe908a1ee2181992bad85721333d192528c2a00aac42077549f7d377ba
GET /scripttemplates/6.39.0/otBannerSdk.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promotions.betsafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:26 GMT
content-type: application/javascript
content-length: 90454
content-encoding: gzip
content-md5: Zp/CcrZmK7hQ2S6c/t9Tpw==
last-modified: Fri, 26 Aug 2022 16:31:04 GMT
etag: 0x8DA87805EB35DE2
x-ms-request-id: 41a1e322-301e-0173-6402-efee70000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 83843
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7966eaccd8c11c02-OSL
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 68273225f74fbf7493f395610d7a73fc
5a8779ef5656aeeba23b365aad60b7901c5dd7fc
c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11116
Expires: Wed, 08 Feb 2023 22:59:42 GMT
Date: Wed, 08 Feb 2023 19:54:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14739
Expires: Thu, 09 Feb 2023 00:00:05 GMT
Date: Wed, 08 Feb 2023 19:54:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14739
Expires: Thu, 09 Feb 2023 00:00:05 GMT
Date: Wed, 08 Feb 2023 19:54:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 68273225f74fbf7493f395610d7a73fc
5a8779ef5656aeeba23b365aad60b7901c5dd7fc
c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11116
Expires: Wed, 08 Feb 2023 22:59:42 GMT
Date: Wed, 08 Feb 2023 19:54:26 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb27041-48b2-474f-b9d5-f88e9e662723.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb27041-48b2-474f-b9d5-f88e9e662723.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d8a3fa4f1ec82d501942f9db3de2cb7d
b91c2aea7f2fb26131c8929b254c5596a1bb25ff
9d246eeab8ba04c775a03fd960c8859934a0accb737e845e89aba40bc573fdaa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb27041-48b2-474f-b9d5-f88e9e662723.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6342
x-amzn-requestid: b2b61a71-5326-4fc6-baba-7baad29cf7c5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_OkbHfDIAMF5AQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c482-5cc4028d01d05305637af317;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:37:06 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: iIQAy6CQSvnvQ79UJ6ifJbs-0kEqUYe8OyCqPb2HSKxoDoLykOyaLg==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:52:28 GMT
age: 79318
etag: "b91c2aea7f2fb26131c8929b254c5596a1bb25ff"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5416f10c-2a0c-46e5-a76b-853a2be4c374.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5416f10c-2a0c-46e5-a76b-853a2be4c374.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fe800d6af728cd622a6192ad5e7dda6a
3a301dd894fc428c7d1863c9d5eaf2652f5c2083
f4923c211ef24e933bbe73bd8d2033d6b6da4a9fa0c9d4699a1041a7bd8bf5a2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5416f10c-2a0c-46e5-a76b-853a2be4c374.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12216
x-amzn-requestid: cc61a63b-35fe-4bfa-ad20-1db3f4165446
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_O7LFrCIAMFoYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c514-2b5e27c62218510b74ea0989;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:39:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Cf13Lp2SFHQ4SSF6_KpC4zx339tZRkMmnmF-OKM_2hbWbIoR3OLJ_g==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:50:49 GMT
age: 79417
etag: "3a301dd894fc428c7d1863c9d5eaf2652f5c2083"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99e021e8-f66e-44fd-94ca-b30d25a8f5b4.jpeg
34.120.237.76200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99e021e8-f66e-44fd-94ca-b30d25a8f5b4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 544181f4aba24fc687a14522dd20f720
2b117270563b8c466ec774acce55271c38f6135b
607c45cc5b4726b92c8507988bbb90ac6a44a3cf22b290030d440266350099a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99e021e8-f66e-44fd-94ca-b30d25a8f5b4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4961
x-amzn-requestid: c3b9db99-726f-4473-a6b6-9cff0dceb949
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fswe1GeRoAMFiAA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63db612b-17b52fcd74e374f1104af709;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 07:07:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: dSxTM3mmYK8cLOy5_x4o-lew1goEgwT4fBHi0pM-HSK_qBC6rDAlzg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 05:47:57 GMT
age: 50789
etag: "2b117270563b8c466ec774acce55271c38f6135b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f728fd1-646b-418a-ab1a-194a7bf42969.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f728fd1-646b-418a-ab1a-194a7bf42969.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c8f31c82179856e39ee5fc43d7f0b685
5b37f807a19ffc80c0b9334e6d24d5bb717496ce
c099c91c6f2125a8a89ee6e9dc0e37e2c2c9914adadb2c8b77795063baa62037
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f728fd1-646b-418a-ab1a-194a7bf42969.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6805
x-amzn-requestid: ef7a879d-25be-42b0-a5c5-df6ad8f1482c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_R2FFv5IAMFZ7g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c9c0-2f8fa7ef41b70de04cfb5ac6;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:59:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JxJrYYY7fMm_DCBcuC4OEdR62HL5VMvJbt_a6TWp4QfqN0qxgFgj-A==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 22:06:50 GMT
etag: "5b37f807a19ffc80c0b9334e6d24d5bb717496ce"
content-type: image/jpeg
age: 78456
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce53bc9b-2505-4efd-9151-fa75ed70138a.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce53bc9b-2505-4efd-9151-fa75ed70138a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash be9f475292d4b5b0502d4381ccdf455b
ecb943b48c822b086ea699d802f8f1bb5ee26651
ed22a5102709dc7a067107a6c0cde26931f7781065de9cee49e22de6b9086e31
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce53bc9b-2505-4efd-9151-fa75ed70138a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8703
x-amzn-requestid: 6456aa7d-11f7-4066-a833-9ac5312c0c24
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_O7JGLTIAMFqdQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c513-0679a75676cdc19251c81bdd;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:39:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oDXgginig1GJvV9QIPvDGVumNDnOrBbrGRZSqyJ_NDRUX4XP5jxHxQ==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 22:03:47 GMT
age: 78639
etag: "ecb943b48c822b086ea699d802f8f1bb5ee26651"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F363ca744-ffa5-4390-9968-412e24620e36.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F363ca744-ffa5-4390-9968-412e24620e36.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5129898de057eb92808f18d120eb7a70
eb0a900843beac5c4ee46686b89b3e8b8d77f80f
7ce3e4f7be652895e93cb8c1a9019b70d699c0a9da013d311395a6440b4e9f96
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F363ca744-ffa5-4390-9968-412e24620e36.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7847
x-amzn-requestid: 60759e32-ac58-4dda-8ea3-fd80413c0deb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_OkkEpMoAMFnGw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c483-61b8715a0da73f4526215649;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:37:07 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NwaKQCUYm5ov0l7aSUXurRhRMvaAOsjf5QOIWCttb8xkUbgrQei-Yw==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:52:18 GMT
age: 79328
etag: "eb0a900843beac5c4ee46686b89b3e8b8d77f80f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
bitslot.io/?stag=148527_63e3fdf298978e419d8c8685&tracking_link=http%3A%2F%2Fb-partner.xyz%2Facf687497
104.18.19.207301 Moved Permanently 4.5 kB URL HTTP/2 bitslot.io/?stag=148527_63e3fdf298978e419d8c8685&tracking_link=http%3A%2F%2Fb-partner.xyz%2Facf687497
IP 104.18.19.207:0
File type gzip compressed data, from Unix\012- data
Hash 90b7568e3edeff4b18556ed196c91027
d6e0d7aad68e71e3c5415ddbd4934b729688ec91
0e05c90fc09c2e28f57a29359dc1b7c3354934f32c6393a54219e6b0f6940709
GET /?stag=148527_63e3fdf298978e419d8c8685&tracking_link=http%3A%2F%2Fb-partner.xyz%2Facf687497 HTTP/1.1
Host: bitslot.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Wed, 08 Feb 2023 19:54:26 GMT
location: https://www.bitslot.io/?stag=148527_63e3fdf298978e419d8c8685&tracking_link=http%3A%2F%2Fb-partner.xyz%2Facf687497
cache-control: max-age=3600
expires: Wed, 08 Feb 2023 20:54:26 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 7966eaca9e7dfab4-OSL
X-Firefox-Spdy: h2
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/polyfills/index.js
52.219.168.157200 OK 1.1 kB URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/polyfills/index.js
IP 52.219.168.157:0
Hash d584dac684dbfccbd3271d63a2c59ed1
81d1179f903109a0d78f99626fea0b7466ce29ea
954f4ed0d5d08ce0bf5307007eaaf3d7c7c062a3d112b147b8710af544a4a844
GET /prod/common/complib/esm/polyfills/index.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://promotions.betsafe.com
Connection: keep-alive
Referer: https://cbt-gecko-storage.s3.eu-central-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: fQXD+87at6CHEZjf7L1BNs0ozfpEyHKRIMgW94+VbJ+GzMCKsPMfy0YrJqwQf337Q6Dqy85xVGw=
x-amz-request-id: 8DC0GFMARWJ1NNYM
Date: Wed, 08 Feb 2023 19:54:27 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 08 Feb 2023 11:35:16 GMT
ETag: "d584dac684dbfccbd3271d63a2c59ed1"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 1143
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash f97e6490fd6863c487aa1af705b9d562
3af78296a343fcb44ffa4fbffbaa5b2ece6f116b
153c06401b46e93866005bcc28616abfb75ee7fb453af4f2b832f30df352a3c0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=145484
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 19:54:26 GMT
Etag: "63e3933e-117"
Expires: Fri, 10 Feb 2023 12:19:10 GMT
Last-Modified: Wed, 08 Feb 2023 12:19:10 GMT
Server: nginx
Content-Length: 279
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/loader.js
52.219.168.157200 OK 4.6 kB URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/loader.js
IP 52.219.168.157:0
File type Java source, ASCII text, with very long lines (3520)
Hash c7eea6ca6442d6ffa3a3f0637ea333a5
6b9119f9d23f5a838e0f0cf2e67e05e255678c60
67e633fae1a97347406da542c026f67f4186ef26d4cd0f696ac2f8dba4f17b35
GET /prod/common/complib/esm/loader.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://promotions.betsafe.com
Connection: keep-alive
Referer: https://cbt-gecko-storage.s3.eu-central-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: umu1lHBn7X9cdm61eN5N/J+zypFJSKLbFKLNBGnWBcxKwJ4UN3P5Zy0sqsLTL6B5I+VarlDCU0M=
x-amz-request-id: 8DCAADTH428YJFQG
Date: Wed, 08 Feb 2023 19:54:27 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 08 Feb 2023 11:35:16 GMT
ETag: "c7eea6ca6442d6ffa3a3f0637ea333a5"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 4562
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/loader.js
52.219.168.157304 Not Modified 0 B URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/loader.js
IP 52.219.168.157:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /prod/common/complib/esm/loader.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://in.betsson.com
Connection: keep-alive
Referer: https://cbt-gecko-storage.s3.eu-central-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
If-None-Match: "c7eea6ca6442d6ffa3a3f0637ea333a5"
HTTP/1.1 304 Not Modified
x-amz-id-2: OYGkku9SgIKVOJ9XANnKsd28HQgAlmfgc5P0IUctzxR3HlBuCapp4ag/bVISH+NfE3552nqiukI=
x-amz-request-id: 4E5P1EFBB5SGP3B4
Date: Wed, 08 Feb 2023 19:54:28 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 08 Feb 2023 11:35:16 GMT
ETag: "c7eea6ca6442d6ffa3a3f0637ea333a5"
Server: AmazonS3
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/polyfills/index.js
52.219.168.157304 Not Modified 0 B URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/polyfills/index.js
IP 52.219.168.157:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /prod/common/complib/esm/polyfills/index.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://in.betsson.com
Connection: keep-alive
Referer: https://cbt-gecko-storage.s3.eu-central-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
If-None-Match: "d584dac684dbfccbd3271d63a2c59ed1"
HTTP/1.1 304 Not Modified
x-amz-id-2: 15ErTqc1M5SoixvSApgRHzX9EWoGmVOQz5EnsEaCPRA1g8zii2vDq0x7dZFCq5FqA2xk9w3q4co=
x-amz-request-id: 4E5GXD9GGD0J3WHX
Date: Wed, 08 Feb 2023 19:54:28 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 08 Feb 2023 11:35:16 GMT
ETag: "d584dac684dbfccbd3271d63a2c59ed1"
Server: AmazonS3
cdnroute.bpsgameserver.com/echo-cdn-origin/themes/betsson/1675687187/css/compressed/betsson.min.css
54.230.111.113200 OK 3.2 kB URL HTTP/2 cdnroute.bpsgameserver.com/echo-cdn-origin/themes/betsson/1675687187/css/compressed/betsson.min.css
IP 54.230.111.113:0
Hash 182eb3971389e740f9e79bf7c34e47a4
a59053271d28066863d651c74be8009d187afad5
643c63996d2ed7cb7308550c6e20a0ce32180bd9b13c29bd6ab5b36ce764e816
GET /echo-cdn-origin/themes/betsson/1675687187/css/compressed/betsson.min.css HTTP/1.1
Host: cdnroute.bpsgameserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://in.betsson.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
date: Mon, 06 Feb 2023 13:08:18 GMT
server: Apache/2.4.52 (Ubuntu)
last-modified: Mon, 06 Feb 2023 12:43:28 GMT
etag: "e44fe-5f40760c38bce-br"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Wed, 08 Mar 2023 13:08:18 GMT
content-encoding: br
access-control-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: uF5zUDFeZBKwsxJtZMtCeoOnu4iy1R_4ei2Jer7MCkv4a0i4GHwRag==
age: 197168
X-Firefox-Spdy: h2
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/app-globals-0f993ce5.js
52.219.168.157200 OK 64 B URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/app-globals-0f993ce5.js
IP 52.219.168.157:0
Hash 8372a2a3eccde49725077fdf00761935
f153edb0551d43830e36a1c5957a3496cc855c0a
cb534efe547cb9d9ba2853d713e575e0ca10c4f154733406372df2bb40514f80
GET /prod/common/complib/esm/app-globals-0f993ce5.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://promotions.betsafe.com
Connection: keep-alive
Referer: https://cbt-gecko-storage.s3.eu-central-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: Edppy4RiVBSqJRcWZOeBr1aZcIHLOFZw/xPxWS3aiMJBoRgOqs2OEAvCnCe7n/Q0DC8QcEAzeew=
x-amz-request-id: 4E5WAQ4F2NKMP7MM
Date: Wed, 08 Feb 2023 19:54:28 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 08 Feb 2023 11:35:16 GMT
ETag: "8372a2a3eccde49725077fdf00761935"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 64
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/app-globals-0f993ce5.js
52.219.168.157200 OK 64 B URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/app-globals-0f993ce5.js
IP 52.219.168.157:0
Hash 8372a2a3eccde49725077fdf00761935
f153edb0551d43830e36a1c5957a3496cc855c0a
cb534efe547cb9d9ba2853d713e575e0ca10c4f154733406372df2bb40514f80
GET /prod/common/complib/esm/app-globals-0f993ce5.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://in.betsson.com
Connection: keep-alive
Referer: https://cbt-gecko-storage.s3.eu-central-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: ObWG+1Xw2iXu5fO7aotF/vamcw7mp+ycvtupS09XI6y+hGxO1r/SHz0wBLVJ0PiL6qdT0te9AvI=
x-amz-request-id: 4E5JV2W8S20BS115
Date: Wed, 08 Feb 2023 19:54:28 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 08 Feb 2023 11:35:16 GMT
ETag: "8372a2a3eccde49725077fdf00761935"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 64
cdn.cookielaw.org/consent/2caa4cad-e958-4659-ab40-48264f2a57bf/c15e6223-6008-45c0-bd61-d5fb7c5b4f73/en-us.json
104.16.148.64200 OK 33 kB URL HTTP/2 cdn.cookielaw.org/consent/2caa4cad-e958-4659-ab40-48264f2a57bf/c15e6223-6008-45c0-bd61-d5fb7c5b4f73/en-us.json
IP 104.16.148.64:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (65516), with no line terminators
Hash c5c47deef535fa3085e76fc339c7d6cd
6d4e5d82150d1422f4db55415c44a01dc0571cb2
f2175def3985a6973e5170f34233c0ad2b1ca2927a1b7a18a7d363109b4a9bff
GET /consent/2caa4cad-e958-4659-ab40-48264f2a57bf/c15e6223-6008-45c0-bd61-d5fb7c5b4f73/en-us.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://promotions.betsafe.com/
Origin: https://promotions.betsafe.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:27 GMT
content-type: application/x-javascript
content-length: 32682
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: xcR97vU1+jCF52/DOcfWzQ==
last-modified: Thu, 11 Aug 2022 10:30:36 GMT
etag: 0x8DA7B8487AC805D
x-ms-request-id: f023086f-e01e-0018-078c-adf573000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 63174
expires: Thu, 09 Feb 2023 19:54:27 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7966ead2ce91b521-OSL
X-Firefox-Spdy: h2
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/index-16642886.js
52.219.168.157200 OK 146 kB URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/index-16642886.js
IP 52.219.168.157:0
File type ASCII text, with very long lines (1725)
Size 146 kB (146307 bytes)
Hash 584a32acd9d14bbc507e27fcd78d7bf3
bcf625451f4a81ac990b29cf6e0bde7c5fd59e63
4d024c8652f7144246c1f676d8d944a11310292eb613ebf03cb7034295b74690
GET /prod/common/complib/esm/index-16642886.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://promotions.betsafe.com
Connection: keep-alive
Referer: https://cbt-gecko-storage.s3.eu-central-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: oPrKxp8sqhzmcrB991PR3XsrhmA/bnPJ6p4V9lAIXEoXuB+9gws8HKF0JuI6XdX0MnE26P6LQwg=
x-amz-request-id: 4E5JNKH5W127BF50
Date: Wed, 08 Feb 2023 19:54:28 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 08 Feb 2023 11:35:16 GMT
ETag: "584a32acd9d14bbc507e27fcd78d7bf3"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 146307
cdn.cookielaw.org/consent/f1dbabb7-1b41-46c6-a924-f2073e4e762d/c15e6223-6008-45c0-bd61-d5fb7c5b4f73/en-us.json
104.16.148.64200 OK 40 kB URL HTTP/2 cdn.cookielaw.org/consent/f1dbabb7-1b41-46c6-a924-f2073e4e762d/c15e6223-6008-45c0-bd61-d5fb7c5b4f73/en-us.json
IP 104.16.148.64:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (65516), with no line terminators
Hash 0dd6140bd20d837258000e83ad0f7ee0
a831acb47c96326d64eda75503813d5e541c36ec
bfad3ccc15bf3d9503aebb428e4f375014ca1a57f2071245574fae7adbb7b6ec
GET /consent/f1dbabb7-1b41-46c6-a924-f2073e4e762d/c15e6223-6008-45c0-bd61-d5fb7c5b4f73/en-us.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://in.betsson.com/
Origin: https://in.betsson.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:27 GMT
content-type: application/x-javascript
content-length: 39904
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: DdYUC9INg3JYAA6DrQ9+4A==
last-modified: Thu, 11 Aug 2022 10:59:59 GMT
etag: 0x8DA7B88A278C412
x-ms-request-id: 3487e052-901e-00f2-1476-ad0a72000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 46849
expires: Thu, 09 Feb 2023 19:54:27 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7966ead33f33b521-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.39.0/assets/otFlat.json
104.16.148.64200 OK 3.0 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.39.0/assets/otFlat.json
IP 104.16.148.64:0
File type JSON data\012- , ASCII text, with very long lines (11118)
Hash 5f1f3dee54d56068cc422c2e182af30c
307e86761b9ecbc0262af0358acfc0e0b95e7ea5
482ea2a9ca60ee6292211fcbfb5ea4b28ef501cd7be34899a43384c8f9a113e8
GET /scripttemplates/6.39.0/assets/otFlat.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://promotions.betsafe.com/
Origin: https://promotions.betsafe.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:27 GMT
content-type: application/json
content-length: 3007
content-encoding: gzip
content-md5: Xx897lTVYGjMQiwuGCrzDA==
last-modified: Fri, 26 Aug 2022 16:30:55 GMT
etag: 0x8DA87805972EF22
x-ms-request-id: 8f790c2d-501e-0045-3284-b90577000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 18724
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7966ead3b817b521-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.39.0/assets/v2/otPcTab.json
104.16.148.64200 OK 14 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.39.0/assets/v2/otPcTab.json
IP 104.16.148.64:0
File type JSON data\012- , ASCII text, with very long lines (51738)
Hash 3e961eb7fdc3f94310047addd52478f7
e653b0a0929096e9aaf34772f5839c6fc3f4da49
221064afa3bffb58aff4d7a036a9f5196c60ff0077e23453ca2aa7a1019be47a
GET /scripttemplates/6.39.0/assets/v2/otPcTab.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://promotions.betsafe.com/
Origin: https://promotions.betsafe.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:27 GMT
content-type: application/json
content-length: 13981
content-encoding: gzip
content-md5: PpYet/3D+UMQBHrd1SR49w==
last-modified: Fri, 26 Aug 2022 16:30:58 GMT
etag: 0x8DA87805B3CBC97
x-ms-request-id: b7bc70ce-401e-00fb-1e84-b910fc000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 38191
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7966ead3b81ab521-OSL
X-Firefox-Spdy: h2
gml-grp.com/C.ashx?btag=a_13943b_1919c_&affid=4168&siteid=13943&adid=1919&c=PU_PE_PA_SB_DT_VOLD_BETANO&AutoR=1
104.21.27.230302 Found 547 B URL HTTP/2 gml-grp.com/C.ashx?btag=a_13943b_1919c_&affid=4168&siteid=13943&adid=1919&c=PU_PE_PA_SB_DT_VOLD_BETANO&AutoR=1
IP 104.21.27.230:0
Hash e3ff108584b875c49d889d74224c72f2
a7ac0655cdc1711ed457ef62b0bff0b51afe0857
4cd42685703429037b5b5eb7db4ec2fe0be7d46071c19ab8266813a3b6cf2b8a
GET /C.ashx?btag=a_13943b_1919c_&affid=4168&siteid=13943&adid=1919&c=PU_PE_PA_SB_DT_VOLD_BETANO&AutoR=1 HTTP/1.1
Host: gml-grp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: CEK=a
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Wed, 08 Feb 2023 19:54:27 GMT
content-type: text/html; charset=utf-8
location: https://promos.betano.com/sportsbook-pe/index.html?btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO&utm_medium=4168&utm_source=3&siteid=13943
cache-control: private
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
x-aspnet-version: 4.0.30319
set-cookie: XYZ=3&1&148&&&&0&1&&0875cc03-1f1d-462c-b1b0-e511c2c758a2&&a_13943b_1919&; expires=Tue, 09-May-2023 19:54:27 GMT; path=/; SameSite=None; Secure
A_1919=a=1919&r=0&fv=0&lv=0&vc=0&fc=20230208&lc=20230208075427&cc=1; expires=Tue, 09-May-2023 19:54:27 GMT; path=/; SameSite=None; Secure
PM_32=c=PU_PE_PA_SB_DT_VOLD_BETANO&s=13943&ad=1919&md=0&pm=32&d=20230208195427&ip=1532635802&r=0&ref=&RedirectParams=btag%3da_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO%26utm_medium%3d4168%26utm_source%3d3%26siteid%3d13943; expires=Tue, 09-May-2023 19:54:27 GMT; path=/; SameSite=None; Secure
CEK=a; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; SameSite=None; Secure
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eA8F7P99mOOhIvJqeMjjZMVW1fimtMlw58Sw%2FwX0Jqp8Z%2FPzAkL2IgTsunZDs2PdneBHcSGx3eYrcq4D51dZIlubMyMtZ%2F5UdKvsnN1Ro8b7l%2FC2A1XfC8XuSkSiZw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7966eacbcf88fab4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
es.888casino.com/exclusive-mob/spinson.htm?utm_campaign=100138643_1853546_nodescription&utm_content=100138643&utm_medium=casap&utm_source=aff
54.230.111.96200 OK 20 kB URL HTTP/2 es.888casino.com/exclusive-mob/spinson.htm?utm_campaign=100138643_1853546_nodescription&utm_content=100138643&utm_medium=casap&utm_source=aff
IP 54.230.111.96:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2873)
Hash 4132de9c781deea8f3b0acf13dd1de44
fa735929efe6ae836273df2195087c9ff64fbb62
7372a99d2d1b46880fd63285244e7e3025a82552a9eb0b3b1a7bc1aa9380c8e7
GET /exclusive-mob/spinson.htm?utm_campaign=100138643_1853546_nodescription&utm_content=100138643&utm_medium=casap&utm_source=aff HTTP/1.1
Host: es.888casino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: 888TempQueryCookie=sr%3D1853546; 888Cookie=isftd%3Dfalse%26isreal%3Dfalse%26lang%3Des%26OSR%3D1853546%26RefType%3DNoReferrer%26TestData%3D%7B%22mm_id%22%3A%2245577%22%2C%22orig-lp%22%3A%22https%3A%2F%2Fes.888casino.com%2Fexclusive-mob%2Fspinson.htm%22%2C%22referrer%22%3A%22NULL%22%2C%22utm_campaign%22%3A%22100138643_1853546_nodescription%22%2C%22utm_content%22%3A%22100138643%22%2C%22utm_medium%22%3A%22casap%22%2C%22utm_source%22%3A%22aff%22%7D; 888TempContext=testdata%3D%7B%22mm_id%22%3A%2245577%22%2C%22orig-lp%22%3A%22https%3A%2F%2Fes.888casino.com%2Fexclusive-mob%2Fspinson.htm%22%2C%22referrer%22%3A%22NULL%22%2C%22utm_campaign%22%3A%22100138643_1853546_nodescription%22%2C%22utm_content%22%3A%22100138643%22%2C%22utm_medium%22%3A%22casap%22%2C%22utm_source%22%3A%22aff%22%7D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
date: Wed, 08 Feb 2023 19:54:26 GMT
x-wcs-correlation-id: yftI-h06tMjytL5DSGqVHLQERZxsXK3m8mOTkK5GW1RpetlfguTVkw==
srv: 44303334
p3p: CP="Read our privacy policy at http://www.888.com/security-and-privacy/privacy-policy.htm"
content-security-policy: frame-ancestors 'self' *.genesazrak.com *.888casinoarabic.net *.arabiccasino888.com *.casinoarabic888.com *.casinoarabic-888.com *.888-casinoarabic.com *.888casino-arabic.com http://wrapper.safe-installation.com/ https://wrapper.safe-installation.com/ http://localhost:* https://localhost:* *.bingosys.net *.secured-igaming-usa.com *.888.pt *.sisportsbook.com *.888poker.de *.888slots.de *.safe-iplay.com *.safe-installation.com *.payoutscentral.com *.triple8holdem.com *.888.com *.secured-qa.com *.secured-registration.com *.secureutils.com *.images4us.com *.onlinepersonalmessages.com *.888sport.com *.888sport.es *.888sport.it *.888sport.dk *.888sport.ro *.888sport.se *.888sport.us *.888sport.de *.777.com *.personalinfoonline.com *.888.de *.888casino.com *.888poker.com *.888casino.dk *.888poker.dk *.888.de *.888casino.ro *.888poker.ro *.888casino.se *.888poker.se *.888casino.es *.888poker.es *.888casino.it *.888poker.it *.888casino.us *.888poker.us *.888ladies.com *.888.pt cmsp *.harrahscasino.com *.wsop.com *.delawarepark.com *.doverdowns.com *.harringtongamingonline.com *.secured-igaming-services.com *.secured-igaming-usa.com *.igaming-services.com *.888.ca *.888casino.ca *.888poker.ca *.888sport.ca *.888.nl *.888casino.nl *.888poker.nl *.888sport.nl *.ar-888-casino.com *.888casino-ar.com *.ar888-casino.com *.arab888-casino.com *.casinoelarab-888.com *.alarab-888casino.com *.casinoalarab-888.com *.888casino-alarab.com *.888casino-arabian.com *.arabian-888casino.com *.888-casino-arabian.com *.888-casino-alarab.com *.ballysdover.com *.888casino-uae.com *.playat888-games.com *.888casino-game.com *.online-arabic-casino.net *.tripleeight.live *.playat888online.com *.888games-uae.com *.triple-eight-games.com *.play-casino-now.com *.888slots-uae.com *.888-uae.com *.mrgreen.de *.mrgreen.se *.mrgreen.com *.mrgreen.dk
set-cookie: 888TempQueryCookie=; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=888casino.com; path=/; secure; samesite=none; httponly
888TempContext=; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=888casino.com; path=/; secure; samesite=none; httponly
888Cookie=isftd%3Dfalse%26isreal%3Dfalse%26lang%3Des%26OSR%3D1853546%26RefType%3DNoReferrer%26TestData%3D%7B%22mm_id%22%3A%2245577%22%2C%22orig-lp%22%3A%22https%3A%2F%2Fes.888casino.com%2Fexclusive-mob%2Fspinson.htm%22%2C%22referrer%22%3A%22NULL%22%2C%22utm_campaign%22%3A%22100138643_1853546_nodescription%22%2C%22utm_content%22%3A%22100138643%22%2C%22utm_medium%22%3A%22casap%22%2C%22utm_source%22%3A%22aff%22%7D; max-age=604800; domain=888casino.com; path=/; secure; samesite=none; httponly
apigw-requestid: ACSd7iB8DoEEPKg=
content-encoding: br
vary: Accept-Encoding,User-Agent,Cookie
x-cache: Miss from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: yftI-h06tMjytL5DSGqVHLQERZxsXK3m8mOTkK5GW1RpetlfguTVkw==
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 0d583e567d19a7fa5a3a09cbc11850dd
82656a757821fcd0ba8756ea9056a4e04cb2b03b
08c998a7baf32998b5e510758e321a0a2e25c5f8dac2cf6b50c5c21327c29bb2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5290
Cache-Control: max-age=107189
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 19:54:27 GMT
Etag: "63e2e8fe-117"
Expires: Fri, 10 Feb 2023 01:40:56 GMT
Last-Modified: Wed, 08 Feb 2023 00:12:46 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 1e98440aaa046b8574d86c500ce276ac
095ba13947e54331a3dd5014cac8360069a8646d
f80dfdcbbad8a53ead126f63c159e09eca535fe56250cdff2e6328b861e14459
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5544
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 19:54:27 GMT
Last-Modified: Wed, 08 Feb 2023 18:22:03 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 278
20bet.com/custom-assets/mainloader.gif
104.22.34.208200 OK 304 kB URL HTTP/2 20bet.com/custom-assets/mainloader.gif
IP 104.22.34.208:0
File type GIF image data, version 89a, 400 x 400\012- data
Size 304 kB (303571 bytes)
Hash 323a31f4cce6bcd83935bbccf0f665da
7ba68a35bec60487944b77a69f91c88556f7017a
9e9d2f310ed323e2649b69229dd077995f5c2217c12bc07c66ea3f17dbc1dafa
GET /custom-assets/mainloader.gif HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_092508971B8E40D1818935D0BBD4ADB8
Cookie: btag=668128_092508971B8E40D1818935D0BBD4ADB8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:27 GMT
content-type: image/gif
content-length: 303571
cf-ray: 7966ead40dc72d89-ARN
accept-ranges: bytes
age: 6774
cache-control: public, max-age=14400
last-modified: Wed, 08 Feb 2023 18:01:33 GMT
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers: Content-Length,Content-Range
server: cloudflare
X-Firefox-Spdy: h2
20bet.com/app/main.ec1fae44db88d4f7.css
104.22.34.208200 OK 62 kB URL HTTP/2 20bet.com/app/main.ec1fae44db88d4f7.css
IP 104.22.34.208:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 7294634df469c705f64dc16de07bd649
a6abb0deeb94706ea67dd260ab8b76ffb40b7ffe
b71f97aabf8f29e158ce293f487807428175b105ff29897de2dd41d4b4285148
GET /app/main.ec1fae44db88d4f7.css HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_092508971B8E40D1818935D0BBD4ADB8
Cookie: btag=668128_092508971B8E40D1818935D0BBD4ADB8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:27 GMT
content-type: text/css
cf-ray: 7966ead3dda22d89-ARN
etag: W/"63e25502-5e6fb"
last-modified: Tue, 07 Feb 2023 13:41:22 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/cbt-footer.entry.js
52.219.168.157200 OK 17 kB URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/cbt-footer.entry.js
IP 52.219.168.157:0
File type C++ source text\012- Java source, ASCII text, with very long lines (4872)
Hash c793f5c845cd8a203cd53cdc876dbef7
86001a869523a2f883fa56aba4eaba7088375b96
e574778f9e6eab1be68ff191d22394ec908453dd6262ec07d5dda5f9b410f839
GET /prod/common/complib/esm/cbt-footer.entry.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://promotions.betsafe.com
Connection: keep-alive
Referer: https://cbt-gecko-storage.s3.eu-central-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: piJOz+DdjBikoVMYm9bFk5Kr8VxdSDdJpem5pwbVgpnkKIV30yGH4547ZKb/bsFVlLSUj2OXHmg=
x-amz-request-id: 4E5WZWZPYT7X1JF5
Date: Wed, 08 Feb 2023 19:54:28 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 08 Feb 2023 11:35:16 GMT
ETag: "c793f5c845cd8a203cd53cdc876dbef7"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 16749
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 8e517bae81ab39c4f55057b13ef81aaf
2d86cb59ceb3d5f1ac33957bb8234101562415cb
b931c0516820b16e0b300f130a94a02e877bfcbb89f24f5cc317fa219ecda5e8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5657
Cache-Control: max-age=135284
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 19:54:27 GMT
Etag: "63e3554e-116"
Expires: Fri, 10 Feb 2023 09:29:11 GMT
Last-Modified: Wed, 08 Feb 2023 07:54:54 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 278
betwarrior.bet/es/sports?register&btag=655952_A8946486889E4214A6D96FC6F271395D
104.18.21.114301 Moved Permanently 685 B URL HTTP/2 betwarrior.bet/es/sports?register&btag=655952_A8946486889E4214A6D96FC6F271395D
IP 104.18.21.114:0
Hash 5e9d70ff94dca5c593c21c35c008ae89
bbd37024ff5918b5cd8a5388a4f2a7244af5395e
b38c63c540b64909c2aa1cb7f9b8f086647d726b2336245b82c5b224ed4b90f0
GET /es/sports?register&btag=655952_A8946486889E4214A6D96FC6F271395D HTTP/1.1
Host: betwarrior.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a9279%2c%22BID%22%3a3038%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675886066580)%5c%2f%22%2c%22CookieTag%22%3a%2230389279451240919C2023281954%22%7d%5d
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Wed, 08 Feb 2023 19:54:27 GMT
content-type: text/html; charset=utf-8
location: /region_not_supported?register&btag=655952_A8946486889E4214A6D96FC6F271395D
cf-ray: 7966eace487a0b45-OSL
cache-control: no-cache, private, no-store, must-revalidate, max-stale=0, post-check=0, pre-check=0
vary: Accept, Accept-Encoding
cf-cache-status: DYNAMIC
x-powered-by: Express
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
20bet.com/app/styles.09f1d7fd866591ab.css
104.22.34.208200 OK 40 kB URL HTTP/2 20bet.com/app/styles.09f1d7fd866591ab.css
IP 104.22.34.208:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 98396c83dd95c365ce23b048ad67911e
7fc87717710a1f7ad50017f7466c745d811c7139
3e1c64f9797a625ded831799cae21dac40927e3e24bfae397b02f39aa4dbe9fb
GET /app/styles.09f1d7fd866591ab.css HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_092508971B8E40D1818935D0BBD4ADB8
Cookie: btag=668128_092508971B8E40D1818935D0BBD4ADB8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:27 GMT
content-type: text/css
cf-ray: 7966ead3dd9e2d89-ARN
etag: W/"63e2551b-23c8a"
last-modified: Tue, 07 Feb 2023 13:41:47 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/cbt-footer.entry.js
52.219.168.157304 Not Modified 0 B URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/cbt-footer.entry.js
IP 52.219.168.157:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /prod/common/complib/esm/cbt-footer.entry.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://in.betsson.com
Connection: keep-alive
Referer: https://cbt-gecko-storage.s3.eu-central-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
If-None-Match: "c793f5c845cd8a203cd53cdc876dbef7"
HTTP/1.1 304 Not Modified
x-amz-id-2: ICkxka5jk95XiuUqNgm7OovQ0sPpVJpqG3PecvFaZcZpaw2EOs/zkiOAkjhaGB5vkziZDSX6wMU=
x-amz-request-id: 2DHJKQJF3N3QTM7W
Date: Wed, 08 Feb 2023 19:54:29 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 08 Feb 2023 11:35:16 GMT
ETag: "c793f5c845cd8a203cd53cdc876dbef7"
Server: AmazonS3
cdn.cookielaw.org/scripttemplates/6.39.0/assets/otCommonStyles.css
104.16.148.64200 OK 19 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.39.0/assets/otCommonStyles.css
IP 104.16.148.64:0
Hash 477d8f1967361a59f807b1f2d6fde9d9
f12ff8d8b8ad1e1ddaa6418a11d154d1d9603a69
7f9a63ba6ee6c9caa82ea746c96f154e204cdbf7e0f122c0ad64bd905cbd435c
GET /scripttemplates/6.39.0/assets/otCommonStyles.css HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://promotions.betsafe.com/
Origin: https://promotions.betsafe.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:27 GMT
content-type: text/css
content-md5: B55i3ZY9miZIaUrwjufy0w==
last-modified: Fri, 26 Aug 2022 16:31:09 GMT
x-ms-request-id: 4b5446dd-b01e-0162-6b84-b9d96b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 18724
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7966ead3b81cb521-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promotions.betsafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Wed, 08 Feb 2023 19:44:05 GMT
expires: Wed, 08 Feb 2023 21:44:05 GMT
cache-control: public, max-age=7200
age: 623
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/const-6eaf0a26.js
52.219.168.157200 OK 145 B URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/const-6eaf0a26.js
IP 52.219.168.157:0
Hash 5a3e80c9c806e8b73d6e3023558b6973
f9e09308c0aab87ee21495928b0799c8e0e37577
ac3c500f15515186e6ba3ba3bec6a918b13f8623abd6aee8c61a018d5b93bf44
GET /prod/common/complib/esm/const-6eaf0a26.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://promotions.betsafe.com
Connection: keep-alive
Referer: https://cbt-gecko-storage.s3.eu-central-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 4iZSHOeY11LD2GD7VAex0lbkURyNoq5Hy80s1jvuzwoLFEMmNm2qiFpqpVKXMN3Cv2npcxk/zPY=
x-amz-request-id: 2DHQQPM16STYC34Z
Date: Wed, 08 Feb 2023 19:54:29 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 08 Feb 2023 11:35:16 GMT
ETag: "5a3e80c9c806e8b73d6e3023558b6973"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 145
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/inheritQueryParams-34165318.js
52.219.168.157200 OK 2.7 kB URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/inheritQueryParams-34165318.js
IP 52.219.168.157:0
File type C++ source text\012- Java source, ASCII text
Hash 549e1e838b861fb0ef54f6cf614836bd
73269b0bdfa4c49ab371d76b4bbc7979e9dfe8a0
3d07cc1632f1a6bf09ebff1a148a8edcde5f2547b37ee881e7fef5d3909a1f58
GET /prod/common/complib/esm/inheritQueryParams-34165318.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://promotions.betsafe.com
Connection: keep-alive
Referer: https://cbt-gecko-storage.s3.eu-central-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: YUchTzkAqs7H9vTCxtzFH/DQ5YFFiB9xjd+pWoVnIFLJ+dRRXgrU+zRhAY/lv6GdBTIC48EdCkE=
x-amz-request-id: 2DHMRFD3J2FMXVX4
Date: Wed, 08 Feb 2023 19:54:29 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 08 Feb 2023 11:35:16 GMT
ETag: "549e1e838b861fb0ef54f6cf614836bd"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 2668
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/buildQueryParams-c973808d.js
52.219.168.157200 OK 697 B URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/buildQueryParams-c973808d.js
IP 52.219.168.157:0
Hash 67f7419202508dd74f0b825c7aef2016
3033673d54259f9b6d1a4c0d05807c4708621f99
a6f8bde448949f7d7d97d1f45b007456e7e1bad138a043494a02406abcae83d6
GET /prod/common/complib/esm/buildQueryParams-c973808d.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://promotions.betsafe.com
Connection: keep-alive
Referer: https://cbt-gecko-storage.s3.eu-central-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: P00hHNFFyoEudJtx7iEJc6udcFLz9B9c9ifa18cobrkqQKOm65WwkyiaYkfEY5O0OgljigRTWs0=
x-amz-request-id: 2DHG1SZJEK21DY9K
Date: Wed, 08 Feb 2023 19:54:29 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 08 Feb 2023 11:35:16 GMT
ETag: "67f7419202508dd74f0b825c7aef2016"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 697
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/mergeQueryParams-88a359e0.js
52.219.168.157200 OK 624 B URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/mergeQueryParams-88a359e0.js
IP 52.219.168.157:0
Hash 9aea40615e4e048e215b623517189c3c
50a9728b7bd0abd51b76ab11f30b31c9bb9c694b
8289f147df083108e3e860c31962a0771e6bb25e8cf39d5d4b39aeb25b02b534
GET /prod/common/complib/esm/mergeQueryParams-88a359e0.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://promotions.betsafe.com
Connection: keep-alive
Referer: https://cbt-gecko-storage.s3.eu-central-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: dME20fjvuIszITUmAS2NCdleN6+kU/0Vp6MVeOsz7aFHQ+5JWtF++HVQzuTFvYpA/noz96eTm+w=
x-amz-request-id: 2DHN1929FGKETZZ6
Date: Wed, 08 Feb 2023 19:54:29 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 08 Feb 2023 11:35:16 GMT
ETag: "9aea40615e4e048e215b623517189c3c"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 624
cdn.seon.io/js/v4/agent.js
54.230.111.35200 OK 111 kB URL HTTP/2 cdn.seon.io/js/v4/agent.js
IP 54.230.111.35:0
Size 111 kB (111169 bytes)
Hash 6f76ee69d3db0a684b931bf51506a815
b7fbb7a05bfa2b3e8dd04a479cb728bc99ecc920
9aa51da0627d7fff95819ba9adf772c74b893c1f84cc60f58909502a1081fad9
GET /js/v4/agent.js HTTP/1.1
Host: cdn.seon.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 20 Dec 2022 16:00:08 GMT
x-amz-version-id: oBwuMALhSWNlluJ4Z9BGO_.GELHIAD3H
server: AmazonS3
content-encoding: gzip
date: Wed, 08 Feb 2023 18:58:40 GMT
cache-control: max-age=3600
etag: W/"c34c3067f651e0fea2609171ab7bfec0"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: HhqmLoH5MdkZB8X8gm-ccrZJHRr-SqTUnHFVwWbCTV-H9or4uFJ2Zg==
age: 3358
X-Firefox-Spdy: h2
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/mergeQueryParams-88a359e0.js
52.219.168.157200 OK 624 B URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/mergeQueryParams-88a359e0.js
IP 52.219.168.157:0
Hash 9aea40615e4e048e215b623517189c3c
50a9728b7bd0abd51b76ab11f30b31c9bb9c694b
8289f147df083108e3e860c31962a0771e6bb25e8cf39d5d4b39aeb25b02b534
GET /prod/common/complib/esm/mergeQueryParams-88a359e0.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://in.betsson.com
Connection: keep-alive
Referer: https://cbt-gecko-storage.s3.eu-central-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: IYba72Txnp+S0CuiDYjvxCi3+m7O5YGp8xKuk9puKcYx2badL0OeOvzA7o5DyC4bHTZCcgSdUiA=
x-amz-request-id: 2DHW8EEJRXM5RCQC
Date: Wed, 08 Feb 2023 19:54:29 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 08 Feb 2023 11:35:16 GMT
ETag: "9aea40615e4e048e215b623517189c3c"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 624
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/inheritQueryParams-34165318.js
52.219.168.157200 OK 2.7 kB URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/inheritQueryParams-34165318.js
IP 52.219.168.157:0
File type C++ source text\012- Java source, ASCII text
Hash 549e1e838b861fb0ef54f6cf614836bd
73269b0bdfa4c49ab371d76b4bbc7979e9dfe8a0
3d07cc1632f1a6bf09ebff1a148a8edcde5f2547b37ee881e7fef5d3909a1f58
GET /prod/common/complib/esm/inheritQueryParams-34165318.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://in.betsson.com
Connection: keep-alive
Referer: https://cbt-gecko-storage.s3.eu-central-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: qou7o6kSTaSfvK4iGlm7IeNm3zFNt41eUhmMKCz5iV8lFOwwHZxKHkH98nVIJVkBWSeBserq6Dw=
x-amz-request-id: 2DHS1ZPQ829SVAKC
Date: Wed, 08 Feb 2023 19:54:29 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 08 Feb 2023 11:35:16 GMT
ETag: "549e1e838b861fb0ef54f6cf614836bd"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 2668
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/buildQueryParams-c973808d.js
52.219.168.157200 OK 697 B URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/buildQueryParams-c973808d.js
IP 52.219.168.157:0
Hash 67f7419202508dd74f0b825c7aef2016
3033673d54259f9b6d1a4c0d05807c4708621f99
a6f8bde448949f7d7d97d1f45b007456e7e1bad138a043494a02406abcae83d6
GET /prod/common/complib/esm/buildQueryParams-c973808d.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://in.betsson.com
Connection: keep-alive
Referer: https://cbt-gecko-storage.s3.eu-central-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: K3ziTCH+qnlz9bsA/H6GaunAttVbsGuS0cPqCW43R8Qnf/bKueQPCOXXX7/uhPR/3TNePeJp9JY=
x-amz-request-id: 2DHM4GY605J6PRQ6
Date: Wed, 08 Feb 2023 19:54:29 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 08 Feb 2023 11:35:16 GMT
ETag: "67f7419202508dd74f0b825c7aef2016"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 697
promos.betano.com/sportsbook-pe/d-egr.png
104.17.85.89200 OK 6.9 kB URL HTTP/2 promos.betano.com/sportsbook-pe/d-egr.png
IP 104.17.85.89:0
File type PNG image data, 322 x 54, 8-bit/color RGBA, non-interlaced\012- data
Hash 372d6124fc8bb486597a2a4ae5fef88e
5acc7aa2a83d856df9d47243f4d0ea1ded183c52
28856ce9836e98c8421b6dd5ba5373307efc325ed49a74103dae34f190e1b7a0
GET /sportsbook-pe/d-egr.png HTTP/1.1
Host: promos.betano.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promos.betano.com/sportsbook-pe/index.html?btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO&utm_medium=4168&utm_source=3&siteid=13943
Cookie: btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO; __cf_bm=aFcwsBvAxwEBLTJqknIH4xg3yMI4GTnj7hcUa.rU6mI-1675886068-0-AUmbrE0H59Wvwu3Vujn9ku7AolqgQ1ETx6e7PvVTCra5l9Zi0+pj2fN6/AG6s7WTjt6c0vui8nhudLdV0TSAp7E=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:28 GMT
content-type: image/png
content-length: 6896
cache-control: public, max-age=900
content-md5: Ny1hJPyLtIZZeipK5f74jg==
last-modified: Fri, 08 Apr 2022 09:53:53 GMT
etag: "0x8DA1945B0987999"
x-ms-request-id: 71a3957d-101e-0032-04f5-3b1275000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
vary: Accept-Encoding
cf-cache-status: REVALIDATED
expires: Wed, 08 Feb 2023 20:09:28 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 7966ead68a3fb4ed-OSL
X-Firefox-Spdy: h2
promos.betano.com/sportsbook-pe/d-disclaimer.png
104.17.85.89200 OK 3.7 kB URL HTTP/2 promos.betano.com/sportsbook-pe/d-disclaimer.png
IP 104.17.85.89:0
File type PNG image data, 226 x 42, 8-bit/color RGBA, non-interlaced\012- data
Hash 207b119e7af77460d25af1b3b8323aab
8bae3fe16324d63041ecd3b3be251bd4b812bfd9
47ed298f345a072ff8a73296f23fc8e11e3e5c1c09d022bac12e7d8e2fa13696
GET /sportsbook-pe/d-disclaimer.png HTTP/1.1
Host: promos.betano.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promos.betano.com/sportsbook-pe/index.html?btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO&utm_medium=4168&utm_source=3&siteid=13943
Cookie: btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO; __cf_bm=aFcwsBvAxwEBLTJqknIH4xg3yMI4GTnj7hcUa.rU6mI-1675886068-0-AUmbrE0H59Wvwu3Vujn9ku7AolqgQ1ETx6e7PvVTCra5l9Zi0+pj2fN6/AG6s7WTjt6c0vui8nhudLdV0TSAp7E=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:28 GMT
content-type: image/png
content-length: 3742
cache-control: public, max-age=900
content-md5: IHsRnnr3dGDSWvGzuDI6qw==
last-modified: Fri, 08 Apr 2022 09:53:53 GMT
etag: "0x8DA1945B091EADE"
x-ms-request-id: e3a396be-e01e-0054-02f5-3b5d55000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
vary: Accept-Encoding
cf-cache-status: REVALIDATED
expires: Wed, 08 Feb 2023 20:09:28 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 7966ead68a43b4ed-OSL
X-Firefox-Spdy: h2
promos.betano.com/sportsbook-pe/t-egr.png
104.17.85.89200 OK 4.1 kB URL HTTP/2 promos.betano.com/sportsbook-pe/t-egr.png
IP 104.17.85.89:0
File type PNG image data, 220 x 38, 8-bit/color RGBA, non-interlaced\012- data
Hash e4afa4bdd856a3c400ea66aab974bf59
82d73c8d9c17d69fc91470ec441a477c58ab643e
f01125c1caf80ef3d470db700582039adbb2db3ceb3dbd052486750902c12b4f
GET /sportsbook-pe/t-egr.png HTTP/1.1
Host: promos.betano.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promos.betano.com/sportsbook-pe/index.html?btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO&utm_medium=4168&utm_source=3&siteid=13943
Cookie: btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO; __cf_bm=aFcwsBvAxwEBLTJqknIH4xg3yMI4GTnj7hcUa.rU6mI-1675886068-0-AUmbrE0H59Wvwu3Vujn9ku7AolqgQ1ETx6e7PvVTCra5l9Zi0+pj2fN6/AG6s7WTjt6c0vui8nhudLdV0TSAp7E=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:28 GMT
content-type: image/png
content-length: 4142
cache-control: public, max-age=900
content-md5: 5K+kvdhWo8QA6maquXS/WQ==
last-modified: Fri, 08 Apr 2022 09:53:54 GMT
etag: "0x8DA1945B1966334"
x-ms-request-id: 9252206a-201e-0016-47f5-3be4d5000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
vary: Accept-Encoding
cf-cache-status: REVALIDATED
expires: Wed, 08 Feb 2023 20:09:28 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 7966ead68a4ab4ed-OSL
X-Firefox-Spdy: h2
promos.betano.com/sportsbook-pe/m-logo.png
104.17.85.89200 OK 18 kB URL HTTP/2 promos.betano.com/sportsbook-pe/m-logo.png
IP 104.17.85.89:0
File type PNG image data, 267 x 119, 8-bit/color RGBA, non-interlaced\012- data
Hash 3195b08b2d71621bd192827a014d3cc9
0bb198cf2cedb2598842c7d3306ffacd710609fb
47c8fbb5cc4fd8b73d029d23450344f8852fcb91ed0aca2900b3471e8797a8e2
GET /sportsbook-pe/m-logo.png HTTP/1.1
Host: promos.betano.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promos.betano.com/sportsbook-pe/index.html?btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO&utm_medium=4168&utm_source=3&siteid=13943
Cookie: btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO; __cf_bm=aFcwsBvAxwEBLTJqknIH4xg3yMI4GTnj7hcUa.rU6mI-1675886068-0-AUmbrE0H59Wvwu3Vujn9ku7AolqgQ1ETx6e7PvVTCra5l9Zi0+pj2fN6/AG6s7WTjt6c0vui8nhudLdV0TSAp7E=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:28 GMT
content-type: image/png
content-length: 18208
cache-control: public, max-age=900
content-md5: MZWwiy1xYhvRkoJ6AU08yQ==
last-modified: Fri, 08 Apr 2022 09:53:54 GMT
etag: "0x8DA1945B16373DC"
x-ms-request-id: d73709ae-301e-0047-6ff5-3b7959000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
vary: Accept-Encoding
cf-cache-status: REVALIDATED
expires: Wed, 08 Feb 2023 20:09:28 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 7966ead68a56b4ed-OSL
X-Firefox-Spdy: h2
promos.betano.com/sportsbook-pe/m-egr.png
104.17.85.89200 OK 4.5 kB URL HTTP/2 promos.betano.com/sportsbook-pe/m-egr.png
IP 104.17.85.89:0
File type PNG image data, 227 x 41, 8-bit/color RGBA, non-interlaced\012- data
Hash ef8a58ecf598bfeb3306bb6a4682af3f
d8d43a3a55364446010c1899bb6ee91c152115b1
c0b3aa59867168813e62ac836bff6d3187e2983c7560b2cd6d2c60973819d981
GET /sportsbook-pe/m-egr.png HTTP/1.1
Host: promos.betano.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promos.betano.com/sportsbook-pe/index.html?btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO&utm_medium=4168&utm_source=3&siteid=13943
Cookie: btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO; __cf_bm=aFcwsBvAxwEBLTJqknIH4xg3yMI4GTnj7hcUa.rU6mI-1675886068-0-AUmbrE0H59Wvwu3Vujn9ku7AolqgQ1ETx6e7PvVTCra5l9Zi0+pj2fN6/AG6s7WTjt6c0vui8nhudLdV0TSAp7E=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:28 GMT
content-type: image/png
content-length: 4450
cache-control: public, max-age=900
content-md5: 74pY7PWYv+szBrtqRoKvPw==
last-modified: Fri, 08 Apr 2022 09:53:54 GMT
etag: "0x8DA1945B1560856"
x-ms-request-id: 4457c38f-d01e-004f-4df5-3b6356000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
vary: Accept-Encoding
cf-cache-status: REVALIDATED
expires: Wed, 08 Feb 2023 20:09:28 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 7966ead68a58b4ed-OSL
X-Firefox-Spdy: h2
promos.betano.com/sportsbook-pe/index.html?btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO&utm_medium=4168&utm_source=3&siteid=13943
104.17.85.89200 OK 24 kB URL HTTP/2 promos.betano.com/sportsbook-pe/index.html?btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO&utm_medium=4168&utm_source=3&siteid=13943
IP 104.17.85.89:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1595)
Hash 06c789544b05a84821128138dc75e693
86122f9b7bec1593fdb4169baf880a5f49e27f24
cda4fe7e63032dd3bc6b73f9729ab15dea04fca4cb66d08b0c7c091664c2321e
GET /sportsbook-pe/index.html?btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO&utm_medium=4168&utm_source=3&siteid=13943 HTTP/1.1
Host: promos.betano.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:28 GMT
content-type: text/html; charset=utf-8
cache-control: public, max-age=900, immutable
content-md5: /a1O1GTKRv7FirGh5ttbLw==
last-modified: Fri, 08 Apr 2022 09:53:52 GMT
x-ms-request-id: a8c637e0-b01e-0049-4af7-3b50e9000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cf-cache-status: DYNAMIC
vary: Accept-Encoding
set-cookie: btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO;max-age=2592000; domain=.betano.com;path=/;secure;samesite=none;httponly
__cf_bm=aFcwsBvAxwEBLTJqknIH4xg3yMI4GTnj7hcUa.rU6mI-1675886068-0-AUmbrE0H59Wvwu3Vujn9ku7AolqgQ1ETx6e7PvVTCra5l9Zi0+pj2fN6/AG6s7WTjt6c0vui8nhudLdV0TSAp7E=; path=/; expires=Wed, 08-Feb-23 20:24:28 GMT; domain=.betano.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7966ead46f32b4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2
promos.betano.com/sportsbook-pe/m-disclaimer.png
104.17.85.89200 OK 2.5 kB URL HTTP/2 promos.betano.com/sportsbook-pe/m-disclaimer.png
IP 104.17.85.89:0
File type PNG image data, 162 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash e9d0559e626a9ab738c43601a08f4f25
c60ef8c44800d82059cb821b561024833351f4c9
0108b4f1f3be8097b9eae2bcd140f7684b7797ad04a4b68c993180eb82b73617
GET /sportsbook-pe/m-disclaimer.png HTTP/1.1
Host: promos.betano.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promos.betano.com/sportsbook-pe/index.html?btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO&utm_medium=4168&utm_source=3&siteid=13943
Cookie: btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO; __cf_bm=aFcwsBvAxwEBLTJqknIH4xg3yMI4GTnj7hcUa.rU6mI-1675886068-0-AUmbrE0H59Wvwu3Vujn9ku7AolqgQ1ETx6e7PvVTCra5l9Zi0+pj2fN6/AG6s7WTjt6c0vui8nhudLdV0TSAp7E=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:28 GMT
content-type: image/png
content-length: 2469
cache-control: public, max-age=900
content-md5: 6dBVnmJqmrc4xDYBoI9PJQ==
last-modified: Fri, 08 Apr 2022 09:53:54 GMT
etag: "0x8DA1945B14EB66A"
x-ms-request-id: 69af40a9-b01e-002b-3bf5-3b92ce000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
vary: Accept-Encoding
cf-cache-status: REVALIDATED
expires: Wed, 08 Feb 2023 20:09:28 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 7966ead68a59b4ed-OSL
X-Firefox-Spdy: h2
promos.betano.com/sportsbook-pe/d-logo.png
104.17.85.89200 OK 39 kB URL HTTP/2 promos.betano.com/sportsbook-pe/d-logo.png
IP 104.17.85.89:0
File type PNG image data, 670 x 395, 8-bit/color RGBA, non-interlaced\012- data
Hash 484f62aeca1b1eefe27508e9d0f76de1
39dc53c8d9fee7511ec779a862d45e7607517c48
5f0a7a23224ab516543dacd2e872a2bea1ce7c96135bea3264e7d7a87dfe788d
GET /sportsbook-pe/d-logo.png HTTP/1.1
Host: promos.betano.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promos.betano.com/sportsbook-pe/index.html?btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO&utm_medium=4168&utm_source=3&siteid=13943
Cookie: btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO; __cf_bm=aFcwsBvAxwEBLTJqknIH4xg3yMI4GTnj7hcUa.rU6mI-1675886068-0-AUmbrE0H59Wvwu3Vujn9ku7AolqgQ1ETx6e7PvVTCra5l9Zi0+pj2fN6/AG6s7WTjt6c0vui8nhudLdV0TSAp7E=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:28 GMT
content-type: image/png
content-length: 38743
cache-control: public, max-age=900
content-md5: SE9irsobHu/idQjp0Pdt4Q==
last-modified: Fri, 08 Apr 2022 09:53:53 GMT
etag: "0x8DA1945B09F566B"
x-ms-request-id: 8e5af3f4-e01e-0036-3cf5-3b9f72000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
vary: Accept-Encoding
cf-cache-status: REVALIDATED
expires: Wed, 08 Feb 2023 20:09:28 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 7966ead68a46b4ed-OSL
X-Firefox-Spdy: h2
code.jquery.com/jquery-3.4.1.min.js
69.16.175.42200 OK 31 kB URL HTTP/2 code.jquery.com/jquery-3.4.1.min.js
IP 69.16.175.42:0
File type ASCII text, with very long lines (65451)
Hash 9abb42735168ac9e960b770179b642aa
11475bf8c7244af7a820108b7762e7a3f95aa52c
df53c09a6546b3d23dc0b2d0d92c39808c5663a75f4bf1f8d035fd11b7c81243
GET /jquery-3.4.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promos.betano.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:28 GMT
content-encoding: gzip
content-length: 30638
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-15851"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1675886068.dop066.sk1.t,1675886068.cds018.sk1.hn,1675886068.cds201.sk1.c
X-Firefox-Spdy: h2
20bet.com/api/translation/get?locale=es_PE
104.22.34.208200 OK 42 kB URL HTTP/2 20bet.com/api/translation/get?locale=es_PE
IP 104.22.34.208:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash e0624571bafbe19918317677c5f5db7b
3ae10cbea11f1734082b27cb99310d1db980102e
f07c8a47eb350527452fb0b292e4cb31ddb08ad649925c33aa49c6841ccd8530
GET /api/translation/get?locale=es_PE HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_092508971B8E40D1818935D0BBD4ADB8
Cookie: btag=668128_092508971B8E40D1818935D0BBD4ADB8
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:28 GMT
content-type: application/json
cf-ray: 7966ead5af0f2d89-ARN
cache-control: no-cache, private
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers: Content-Length,Content-Range
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
cdn.cookielaw.org/logos/static/poweredBy_ot_logo.svg
104.16.148.64200 OK 3.1 kB URL HTTP/2 cdn.cookielaw.org/logos/static/poweredBy_ot_logo.svg
IP 104.16.148.64:0
Hash 695ae8c9d8e3536268d9b1eda2e96642
c60226ff8c4ceb9d3769593e8ace372168207eb4
2e77a7592700e51f82ab946cd37b7a31176a6653c1398ace0e64ad1f15730293
GET /logos/static/poweredBy_ot_logo.svg HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promotions.betsafe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:27 GMT
content-type: image/svg+xml
content-md5: LpuayL42jB78xRllx0vkOw==
last-modified: Mon, 06 Feb 2023 21:14:12 GMT
x-ms-request-id: 0036d51e-001e-0159-107f-3a9b35000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 78341
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7966ead4ea591c02-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
promos.betano.com/sportsbook-pe/t-android.png
104.17.85.89200 OK 1.3 kB URL HTTP/2 promos.betano.com/sportsbook-pe/t-android.png
IP 104.17.85.89:0
File type PNG image data, 18 x 23, 8-bit/color RGBA, non-interlaced\012- data
Hash dcb361d29a10a9093977797d7709556d
2ebda4766ffc9a43a263ae557769acb74290e98f
ec5e9ef6f31345217c5fb70ca6fa42110ef992b8162ea9213edab897e3163f91
GET /sportsbook-pe/t-android.png HTTP/1.1
Host: promos.betano.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promos.betano.com/sportsbook-pe/index.html?btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO&utm_medium=4168&utm_source=3&siteid=13943
Cookie: btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO; __cf_bm=aFcwsBvAxwEBLTJqknIH4xg3yMI4GTnj7hcUa.rU6mI-1675886068-0-AUmbrE0H59Wvwu3Vujn9ku7AolqgQ1ETx6e7PvVTCra5l9Zi0+pj2fN6/AG6s7WTjt6c0vui8nhudLdV0TSAp7E=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:28 GMT
content-type: image/png
content-length: 1349
cache-control: public, max-age=900
content-md5: 3LNh0poQqQk5d3l9dwlVbQ==
last-modified: Fri, 08 Apr 2022 09:53:54 GMT
etag: "0x8DA1945B16A29A6"
x-ms-request-id: bdda3fba-001e-0001-1df5-3b4dde000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
vary: Accept-Encoding
cf-cache-status: REVALIDATED
expires: Wed, 08 Feb 2023 20:09:28 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 7966ead68a54b4ed-OSL
X-Firefox-Spdy: h2
20bet.com/app/vendor.7f46fa567274024c.esm.js
104.22.34.208200 OK 555 kB URL HTTP/2 20bet.com/app/vendor.7f46fa567274024c.esm.js
IP 104.22.34.208:0
File type ASCII text, with very long lines (65451)
Size 555 kB (555348 bytes)
Hash d68058fde293a91444331b030ed1bf3f
c4d918b273158fb780bf8e8f2d1f3965398602ec
0a08a1e60e0d29c6ecd50a13e998529eeaf608f6aa8ac280f2d384ea0d4280d2
GET /app/vendor.7f46fa567274024c.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_092508971B8E40D1818935D0BBD4ADB8
Cookie: btag=668128_092508971B8E40D1818935D0BBD4ADB8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:28 GMT
content-type: application/javascript
cf-ray: 7966ead6f84b2d89-ARN
etag: W/"63e25509-251c87"
last-modified: Tue, 07 Feb 2023 13:41:29 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
casino.cur.a8r.games/public/sg.js
104.18.12.198200 OK 3.3 kB URL HTTP/2 casino.cur.a8r.games/public/sg.js
IP 104.18.12.198:0
Hash acbf7f84eb8238e4d2d046c5fb1e254f
00afc906c26a37622d5cf368c011123a00335a74
28e08a21b943feaaa877ee4539d6f888f7ed9fceceb7ece76d017afa3727fee7
GET /public/sg.js HTTP/1.1
Host: casino.cur.a8r.games
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:27 GMT
content-type: text/javascript; charset=utf-8
strict-transport-security: max-age=15724800; includeSubDomains
last-modified: Wed, 08 Feb 2023 19:31:04 GMT
cf-cache-status: HIT
age: 1101
expires: Wed, 08 Feb 2023 23:54:27 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
server: cloudflare
cf-ray: 7966ead478000b31-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
geolocation.onetrust.com/cookieconsentpub/v1/geo/location
104.18.26.85200 OK 51 kB URL HTTP/2 geolocation.onetrust.com/cookieconsentpub/v1/geo/location
IP 104.18.26.85:0
Hash a1bbd2ce41a5c6cd4fa4b3354e0af50c
3a48427fb57ecacfd9a1ff6cbf952637f1a0b13f
0d0820db94fd22614311f97d10766b14cc3e6082c38f0af5603b453f8a3af63f
GET /cookieconsentpub/v1/geo/location HTTP/1.1
Host: geolocation.onetrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://in.betsson.com
Connection: keep-alive
Referer: https://in.betsson.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:26 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, OPTIONS
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7966eacb8a52b4f3-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
20bet.com/app/6485.c5e5798c269cfd52.esm.js
104.22.34.208200 OK 451 B URL HTTP/2 20bet.com/app/6485.c5e5798c269cfd52.esm.js
IP 104.22.34.208:0
File type ASCII text, with very long lines (782), with no line terminators
Hash 3a1adaeb287d99ab643a52037fa75387
9367a54eb0b80631ce39267b99d2ba1f1711f6d4
97651e2989ec4f6641677a81210bc1d7fbc91517e43230b5d124c6eac355e93c
GET /app/6485.c5e5798c269cfd52.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_092508971B8E40D1818935D0BBD4ADB8
Cookie: btag=668128_092508971B8E40D1818935D0BBD4ADB8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:29 GMT
content-type: application/javascript
cf-ray: 7966eadcce532d89-ARN
etag: W/"63e25508-30e"
last-modified: Tue, 07 Feb 2023 13:41:28 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/polyfills.5e91295279033faf.esm.js
104.22.34.208200 OK 36 kB URL HTTP/2 20bet.com/app/polyfills.5e91295279033faf.esm.js
IP 104.22.34.208:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash a84867a0b938632932c1eaa1ffb7cbae
245828fb4e352ac7854861525dfd58e77f80f252
596b3e5b12b08b95f5c5fc6aa9a7b9e274db880260d31cb6a20fc5332d7ad084
GET /app/polyfills.5e91295279033faf.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_092508971B8E40D1818935D0BBD4ADB8
Cookie: btag=668128_092508971B8E40D1818935D0BBD4ADB8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:28 GMT
content-type: application/javascript
cf-ray: 7966ead6f8472d89-ARN
etag: W/"63e25514-17687"
last-modified: Tue, 07 Feb 2023 13:41:40 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/pe?btag=668128_092508971B8E40D1818935D0BBD4ADB8
104.22.34.208200 OK 11 kB URL HTTP/2 20bet.com/pe?btag=668128_092508971B8E40D1818935D0BBD4ADB8
IP 104.22.34.208:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (6130), with CRLF, LF line terminators
Hash 68e32fa87d7bee30cd1be6395fa09ef7
2dd409d2fc2c1bfd5c2159976b634b655d60aca9
da6fe79944e532e0fdcb99024663c8cc4568bdafbe511b64f4a87e85f2e32f32
GET /pe?btag=668128_092508971B8E40D1818935D0BBD4ADB8 HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:27 GMT
content-type: text/html; charset=UTF-8
cf-ray: 7966eaca1cb82d89-ARN
cache-control: max-age=0, must-revalidate, private
expires: Wed, 08 Feb 2023 19:54:27 GMT
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers: Content-Length,Content-Range
set-cookie: btag=668128_092508971B8E40D1818935D0BBD4ADB8; expires=Wed, 08-Mar-2023 00:00:00 GMT; Max-Age=2347533; path=/; secure; samesite=none
preferred-language=pe; path=/; secure; httponly; samesite=lax
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com/apg-seal.js
54.230.111.60200 OK 11 kB URL HTTP/2 c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com/apg-seal.js
IP 54.230.111.60:0
Hash d935abaf2a3b43f4e0d0253d9b69812c
8733aec1070f8871eec65437610e8462c3b0811c
0325f1981640c159db4e3ea753649fb7acd62854974dc567ba7cef432639a7b3
Analyzer Verdict Alert fortinet Malware
GET /apg-seal.js HTTP/1.1
Host: c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
date: Wed, 08 Feb 2023 19:51:55 GMT
x-powered-by: Express
cache-control: max-age=300
etag: W/"e04-RLN3AvkERatesALRl495XbeOfU4"
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7966e71b2fe835f7-FRA
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: l3GQo0BbBm_MjzQ7nErzDfKdqxMYepdCDh-Q5luK-qWGpQs_IuBLuA==
age: 153
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 84889b914548f7820766f27a40699cfa
bc674cdb5819759b5ecd5aabfde47f56127f5d89
e2a69fe4edd028d00a8a744b62ef51dada2aff144da0cd9813efc887a11f70a8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 19:54:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
platform.20bet.com/api/v2/configurations
104.22.34.208204 No Content 0 B URL HTTP/2 platform.20bet.com/api/v2/configurations
IP 104.22.34.208:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v2/configurations HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Wed, 08 Feb 2023 19:54:29 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7966eaddef652d89-ARN
X-Firefox-Spdy: h2
platform.20bet.com/api/market-descriptions/get-all-outcomes/es
172.67.15.187204 No Content 0 B URL HTTP/2 platform.20bet.com/api/market-descriptions/get-all-outcomes/es
IP 172.67.15.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/market-descriptions/get-all-outcomes/es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 204 No Content
date: Wed, 08 Feb 2023 19:54:29 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7966eaddfb11b512-OSL
X-Firefox-Spdy: h2
ws-cdn001.akamaized.net/7693683943e78a298c36d469e68b47d8/widgetloader
95.101.10.10200 OK 60 kB URL HTTP/2 ws-cdn001.akamaized.net/7693683943e78a298c36d469e68b47d8/widgetloader
IP 95.101.10.10:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (41453)
Hash 658c48dcaeedf16789a05c63e438b00d
58bf50a6b2785017562fa2c2b2a183dcabbfd733
654f352fd4a6b5b299a4ccbc19820df90a051ac63438d1fcf2a4ee753846d0e5
GET /7693683943e78a298c36d469e68b47d8/widgetloader HTTP/1.1
Host: ws-cdn001.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-security-policy: frame-ancestors 'self' https://st-cdn001.akamaized.net https://ls-cdn001.akamaized.net
cache-control: public, max-age=120, stale-while-revalidate=60, immutable
etag: "79731f678b6aff8fedd89b9970d84573-5258c6fb681a18cbaebfde27b5bd2c9f"
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
x-ing-v: 2
content-length: 60142
date: Wed, 08 Feb 2023 19:54:29 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
platform.20bet.com/api/market-group-sorting/get-all-ordered
104.22.34.208204 No Content 0 B URL HTTP/2 platform.20bet.com/api/market-group-sorting/get-all-ordered
IP 104.22.34.208:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/market-group-sorting/get-all-ordered HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Wed, 08 Feb 2023 19:54:29 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7966eaddff832d89-ARN
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 25ecb3d6c6e1406185c79fe831d32ce9
fb9c3401a218bb783e0c754561b229e1816afd92
3bed5dcd17029622495ebd69793c614db6eaefbd623a15b55ef5c0e373d11a8d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2041
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 19:54:29 GMT
Last-Modified: Wed, 08 Feb 2023 19:20:28 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
platform.20bet.com/api/data/get-countries
172.67.15.187204 No Content 0 B URL HTTP/2 platform.20bet.com/api/data/get-countries
IP 172.67.15.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/data/get-countries HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Wed, 08 Feb 2023 19:54:29 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7966eaddfb18b512-OSL
X-Firefox-Spdy: h2
platform.20bet.com/api/v2/ip-data
104.22.34.208204 No Content 0 B URL HTTP/2 platform.20bet.com/api/v2/ip-data
IP 104.22.34.208:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v2/ip-data HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Wed, 08 Feb 2023 19:54:29 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7966eaddff872d89-ARN
X-Firefox-Spdy: h2
platform.20bet.com/api/data/provinces
172.67.15.187204 No Content 0 B URL HTTP/2 platform.20bet.com/api/data/provinces
IP 172.67.15.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/data/provinces HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Wed, 08 Feb 2023 19:54:29 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7966eade0b3eb512-OSL
X-Firefox-Spdy: h2
platform.20bet.com/api/tournaments/bet-tournament/get-active?fields%5B%5D=tournaments&fields%5B%5D=leaderboards&fields%5B%5D=authorizedUsers
172.67.15.187204 No Content 0 B URL HTTP/2 platform.20bet.com/api/tournaments/bet-tournament/get-active?fields%5B%5D=tournaments&fields%5B%5D=leaderboards&fields%5B%5D=authorizedUsers
IP 172.67.15.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/tournaments/bet-tournament/get-active?fields%5B%5D=tournaments&fields%5B%5D=leaderboards&fields%5B%5D=authorizedUsers HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Wed, 08 Feb 2023 19:54:29 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7966eade2b5db512-OSL
X-Firefox-Spdy: h2
aswpsdkus.com/notify/v1/ua-sdk.min.js
34.160.158.95200 OK 43 kB URL HTTP/2 aswpsdkus.com/notify/v1/ua-sdk.min.js
IP 34.160.158.95:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 1cda07a2bbc55dcaf684954e7d897c40
ad0c471c1cd361f7a4ef8deb825aa63eb1b01029
8e12a7991dda2a0e6cbd6ba7423a98ea668c2f47a83f7b70180d21b1f3893270
GET /notify/v1/ua-sdk.min.js HTTP/1.1
Host: aswpsdkus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtRRC2zHrVegfFxsF7SnIOP2WAw2Vv15T4C0uUzk0mYSoedRYzfQiVifs6_1CXYgYkXsJA1R7liJjPu3Lz23vYKWw
x-goog-generation: 1673371354401478
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 42942
content-encoding: gzip
x-goog-hash: crc32c=CzJWog==, md5=HNoHorvFXcr2hJVOfYl8QA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 42942
server: UploadServer
date: Wed, 08 Feb 2023 19:54:09 GMT
expires: Wed, 08 Feb 2023 19:59:09 GMT
cache-control: public,max-age=300,no-transform
age: 20
last-modified: Tue, 10 Jan 2023 17:22:34 GMT
etag: "1cda07a2bbc55dcaf684954e7d897c40"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
platform.20bet.com/api/v2/data/rates
172.67.15.187204 No Content 69 kB URL HTTP/2 platform.20bet.com/api/v2/data/rates
IP 172.67.15.187:0
Hash 6fceb8cb64c8ee8f6413cab794d80127
8078b2e71dd3605724125f97c0cfd6e26fd90e11
4a80114222344bce1e724c44d14eafc0ee5d9f26fc6e804b34adb3e9ec274d7a
OPTIONS /api/v2/data/rates HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Wed, 08 Feb 2023 19:54:29 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7966eade2b5fb512-OSL
X-Firefox-Spdy: h2
platform.20bet.com/api/data/get-currencies
172.67.15.187204 No Content 0 B URL HTTP/2 platform.20bet.com/api/data/get-currencies
IP 172.67.15.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/data/get-currencies HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Wed, 08 Feb 2023 19:54:29 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7966eade1b45b512-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 25ecb3d6c6e1406185c79fe831d32ce9
fb9c3401a218bb783e0c754561b229e1816afd92
3bed5dcd17029622495ebd69793c614db6eaefbd623a15b55ef5c0e373d11a8d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2041
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 19:54:29 GMT
Last-Modified: Wed, 08 Feb 2023 19:20:28 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
tm.ads.sportradar.com/dist/tag-manager.js?id=STM-AAAACT
95.101.10.99200 OK 31 kB URL HTTP/2 tm.ads.sportradar.com/dist/tag-manager.js?id=STM-AAAACT
IP 95.101.10.99:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
Hash c107cbeae2be0d4f1d241b9fd672457d
a017d05ff36c646bfa755b60c25e0f67f723de6d
3aac2aa9d355d442078788e431cc0f96baa3f893389c422659323d7602c0261d
GET /dist/tag-manager.js?id=STM-AAAACT HTTP/1.1
Host: tm.ads.sportradar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
apigw-requestid: ACLfEiAyDoEEMXA=
vary: Accept-Encoding
content-encoding: gzip
content-length: 31257
date: Wed, 08 Feb 2023 19:54:29 GMT
cache-control: max-age=900, public
x-n: S
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 44fc0cb48c26edb9ce36736707b9182a
62de7faa3e8171c0d38a2e03a604d2545a3ede7f
9e511ad6ed9e7c5f28f573422e3891d2f4e5c2ba5107f7eda808c529a95931a2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 19:54:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
platform.20bet.com/api/data/provinces
104.22.34.208200 OK 911 B URL HTTP/2 platform.20bet.com/api/data/provinces
IP 104.22.34.208:0
File type JSON data\012- , ASCII text, with very long lines (1894), with no line terminators
Hash ba69a02d8fbf6feff78ba5d58c137b66
5e9c4b31909d71ba99aa6311c20eadbbbc32eb18
22b5d10096b95eee6b3a5e15ab1236f6ac2f4f79b9d2e7122592bc9f8a83f00d
GET /api/data/provinces HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:29 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7966eadee8432d89-ARN
content-encoding: br
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash dd1f85cc598419df61e254e53f9ec1ef
f86c0ee563f5b7a01e1d40b566f2bc184a32380f
c06f52b233c835b03292f39cb847507a03bb971066bf91341b58a580244398c0
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promos.betano.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
origin-agent-cluster: ?0
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: v8vz1ZvV8kfyYRSYBqPHarkqKG9IbtrVMlMRMmw0AtLCk0mwUqJIecNvtdOS21Zhexj5SNmO4iCZcNVPkIBqfQ==
content-length: 27843
x-fb-trip-id: 1904183273
date: Wed, 08 Feb 2023 19:54:29 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5baa4ff1f002b8101e63c9687241470f
a1aba91b6a98cba18a81f8c0f89e85fb2d3f4021
de9946151fd621854cf850dcd9687db03f3971c01a3cb13bf9eb5a1a62a54032
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4855
Cache-Control: max-age=157855
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 19:54:29 GMT
Etag: "63e3b09d-1d7"
Expires: Fri, 10 Feb 2023 15:45:24 GMT
Last-Modified: Wed, 08 Feb 2023 14:24:29 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
platform.20bet.com/api/data/get-countries
104.22.34.208200 OK 4.8 kB URL HTTP/2 platform.20bet.com/api/data/get-countries
IP 104.22.34.208:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 4aea86b6cf922f54c5b1fbf16eb29cde
49b2df94c50e9a1c30a91fb869b5cc7315dde621
2b757a6d8ac7f04fb6159a148eaac4767834acb09826e2c4203188bbc4aac900
GET /api/data/get-countries HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:29 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7966eaded8392d89-ARN
content-encoding: br
X-Firefox-Spdy: h2
tracker.ads.sportradar.com/dist/tracker.js
95.101.10.99200 OK 12 kB URL HTTP/2 tracker.ads.sportradar.com/dist/tracker.js
IP 95.101.10.99:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (34755)
Hash b34b13d85152f71b7fd15289c78c0583
0bb20191b022bbd0e75f2bbce7f6332886079c2c
7a3fc57394ecc6745eb6e18745aa1e5e5d05cb2237c4d0d754ab43d33863a84c
GET /dist/tracker.js HTTP/1.1
Host: tracker.ads.sportradar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 20 Jan 2021 14:51:32 GMT
accept-ranges: bytes
server: AmazonS3
etag: "5ff82a1c468a89919e9437d33e0402cb"
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: lilTPTQwiFh0VJWkVzsVkg926mhW28TGKyOiSnBsA59oGt4a5kFU3Q==
vary: Accept-Encoding
content-encoding: gzip
content-length: 11553
date: Wed, 08 Feb 2023 19:54:29 GMT
cache-control: max-age=900, public
X-Firefox-Spdy: h2
platform.20bet.com/api/match-statuses/get-all/es
104.22.34.208200 OK 2.2 kB URL HTTP/2 platform.20bet.com/api/match-statuses/get-all/es
IP 104.22.34.208:0
File type JSON data\012- , ASCII text, with very long lines (6725), with no line terminators
Hash 79c1790c1e59b4af2b5136238c322608
281d49e14289d0265e52708beaacec525a293e98
4d813a56b22652829f36dbf613b8d9eafdaaf80ab7612d39a7a79d38f0f3f2a0
GET /api/match-statuses/get-all/es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:29 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7966eadea81a2d89-ARN
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/tournaments/bet-tournament/get-active?fields%5B%5D=tournaments&fields%5B%5D=leaderboards&fields%5B%5D=authorizedUsers
104.22.34.208200 OK 14 kB URL HTTP/2 platform.20bet.com/api/tournaments/bet-tournament/get-active?fields%5B%5D=tournaments&fields%5B%5D=leaderboards&fields%5B%5D=authorizedUsers
IP 104.22.34.208:0
File type JSON data\012- , ASCII text, with very long lines (915), with no line terminators
Hash ed532ff99061328df3267e849da6fb65
193eec4812b8325d3657ab881fee21977eedd635
a108b72f62d5eb95ac0606c168e4b0124e4dd3908e004e6ba77d10f8501dba4e
GET /api/tournaments/bet-tournament/get-active?fields%5B%5D=tournaments&fields%5B%5D=leaderboards&fields%5B%5D=authorizedUsers HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:29 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7966eadee8462d89-ARN
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/market-descriptions/get-all-outcomes/es
104.22.34.208200 OK 13 kB URL HTTP/2 platform.20bet.com/api/market-descriptions/get-all-outcomes/es
IP 104.22.34.208:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash a455f602972db1791a227c5dec06b899
e274ce0e713690161350ce4590b259b2462b91c7
f61ea414035b30e9cd0fd691ab355bd4acb8318cd84bc133b0a0edf2ccba6be0
GET /api/market-descriptions/get-all-outcomes/es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:29 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7966eadeb82d2d89-ARN
content-encoding: br
X-Firefox-Spdy: h2
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash 3226e8f2e4d2148106fcc1e5e66eb4e4
e6fda7ac07fb7aa38c787175c1b252579e94a88d
8959550553f5a755aa7364a751e60bba59a5dacfbea0f8a031a3051caf644c1a
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "8959550553F5A755AA7364A751E60BBA59A5DACFBEA0F8A031A3051CAF644C1A"
Last-Modified: Wed, 08 Feb 2023 18:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3555
Expires: Wed, 08 Feb 2023 20:53:45 GMT
Date: Wed, 08 Feb 2023 19:54:30 GMT
Connection: keep-alive
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash 3226e8f2e4d2148106fcc1e5e66eb4e4
e6fda7ac07fb7aa38c787175c1b252579e94a88d
8959550553f5a755aa7364a751e60bba59a5dacfbea0f8a031a3051caf644c1a
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "8959550553F5A755AA7364A751E60BBA59A5DACFBEA0F8A031A3051CAF644C1A"
Last-Modified: Wed, 08 Feb 2023 18:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3600
Expires: Wed, 08 Feb 2023 20:54:30 GMT
Date: Wed, 08 Feb 2023 19:54:30 GMT
Connection: keep-alive
a.sportradarserving.com/pixel?type=js&aid=1121&id=1859
18.193.49.80302 Moved Temporarily 0 B URL HTTP/1.1 a.sportradarserving.com/pixel?type=js&aid=1121&id=1859
IP 18.193.49.80:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel?type=js&aid=1121&id=1859 HTTP/1.1
Host: a.sportradarserving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Wed, 08 Feb 2023 19:54:30 GMT
Location: https://a.sportradarserving.com/ul_cb/pixel?type=js&aid=1121&id=1859
Set-Cookie: zuuid=fb6b2b85-a2ef-4043-be2f-eb4958c975c0; path=/; expires=Thu, 08-Feb-2024 19:54:30 GMT; domain=sportradarserving.com; samesite=none; secure
c=1675886070; path=/; expires=Thu, 08-Feb-2024 19:54:30 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1675886070; path=/; expires=Thu, 08-Feb-2024 19:54:30 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 0
Connection: keep-alive
platform.20bet.com/api/v2/ip-data
104.22.34.208200 OK 394 B URL HTTP/2 platform.20bet.com/api/v2/ip-data
IP 104.22.34.208:0
File type JSON data\012- , ASCII text, with very long lines (734), with no line terminators
Hash 28fb555657e7faf94f7c39bfb6d01fba
858880b66103bd0fae7622eb58fc3ce799a68408
117ceeb220ddda8083cd4d707b351a6349619606114c11e4f95b58270e00c071
GET /api/v2/ip-data HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:29 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7966eadee8422d89-ARN
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/9117.59a1f36812423e88.esm.js
104.22.34.208200 OK 972 B URL HTTP/2 20bet.com/app/9117.59a1f36812423e88.esm.js
IP 104.22.34.208:0
File type ASCII text, with very long lines (1998), with no line terminators
Hash b3f9f9770eb11001093d7bdce6451237
103ab4f284579b7365083027a38569ba2ccb43f8
46af00d9de090c1fab725e0004d7e84d2b24e054fef79f960d79a0bc841f06d7
GET /app/9117.59a1f36812423e88.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_092508971B8E40D1818935D0BBD4ADB8
Cookie: btag=668128_092508971B8E40D1818935D0BBD4ADB8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:30 GMT
content-type: application/javascript
cf-ray: 7966eae22ada2d89-ARN
etag: W/"63e2551f-7ce"
last-modified: Tue, 07 Feb 2023 13:41:51 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/v2/data/rates
104.22.34.208200 OK 2.6 kB URL HTTP/2 platform.20bet.com/api/v2/data/rates
IP 104.22.34.208:0
File type JSON data\012- , ASCII text, with very long lines (8363), with no line terminators
Hash 8608aa2b7423df382409d5fabe5c8828
83af9019ab3cee6fa352ddd274c5714ce15fabf3
f41864e1e1be6ddf85376672d58da3daa2e352cf20b0e42fb3ca5aec89c69462
GET /api/v2/data/rates HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:29 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7966eadf085b2d89-ARN
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/9320.d7618dd1fd8f0311.esm.js
104.22.34.208200 OK 2.4 kB URL HTTP/2 20bet.com/app/9320.d7618dd1fd8f0311.esm.js
IP 104.22.34.208:0
File type ASCII text, with very long lines (4208), with no line terminators
Hash 72bc64e2248329be818046369f0ad103
23f00d4df39a21190bded66a70765ed2f613351f
0ac3f37a64951fec2ff8164f678c283601c2d34ff62f05784e2ebbff70e3e62d
GET /app/9320.d7618dd1fd8f0311.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_092508971B8E40D1818935D0BBD4ADB8
Cookie: btag=668128_092508971B8E40D1818935D0BBD4ADB8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:30 GMT
content-type: application/javascript
cf-ray: 7966eae22ad32d89-ARN
etag: W/"63e25502-1070"
last-modified: Tue, 07 Feb 2023 13:41:22 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/6612.8b90df75e8984f5b.esm.js
104.22.34.208200 OK 726 B URL HTTP/2 20bet.com/app/6612.8b90df75e8984f5b.esm.js
IP 104.22.34.208:0
File type ASCII text, with very long lines (1196), with no line terminators
Hash 38ca879d58277da2f703fdd8d0e5ae14
726f2f9dd381ba0f95f7d492beb6c64a7c24acb3
9a09e59dd8c6d35eab7981ca9810076ee7b6a6b715016c59f095a192cda3ed30
GET /app/6612.8b90df75e8984f5b.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_092508971B8E40D1818935D0BBD4ADB8
Cookie: btag=668128_092508971B8E40D1818935D0BBD4ADB8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:30 GMT
content-type: application/javascript
cf-ray: 7966eae22adc2d89-ARN
etag: W/"63e25508-4ac"
last-modified: Tue, 07 Feb 2023 13:41:28 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
tracker.ads.sportradar.com/dist//sp-2.14.0.js
95.101.10.99200 OK 30 kB URL HTTP/2 tracker.ads.sportradar.com/dist//sp-2.14.0.js
IP 95.101.10.99:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (64903)
Hash 44f237857b8d03f32b53fe551e83c95a
91536fe6c60d947d29dfcb5f04d09b752b5ccf03
a5e10dc2f3c729300afe8fe24aa430f57d91fdefa8112c0b35dd424ba612caa7
GET /dist//sp-2.14.0.js HTTP/1.1
Host: tracker.ads.sportradar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 20 Jan 2021 14:51:32 GMT
accept-ranges: bytes
server: AmazonS3
etag: "8dba669b94e3865c9205ef8fd15ee4d1"
x-amz-cf-pop: FRA2-C1
x-amz-cf-id: 1s7OalMcDo3kdZwoq27V9gT4OcVPO2IB2aaAsxwQVlLQht6tljITbw==
vary: Accept-Encoding
content-encoding: gzip
date: Wed, 08 Feb 2023 19:54:30 GMT
content-length: 30370
cache-control: max-age=900, public
X-Firefox-Spdy: h2
track.trackingtraffo.com/pixel/js?auth=v3eu8spg&event=visit
88.214.195.156200 OK 422 B URL HTTP/1.1 track.trackingtraffo.com/pixel/js?auth=v3eu8spg&event=visit
IP 88.214.195.156:0
Hash a84da22ba993cb90a87bbc7196a83564
284dae1447b59756ec476d581d6aad1ddd3218c3
98b0ce9e2f8df8f89c2adf5bcc0cf0eaf3b43c8b7fb26418f8a72179f4e6a440
GET /pixel/js?auth=v3eu8spg&event=visit HTTP/1.1
Host: track.trackingtraffo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 08 Feb 2023 19:54:30 GMT
Content-Type: text/javascript
Content-Length: 422
Connection: keep-alive
Cache-Control: no-cache, max-age=0, must-revalidate, proxy-revalidate, no-store
Pragma: no-cache
Expires: Sat, 01 Jan 2000 00:00:00 GMT
a.sportradarserving.com/ul_cb/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
18.193.49.80302 Moved Temporarily 0 B URL HTTP/1.1 a.sportradarserving.com/ul_cb/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
IP 18.193.49.80:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ul_cb/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId= HTTP/1.1
Host: a.sportradarserving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20bet.com/
Connection: keep-alive
Cookie: zuuid=2bfb23af-c3aa-4686-95e3-06a3f3d7d9f0; c=1675886070; zuuid_lu=1675886070
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Wed, 08 Feb 2023 19:54:30 GMT
Location: https://x.bidswitch.net/syncd?dsp_id=409&user_group=1&user_id=2bfb23af-c3aa-4686-95e3-06a3f3d7d9f0&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3D2bfb23af-c3aa-4686-95e3-06a3f3d7d9f0
Set-Cookie: zuuid=2bfb23af-c3aa-4686-95e3-06a3f3d7d9f0; path=/; expires=Thu, 08-Feb-2024 19:54:30 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1675886070; path=/; expires=Thu, 08-Feb-2024 19:54:30 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k=1; path=/; expires=Thu, 08-Feb-2024 19:54:30 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k_lu=1675886070; path=/; expires=Thu, 08-Feb-2024 19:54:30 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 0
Connection: keep-alive
a.sportradarserving.com/ul_cb/pixel?type=js&aid=1121&id=1859
18.193.49.80200 OK 1.5 kB URL HTTP/1.1 a.sportradarserving.com/ul_cb/pixel?type=js&aid=1121&id=1859
IP 18.193.49.80:0
File type ASCII text, with very long lines (1527), with no line terminators
Hash c75b1b6496583d98bf7dd7739781cdee
22564789d0a7e31a2a880afc6a766c55bb5c084c
41a605f5a25c2aea3f5a91c469a30259cbcd1c0987f5e5ef2acc6992b3a03279
GET /ul_cb/pixel?type=js&aid=1121&id=1859 HTTP/1.1
Host: a.sportradarserving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20bet.com/
Connection: keep-alive
Cookie: zuuid=2bfb23af-c3aa-4686-95e3-06a3f3d7d9f0; c=1675886070; zuuid_lu=1675886070
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store, must-revalidate
Content-Type: text/javascript; charset=UTF-8
Date: Wed, 08 Feb 2023 19:54:30 GMT
Set-Cookie: zuuid=2bfb23af-c3aa-4686-95e3-06a3f3d7d9f0; path=/; expires=Thu, 08-Feb-2024 19:54:30 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1675886070; path=/; expires=Thu, 08-Feb-2024 19:54:30 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k=1; path=/; expires=Thu, 08-Feb-2024 19:54:30 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k_lu=1675886070; path=/; expires=Thu, 08-Feb-2024 19:54:30 GMT; domain=sportradarserving.com; samesite=none; secure
bss=!bidswitch,445143270; path=/; expires=Thu, 08-Feb-2024 19:54:30 GMT; domain=sportradarserving.com; samesite=none; secure
cm2=!bidswitch,445215270; path=/; expires=Thu, 08-Feb-2024 19:54:30 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 1527
Connection: keep-alive
track.adform.net/Serving/TrackPoint/?CC=1&pm=2776363&ADFPageName=pe.betano%7CSportsbook&ADFdivider=%7C&ord=22624822451&ADFtpmode=2&loc=https%3A%2F%2Fpromos.betano.com%2Fsportsbook-pe%2Findex.html%3Fbtag%3Da_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO%26utm_medium%3D4168%26utm_source%3D3%26siteid%3D13943&Set1=en-US%7Cen-US%7C1280x1024%7C24
37.157.2.234200 OK 194 B URL HTTP/2 track.adform.net/Serving/TrackPoint/?CC=1&pm=2776363&ADFPageName=pe.betano%7CSportsbook&ADFdivider=%7C&ord=22624822451&ADFtpmode=2&loc=https%3A%2F%2Fpromos.betano.com%2Fsportsbook-pe%2Findex.html%3Fbtag%3Da_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO%26utm_medium%3D4168%26utm_source%3D3%26siteid%3D13943&Set1=en-US%7Cen-US%7C1280x1024%7C24
IP 37.157.2.234:0
File type ASCII text, with CRLF line terminators
Hash ff17a732b946d3207ae8156e8101ef89
79b561c7e1fb0f2cca4fd9901ed08f55f0763178
79fd5c4b12e3778a7cf7b4d7de58d52ed60c82495b4cb91e711a7f7b410728f1
GET /Serving/TrackPoint/?CC=1&pm=2776363&ADFPageName=pe.betano%7CSportsbook&ADFdivider=%7C&ord=22624822451&ADFtpmode=2&loc=https%3A%2F%2Fpromos.betano.com%2Fsportsbook-pe%2Findex.html%3Fbtag%3Da_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO%26utm_medium%3D4168%26utm_source%3D3%26siteid%3D13943&Set1=en-US%7Cen-US%7C1280x1024%7C24 HTTP/1.1
Host: track.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://promos.betano.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 19:54:30 GMT
content-type: text/javascript; charset=utf-8
content-length: 194
cache-control: no-cache, no-store, must-revalidate, no-transform
pragma: no-cache
content-encoding: gzip
expires: -1
vary: Accept-Encoding
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
20bet.com/app/2786.7bb20f7c68bb8324.esm.js
104.22.34.208200 OK 0 B URL HTTP/2 20bet.com/app/2786.7bb20f7c68bb8324.esm.js
IP 104.22.34.208:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /app/2786.7bb20f7c68bb8324.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_092508971B8E40D1818935D0BBD4ADB8
Cookie: btag=668128_092508971B8E40D1818935D0BBD4ADB8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:30 GMT
content-type: application/javascript
cf-ray: 7966eae21ac82d89-ARN
etag: W/"63e2551f-d0f"
last-modified: Tue, 07 Feb 2023 13:41:51 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=542391013994393&ev=PageView&dl=https%3A%2F%2Fpromos.betano.com%2Fsportsbook-pe%2Findex.html%3Fbtag%3Da_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO%26utm_medium%3D4168%26utm_source%3D3%26siteid%3D13943&rl=&if=true&ts=1675886126394&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&it=1675886125690&coo=false&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=542391013994393&ev=PageView&dl=https%3A%2F%2Fpromos.betano.com%2Fsportsbook-pe%2Findex.html%3Fbtag%3Da_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO%26utm_medium%3D4168%26utm_source%3D3%26siteid%3D13943&rl=&if=true&ts=1675886126394&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&it=1675886125690&coo=false&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=542391013994393&ev=PageView&dl=https%3A%2F%2Fpromos.betano.com%2Fsportsbook-pe%2Findex.html%3Fbtag%3Da_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO%26utm_medium%3D4168%26utm_source%3D3%26siteid%3D13943&rl=&if=true&ts=1675886126394&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&it=1675886125690&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promos.betano.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Wed, 08 Feb 2023 19:54:30 GMT
X-Firefox-Spdy: h2
track.trackingtraffo.com/pixel?auth=v3eu8spg&event=visit&site=20bet.com&ln=en-US
88.214.195.156200 OK 0 B URL HTTP/1.1 track.trackingtraffo.com/pixel?auth=v3eu8spg&event=visit&site=20bet.com&ln=en-US
IP 88.214.195.156:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel?auth=v3eu8spg&event=visit&site=20bet.com&ln=en-US HTTP/1.1
Host: track.trackingtraffo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 08 Feb 2023 19:54:30 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-cache, max-age=0, must-revalidate, proxy-revalidate, no-store
Pragma: no-cache
Expires: Sat, 01 Jan 2000 00:00:00 GMT
20bet.com/assets/placeholders/games/190x190.png
104.22.34.208200 OK 7.0 kB URL HTTP/2 20bet.com/assets/placeholders/games/190x190.png
IP 104.22.34.208:0
File type PNG image data, 190 x 190, 8-bit/color RGBA, non-interlaced\012- data
Hash 9283bd080c01ccbbb87480d4baecae32
f7bcba62d6571f4d33fd590d09510442bd3f3f47
8860cf92a6813fb4c5c96574e04f1aebfbe670f84d05a4563efbb8a1248ad4bc
GET /assets/placeholders/games/190x190.png HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_092508971B8E40D1818935D0BBD4ADB8
Cookie: btag=668128_092508971B8E40D1818935D0BBD4ADB8; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=a3202463-4b6e-41f0-801f-3ddf52a83433.1675886126.1.1675886126.1675886126.7c9639ae-6142-44ef-bcdf-8e197498bee7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:30 GMT
content-type: image/png
content-length: 6980
cf-ray: 7966eae5cdd72d89-ARN
accept-ranges: bytes
etag: "63e255cb-1b44"
last-modified: Tue, 07 Feb 2023 13:44:43 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash feccc7ab69fc2a96613118763cb9f23b
3a8438f25e33f5ad4bbb15497eab518c4dd833c6
b8e054de6c3da1a60497e9bd5a8bce779a4c8583b59da147290c6fd088c78d1c
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=106793
Date: Wed, 08 Feb 2023 19:54:30 GMT
Etag: "63e2ed25-1d7"
Expires: Fri, 10 Feb 2023 01:34:23 GMT
Last-Modified: Wed, 08 Feb 2023 00:30:29 GMT
Server: ECS (nyb/1D1E)
X-Cache: Miss from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: odlFF8repHbwxAjfwgG3W-ZPt9-9tsltpb5nrqz9Xv1jTxj55YX2vg==
Age: 3835
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash bd305b64dd008d099b8b9825a53948e8
5cb72fe92c1312cfc2b4cb5a784a8f84d9ff9a99
53f80532b77c8292cb04203788eac6a863d8d2a44015c82fb07508f88e7c967d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6225
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 19:54:30 GMT
Last-Modified: Wed, 08 Feb 2023 18:10:45 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash bd305b64dd008d099b8b9825a53948e8
5cb72fe92c1312cfc2b4cb5a784a8f84d9ff9a99
53f80532b77c8292cb04203788eac6a863d8d2a44015c82fb07508f88e7c967d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6225
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 19:54:30 GMT
Last-Modified: Wed, 08 Feb 2023 18:10:45 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash bd305b64dd008d099b8b9825a53948e8
5cb72fe92c1312cfc2b4cb5a784a8f84d9ff9a99
53f80532b77c8292cb04203788eac6a863d8d2a44015c82fb07508f88e7c967d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1549
Cache-Control: max-age=107031
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 19:54:30 GMT
Etag: "63e2f700-116"
Expires: Fri, 10 Feb 2023 01:38:21 GMT
Last-Modified: Wed, 08 Feb 2023 01:12:32 GMT
Server: ECS (amb/6BAC)
X-Cache: HIT
Content-Length: 278
cdn.softswiss.net/i/s4/softswiss/AztecMagicDeluxe.webp
104.17.113.131200 OK 11 kB URL HTTP/2 cdn.softswiss.net/i/s4/softswiss/AztecMagicDeluxe.webp
IP 104.17.113.131:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 190x190, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0e798d7fd0b2b215ab93f826402a78ba
edf1572b82e7a41e631a88b95e1f36b1b7a313a5
9a23457a09a069e2fb1da411a072b466a036fbff97c4f30b221ba2784963298d
GET /i/s4/softswiss/AztecMagicDeluxe.webp HTTP/1.1
Host: cdn.softswiss.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:30 GMT
content-type: image/webp
content-length: 10792
last-modified: Thu, 27 Jun 2019 06:47:09 GMT
etag: "5d14666d-2a28"
expires: Thu, 09 Feb 2023 13:49:26 GMT
cache-control: max-age=86400
referrer-policy: strict-origin-when-cross-origin
cf-cache-status: HIT
age: 21137
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7966eae67ab9b529-OSL
X-Firefox-Spdy: h2
cdn.softswiss.net/i/s4/softswiss/FireLightning.webp
104.17.113.131200 OK 10 kB URL HTTP/2 cdn.softswiss.net/i/s4/softswiss/FireLightning.webp
IP 104.17.113.131:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 190x190, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1404117786375a67f969e084fe108dd8
7afe581b92816844b2a669fd6cdde25ba8f079a9
3270d6a24ba89779f810008902a3f438b40beeb6a525d4e8a1134d0b7e94edca
GET /i/s4/softswiss/FireLightning.webp HTTP/1.1
Host: cdn.softswiss.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:30 GMT
content-type: image/webp
content-length: 10548
last-modified: Thu, 27 Jun 2019 06:47:09 GMT
etag: "5d14666d-2934"
expires: Thu, 09 Feb 2023 13:49:26 GMT
cache-control: max-age=86400
referrer-policy: strict-origin-when-cross-origin
cf-cache-status: HIT
age: 20564
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7966eae68ac6b529-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash bd305b64dd008d099b8b9825a53948e8
5cb72fe92c1312cfc2b4cb5a784a8f84d9ff9a99
53f80532b77c8292cb04203788eac6a863d8d2a44015c82fb07508f88e7c967d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6225
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 19:54:30 GMT
Last-Modified: Wed, 08 Feb 2023 18:10:45 GMT
Server: ECS (amb/6B71)
X-Cache: HIT
Content-Length: 278
cdn.softswiss.net/i/s4/softswiss/Avalon.webp
104.17.113.131200 OK 16 kB URL HTTP/2 cdn.softswiss.net/i/s4/softswiss/Avalon.webp
IP 104.17.113.131:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 190x190, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 5e9b5b0692b58afcf1d628d48526f2b3
bcde9d2ff74ab1d813b89c04c12622bfed641f53
2547dfecce42b36b1eaba9e9b91021023c46a9011e40bffb47acd30afcc94f7e
GET /i/s4/softswiss/Avalon.webp HTTP/1.1
Host: cdn.softswiss.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:30 GMT
content-type: image/webp
content-length: 15564
last-modified: Mon, 29 Mar 2021 10:15:02 GMT
etag: "6061a8a6-3ccc"
expires: Thu, 09 Feb 2023 13:44:11 GMT
cache-control: max-age=86400
referrer-policy: strict-origin-when-cross-origin
cf-cache-status: HIT
age: 21137
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7966eae69addb529-OSL
X-Firefox-Spdy: h2
cdn.softswiss.net/i/s4/softswiss/DeepSea.webp
104.17.113.131200 OK 16 kB URL HTTP/2 cdn.softswiss.net/i/s4/softswiss/DeepSea.webp
IP 104.17.113.131:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 190x190, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash fde522bffc9bebd610a377a263b31a88
564185b4fcc15bd1b7493e2ad6419990d1305e80
cafeb66db76789f25396063ef735a98a4229db1ca945c64d180cba35fa18ecc8
GET /i/s4/softswiss/DeepSea.webp HTTP/1.1
Host: cdn.softswiss.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:30 GMT
content-type: image/webp
content-length: 15666
last-modified: Mon, 29 Mar 2021 10:15:02 GMT
etag: "6061a8a6-3d32"
expires: Thu, 09 Feb 2023 13:49:26 GMT
cache-control: max-age=86400
referrer-policy: strict-origin-when-cross-origin
cf-cache-status: HIT
age: 21136
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7966eae69adeb529-OSL
X-Firefox-Spdy: h2
cdn.softswiss.net/i/s4/softswiss/AztecMagic.webp
104.17.113.131200 OK 11 kB URL HTTP/2 cdn.softswiss.net/i/s4/softswiss/AztecMagic.webp
IP 104.17.113.131:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 190x190, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 26bd76e01329f390e7ecb77be4f599d7
e21351fc8cf7f600c87e9ae03767c4fb3b6fe0f7
c27ad5697835b9b9cabcf2843dc4c5486c13a20d001ee81860765cf2534ca362
GET /i/s4/softswiss/AztecMagic.webp HTTP/1.1
Host: cdn.softswiss.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:30 GMT
content-type: image/webp
content-length: 11148
last-modified: Thu, 27 Jun 2019 06:47:09 GMT
etag: "5d14666d-2b8c"
expires: Thu, 09 Feb 2023 13:49:26 GMT
cache-control: max-age=86400
referrer-policy: strict-origin-when-cross-origin
cf-cache-status: HIT
age: 21137
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7966eae6aaf2b529-OSL
X-Firefox-Spdy: h2
cdn.softswiss.net/i/s4/softswiss/BookOfPyramids.webp
104.17.113.131200 OK 15 kB URL HTTP/2 cdn.softswiss.net/i/s4/softswiss/BookOfPyramids.webp
IP 104.17.113.131:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 190x190, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 6f37627ad10ae76809cf8f92fd25ae2e
412ff32762c33f475442fbf244878a614be5cc7f
b97809dea4401eefcd3e08039f56f6efe967331296e87eb8a63de2a4b5de942a
GET /i/s4/softswiss/BookOfPyramids.webp HTTP/1.1
Host: cdn.softswiss.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:30 GMT
content-type: image/webp
content-length: 15368
last-modified: Fri, 23 Apr 2021 09:50:03 GMT
etag: "6082984b-3c08"
expires: Thu, 09 Feb 2023 13:49:26 GMT
cache-control: max-age=86400
referrer-policy: strict-origin-when-cross-origin
cf-cache-status: HIT
age: 21137
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7966eae6bb0eb529-OSL
X-Firefox-Spdy: h2
zz.connextra.com/dcs/tagController/tag/d3ea3fb1f9d4/homepage
104.110.28.81200 OK 16 kB URL HTTP/2 zz.connextra.com/dcs/tagController/tag/d3ea3fb1f9d4/homepage
IP 104.110.28.81:0
File type HTML document text\012- exported SGML document, ASCII text, with very long lines (2407)
Hash f5c6ed464a100daeec24c257b81aeba4
f73b688dfff651a1342f8f36b2763f16e8fa976e
c62f6ae2fe15b2279beb5110c4d7827a39865b01b4b53caabcbe5686c8eae626
GET /dcs/tagController/tag/d3ea3fb1f9d4/homepage HTTP/1.1
Host: zz.connextra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript;charset=utf-8
content-length: 16263
server: istio-envoy
content-encoding: gzip
x-envoy-upstream-service-time: 3
cache-control: must-revalidate, max-age=266
expires: Wed, 08 Feb 2023 19:58:56 GMT
date: Wed, 08 Feb 2023 19:54:30 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
platform.20bet.com/api/event/list?isTop_eq=1&oddsExists_eq=1&competitor2Id_neq=&competitor1Id_neq=&main=1&status_in%5B%5D=0&limit=15&relations%5B%5D=league&relations%5B%5D=odds&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=players&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=es
172.67.15.187204 No Content 0 B URL HTTP/2 platform.20bet.com/api/event/list?isTop_eq=1&oddsExists_eq=1&competitor2Id_neq=&competitor1Id_neq=&main=1&status_in%5B%5D=0&limit=15&relations%5B%5D=league&relations%5B%5D=odds&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=players&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=es
IP 172.67.15.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/event/list?isTop_eq=1&oddsExists_eq=1&competitor2Id_neq=&competitor1Id_neq=&main=1&status_in%5B%5D=0&limit=15&relations%5B%5D=league&relations%5B%5D=odds&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=players&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Wed, 08 Feb 2023 19:54:30 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7966eae68f18b512-OSL
X-Firefox-Spdy: h2
cdn.livechatinc.com/tracking.js
23.36.79.16200 OK 26 kB URL HTTP/2 cdn.livechatinc.com/tracking.js
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
Hash ad168b14a5b7efd5137559bade93ad14
7ba3e2c551fdf2879a757fbfcf5f42590269d010
3a4a1053c09137d9d25d118699d7389e019da7a9597b95a7504311b87111909c
GET /tracking.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Wed, 25 Jan 2023 08:47:12 GMT
x-amz-version-id: iNzmqDcn1iRKaLiTk37THrDgz9osPO8C
server: AmazonS3
content-encoding: br
etag: W/"29e075294399875f6fd4bdaa0f4a20e4"
vary: Accept-Encoding
x-amz-cf-pop: AMS54-C1
x-amz-cf-id: qzl-0Ag5XGkDv_kWLbnI4JJvQy7icD_Dvire8pnIpy79iQNET2NH5w==
content-length: 26103
cache-control: max-age=28800
expires: Thu, 09 Feb 2023 03:54:30 GMT
date: Wed, 08 Feb 2023 19:54:30 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
X-Firefox-Spdy: h2
platform.20bet.com/api/v3/menu/line/es?period=0
172.67.15.187204 No Content 0 B URL HTTP/2 platform.20bet.com/api/v3/menu/line/es?period=0
IP 172.67.15.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v3/menu/line/es?period=0 HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Wed, 08 Feb 2023 19:54:30 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7966eae65ecbb512-OSL
X-Firefox-Spdy: h2
secure.adnxs.com/seg?add=32401244&t=1
185.89.211.12307 Redirection 0 B URL HTTP/1.1 secure.adnxs.com/seg?add=32401244&t=1
IP 185.89.211.12:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /seg?add=32401244&t=1 HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Wed, 08 Feb 2023 19:54:30 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://secure.adnxs.com/bounce?%2Fseg%3Fadd%3D32401244%26t%3D1
AN-X-Request-Uuid: a628c291-aaeb-4623-9a66-7df6c5a5e4f5
Set-Cookie: uuid2=5698143240211819341; SameSite=None; Path=/; Max-Age=7776000; Expires=Tue, 09-May-2023 19:54:30 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 947.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
platform.20bet.com/api/v3/menu/live/es
172.67.15.187204 No Content 0 B URL HTTP/2 platform.20bet.com/api/v3/menu/live/es
IP 172.67.15.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v3/menu/live/es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Wed, 08 Feb 2023 19:54:30 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7966eae67ef4b512-OSL
X-Firefox-Spdy: h2
platform.20bet.com/api/popular/line-menu/es
172.67.15.187204 No Content 0 B URL HTTP/2 platform.20bet.com/api/popular/line-menu/es
IP 172.67.15.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/popular/line-menu/es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Wed, 08 Feb 2023 19:54:30 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7966eae68f0bb512-OSL
X-Firefox-Spdy: h2
platform.20bet.com/api/v4/coupon/get?system=1&lang=es
172.67.15.187204 No Content 0 B URL HTTP/2 platform.20bet.com/api/v4/coupon/get?system=1&lang=es
IP 172.67.15.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v4/coupon/get?system=1&lang=es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Wed, 08 Feb 2023 19:54:30 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7966eae68f14b512-OSL
X-Firefox-Spdy: h2
platform.20bet.com/api/event/list?isTopLive_eq=1&competitor2Id_neq=&competitor1Id_neq=&status_in%5B%5D=2&status_in%5B%5D=1&oddsExists_eq=1&main=1&limit=15&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=players&relations%5B%5D=sportCategories&relations%5B%5D=broadcasts&relations%5B%5D=statistics&relations%5B%5D=additionalInfo&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=es
172.67.15.187204 No Content 0 B URL HTTP/2 platform.20bet.com/api/event/list?isTopLive_eq=1&competitor2Id_neq=&competitor1Id_neq=&status_in%5B%5D=2&status_in%5B%5D=1&oddsExists_eq=1&main=1&limit=15&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=players&relations%5B%5D=sportCategories&relations%5B%5D=broadcasts&relations%5B%5D=statistics&relations%5B%5D=additionalInfo&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=es
IP 172.67.15.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/event/list?isTopLive_eq=1&competitor2Id_neq=&competitor1Id_neq=&status_in%5B%5D=2&status_in%5B%5D=1&oddsExists_eq=1&main=1&limit=15&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=players&relations%5B%5D=sportCategories&relations%5B%5D=broadcasts&relations%5B%5D=statistics&relations%5B%5D=additionalInfo&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Wed, 08 Feb 2023 19:54:30 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7966eae6af5eb512-OSL
X-Firefox-Spdy: h2
secure.adnxs.com/bounce?%2Fseg%3Fadd%3D32401244%26t%3D1
185.89.211.12200 OK 0 B URL HTTP/1.1 secure.adnxs.com/bounce?%2Fseg%3Fadd%3D32401244%26t%3D1
IP 185.89.211.12:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fseg%3Fadd%3D32401244%26t%3D1 HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20bet.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Wed, 08 Feb 2023 19:54:30 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: 0aa1dd10-9470-4892-ac2b-5313b87f7bfa
Set-Cookie: anj=dTM7k!M4/8CxrEQF']wIg2In7vyyp+!]tbP6j2F-XstGt!@DzZ$yT%w; SameSite=None; Path=/; Max-Age=7776000; Expires=Tue, 09-May-2023 19:54:30 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 947.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
ocsp.godaddy.com/
192.124.249.36200 OK 1.8 kB IP 192.124.249.36:0
Hash 65c65ce0ccdabab5c4b9a507415b923b
849912918fc5f0a93864a3a855f4d5c748721a3b
377013b5e034ec11ce2ff556c79a47e467e188464407e57ba8c96a857a49ea0d
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 08 Feb 2023 19:54:30 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 08 Feb 2023 16:14:45 GMT
Expires: Thu, 09 Feb 2023 16:14:45 GMT
ETag: "849912918fc5f0a93864a3a855f4d5c748721a3b"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
platform.20bet.com/api/user/is-auth
172.67.15.187204 No Content 0 B URL HTTP/2 platform.20bet.com/api/user/is-auth
IP 172.67.15.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/user/is-auth HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Wed, 08 Feb 2023 19:54:30 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7966eae6af5db512-OSL
X-Firefox-Spdy: h2
platform.20bet.com/api/v3/menu/line/es?period=5
172.67.15.187204 No Content 0 B URL HTTP/2 platform.20bet.com/api/v3/menu/line/es?period=5
IP 172.67.15.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v3/menu/line/es?period=5 HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Wed, 08 Feb 2023 19:54:30 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7966eae65ed6b512-OSL
X-Firefox-Spdy: h2
sc-events-sdk.sharechat.com/web-sdk.js
34.120.129.12200 OK 12 kB URL HTTP/2 sc-events-sdk.sharechat.com/web-sdk.js
IP 34.120.129.12:0
File type ASCII text, with very long lines (11862), with no line terminators
Hash 590bf0022120d1610cba44ba02e12810
5dc081270f226a5e3ee9b47ad279ed2b1cdcf492
07886428aa53f7fa0b69b0b5e236e171be8c492d7020686b0fdec11f572c07a8
GET /web-sdk.js HTTP/1.1
Host: sc-events-sdk.sharechat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdu68jDBIzAzGtQNvrqv6BAbqp4KOv6kFHRw0WaKkoL0V7bfrarGVpSZKrzO2k5_NpvVGo_z3Fez-d7ylAz63FZ_qCmafW8q
x-goog-generation: 1667891067679001
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 11862
x-goog-hash: crc32c=ZVy9+A==, md5=WQvwAiEg0WEMukS6AuEoEA==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 11862
server: UploadServer
vary: X-Goog-Allowed-Resources
date: Wed, 08 Feb 2023 19:24:55 GMT
expires: Wed, 08 Feb 2023 20:24:55 GMT
cache-control: public, max-age=3600
age: 1775
last-modified: Tue, 08 Nov 2022 07:04:27 GMT
etag: "590bf0022120d1610cba44ba02e12810"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.36200 OK 1.8 kB IP 192.124.249.36:0
Hash 65c65ce0ccdabab5c4b9a507415b923b
849912918fc5f0a93864a3a855f4d5c748721a3b
377013b5e034ec11ce2ff556c79a47e467e188464407e57ba8c96a857a49ea0d
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 08 Feb 2023 19:54:31 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 08 Feb 2023 16:14:45 GMT
Expires: Thu, 09 Feb 2023 16:14:45 GMT
ETag: "849912918fc5f0a93864a3a855f4d5c748721a3b"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
api.livechatinc.com/v3.3/customer/action/get_dynamic_configuration?license_id=9054575&url=https%3A%2F%2F20bet.com%2Fpe%3Fbtag%3D668128_092508971B8E40D1818935D0BBD4ADB8&channel_type=code&jsonp=__zehqm9hu6b
23.36.79.16200 OK 691 B URL HTTP/2 api.livechatinc.com/v3.3/customer/action/get_dynamic_configuration?license_id=9054575&url=https%3A%2F%2F20bet.com%2Fpe%3Fbtag%3D668128_092508971B8E40D1818935D0BBD4ADB8&channel_type=code&jsonp=__zehqm9hu6b
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (691), with no line terminators
Hash d06b988fbf6aad0d456b43a1572bf367
693035a9ba25200d3720266b704695a270944ea8
70bf30b0fe3bffae4dcba5586f88841eeb92ec83234ee0c06f650910a08ff32e
GET /v3.3/customer/action/get_dynamic_configuration?license_id=9054575&url=https%3A%2F%2F20bet.com%2Fpe%3Fbtag%3D668128_092508971B8E40D1818935D0BBD4ADB8&channel_type=code&jsonp=__zehqm9hu6b HTTP/1.1
Host: api.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-security-policy: frame-ancestors https://20bet.com/;
content-type: application/javascript; charset=UTF-8
legacy: 2023-06-30
vary: Accept-Encoding
x-frame-options: allow-from https://20bet.com/
content-length: 691
date: Wed, 08 Feb 2023 19:54:31 GMT
X-Firefox-Spdy: h2
platform.20bet.com/api/v3/menu/live/es
104.22.34.208200 OK 4.6 kB URL HTTP/2 platform.20bet.com/api/v3/menu/live/es
IP 104.22.34.208:0
File type JSON data\012- , ASCII text, with very long lines (37879), with no line terminators
Hash a5b05a4d92458c5ba76a4b3a81058302
e53bee1fbcf2b8edc333112bfc7033a79be04589
0a42a01d884f63dd0a72238b0eb2515a911c1ee8c6abde86be7b64356f07dddf
GET /api/v3/menu/live/es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=a3202463-4b6e-41f0-801f-3ddf52a83433.1675886126.1.1675886126.1675886126.7c9639ae-6142-44ef-bcdf-8e197498bee7
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:31 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7966eae74f242d89-ARN
content-encoding: br
X-Firefox-Spdy: h2
api.livechatinc.com/v3.3/customer/action/get_configuration?license_id=9054575&version=299789.12.12.43740.2892.1356.1580.16.3.3.3.244.1809&group_id=24&jsonp=__lc_static_config
23.36.79.16200 OK 1.4 kB URL HTTP/2 api.livechatinc.com/v3.3/customer/action/get_configuration?license_id=9054575&version=299789.12.12.43740.2892.1356.1580.16.3.3.3.244.1809&group_id=24&jsonp=__lc_static_config
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (3985), with no line terminators
Hash f8a43b2efa034178ecd264425287b9c0
41a5d4178b27a0a5859e4d4978b5765972e5cd0f
528296be7cd0d1d14f29ad581f947066003fcbc3cfc0ebc69a2c124385ece401
GET /v3.3/customer/action/get_configuration?license_id=9054575&version=299789.12.12.43740.2892.1356.1580.16.3.3.3.244.1809&group_id=24&jsonp=__lc_static_config HTTP/1.1
Host: api.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
content-type: application/javascript; charset=UTF-8
legacy: 2023-06-30
vary: Accept-Encoding
content-length: 1388
cache-control: public, max-age=495
expires: Wed, 08 Feb 2023 20:02:46 GMT
date: Wed, 08 Feb 2023 19:54:31 GMT
X-Firefox-Spdy: h2
platform.20bet.com/api/event/list?sportId_eq=1&limit=10&competitor2Id_neq=&competitor1Id_neq=&oddsExists_eq=1&main=1&status_in%5B%5D=2&status_in%5B%5D=1&relations%5B%5D=odds&relations%5B%5D=withMarketsCount&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=broadcasts&relations%5B%5D=statistics&relations%5B%5D=additionalInfo&relations%5B%5D=tips&lang=es
172.67.15.187204 No Content 0 B URL HTTP/2 platform.20bet.com/api/event/list?sportId_eq=1&limit=10&competitor2Id_neq=&competitor1Id_neq=&oddsExists_eq=1&main=1&status_in%5B%5D=2&status_in%5B%5D=1&relations%5B%5D=odds&relations%5B%5D=withMarketsCount&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=broadcasts&relations%5B%5D=statistics&relations%5B%5D=additionalInfo&relations%5B%5D=tips&lang=es
IP 172.67.15.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/event/list?sportId_eq=1&limit=10&competitor2Id_neq=&competitor1Id_neq=&oddsExists_eq=1&main=1&status_in%5B%5D=2&status_in%5B%5D=1&relations%5B%5D=odds&relations%5B%5D=withMarketsCount&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=broadcasts&relations%5B%5D=statistics&relations%5B%5D=additionalInfo&relations%5B%5D=tips&lang=es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Wed, 08 Feb 2023 19:54:31 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7966eae93b4fb512-OSL
X-Firefox-Spdy: h2
platform.20bet.com/api/market-descriptions/get-all-markets/es
104.22.34.208200 OK 36 kB URL HTTP/2 platform.20bet.com/api/market-descriptions/get-all-markets/es
IP 104.22.34.208:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 83fac4bff6c2e71c96bb78cccfa5fb73
fb808046daa86f6e96a4eeb1b667a271f3c5741f
c765fcc794d2bb228d2349c9cf7299e660ba65fa35b60ce7ec80a3d0873bf3b5
GET /api/market-descriptions/get-all-markets/es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:29 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7966eade980a2d89-ARN
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/event/list?isTopLive_eq=1&competitor2Id_neq=&competitor1Id_neq=&status_in%5B%5D=2&status_in%5B%5D=1&oddsExists_eq=1&main=1&limit=15&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=players&relations%5B%5D=sportCategories&relations%5B%5D=broadcasts&relations%5B%5D=statistics&relations%5B%5D=additionalInfo&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=es
104.22.34.208200 OK 61 kB URL HTTP/2 platform.20bet.com/api/event/list?isTopLive_eq=1&competitor2Id_neq=&competitor1Id_neq=&status_in%5B%5D=2&status_in%5B%5D=1&oddsExists_eq=1&main=1&limit=15&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=players&relations%5B%5D=sportCategories&relations%5B%5D=broadcasts&relations%5B%5D=statistics&relations%5B%5D=additionalInfo&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=es
IP 104.22.34.208:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash f159c1b8ac1289a1303b20cbd45842ba
e612605da2f7a3d46cb72ed7726497811c044781
f813debf2885f20be5c54d8180456aaeadfe265755bc5c91d4f2a91a1615295d
GET /api/event/list?isTopLive_eq=1&competitor2Id_neq=&competitor1Id_neq=&status_in%5B%5D=2&status_in%5B%5D=1&oddsExists_eq=1&main=1&limit=15&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=players&relations%5B%5D=sportCategories&relations%5B%5D=broadcasts&relations%5B%5D=statistics&relations%5B%5D=additionalInfo&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=a3202463-4b6e-41f0-801f-3ddf52a83433.1675886126.1.1675886126.1675886126.7c9639ae-6142-44ef-bcdf-8e197498bee7
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:31 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7966eae76f432d89-ARN
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/v4/coupon/get?system=1&lang=es
104.22.34.208200 OK 2.5 kB URL HTTP/2 platform.20bet.com/api/v4/coupon/get?system=1&lang=es
IP 104.22.34.208:0
File type JSON data\012- , ASCII text, with very long lines (336), with no line terminators
Hash fc6285d5a71711c079404c2a77b37a7a
b33bda6ae11c593e51076a41b9949667a4081cf4
fcc1d7ac0859787de927e03399f327a996b7796c29d131d61417e3b91faf827a
GET /api/v4/coupon/get?system=1&lang=es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=a3202463-4b6e-41f0-801f-3ddf52a83433.1675886126.1.1675886126.1675886126.7c9639ae-6142-44ef-bcdf-8e197498bee7
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:31 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
set-cookie: sid=6dd328bb4d852109b18f5f56adcf8fa6; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7966eae75f3c2d89-ARN
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/v3/menu/line/es?period=5
104.22.34.208200 OK 20 kB URL HTTP/2 platform.20bet.com/api/v3/menu/line/es?period=5
IP 104.22.34.208:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 29e1e29774015828b471ea7e379fe5f8
d93b713cbdd1ce7f88ee7dcd8ac399c6434f2866
42a1f1d70e4a1e04c48f2df3fe4fbb76da4bc6384ffe3677d53c712900dbca8e
GET /api/v3/menu/line/es?period=5 HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=a3202463-4b6e-41f0-801f-3ddf52a83433.1675886126.1.1675886126.1675886126.7c9639ae-6142-44ef-bcdf-8e197498bee7
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:31 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7966eae77f552d89-ARN
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/teams/ts_yellow.webp
104.22.34.208200 OK 1.7 kB URL HTTP/2 20bet.com/assets/teams/ts_yellow.webp
IP 104.22.34.208:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash d8c9e282720a64d23a449f907eb6751a
acb0a199fe445f1e418880c88042d2ac01339b1e
8e4ff853d9319a9ffb56ec71ce4b4c470bcea600d070ae48f775240cb040473e
GET /assets/teams/ts_yellow.webp HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_092508971B8E40D1818935D0BBD4ADB8
Cookie: btag=668128_092508971B8E40D1818935D0BBD4ADB8; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=a3202463-4b6e-41f0-801f-3ddf52a83433.1675886126.1.1675886126.1675886126.7c9639ae-6142-44ef-bcdf-8e197498bee7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:31 GMT
content-type: image/webp
content-length: 1734
cf-ray: 7966eaea7aa02d89-ARN
accept-ranges: bytes
etag: "63e255ea-6c6"
last-modified: Tue, 07 Feb 2023 13:45:14 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
X-Firefox-Spdy: h2
20bet.com/assets/sport/2.svg
104.22.34.208200 OK 3.5 kB URL HTTP/2 20bet.com/assets/sport/2.svg
IP 104.22.34.208:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1588)
Hash de29d5e0684a93f602d115f137147246
69d4f59515afb67fe5dbc1d41a26158a200433cd
73349bc0acad1adfe317c6e69fcda4293e39171b286dfa43c16c8f19b62f8b96
GET /assets/sport/2.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_092508971B8E40D1818935D0BBD4ADB8
Cookie: btag=668128_092508971B8E40D1818935D0BBD4ADB8; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=a3202463-4b6e-41f0-801f-3ddf52a83433.1675886126.1.1675886126.1675886126.7c9639ae-6142-44ef-bcdf-8e197498bee7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:31 GMT
content-type: image/svg+xml
cf-ray: 7966eae8f8d32d89-ARN
etag: W/"63e255db-f18"
last-modified: Tue, 07 Feb 2023 13:44:59 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/teams/ts_red.webp
104.22.34.208200 OK 1.7 kB URL HTTP/2 20bet.com/assets/teams/ts_red.webp
IP 104.22.34.208:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash d1320b0cb7ec9f824158acaa04ea6013
44f617f188bd37cfb350033dbb595d78e3200314
b59467e2e36267ebeea9fc7ef9f906b2f970775b33680459a725dcd8a390a5fe
GET /assets/teams/ts_red.webp HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_092508971B8E40D1818935D0BBD4ADB8
Cookie: btag=668128_092508971B8E40D1818935D0BBD4ADB8; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=a3202463-4b6e-41f0-801f-3ddf52a83433.1675886126.1.1675886126.1675886126.7c9639ae-6142-44ef-bcdf-8e197498bee7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:31 GMT
content-type: image/webp
content-length: 1724
cf-ray: 7966eaea7aa12d89-ARN
accept-ranges: bytes
etag: "63e255ea-6bc"
last-modified: Tue, 07 Feb 2023 13:45:14 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
X-Firefox-Spdy: h2
20bet.com/assets/teams/ts_green.webp
104.22.34.208200 OK 1.7 kB URL HTTP/2 20bet.com/assets/teams/ts_green.webp
IP 104.22.34.208:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 88d73994168be3c3d2b7b26289de1df9
300a4dbdc3bbe9b8b81ba5e032dca3eef46faa0c
90b2c071db8d20db78a924a8f7bc424a27523816ca240b4d1d32e9943c474d2d
GET /assets/teams/ts_green.webp HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_092508971B8E40D1818935D0BBD4ADB8
Cookie: btag=668128_092508971B8E40D1818935D0BBD4ADB8; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=a3202463-4b6e-41f0-801f-3ddf52a83433.1675886126.1.1675886126.1675886126.7c9639ae-6142-44ef-bcdf-8e197498bee7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:31 GMT
content-type: image/webp
content-length: 1734
cf-ray: 7966eaea7a9f2d89-ARN
accept-ranges: bytes
etag: "63e255f2-6c6"
last-modified: Tue, 07 Feb 2023 13:45:22 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
X-Firefox-Spdy: h2
20bet.com/assets/sport/5.svg
104.22.34.208200 OK 17 kB URL HTTP/2 20bet.com/assets/sport/5.svg
IP 104.22.34.208:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2222)
Hash 97fd9b91055578625eacafadaf10d533
dfbff1f6f75cdae3db18444b1b587e2c460b605d
fb07c2af14368aa5281895c1c74efa3c3e3c8521a820bb459321e49afb9fed99
GET /assets/sport/5.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_092508971B8E40D1818935D0BBD4ADB8
Cookie: btag=668128_092508971B8E40D1818935D0BBD4ADB8; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=a3202463-4b6e-41f0-801f-3ddf52a83433.1675886126.1.1675886126.1675886126.7c9639ae-6142-44ef-bcdf-8e197498bee7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:31 GMT
content-type: image/svg+xml
cf-ray: 7966eaeacad92d89-ARN
etag: W/"63e255cb-13fb"
last-modified: Tue, 07 Feb 2023 13:44:43 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/sport/29.svg
104.22.34.208200 OK 67 kB URL HTTP/2 20bet.com/assets/sport/29.svg
IP 104.22.34.208:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (481)
Hash b61688602d2b114814b75f060b311593
da04ff4e3083422886b633c1e6f0d74baa0c8330
9d80428482fd3db6f2c27d74a510853bb7b0fda7410119df87b981468fa8494c
GET /assets/sport/29.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_092508971B8E40D1818935D0BBD4ADB8
Cookie: btag=668128_092508971B8E40D1818935D0BBD4ADB8; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=a3202463-4b6e-41f0-801f-3ddf52a83433.1675886126.1.1675886126.1675886126.7c9639ae-6142-44ef-bcdf-8e197498bee7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:31 GMT
content-type: image/svg+xml
cf-ray: 7966eaeaeaf52d89-ARN
etag: W/"63e255d3-9d6"
last-modified: Tue, 07 Feb 2023 13:44:51 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
cdn.livechatinc.com/widget/static/js/iframe.73879adc.chunk.js
23.36.79.16200 OK 229 kB URL HTTP/2 cdn.livechatinc.com/widget/static/js/iframe.73879adc.chunk.js
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65457)
Size 229 kB (228662 bytes)
Hash 22d99950eb1ce5bb0a2c6446dae6c974
ec8de58f1c45c7c19fd8e7de7e467105ce4479b2
9165bcba316d9b153ac6e81c63b46bbb2f530516a31d7e9628e18b9cfa2ff711
GET /widget/static/js/iframe.73879adc.chunk.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 25 Jan 2023 08:47:14 GMT
x-amz-version-id: DWqeOBaonG9oWcxGU0ZIpqeLsqrYCT6x
server: AmazonS3
content-encoding: gzip
etag: W/"90cad0f1a20bbe0c7b70af650ab7491a"
vary: Accept-Encoding
x-amz-cf-pop: AMS54-C1
x-amz-cf-id: _moYFAh9CU_TCG1Yzj16TH06fqZO-0j2iiv2chXN-6-X-3i1nCAlEQ==
cache-control: max-age=31536000
expires: Thu, 08 Feb 2024 19:54:31 GMT
date: Wed, 08 Feb 2023 19:54:31 GMT
content-length: 228662
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
X-Firefox-Spdy: h2
platform.20bet.com/api/event/list?sportId_eq=1&period=5&limit=10&competitor2Id_neq=&competitor1Id_neq=&oddsExists_eq=1&status_in%5B%5D=0&main=1&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=tips&relations%5B%5D=sportCategories&relations%5B%5D=withMarketsCount&lang=es
104.22.34.208200 OK 39 kB URL HTTP/2 platform.20bet.com/api/event/list?sportId_eq=1&period=5&limit=10&competitor2Id_neq=&competitor1Id_neq=&oddsExists_eq=1&status_in%5B%5D=0&main=1&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=tips&relations%5B%5D=sportCategories&relations%5B%5D=withMarketsCount&lang=es
IP 104.22.34.208:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash a71971156aa6f30cbbf68fb5cadba105
3215fd4b858c80ba70737a54722421b66e9384a7
0c7da84d6de3528202772a925ce483c975faacbe20f3cff919e7f9e9edddc41a
GET /api/event/list?sportId_eq=1&period=5&limit=10&competitor2Id_neq=&competitor1Id_neq=&oddsExists_eq=1&status_in%5B%5D=0&main=1&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=tips&relations%5B%5D=sportCategories&relations%5B%5D=withMarketsCount&lang=es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=a3202463-4b6e-41f0-801f-3ddf52a83433.1675886126.1.1675886126.1675886126.7c9639ae-6142-44ef-bcdf-8e197498bee7
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:31 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7966eae908d92d89-ARN
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/sport/7.svg
104.22.34.208200 OK 7.6 kB URL HTTP/2 20bet.com/assets/sport/7.svg
IP 104.22.34.208:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash e7e438378e2ffcae52d6723b713a045c
127c41f26520d3ee8d1da05ccad2f72364c9672e
389150840cb779b75e631be536ec6d3aeb38e4457bc91b6f4c00d3790e872fde
GET /assets/sport/7.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_092508971B8E40D1818935D0BBD4ADB8
Cookie: btag=668128_092508971B8E40D1818935D0BBD4ADB8; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=a3202463-4b6e-41f0-801f-3ddf52a83433.1675886126.1.1675886126.1675886126.7c9639ae-6142-44ef-bcdf-8e197498bee7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:31 GMT
content-type: image/svg+xml
cf-ray: 7966eae908e12d89-ARN
etag: W/"63e255cb-a48"
last-modified: Tue, 07 Feb 2023 13:44:43 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/sport/1059.svg
104.22.34.208200 OK 26 kB URL HTTP/2 20bet.com/assets/sport/1059.svg
IP 104.22.34.208:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3198)
Hash 7fbb7bd0f95edb103afa2076ec05ea95
4e88fa3978753a18c1add37f4de609b9cf693cc1
3b3a9e6d0957574dc99277b5fdc8490c526133d442ad2c20cd3b08479ebe33ca
GET /assets/sport/1059.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_092508971B8E40D1818935D0BBD4ADB8
Cookie: btag=668128_092508971B8E40D1818935D0BBD4ADB8; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=a3202463-4b6e-41f0-801f-3ddf52a83433.1675886126.1.1675886126.1675886126.7c9639ae-6142-44ef-bcdf-8e197498bee7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:31 GMT
content-type: image/svg+xml
cf-ray: 7966eae908e62d89-ARN
etag: W/"63e255f2-1fca"
last-modified: Tue, 07 Feb 2023 13:45:22 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
apis.sharechat.com/self-serve-service/v1/external/selfServe/sdk/SG3eKxKT7W/get
104.17.235.9200 OK 6.9 kB URL HTTP/2 apis.sharechat.com/self-serve-service/v1/external/selfServe/sdk/SG3eKxKT7W/get
IP 104.17.235.9:0
Hash 54ac3753304a50fc20b0625ec7e344fa
9e8dd279cf39cdf2808107387c55cbcf19dde281
163623540f0120b1fe84358e989ebf5641acda20a4ded068bee277600077e8a4
GET /self-serve-service/v1/external/selfServe/sdk/SG3eKxKT7W/get HTTP/1.1
Host: apis.sharechat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:31 GMT
content-type: application/json;charset=utf-8
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: https://20bet.com
vary: Origin
etag: W/"1f-6dkZ0odeH7r21LA6dRUG6G17Ebs"
via: 1.1 google
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=mPIliER0EWsRv8eMVbRtT2yNroQmw4OCCgx8DFMBr_4-1675886071-0-AS5MejInaryCUZIaaqiEWHVoKKa2iehruWnqmzAUoyGFf/fnZbhEjVZKMWdGPN4EPC1ycIUme467WvXIO5sc8hw=; path=/; expires=Wed, 08-Feb-23 20:24:31 GMT; domain=.sharechat.com; HttpOnly; Secure; SameSite=None
_cfuvid=V6iM.SBkPv27ZaH6yM76n5q4zWi9gOFIHlcEuMGMk_A-1675886071458-0-604800000; path=/; domain=.sharechat.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7966eae81ec60b59-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
20bet.com/assets/sport/8.svg
104.22.34.208200 OK 3.5 kB URL HTTP/2 20bet.com/assets/sport/8.svg
IP 104.22.34.208:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (389)
Hash dc27b506d5a68b7029456b926a4babdc
c97ae44bd4ea530433a97e8783d524de4eee6502
bfe23db10d49dffa407b3dcad595f47ca484cbbf438b5b7d2db15c374052b537
GET /assets/sport/8.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_092508971B8E40D1818935D0BBD4ADB8
Cookie: btag=668128_092508971B8E40D1818935D0BBD4ADB8; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=a3202463-4b6e-41f0-801f-3ddf52a83433.1675886126.1.1675886126.1675886126.7c9639ae-6142-44ef-bcdf-8e197498bee7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:31 GMT
content-type: image/svg+xml
cf-ray: 7966eae918eb2d89-ARN
etag: W/"63e255db-14a2"
last-modified: Tue, 07 Feb 2023 13:44:59 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/sport/1056.svg
104.22.34.208200 OK 5.7 kB URL HTTP/2 20bet.com/assets/sport/1056.svg
IP 104.22.34.208:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (356)
Hash a98bb236c32f515d73fabc4bb5e9bad3
3cd352e7f86ec68725047a8d696755415280b271
34bfdaf716c9b67c4818b8233bcc60e783c6309c12147e1d4f761274254a42e5
GET /assets/sport/1056.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_092508971B8E40D1818935D0BBD4ADB8
Cookie: btag=668128_092508971B8E40D1818935D0BBD4ADB8; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=a3202463-4b6e-41f0-801f-3ddf52a83433.1675886126.1.1675886126.1675886126.7c9639ae-6142-44ef-bcdf-8e197498bee7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:31 GMT
content-type: image/svg+xml
cf-ray: 7966eae918f22d89-ARN
etag: W/"63e255cb-2ca"
last-modified: Tue, 07 Feb 2023 13:44:43 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/sport/1054.svg
104.22.34.208200 OK 11 kB URL HTTP/2 20bet.com/assets/sport/1054.svg
IP 104.22.34.208:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3008)
Hash 98243cc7c41b7ef7ee9daa8acfb0a5a7
f6898bec7b74e489884668c8231b3780b60b4f15
9e1322dc1f0eaf33c60d4ca60be4fb18cb8903053ded609ca2bf0eb9897f6743
GET /assets/sport/1054.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_092508971B8E40D1818935D0BBD4ADB8
Cookie: btag=668128_092508971B8E40D1818935D0BBD4ADB8; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=a3202463-4b6e-41f0-801f-3ddf52a83433.1675886126.1.1675886126.1675886126.7c9639ae-6142-44ef-bcdf-8e197498bee7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:31 GMT
content-type: image/svg+xml
cf-ray: 7966eae918ed2d89-ARN
etag: W/"63e255ea-10d5"
last-modified: Tue, 07 Feb 2023 13:45:14 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/teams/ts_hz.webp
104.22.34.208200 OK 1.9 kB URL HTTP/2 20bet.com/assets/teams/ts_hz.webp
IP 104.22.34.208:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash ca9904a48001d57a9856d768bb3e992f
ab8cf20afc8908f07356f61baacee43e272de82a
a734841c08e21909681e14929827810ca57990fab7c8b49ec8022773129b2eb6
GET /assets/teams/ts_hz.webp HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_092508971B8E40D1818935D0BBD4ADB8
Cookie: btag=668128_092508971B8E40D1818935D0BBD4ADB8; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=a3202463-4b6e-41f0-801f-3ddf52a83433.1675886126.1.1675886126.1675886126.7c9639ae-6142-44ef-bcdf-8e197498bee7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:31 GMT
content-type: image/webp
content-length: 1852
cf-ray: 7966eaed8d322d89-ARN
accept-ranges: bytes
etag: "63e255f2-73c"
last-modified: Tue, 07 Feb 2023 13:45:22 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
X-Firefox-Spdy: h2
dwmu1hf7ovvid.cloudfront.net/flags/pe.svg
54.230.245.7200 OK 74 kB URL HTTP/2 dwmu1hf7ovvid.cloudfront.net/flags/pe.svg
IP 54.230.245.7:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2650)
Hash ea95116f76c82964116d1575f7b8376a
c6bb746cf6f780e85a4e5fb937f789c4c3939c29
3fddfd9a5405daa75ae35d717219be04940fbd956b583fa9a75d0c54ec5d6da5
GET /flags/pe.svg HTTP/1.1
Host: dwmu1hf7ovvid.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 73609
date: Wed, 08 Feb 2023 08:49:32 GMT
last-modified: Tue, 10 Aug 2021 11:33:47 GMT
etag: "ea95116f76c82964116d1575f7b8376a"
x-amz-version-id: _jGwiQoozAtAKg4Efod_1gLAZiE5Rq9l
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 5WF6xyGDbTqBmUSgc1faVVwXtRf1VPbOs2amY7gIOV30jLT5WNS4uw==
age: 39900
X-Firefox-Spdy: h2
dwmu1hf7ovvid.cloudfront.net/logos/payments/visa.webp
54.230.245.7200 OK 6.6 kB URL HTTP/2 dwmu1hf7ovvid.cloudfront.net/logos/payments/visa.webp
IP 54.230.245.7:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash ee2fad6bac293e4ca7ab69e783d4e2cd
f11c25ce6201ed8431bf370ba8163a8b96a629ea
75e10393bb2bf4d84cf86b733f85db33b66e7bf6e2538dc601d8772d2bfcad87
GET /logos/payments/visa.webp HTTP/1.1
Host: dwmu1hf7ovvid.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/webp
content-length: 6550
last-modified: Fri, 25 Feb 2022 07:48:25 GMT
x-amz-version-id: pIXrhOThuPwmmXfQM00f4w8j43Wb2AWV
accept-ranges: bytes
server: AmazonS3
date: Wed, 08 Feb 2023 19:23:07 GMT
etag: "ee2fad6bac293e4ca7ab69e783d4e2cd"
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: HrlHfWioeOv1YHelIFJ18AajJAZiTnk17_2k3oyHKKc2iX68PaUM5w==
age: 1885
X-Firefox-Spdy: h2
20bet.com/assets/sport/18.svg
104.22.34.208200 OK 3.7 kB URL HTTP/2 20bet.com/assets/sport/18.svg
IP 104.22.34.208:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (370)
Hash d0541882c3ed2ecffaf865037fe18442
e89517b2b99d67a1c54c4b038cbf624057deea07
b15798f81faf46dad5460b87eeb2524e843d78f709da2723cf3f66c7800d902c
GET /assets/sport/18.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_092508971B8E40D1818935D0BBD4ADB8
Cookie: btag=668128_092508971B8E40D1818935D0BBD4ADB8; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=a3202463-4b6e-41f0-801f-3ddf52a83433.1675886126.1.1675886126.1675886126.7c9639ae-6142-44ef-bcdf-8e197498bee7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:31 GMT
content-type: image/svg+xml
cf-ray: 7966eaeadaee2d89-ARN
etag: W/"63e255db-fd0"
last-modified: Tue, 07 Feb 2023 13:44:59 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/user/is-auth
104.22.34.208200 OK 191 kB URL HTTP/2 platform.20bet.com/api/user/is-auth
IP 104.22.34.208:0
File type JSON data\012- , ASCII text, with no line terminators
Size 191 kB (190949 bytes)
Hash eb2985b54ae29028b528bcc2f4bbad6a
2fb4f97dcedc980c040a4ee2bb6777304f3c4bd5
02ae8d3b5a76181eabb6c7aadb0429ac197b8aa6f5dedb5da482c741382bd73c
GET /api/user/is-auth HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=a3202463-4b6e-41f0-801f-3ddf52a83433.1675886126.1.1675886126.1675886126.7c9639ae-6142-44ef-bcdf-8e197498bee7
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:31 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7966eae77f542d89-ARN
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/teams/ts_rose.webp
104.22.34.208200 OK 1.8 kB URL HTTP/2 20bet.com/assets/teams/ts_rose.webp
IP 104.22.34.208:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 19ba1e0b01ca14f99e3538dbaa5e0d8e
f806fee3d7dfe2df6e93dfbf798828024efbe367
8f8b4c3beba9d41fa572c8e140ff15aafed6c9d4b6178ee9b3098edf5a4a4699
GET /assets/teams/ts_rose.webp HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_092508971B8E40D1818935D0BBD4ADB8
Cookie: btag=668128_092508971B8E40D1818935D0BBD4ADB8; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=a3202463-4b6e-41f0-801f-3ddf52a83433.1675886126.1.1675886126.1675886126.7c9639ae-6142-44ef-bcdf-8e197498bee7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:31 GMT
content-type: image/webp
content-length: 1834
cf-ray: 7966eaedbd5a2d89-ARN
accept-ranges: bytes
etag: "63e255db-72a"
last-modified: Tue, 07 Feb 2023 13:44:59 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
X-Firefox-Spdy: h2
20bet.com/assets/sport/4.svg
104.22.34.208200 OK 8.7 kB URL HTTP/2 20bet.com/assets/sport/4.svg
IP 104.22.34.208:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (895)
Hash 3dae91a8efd45c18ccba4b0d21a6a6d6
cc34aa98d98d562a14458bdd3e6e5654b89b03ad
43e4ef54e64ebd06c0f69a80e99e02df44cc99a0c4f534f95350d9328289c173
GET /assets/sport/4.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_092508971B8E40D1818935D0BBD4ADB8
Cookie: btag=668128_092508971B8E40D1818935D0BBD4ADB8; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=a3202463-4b6e-41f0-801f-3ddf52a83433.1675886126.1.1675886126.1675886126.7c9639ae-6142-44ef-bcdf-8e197498bee7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:31 GMT
content-type: image/svg+xml
cf-ray: 7966eae908de2d89-ARN
etag: W/"63e255db-15d5"
last-modified: Tue, 07 Feb 2023 13:44:59 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/teams/ts_violet.webp
104.22.34.208200 OK 1.8 kB URL HTTP/2 20bet.com/assets/teams/ts_violet.webp
IP 104.22.34.208:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 92e785acdccdf89f19bfd50482c4e3df
75a20811acaaa3c57471b3f7f52f51fde6393135
2aff640591d767aa939617569ecf985d0037822da06b0ce777e7c0469fc62f0b
GET /assets/teams/ts_violet.webp HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_092508971B8E40D1818935D0BBD4ADB8
Cookie: btag=668128_092508971B8E40D1818935D0BBD4ADB8; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=a3202463-4b6e-41f0-801f-3ddf52a83433.1675886126.1.1675886126.1675886126.7c9639ae-6142-44ef-bcdf-8e197498bee7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:32 GMT
content-type: image/webp
content-length: 1800
cf-ray: 7966eaed8d3c2d89-ARN
accept-ranges: bytes
etag: "63e255ea-708"
last-modified: Tue, 07 Feb 2023 13:45:14 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
X-Firefox-Spdy: h2
dwmu1hf7ovvid.cloudfront.net/logos/payments/dinners_discover.webp
54.230.245.7200 OK 4.9 kB URL HTTP/2 dwmu1hf7ovvid.cloudfront.net/logos/payments/dinners_discover.webp
IP 54.230.245.7:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 6ea8d660b5467827c912554aabe647d5
4570f9ecbcb61f9a2c44cd16ab737fb0e2b4cebd
2221037740fca246343805287f1d37d254f7942155f6b4c8572ac553f1bad5c6
GET /logos/payments/dinners_discover.webp HTTP/1.1
Host: dwmu1hf7ovvid.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/webp
content-length: 4926
last-modified: Fri, 25 Feb 2022 07:48:25 GMT
x-amz-version-id: UHAkVVlDSlfVyn0QaFp_FgwNMMIk82nh
accept-ranges: bytes
server: AmazonS3
date: Wed, 08 Feb 2023 19:23:07 GMT
etag: "6ea8d660b5467827c912554aabe647d5"
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ckyHUPretDzzg6L7EgCdJdP95BpbH7husJq_QkZ1PYzKcRigEPk5Sg==
age: 1885
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 80a5dd5c11de684d697e5849cd6e19df
97f0035367fd6c99f35c9bcd9aff776da6b430c2
68ece2e9cfb065ffef9549a4d87baefd51cb370d9586de1596a63c0d0a7212c1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1049
Cache-Control: max-age=132474
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 19:54:32 GMT
Etag: "63e35c59-1d7"
Expires: Fri, 10 Feb 2023 08:42:26 GMT
Last-Modified: Wed, 08 Feb 2023 08:24:57 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
a.exoclick.com/tag_gen.js
205.185.216.42200 OK 515 B URL HTTP/1.1 a.exoclick.com/tag_gen.js
IP 205.185.216.42:0
File type ASCII text, with very long lines (1030), with no line terminators
Hash 628e0302068ade64b5f411f39d5ce7e5
ff1a609269f34bad5ae67ed1678df3f7b905d018
c583ceaeae2e9a05e25c27b61520710f16b8b98ca7f9087a75ae90a040b8bc3f
GET /tag_gen.js HTTP/1.1
Host: a.exoclick.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 19:54:32 GMT
Connection: Keep-Alive
Content-Encoding: gzip
Content-Length: 515
Content-Type: application/javascript
Accept-Ranges: bytes
Cache-Control: max-age=10800
Server: nginx
etag: W/"a56c0470b9aa925085e51a6271a"
X-HW: 1675886071.dop230.sk1.t,1675886072.cds221.sk1.shn,1675886072.dop230.sk1.t,1675886072.cds251.sk1.c
Access-Control-Allow-Origin: *, *
20bet.com/assets/teams/ts_orange.webp
104.22.34.208200 OK 1.8 kB URL HTTP/2 20bet.com/assets/teams/ts_orange.webp
IP 104.22.34.208:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 32e11fd76428d0c44b39ccd5c64970c9
b8b8183f26fa5c48db5eb7e05c42b185f00ba477
dc018beb28f16fe554e24fa460988b2ba4db6ad775738cf776e60651c7ae4b2e
GET /assets/teams/ts_orange.webp HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_092508971B8E40D1818935D0BBD4ADB8
Cookie: btag=668128_092508971B8E40D1818935D0BBD4ADB8; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=a3202463-4b6e-41f0-801f-3ddf52a83433.1675886126.1.1675886126.1675886126.7c9639ae-6142-44ef-bcdf-8e197498bee7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:32 GMT
content-type: image/webp
content-length: 1848
cf-ray: 7966eaed9d3d2d89-ARN
accept-ranges: bytes
etag: "63e255cb-738"
last-modified: Tue, 07 Feb 2023 13:44:43 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
104.18.20.226200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.20.226:0
Hash 62be53ae571c2e6c7308a4bf885e9f1a
19e3e1fbb83b1b482a331956c9884e420e9d7735
a7d74264f40353bd0b9010b5ca9b795a66d539c215d9630ea283ff5c4b0d677c
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 19:54:32 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Sun, 12 Feb 2023 18:29:36 GMT
ETag: "19e3e1fbb83b1b482a331956c9884e420e9d7735"
Last-Modified: Wed, 08 Feb 2023 18:29:37 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2091
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7966eaeedd88b515-OSL
ocsp.globalsign.com/gseccovsslca2018
104.18.20.226200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.20.226:0
Hash 62be53ae571c2e6c7308a4bf885e9f1a
19e3e1fbb83b1b482a331956c9884e420e9d7735
a7d74264f40353bd0b9010b5ca9b795a66d539c215d9630ea283ff5c4b0d677c
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 19:54:32 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Sun, 12 Feb 2023 18:29:36 GMT
ETag: "19e3e1fbb83b1b482a331956c9884e420e9d7735"
Last-Modified: Wed, 08 Feb 2023 18:29:37 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2091
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7966eaeee845b506-OSL
20bet.com/app/5027.dbcd8bbd67958df7.esm.js
104.22.34.208200 OK 404 B URL HTTP/2 20bet.com/app/5027.dbcd8bbd67958df7.esm.js
IP 104.22.34.208:0
File type ASCII text, with no line terminators
Hash d4f173c1e5879fc97eb09b7f2c073266
0263c6a569b75d4159ab32170e77445824e59ff5
59614bfb9b6a9e2b193f280613678508b34b7265ce35e1b2ba306e6c22526a29
GET /app/5027.dbcd8bbd67958df7.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_092508971B8E40D1818935D0BBD4ADB8
Cookie: btag=668128_092508971B8E40D1818935D0BBD4ADB8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:30 GMT
content-type: application/javascript
cf-ray: 7966eae1da942d89-ARN
etag: W/"63e25508-ef"
last-modified: Tue, 07 Feb 2023 13:41:28 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 5eecee8746b80be9e0c125cd1a6fbe62
6bb07051e8d9ef26d47f7df9846f589178d77cbb
adc26481b4eb6697f772d1d79de38769c179963e7e9df9b093d368f031472345
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 19:54:32 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 07 Feb 2023 13:56:50 GMT
Expires: Tue, 14 Feb 2023 13:56:49 GMT
Etag: "6bb07051e8d9ef26d47f7df9846f589178d77cbb"
Cache-Control: max-age=496336,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7966eaeeec310b55-OSL
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 19377af41c1289e7643ebd82bdbee4e3
f6581b5a2dbcab7c598ad233ad2ae8c124a5da4f
6f8fe30a0b599ad059d2826780e8852eb18b8fc2654e6237c73f2b01160c86ed
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5884
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 19:54:32 GMT
Last-Modified: Wed, 08 Feb 2023 18:16:28 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 313
20bet.com/api/seo/get-data?pageUrl=/pe
104.22.34.208200 OK 1.5 kB URL HTTP/2 20bet.com/api/seo/get-data?pageUrl=/pe
IP 104.22.34.208:0
File type JSON data\012- , ASCII text, with very long lines (3459), with no line terminators
Hash 49a2c30a998d009f8f918bd1096a1dea
645187259bba8364c533b661a8e7a2b96b026354
7dfea472608d2356cc61be2e21bb225e76e6b28956b6c24ac2ddb74514fac7cc
GET /api/seo/get-data?pageUrl=/pe HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_092508971B8E40D1818935D0BBD4ADB8
Cookie: btag=668128_092508971B8E40D1818935D0BBD4ADB8
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:30 GMT
content-type: application/json
cf-ray: 7966eae2db6a2d89-ARN
cache-control: max-age=0, must-revalidate, private
expires: Wed, 08 Feb 2023 19:54:30 GMT
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers: Content-Length,Content-Range
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
d1wfowvne3d4em.cloudfront.net/flags/gb-eng.svg
54.230.245.101200 OK 242 B URL HTTP/2 d1wfowvne3d4em.cloudfront.net/flags/gb-eng.svg
IP 54.230.245.101:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 14167f77f128b0f57a6263843017fc0f
d3d0546d4f72bb12d7e0f869b3d568a4704498fa
d2de597c10f3c833fd8c7bfbe818189e6209db19882a27398b8e180884697eca
GET /flags/gb-eng.svg HTTP/1.1
Host: d1wfowvne3d4em.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 242
date: Tue, 07 Feb 2023 21:29:33 GMT
last-modified: Thu, 05 Jan 2023 15:46:01 GMT
etag: "14167f77f128b0f57a6263843017fc0f"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 6dPuZWZIGvnoAAhmWR6fbNVcsCO0wJALgWDIOklsSIwGrj1HEy9WpQ==
age: 80700
X-Firefox-Spdy: h2
d1wfowvne3d4em.cloudfront.net/flags/il.svg
54.230.245.101200 OK 901 B URL HTTP/2 d1wfowvne3d4em.cloudfront.net/flags/il.svg
IP 54.230.245.101:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 874270d66e9553b21e76dc1d433ba4a9
7bc65fb3c84a6ec401c8acf6638b8983e848e5e4
1dcc3e315cf8b00b8a9914d9ce696b05612aec294bf85e784b25c672b259c58a
GET /flags/il.svg HTTP/1.1
Host: d1wfowvne3d4em.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 901
date: Wed, 08 Feb 2023 18:56:05 GMT
last-modified: Thu, 05 Jan 2023 15:46:02 GMT
etag: "874270d66e9553b21e76dc1d433ba4a9"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: WD7TpHTTvw930nCLGShbcRAMgdfTsW2sG8oiGWmyTC9oQpFJ060MTw==
age: 3508
X-Firefox-Spdy: h2
d1wfowvne3d4em.cloudfront.net/flags/gb-sct.svg
54.230.245.101200 OK 231 B URL HTTP/2 d1wfowvne3d4em.cloudfront.net/flags/gb-sct.svg
IP 54.230.245.101:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 4c2c379f607fe46e0cec999154ea0ba8
be23a52505a54157c1ebddbea929354be6b43515
bc44f4448f55c576b4f8e1aa1d61a8b28751dfae10cf3d26d0408befa6d0bde0
GET /flags/gb-sct.svg HTTP/1.1
Host: d1wfowvne3d4em.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 231
date: Wed, 08 Feb 2023 19:29:58 GMT
last-modified: Thu, 05 Jan 2023 15:46:01 GMT
etag: "4c2c379f607fe46e0cec999154ea0ba8"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: UvDKEAVG2B7SE_EYeCppr0W9f93M_pgaKs57vumeU-Z3KW9sXmvERg==
age: 1475
X-Firefox-Spdy: h2
x.bidswitch.net/sync?dsp_id=409&expires=14&user_group=2&user_id=2bfb23af-c3aa-4686-95e3-06a3f3d7d9f0&cb=9e45fb3d-2d08-4fac-8f8c-f5c1fc18cf05
3.64.174.171302 Found 0 B URL HTTP/2 x.bidswitch.net/sync?dsp_id=409&expires=14&user_group=2&user_id=2bfb23af-c3aa-4686-95e3-06a3f3d7d9f0&cb=9e45fb3d-2d08-4fac-8f8c-f5c1fc18cf05
IP 3.64.174.171:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?dsp_id=409&expires=14&user_group=2&user_id=2bfb23af-c3aa-4686-95e3-06a3f3d7d9f0&cb=9e45fb3d-2d08-4fac-8f8c-f5c1fc18cf05 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 08 Feb 2023 19:54:32 GMT
content-length: 0
location: https://x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=2&user_id=2bfb23af-c3aa-4686-95e3-06a3f3d7d9f0&cb=9e45fb3d-2d08-4fac-8f8c-f5c1fc18cf05
cache-control: no-cache, no-store, must-revalidate
set-cookie: tuuid=0b9ba9de-8570-4560-935b-fca20860683c; path=/; expires=Thu, 08-Feb-2024 19:54:32 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675886072; path=/; expires=Thu, 08-Feb-2024 19:54:32 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1675886072; path=/; expires=Thu, 08-Feb-2024 19:54:32 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675886072; path=/; expires=Thu, 08-Feb-2024 19:54:32 GMT; domain=.bidswitch.net; samesite=none; secure
X-Firefox-Spdy: h2
20bet.com/app/5238.c643742b8f51fd51.esm.js
104.22.34.208200 OK 3.7 kB URL HTTP/2 20bet.com/app/5238.c643742b8f51fd51.esm.js
IP 104.22.34.208:0
File type ASCII text, with very long lines (12260), with no line terminators
Hash 0d9e5344df7c9401a909b166bc343487
0d438ff90e6c678cc47b325821542fc50cb87934
0569ac77ee6b5dea4a22cef225ccb7dfb20b3ef2fba2f56420a9f0c950824180
GET /app/5238.c643742b8f51fd51.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_092508971B8E40D1818935D0BBD4ADB8
Cookie: btag=668128_092508971B8E40D1818935D0BBD4ADB8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:30 GMT
content-type: application/javascript
cf-ray: 7966eae1faaf2d89-ARN
etag: W/"63e25519-2fe4"
last-modified: Tue, 07 Feb 2023 13:41:45 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/4031.b91f4417cd75a26b.esm.js
104.22.34.208200 OK 915 B URL HTTP/2 20bet.com/app/4031.b91f4417cd75a26b.esm.js
IP 104.22.34.208:0
File type ASCII text, with very long lines (1237), with no line terminators
Hash 20134e82e1ff0ce1e676de024030dc41
ae918bc72360efe3b459b06f40552ae47ba1f18e
29af311db73a8cbe57239aab6de6fb11b4ebba57458b7919bb7364d9e066add6
GET /app/4031.b91f4417cd75a26b.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_092508971B8E40D1818935D0BBD4ADB8
Cookie: btag=668128_092508971B8E40D1818935D0BBD4ADB8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:30 GMT
content-type: application/javascript
cf-ray: 7966eae23ae32d89-ARN
etag: W/"63e25502-4d5"
last-modified: Tue, 07 Feb 2023 13:41:22 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 5eecee8746b80be9e0c125cd1a6fbe62
6bb07051e8d9ef26d47f7df9846f589178d77cbb
adc26481b4eb6697f772d1d79de38769c179963e7e9df9b093d368f031472345
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 19:54:32 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 07 Feb 2023 13:56:50 GMT
Expires: Tue, 14 Feb 2023 13:56:49 GMT
Etag: "6bb07051e8d9ef26d47f7df9846f589178d77cbb"
Cache-Control: max-age=496336,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7966eaef3826b529-OSL
20bet.com/app/8459.ac653e03c2d7c942.esm.js
104.22.34.208200 OK 2.2 kB URL HTTP/2 20bet.com/app/8459.ac653e03c2d7c942.esm.js
IP 104.22.34.208:0
Hash c7e5b5947dd66f3cdd9618d49904d40c
62c39c3c53d0d6ca7ffbfb2007cb4c430583f304
9b6a046b61b57abbb2bdb46c7e65b12a81e59fde9da6e6a8e9d5fc14677615bd
GET /app/8459.ac653e03c2d7c942.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_092508971B8E40D1818935D0BBD4ADB8
Cookie: btag=668128_092508971B8E40D1818935D0BBD4ADB8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:30 GMT
content-type: application/javascript
cf-ray: 7966eae20ac12d89-ARN
etag: W/"63e25519-cac"
last-modified: Tue, 07 Feb 2023 13:41:45 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
x.bidswitch.net/syncd?dsp_id=409&user_id=2bfb23af-c3aa-4686-95e3-06a3f3d7d9f0&user_group=2&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D
3.64.174.171302 Found 0 B URL HTTP/2 x.bidswitch.net/syncd?dsp_id=409&user_id=2bfb23af-c3aa-4686-95e3-06a3f3d7d9f0&user_group=2&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D
IP 3.64.174.171:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /syncd?dsp_id=409&user_id=2bfb23af-c3aa-4686-95e3-06a3f3d7d9f0&user_group=2&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 08 Feb 2023 19:54:32 GMT
content-length: 0
location: https://x.bidswitch.net/ul_cb/syncd?dsp_id=409&user_id=2bfb23af-c3aa-4686-95e3-06a3f3d7d9f0&user_group=2&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D
cache-control: no-cache, no-store, must-revalidate
set-cookie: tuuid=99d84510-a07e-41c1-ac1f-aa80ad232f5c; path=/; expires=Thu, 08-Feb-2024 19:54:32 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675886072; path=/; expires=Thu, 08-Feb-2024 19:54:32 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1675886072; path=/; expires=Thu, 08-Feb-2024 19:54:32 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675886072; path=/; expires=Thu, 08-Feb-2024 19:54:32 GMT; domain=.bidswitch.net; samesite=none; secure
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 5eecee8746b80be9e0c125cd1a6fbe62
6bb07051e8d9ef26d47f7df9846f589178d77cbb
adc26481b4eb6697f772d1d79de38769c179963e7e9df9b093d368f031472345
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 19:54:32 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 07 Feb 2023 13:56:50 GMT
Expires: Tue, 14 Feb 2023 13:56:49 GMT
Etag: "6bb07051e8d9ef26d47f7df9846f589178d77cbb"
Cache-Control: max-age=496336,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7966eaee7cf00b61-OSL
assets.customer.io/assets/track.js
54.230.111.44200 OK 77 kB URL HTTP/2 assets.customer.io/assets/track.js
IP 54.230.111.44:0
File type ASCII text, with very long lines (6454)
Hash ddaac0d983674c7cd37119e240d8ef97
96d4326a90ac6c843c354c440935a02f5c33296d
572e785c256161fa12cbe4cd1c03d9a4a8aebe531257a7610b30028832e9737a
GET /assets/track.js HTTP/1.1
Host: assets.customer.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 08 Feb 2023 17:47:53 GMT
last-modified: Wed, 08 Feb 2023 17:47:34 GMT
etag: W/"57a06c8f652bc5faf845517dab5cab2c"
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ewlcjn927WzyRuyT-mv7rFSClVAKRvew8WB-TfnT_qtT0FibPvxYaQ==
age: 7597
X-Firefox-Spdy: h2
ctrack.trafficjunky.net/ctrack?action=list&type=add&id=notregistered&context=20bet.com&cookiename=notregistered&age=262800&maxcookiecount=10
66.254.114.89200 OK 35 B URL HTTP/1.1 ctrack.trafficjunky.net/ctrack?action=list&type=add&id=notregistered&context=20bet.com&cookiename=notregistered&age=262800&maxcookiecount=10
IP 66.254.114.89:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /ctrack?action=list&type=add&id=notregistered&context=20bet.com&cookiename=notregistered&age=262800&maxcookiecount=10 HTTP/1.1
Host: ctrack.trafficjunky.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
server: openresty
date: Wed, 08 Feb 2023 19:54:32 GMT
content-type: image/gif
content-length: 35
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Sun, 22 Jan 1984 03:00:00 GMT
p3p: CP="IDC DSP COR CURa ADMa OUR IND PHY ONL COM STA"
pragma: no-cache
set-cookie: tj_UUID=631cd2ee2b4f4cf89a98c513c08d9583; Path=/; Domain=trafficjunky.net; Expires=Fri, 10 Mar 2023 19:54:32 GMT; Secure; SameSite=None
tj_UUID_v2=631cd2ee-2b4f-4cf8-9a98-c513c08d9583; Path=/; Domain=trafficjunky.net; Expires=Fri, 10 Mar 2023 19:54:32 GMT; Secure; SameSite=None
1918bc62c1a6d87456120b5ac922270e=notregistered; Path=/; Domain=trafficjunky.net; Expires=Thu, 10 Aug 2023 07:54:32 GMT; Secure; SameSite=None
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET,POST
access-control-allow-headers: Content-Type
access-control-max-age: 86400
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
x-request-id: 63E3FDF8-42FE725901BB6FA4-2179A138
20bet.com/assets/sport/1076.svg
104.22.34.208200 OK 635 B URL HTTP/2 20bet.com/assets/sport/1076.svg
IP 104.22.34.208:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1008)
Hash bfd277f5ea67cb8c8645c2c0a8831794
93b25641bcbd572e906e180a9955ab4641eb8b64
c479d2989862d2f7eb526053253924f3e5996272ea1b15164585f9fae80b2e7e
GET /assets/sport/1076.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_092508971B8E40D1818935D0BBD4ADB8
Cookie: btag=668128_092508971B8E40D1818935D0BBD4ADB8; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=a3202463-4b6e-41f0-801f-3ddf52a83433.1675886126.1.1675886126.1675886126.7c9639ae-6142-44ef-bcdf-8e197498bee7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:31 GMT
content-type: image/svg+xml
cf-ray: 7966eaeaeaf82d89-ARN
etag: W/"63e255cb-4aa"
last-modified: Tue, 07 Feb 2023 13:44:43 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/watch.js
93.158.134.119200 OK 58 kB URL HTTP/2 mc.yandex.ru/metrika/watch.js
IP 93.158.134.119:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (554)
Hash 315a601116a9b3b0fbc85feb58375ba4
5d283ed923d0b3beb8a2ec4e80c2958d1d132fbf
251ba0fc04953e3615e7c19a9a10c5d6a4f25cc03bef190f8a5e7c6cd72a991a
GET /metrika/watch.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 58140
date: Wed, 08 Feb 2023 19:54:32 GMT
access-control-allow-origin: *
etag: "63e36f34-e31c"
expires: Wed, 08 Feb 2023 20:54:32 GMT
last-modified: Wed, 08 Feb 2023 12:45:24 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: application/javascript
content-encoding: br
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
x.bidswitch.net/syncd?dsp_id=409&user_group=1&user_id=2bfb23af-c3aa-4686-95e3-06a3f3d7d9f0&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3D2bfb23af-c3aa-4686-95e3-06a3f3d7d9f0
3.64.174.171302 Found 0 B URL HTTP/2 x.bidswitch.net/syncd?dsp_id=409&user_group=1&user_id=2bfb23af-c3aa-4686-95e3-06a3f3d7d9f0&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3D2bfb23af-c3aa-4686-95e3-06a3f3d7d9f0
IP 3.64.174.171:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /syncd?dsp_id=409&user_group=1&user_id=2bfb23af-c3aa-4686-95e3-06a3f3d7d9f0&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3D2bfb23af-c3aa-4686-95e3-06a3f3d7d9f0 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20bet.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 08 Feb 2023 19:54:32 GMT
content-length: 0
location: https://x.bidswitch.net/ul_cb/syncd?dsp_id=409&user_group=1&user_id=2bfb23af-c3aa-4686-95e3-06a3f3d7d9f0&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3D2bfb23af-c3aa-4686-95e3-06a3f3d7d9f0
cache-control: no-cache, no-store, must-revalidate
set-cookie: tuuid=c1ff273d-1eb7-4b06-a9d1-4c17d899466c; path=/; expires=Thu, 08-Feb-2024 19:54:32 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675886072; path=/; expires=Thu, 08-Feb-2024 19:54:32 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1675886072; path=/; expires=Thu, 08-Feb-2024 19:54:32 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675886072; path=/; expires=Thu, 08-Feb-2024 19:54:32 GMT; domain=.bidswitch.net; samesite=none; secure
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 5eecee8746b80be9e0c125cd1a6fbe62
6bb07051e8d9ef26d47f7df9846f589178d77cbb
adc26481b4eb6697f772d1d79de38769c179963e7e9df9b093d368f031472345
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 19:54:32 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 07 Feb 2023 13:56:50 GMT
Expires: Tue, 14 Feb 2023 13:56:49 GMT
Etag: "6bb07051e8d9ef26d47f7df9846f589178d77cbb"
Cache-Control: max-age=496336,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7966eaeee835b52d-OSL
20bet.com/assets/sport/1067.svg
104.22.34.208200 OK 488 B URL HTTP/2 20bet.com/assets/sport/1067.svg
IP 104.22.34.208:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 2501421b05f7f6361529dceb3e52bcd7
56533579f8e27d3b634dd16e71845ac097adb9e0
ef2cd1e6aaa177cff2b0706c40786e83c8a09d3046a4c05b94f48e826229dfb1
GET /assets/sport/1067.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_092508971B8E40D1818935D0BBD4ADB8
Cookie: btag=668128_092508971B8E40D1818935D0BBD4ADB8; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=a3202463-4b6e-41f0-801f-3ddf52a83433.1675886126.1.1675886126.1675886126.7c9639ae-6142-44ef-bcdf-8e197498bee7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:31 GMT
content-type: image/svg+xml
cf-ray: 7966eae918f42d89-ARN
etag: W/"63e255f2-474"
last-modified: Tue, 07 Feb 2023 13:45:22 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash c870022f76a19ae661adbbe5ebac68c1
91479e99e109e7cf5b2506f90aac6e89c4bf60d3
fd061980d6e4498c5c5529702297f81194ac5ce7a13bd04fd51d38e56a202177
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FD061980D6E4498C5C5529702297F81194AC5CE7A13BD04FD51D38E56A202177"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4280
Expires: Wed, 08 Feb 2023 21:05:52 GMT
Date: Wed, 08 Feb 2023 19:54:32 GMT
Connection: keep-alive
dsp-trk.eskimi.com/tracking/cssession?tst&id=22441
34.120.139.69304 Not Modified 0 B URL HTTP/2 dsp-trk.eskimi.com/tracking/cssession?tst&id=22441
IP 34.120.139.69:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tracking/cssession?tst&id=22441 HTTP/1.1
Host: dsp-trk.eskimi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 304 Not Modified
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
date: Wed, 08 Feb 2023 19:54:32 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
main.realsrv.com/tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2
95.211.229.245200 OK 20 B URL HTTP/1.1 main.realsrv.com/tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2
IP 95.211.229.245:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2 HTTP/1.1
Host: main.realsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 19:54:32 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: goals=a%3A1%3A%7Bi%3A93090%3Ba%3A1%3A%7Bs%3A4%3A%22date%22%3Bs%3A10%3A%222023-02-08%22%3B%7D%7D; expires=Thu, 08 Feb 2024 19:54:32 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 80a5dd5c11de684d697e5849cd6e19df
97f0035367fd6c99f35c9bcd9aff776da6b430c2
68ece2e9cfb065ffef9549a4d87baefd51cb370d9586de1596a63c0d0a7212c1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1049
Cache-Control: max-age=132474
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 19:54:32 GMT
Etag: "63e35c59-1d7"
Expires: Fri, 10 Feb 2023 08:42:26 GMT
Last-Modified: Wed, 08 Feb 2023 08:24:57 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
my.rtmark.net/p.js?f=sync&lr=1&partner=cd60a55da311d1562975ffab2a7f08e376179d9ae222cd454571a6753429581a
139.45.195.8200 OK 697 B URL HTTP/2 my.rtmark.net/p.js?f=sync&lr=1&partner=cd60a55da311d1562975ffab2a7f08e376179d9ae222cd454571a6753429581a
IP 139.45.195.8:0
Hash 50bd6e5705d2521bca2b787e709a056b
6216f7e6fce68eba983e254863c86f29248531b0
0f9b337808a018383c64035060134c4bbf0d8de9e9541284ab5ffaa9f42cd434
GET /p.js?f=sync&lr=1&partner=cd60a55da311d1562975ffab2a7f08e376179d9ae222cd454571a6753429581a HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 19:54:32 GMT
content-type: text/javascript
content-length: 697
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
dsp-ap.eskimi.com/v2/gtr?id=22441&url=https%3A%2F%2F20bet.com%2Fpe%3Fbtag%3D668128_092508971B8E40D1818935D0BBD4ADB8&t=1675886128198
35.186.201.99200 OK 587 B URL HTTP/2 dsp-ap.eskimi.com/v2/gtr?id=22441&url=https%3A%2F%2F20bet.com%2Fpe%3Fbtag%3D668128_092508971B8E40D1818935D0BBD4ADB8&t=1675886128198
IP 35.186.201.99:0
Hash 6f6c249f13a69e3aa7d3cfc294429440
3568fa54fb3e37af74ad3e3aee6682ff9db0ff09
896b6bc3ddffcd03d2e930de5d9be57268d413327066ebfc8c376b16c887b9ec
GET /v2/gtr?id=22441&url=https%3A%2F%2F20bet.com%2Fpe%3Fbtag%3D668128_092508971B8E40D1818935D0BBD4ADB8&t=1675886128198 HTTP/1.1
Host: dsp-ap.eskimi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
set-cookie: __eConsent=1; Expires=Fri, 10 Mar 2023 19:54:32 GMT; Max-Age=2592000; Domain=.eskimi.com; Path=/; Secure; SameSite=None
__eDId=d6a4c096-ba16-42fa-9664-67a1d37e7ab3; Expires=Fri, 10 Mar 2023 19:54:32 GMT; Max-Age=2592000; Domain=.eskimi.com; Path=/; Secure; SameSite=None
__eP=1; Expires=Wed, 22 Feb 2023 19:54:32 GMT; Max-Age=1209600; Domain=.eskimi.com; Path=/; Secure; SameSite=None
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
cache-control: no-cache
date: Wed, 08 Feb 2023 19:54:32 GMT
content-type: application/json
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
main.exdynsrv.com/tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2
95.211.229.246200 OK 20 B URL HTTP/1.1 main.exdynsrv.com/tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2
IP 95.211.229.246:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2 HTTP/1.1
Host: main.exdynsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 19:54:32 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: goals=a%3A1%3A%7Bi%3A93090%3Ba%3A1%3A%7Bs%3A4%3A%22date%22%3Bs%3A10%3A%222023-02-08%22%3B%7D%7D; expires=Thu, 08 Feb 2024 19:54:32 GMT; path=/; domain=.exdynsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html
54.230.111.75200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html
IP 54.230.111.75:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash 112fdf47cdb80b9ce3d033ed09717460
3898efa86cbf1b64dc41a90a110ed5afd6f2ae13
3bfb2e882091d872eece2eee40084183a5fcb0a7ed98c1b004850751260a4cbb
GET /box-e031119f9e9e307a08fa610f85dbfb52.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1034
date: Fri, 03 Feb 2023 13:10:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "112fdf47cdb80b9ce3d033ed09717460"
last-modified: Fri, 03 Feb 2023 13:09:45 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: NBRyn72cfizMNTlxolUM9P9-E5z_7qBZ7u4kD2EfwZWm06JXr5Bf4w==
age: 456266
X-Firefox-Spdy: h2
tsyndicate.com/api/v1/retargeting/set/45d3301c-de08-443f-9716-ba31e2632331
46.4.114.55200 OK 35 B URL HTTP/2 tsyndicate.com/api/v1/retargeting/set/45d3301c-de08-443f-9716-ba31e2632331
IP 46.4.114.55:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /api/v1/retargeting/set/45d3301c-de08-443f-9716-ba31e2632331 HTTP/1.1
Host: tsyndicate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 19:54:32 GMT
content-type: text/plain; charset=utf-8
content-length: 35
pragma: no-cache
expires: 0
vary: *
x-api-version: 1
x-request-id: 8cb00864efc579e6
set-cookie: ts_rt_45d3301c-de08-443f-9716-ba31e2632331=AAMC; expires=Thu, 08 Feb 2024 19:54:32 GMT; path=/; HttpOnly; secure; SameSite=None
cache-control: no-cache, no-store, no-transform, must-revalidate, no-transform
x-robots-tag: none, noindex, nofollow
report-to: { "url": "https://pxl.tsyndicate.com/api/v1/heavy-ad/report", "max_age": 86401 }
X-Firefox-Spdy: h2
script.hotjar.com/modules.14cb8958c3e3566a4606.js
54.230.111.79200 OK 68 kB URL HTTP/2 script.hotjar.com/modules.14cb8958c3e3566a4606.js
IP 54.230.111.79:0
File type Unicode text, UTF-8 text, with very long lines (48770)
Hash 5331176444d8700436c501005f6a0731
d0f73de83bc0720ec98240ab04878a317491d640
07c3a5946b698fa789f6f4f6924761ffbc6808e145cba46c657092f9b36fee8a
GET /modules.14cb8958c3e3566a4606.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 68072
date: Wed, 08 Feb 2023 15:48:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "5331176444d8700436c501005f6a0731"
last-modified: Wed, 08 Feb 2023 15:47:26 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: PHOQ9FR0M3EHiDLnywWERPnoKo1PxgiQf_SFejOsDKSCvNWjOqSwzg==
age: 14786
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/advert.gif
93.158.134.119200 OK 43 B URL HTTP/2 mc.yandex.ru/metrika/advert.gif
IP 93.158.134.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Wed, 08 Feb 2023 19:54:32 GMT
access-control-allow-origin: *
etag: "63e36f34-2b"
expires: Wed, 08 Feb 2023 20:54:32 GMT
accept-ranges: bytes
last-modified: Wed, 08 Feb 2023 12:45:24 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=2&user_id=2bfb23af-c3aa-4686-95e3-06a3f3d7d9f0&cb=9e45fb3d-2d08-4fac-8f8c-f5c1fc18cf05
3.64.174.171302 Found 0 B URL HTTP/2 x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=2&user_id=2bfb23af-c3aa-4686-95e3-06a3f3d7d9f0&cb=9e45fb3d-2d08-4fac-8f8c-f5c1fc18cf05
IP 3.64.174.171:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ul_cb/sync?dsp_id=409&expires=14&user_group=2&user_id=2bfb23af-c3aa-4686-95e3-06a3f3d7d9f0&cb=9e45fb3d-2d08-4fac-8f8c-f5c1fc18cf05 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20bet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Wed, 08 Feb 2023 19:54:32 GMT
content-length: 0
cache-control: no-cache, no-store, must-revalidate
location: //match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=2bfb23af-c3aa-4686-95e3-06a3f3d7d9f0&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
X-Firefox-Spdy: h2
x.bidswitch.net/ul_cb/syncd?dsp_id=409&user_id=2bfb23af-c3aa-4686-95e3-06a3f3d7d9f0&user_group=2&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D
3.64.174.171200 OK 43 B URL HTTP/2 x.bidswitch.net/ul_cb/syncd?dsp_id=409&user_id=2bfb23af-c3aa-4686-95e3-06a3f3d7d9f0&user_group=2&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D
IP 3.64.174.171:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/syncd?dsp_id=409&user_id=2bfb23af-c3aa-4686-95e3-06a3f3d7d9f0&user_group=2&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20bet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:32 GMT
content-type: image/gif
content-length: 43
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
x.bidswitch.net/ul_cb/syncd?dsp_id=409&user_group=1&user_id=2bfb23af-c3aa-4686-95e3-06a3f3d7d9f0&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3D2bfb23af-c3aa-4686-95e3-06a3f3d7d9f0
3.64.174.171200 OK 43 B URL HTTP/2 x.bidswitch.net/ul_cb/syncd?dsp_id=409&user_group=1&user_id=2bfb23af-c3aa-4686-95e3-06a3f3d7d9f0&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3D2bfb23af-c3aa-4686-95e3-06a3f3d7d9f0
IP 3.64.174.171:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/syncd?dsp_id=409&user_group=1&user_id=2bfb23af-c3aa-4686-95e3-06a3f3d7d9f0&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3D2bfb23af-c3aa-4686-95e3-06a3f3d7d9f0 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20bet.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:32 GMT
content-type: image/gif
content-length: 43
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=2&user_id=2bfb23af-c3aa-4686-95e3-06a3f3d7d9f0&cb=cff44f80-946b-4451-b12f-7780ec964dcb
3.64.174.171302 Found 0 B URL HTTP/2 x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=2&user_id=2bfb23af-c3aa-4686-95e3-06a3f3d7d9f0&cb=cff44f80-946b-4451-b12f-7780ec964dcb
IP 3.64.174.171:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ul_cb/sync?dsp_id=409&expires=14&user_group=2&user_id=2bfb23af-c3aa-4686-95e3-06a3f3d7d9f0&cb=cff44f80-946b-4451-b12f-7780ec964dcb HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20bet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Wed, 08 Feb 2023 19:54:32 GMT
content-length: 0
cache-control: no-cache, no-store, must-revalidate
location: //match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=2bfb23af-c3aa-4686-95e3-06a3f3d7d9f0&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
X-Firefox-Spdy: h2
ctrack.trafficjunky.net/ctrack?action=list&type=add&id=notregistered-new&context=20bet.com&cookiename=notregistered-new&age=259200&maxcookiecount=10
66.254.114.89200 OK 35 B URL HTTP/1.1 ctrack.trafficjunky.net/ctrack?action=list&type=add&id=notregistered-new&context=20bet.com&cookiename=notregistered-new&age=259200&maxcookiecount=10
IP 66.254.114.89:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /ctrack?action=list&type=add&id=notregistered-new&context=20bet.com&cookiename=notregistered-new&age=259200&maxcookiecount=10 HTTP/1.1
Host: ctrack.trafficjunky.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
server: openresty
date: Wed, 08 Feb 2023 19:54:32 GMT
content-type: image/gif
content-length: 35
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Sun, 22 Jan 1984 03:00:00 GMT
p3p: CP="IDC DSP COR CURa ADMa OUR IND PHY ONL COM STA"
pragma: no-cache
set-cookie: tj_UUID=631cd2ee2b4f4cf89a98c513c08d9583; Path=/; Domain=trafficjunky.net; Expires=Fri, 10 Mar 2023 19:54:32 GMT; Secure; SameSite=None
tj_UUID_v2=631cd2ee-2b4f-4cf8-9a98-c513c08d9583; Path=/; Domain=trafficjunky.net; Expires=Fri, 10 Mar 2023 19:54:32 GMT; Secure; SameSite=None
614ac6550300bc7c00c3f821d11e0512=notregistered-new; Path=/; Domain=trafficjunky.net; Expires=Mon, 07 Aug 2023 19:54:32 GMT; Secure; SameSite=None
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET,POST
access-control-allow-headers: Content-Type
access-control-max-age: 86400
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
x-request-id: 63E3FDF8-42FE725901BB6FA4-2179A35C
x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=2&user_id=2bfb23af-c3aa-4686-95e3-06a3f3d7d9f0&cb=7d21b249-6cee-46e5-9b09-bb94e1837092
3.64.174.171302 Found 0 B URL HTTP/2 x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=2&user_id=2bfb23af-c3aa-4686-95e3-06a3f3d7d9f0&cb=7d21b249-6cee-46e5-9b09-bb94e1837092
IP 3.64.174.171:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ul_cb/sync?dsp_id=409&expires=14&user_group=2&user_id=2bfb23af-c3aa-4686-95e3-06a3f3d7d9f0&cb=7d21b249-6cee-46e5-9b09-bb94e1837092 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20bet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Wed, 08 Feb 2023 19:54:32 GMT
content-length: 0
cache-control: no-cache, no-store, must-revalidate
location: //match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=2bfb23af-c3aa-4686-95e3-06a3f3d7d9f0&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
X-Firefox-Spdy: h2
main.exoclick.com/tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2
95.211.229.245200 OK 20 B URL HTTP/1.1 main.exoclick.com/tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2
IP 95.211.229.245:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2 HTTP/1.1
Host: main.exoclick.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 19:54:32 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: goals=a%3A1%3A%7Bi%3A93090%3Ba%3A1%3A%7Bs%3A4%3A%22date%22%3Bs%3A10%3A%222023-02-08%22%3B%7D%7D; expires=Thu, 08 Feb 2024 19:54:32 GMT; path=/; domain=.exoclick.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
main.exosrv.com/tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2
95.211.229.246200 OK 20 B URL HTTP/1.1 main.exosrv.com/tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2
IP 95.211.229.246:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2 HTTP/1.1
Host: main.exosrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 19:54:32 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: goals=a%3A1%3A%7Bi%3A93090%3Ba%3A1%3A%7Bs%3A4%3A%22date%22%3Bs%3A10%3A%222023-02-08%22%3B%7D%7D; expires=Thu, 08 Feb 2024 19:54:32 GMT; path=/; domain=.exosrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
trc.taboola.com/1460267/log/3/unip?item-url=https%3A%2F%2F20bet.com%2Fpe%3Fbtag%3D668128_092508971B8E40D1818935D0BBD4ADB8&ref=&en=20betcom_notreg
151.101.193.44204 No Content 0 B URL HTTP/2 trc.taboola.com/1460267/log/3/unip?item-url=https%3A%2F%2F20bet.com%2Fpe%3Fbtag%3D668128_092508971B8E40D1818935D0BBD4ADB8&ref=&en=20betcom_notreg
IP 151.101.193.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1460267/log/3/unip?item-url=https%3A%2F%2F20bet.com%2Fpe%3Fbtag%3D668128_092508971B8E40D1818935D0BBD4ADB8&ref=&en=20betcom_notreg HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
content-type: image/gif
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
accept-ranges: bytes
date: Wed, 08 Feb 2023 19:54:33 GMT
via: 1.1 varnish
x-served-by: cache-bma1633-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675886073.949002,VS0,VE89
x-vcl-time-ms: 89
X-Firefox-Spdy: h2
accounts.livechatinc.com/customer/token
23.36.79.16200 OK 138 B URL HTTP/2 accounts.livechatinc.com/customer/token
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text
Hash 9c1a9c25c73a6d8ae72da8c2f1c40ce2
873393784406e4a686a9cb1b385964ee779d22b8
e54ba4bf4734a946141d77333a9688891c32e7fa2a2888626a6fc62283082e01
POST /customer/token HTTP/1.1
Host: accounts.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 189
Origin: https://secure.livechatinc.com
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://secure.livechatinc.com
cache-control: no-cache, no-store, max-age=0, must-revalidate
content-type: application/json
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
content-length: 138
date: Wed, 08 Feb 2023 19:54:33 GMT
set-cookie: __lc_cid=ddc3c231-8da9-4043-74c7-cc09228256cd; Path=/v2/customer/token; Domain=accounts.livechatinc.com; Expires=Sat, 08 Feb 2025 19:54:33 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None
__lc_cst=8d27abc3fbc13737ad593ec8ee674170010c15137c19a0eb1507d66e43fca85b3b00cb8188942fbfd5738890bffedc1f17ad8025f657547f674b1248d51f; Path=/v2/customer/token; Domain=accounts.livechatinc.com; Expires=Sat, 08 Feb 2025 19:54:33 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None
__lc_cid=ddc3c231-8da9-4043-74c7-cc09228256cd; Path=/customer/token; Domain=accounts.livechatinc.com; Expires=Sat, 08 Feb 2025 19:54:33 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None
__lc_cst=8d27abc3fbc13737ad593ec8ee674170010c15137c19a0eb1507d66e43fca85b3b00cb8188942fbfd5738890bffedc1f17ad8025f657547f674b1248d51f; Path=/customer/token; Domain=accounts.livechatinc.com; Expires=Sat, 08 Feb 2025 19:54:33 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None
__oauth_redirect_detector=counter=1&t=1675886103&tag=8ee71f8b73dbda84da2d7c84b68575b92e806a29; Path=/; Expires=Wed, 08 Feb 2023 19:55:03 GMT; HttpOnly; Secure; SameSite=None
X-Firefox-Spdy: h2
platform.20bet.com/api/variant/list?lang=es&variantId_in%5B%5D=262&variantId_in%5B%5D=261&variantId_in%5B%5D=260&variantId_in%5B%5D=263&variantId_in%5B%5D=264&variantId_in%5B%5D=265&variantId_in%5B%5D=195
172.67.15.187204 No Content 0 B URL HTTP/2 platform.20bet.com/api/variant/list?lang=es&variantId_in%5B%5D=262&variantId_in%5B%5D=261&variantId_in%5B%5D=260&variantId_in%5B%5D=263&variantId_in%5B%5D=264&variantId_in%5B%5D=265&variantId_in%5B%5D=195
IP 172.67.15.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/variant/list?lang=es&variantId_in%5B%5D=262&variantId_in%5B%5D=261&variantId_in%5B%5D=260&variantId_in%5B%5D=263&variantId_in%5B%5D=264&variantId_in%5B%5D=265&variantId_in%5B%5D=195 HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Wed, 08 Feb 2023 19:54:33 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7966eaf6288bb512-OSL
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdcf61053-67f6-4767-ad44-fa802c5ef5b4.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdcf61053-67f6-4767-ad44-fa802c5ef5b4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a9c2a9eee923b84d4e06438a8b2acaff
520b122e3ce52220af153fee26bb7067283f9075
9ff4236fdcd05210a9c8bb48ea68179e142b1b05c8b19dd66282590dff69fa22
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdcf61053-67f6-4767-ad44-fa802c5ef5b4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 10058
x-amzn-requestid: 94374454-1e89-4c43-895b-0a90f39b851d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_O5vEgcoAMFctg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c50a-0bf11cad4b0818c36188ba91;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:39:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: qYXu_I4vL00EOopA1nQcxCTMKf4nObKFk9XQozhw6FezKsfTDem3Mw==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 22:06:35 GMT
etag: "520b122e3ce52220af153fee26bb7067283f9075"
content-type: image/jpeg
age: 78478
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
api.livechatinc.com/v3.3/customer/action/check_goals?license_id=9054575
23.36.79.16200 OK 0 B URL HTTP/2 api.livechatinc.com/v3.3/customer/action/check_goals?license_id=9054575
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /v3.3/customer/action/check_goals?license_id=9054575 HTTP/1.1
Host: api.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type
Referer: https://secure.livechatinc.com/
Origin: https://secure.livechatinc.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Authorization,Content-Type
access-control-allow-origin: https://secure.livechatinc.com
vary: Accept-Encoding
content-length: 0
date: Wed, 08 Feb 2023 19:54:33 GMT
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 0d370f8d9239374cd2f765340e2e67c8
5fb8bca1d2934da69871d3c006d78d54daea052d
d269ec25d619da1dd10a65e160936701d8bf86796018bfc0432f02017f12eebc
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=123940
Date: Wed, 08 Feb 2023 19:54:33 GMT
Etag: "63e32c7f-1d7"
Expires: Fri, 10 Feb 2023 06:20:13 GMT
Last-Modified: Wed, 08 Feb 2023 05:00:47 GMT
Server: ECS (nyb/1D22)
X-Cache: Miss from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 1P0rtAwfPe5a3VMu9Vmay92wJXAbhISe2-i_etBmKYdwuBTYYGzicQ==
Age: 4766
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 0d370f8d9239374cd2f765340e2e67c8
5fb8bca1d2934da69871d3c006d78d54daea052d
d269ec25d619da1dd10a65e160936701d8bf86796018bfc0432f02017f12eebc
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 08 Feb 2023 19:54:33 GMT
Last-Modified: Wed, 08 Feb 2023 18:34:23 GMT
Server: ECS (nyb/1D07)
X-Cache: Miss from cloudfront
Via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 0QClExyQaTuRU4zJx3EHeDLgs8vCACvYg_3bVGDLTG3P2gwpkxL_gg==
Age: 4810
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 0d370f8d9239374cd2f765340e2e67c8
5fb8bca1d2934da69871d3c006d78d54daea052d
d269ec25d619da1dd10a65e160936701d8bf86796018bfc0432f02017f12eebc
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 08 Feb 2023 19:54:33 GMT
Last-Modified: Wed, 08 Feb 2023 18:33:23 GMT
Server: ECS (bsa/EB1F)
X-Cache: Miss from cloudfront
Via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Ad5SHcGK1aDDIE5rJfvDnVgrsElBnU5SL9XBiF5AqOscyfT16nGBBw==
Age: 4870
match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=2bfb23af-c3aa-4686-95e3-06a3f3d7d9f0&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
3.74.100.208204 No Content 0 B URL HTTP/2 match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=2bfb23af-c3aa-4686-95e3-06a3f3d7d9f0&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
IP 3.74.100.208:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=2bfb23af-c3aa-4686-95e3-06a3f3d7d9f0&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy= HTTP/1.1
Host: match.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20bet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Wed, 08 Feb 2023 19:54:33 GMT
X-Firefox-Spdy: h2
promos.betano.com/cdn-cgi/challenge-platform/h/g/cv/result/7966ead46f32b4ed
104.17.85.89200 OK 0 B URL HTTP/2 promos.betano.com/cdn-cgi/challenge-platform/h/g/cv/result/7966ead46f32b4ed
IP 104.17.85.89:0
POST /cdn-cgi/challenge-platform/h/g/cv/result/7966ead46f32b4ed HTTP/1.1
Host: promos.betano.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 488
Origin: https://promos.betano.com
Connection: keep-alive
Referer: https://promos.betano.com/sportsbook-pe/index.html?btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO&utm_medium=4168&utm_source=3&siteid=13943
Cookie: btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO; __cf_bm=aFcwsBvAxwEBLTJqknIH4xg3yMI4GTnj7hcUa.rU6mI-1675886068-0-AUmbrE0H59Wvwu3Vujn9ku7AolqgQ1ETx6e7PvVTCra5l9Zi0+pj2fN6/AG6s7WTjt6c0vui8nhudLdV0TSAp7E=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:29 GMT
content-type: text/plain; charset=UTF-8
set-cookie: __cf_bm=j86hk75.zeqT2v4qiRyePXSU2HNmjt8eLYsXp1uZavk-1675886069-0-AdlAthBLta77Pn7fz0LJDaUHqJHXX5POU8GJN15ZaQA9nSkD2gd+Qd9EPep31hr0DasEZUnhKaXtLaR5muCyybE7KOD1LBdmiX+V7JO5VEgtXASCh15Rjr/L26KFSQRWOryNmBpn2sGueeHMi96EpVLHMMuGA0YhO58fvX5f2leyr69bBSUQhWGkVIdFdMvZnA==; path=/; expires=Wed, 08-Feb-23 20:24:29 GMT; domain=.betano.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7966eadecf66b4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2
dsp-media.eskimi.com/assets/js/e/gtr.min.js?_=0.0.0.3
194.242.11.186200 OK 0 B URL HTTP/2 dsp-media.eskimi.com/assets/js/e/gtr.min.js?_=0.0.0.3
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /assets/js/e/gtr.min.js?_=0.0.0.3 HTTP/1.1
Host: dsp-media.eskimi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:32 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 692289
cdn-uid: ce2848ff-13c5-49e5-873d-af24ad423612
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31536000
etag: W/"621cbfb5-12fb"
expires: Tue, 28 Nov 2023 12:07:50 GMT
last-modified: Mon, 28 Feb 2022 12:27:33 GMT
x-content-type-options: nosniff
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/28/2022 12:07:50
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: c089cd7c5e4c4f015fd9c6136bfbf973
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/2929.f8f5c8474525d5d8.esm.js
104.22.34.208200 OK 0 B URL HTTP/2 20bet.com/app/2929.f8f5c8474525d5d8.esm.js
IP 104.22.34.208:0
GET /app/2929.f8f5c8474525d5d8.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_092508971B8E40D1818935D0BBD4ADB8
Cookie: btag=668128_092508971B8E40D1818935D0BBD4ADB8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:30 GMT
content-type: application/javascript
cf-ray: 7966eae22ad92d89-ARN
etag: W/"63e2550e-e6f"
last-modified: Tue, 07 Feb 2023 13:41:34 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
blancoshrimp.com/SB/PE/
172.67.146.68200 OK 0 B IP 172.67.146.68:0
Analyzer Verdict Alert fortinet Malware
GET /SB/PE/ HTTP/1.1
Host: blancoshrimp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:24 GMT
content-type: text/html
last-modified: Fri, 22 Apr 2022 08:53:29 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=F9L1UIM3ZJYYH0%2BwcH9OEi0DoUtoPCVWvX9ml7iQKGGYfRIZ2u9lIBE0vd84p9RxgSibn7OcDQSV0ysft11ZsNUT43QJpX9bEmNxpeI6lRUzG%2Bv3CLzFp0jy5aIdgsTEbvUN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7966eac13f08b515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
20bet.com/app/2343.88bb85338fd2e975.esm.js
104.22.34.208200 OK 0 B URL HTTP/2 20bet.com/app/2343.88bb85338fd2e975.esm.js
IP 104.22.34.208:0
GET /app/2343.88bb85338fd2e975.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_092508971B8E40D1818935D0BBD4ADB8
Cookie: btag=668128_092508971B8E40D1818935D0BBD4ADB8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:30 GMT
content-type: application/javascript
cf-ray: 7966eae20abd2d89-ARN
etag: W/"63e2551f-4c5"
last-modified: Tue, 07 Feb 2023 13:41:51 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/runtime.0fec2a017d8bf592.esm.js
104.22.34.208200 OK 0 B URL HTTP/2 20bet.com/app/runtime.0fec2a017d8bf592.esm.js
IP 104.22.34.208:0
GET /app/runtime.0fec2a017d8bf592.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_092508971B8E40D1818935D0BBD4ADB8
Cookie: btag=668128_092508971B8E40D1818935D0BBD4ADB8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:28 GMT
content-type: application/javascript
cf-ray: 7966ead6f8482d89-ARN
etag: W/"63e2550e-272e"
last-modified: Tue, 07 Feb 2023 13:41:34 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/status
104.22.34.208200 OK 0 B URL HTTP/2 platform.20bet.com/api/status
IP 104.22.34.208:0
GET /api/status HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:29 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7966eade980b2d89-ARN
content-encoding: br
X-Firefox-Spdy: h2
cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/index-16642886.js
52.219.168.157200 OK 0 B URL HTTP/1.1 cbt-gecko-storage.s3.eu-central-1.amazonaws.com/prod/common/complib/esm/index-16642886.js
IP 52.219.168.157:0
GET /prod/common/complib/esm/index-16642886.js HTTP/1.1
Host: cbt-gecko-storage.s3.eu-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://in.betsson.com
Connection: keep-alive
Referer: https://cbt-gecko-storage.s3.eu-central-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: p5eUkcUmdgEN0icGyVAkwikSGrCnyDP9TgDyH7VpS4tKY7eb00JQmer4G4I07okMxpjjR6fxhWo=
x-amz-request-id: 4E5HQBP0X1HFSEE8
Date: Wed, 08 Feb 2023 19:54:28 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Wed, 08 Feb 2023 11:35:16 GMT
ETag: "584a32acd9d14bbc507e27fcd78d7bf3"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 146307
s2.adform.net/banners/scripts/st/trackpoint-async.js
37.157.6.234200 OK 0 B URL HTTP/2 s2.adform.net/banners/scripts/st/trackpoint-async.js
IP 37.157.6.234:0
GET /banners/scripts/st/trackpoint-async.js HTTP/1.1
Host: s2.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promos.betano.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 19:54:29 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 29 Nov 2022 10:23:25 GMT
x-rgw-object-type: Normal
etag: W/"83eb5fafaa212c785f7393188ff817aa"
x-amz-request-id: tx00000ea5be29143837370-006385e0d3-32941e2b-default
access-control-allow-origin: *
cache-control: public, max-age=604800
x-cache-status: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
tag.growthbuddy.app/tag.js?id=DV-02355017850611493202
54.74.8.139200 OK 0 B URL HTTP/2 tag.growthbuddy.app/tag.js?id=DV-02355017850611493202
IP 54.74.8.139:0
GET /tag.js?id=DV-02355017850611493202 HTTP/1.1
Host: tag.growthbuddy.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:30 GMT
content-type: application/javascript; charset=utf-8
set-cookie: INGRESSCOOKIE=1675886071.042.104.400750|5f2e1b57d78510d04b0cf9036879032b; Path=/; Secure; HttpOnly
vary: Accept-Encoding
cache-control: public, max-age=7200
x-content-type-options: nosniff
etag: "1382-4YuDa3owVc9r2LUx5CM7dj7oB9U"
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
d1wfowvne3d4em.cloudfront.net/flags/br.svg
54.230.245.101200 OK 0 B URL HTTP/2 d1wfowvne3d4em.cloudfront.net/flags/br.svg
IP 54.230.245.101:0
GET /flags/br.svg HTTP/1.1
Host: d1wfowvne3d4em.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
date: Wed, 08 Feb 2023 16:49:48 GMT
last-modified: Thu, 05 Jan 2023 15:45:58 GMT
etag: W/"87032851c3532c9dd64f20f4bee155a9"
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: GyPXI3znzUtd-7oqAAPAy12Id9swLQ3W16zLvF9X324NHHdOMvcStA==
age: 11085
X-Firefox-Spdy: h2
d1wfowvne3d4em.cloudfront.net/flags/footballInternational.svg
54.230.245.101200 OK 0 B URL HTTP/2 d1wfowvne3d4em.cloudfront.net/flags/footballInternational.svg
IP 54.230.245.101:0
GET /flags/footballInternational.svg HTTP/1.1
Host: d1wfowvne3d4em.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Thu, 05 Jan 2023 15:46:01 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Wed, 08 Feb 2023 15:01:44 GMT
etag: W/"63d428899135429f7eb074c482090072"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: PBIyGJtOy8oO3i_gU2MB7A71dZLdffep44KPNraz2qLwB7Un8g87gQ==
age: 17569
X-Firefox-Spdy: h2
platform.20bet.com/api/data/get-currencies
104.22.34.208200 OK 0 B URL HTTP/2 platform.20bet.com/api/data/get-currencies
IP 104.22.34.208:0
GET /api/data/get-currencies HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:29 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7966eadf18632d89-ARN
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/popular/line-menu/es
104.22.34.208200 OK 0 B URL HTTP/2 platform.20bet.com/api/popular/line-menu/es
IP 104.22.34.208:0
GET /api/popular/line-menu/es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=a3202463-4b6e-41f0-801f-3ddf52a83433.1675886126.1.1675886126.1675886126.7c9639ae-6142-44ef-bcdf-8e197498bee7
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:31 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7966eae75f3b2d89-ARN
content-encoding: br
X-Firefox-Spdy: h2
d1wfowvne3d4em.cloudfront.net/flags/pt.svg
54.230.245.101200 OK 0 B URL HTTP/2 d1wfowvne3d4em.cloudfront.net/flags/pt.svg
IP 54.230.245.101:0
GET /flags/pt.svg HTTP/1.1
Host: d1wfowvne3d4em.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
date: Wed, 08 Feb 2023 14:57:58 GMT
last-modified: Thu, 05 Jan 2023 15:46:05 GMT
etag: W/"b908edaecfb2ef51ac70b6bf7457ef2c"
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: yWwei4dAtf4igMJAWekSSGeQgo3De_f_-SEmL_zPN8jDyjRmGbopFA==
age: 17795
X-Firefox-Spdy: h2
platform.20bet.com/api/variant/list?lang=es&variantId_in%5B%5D=262&variantId_in%5B%5D=261&variantId_in%5B%5D=260&variantId_in%5B%5D=263&variantId_in%5B%5D=264&variantId_in%5B%5D=265&variantId_in%5B%5D=195
104.22.34.208200 OK 0 B URL HTTP/2 platform.20bet.com/api/variant/list?lang=es&variantId_in%5B%5D=262&variantId_in%5B%5D=261&variantId_in%5B%5D=260&variantId_in%5B%5D=263&variantId_in%5B%5D=264&variantId_in%5B%5D=265&variantId_in%5B%5D=195
IP 104.22.34.208:0
GET /api/variant/list?lang=es&variantId_in%5B%5D=262&variantId_in%5B%5D=261&variantId_in%5B%5D=260&variantId_in%5B%5D=263&variantId_in%5B%5D=264&variantId_in%5B%5D=265&variantId_in%5B%5D=195 HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=a3202463-4b6e-41f0-801f-3ddf52a83433.1675886126.1.1675886126.1675886126.7c9639ae-6142-44ef-bcdf-8e197498bee7
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:33 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7966eaf67c882d89-ARN
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/market-group-sorting/get-all-ordered
104.22.34.208200 OK 0 B URL HTTP/2 platform.20bet.com/api/market-group-sorting/get-all-ordered
IP 104.22.34.208:0
GET /api/market-group-sorting/get-all-ordered HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:29 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7966eadec8302d89-ARN
content-encoding: br
X-Firefox-Spdy: h2
megapari.com/registration/?tag=d_2032927m_25437c_
83.147.204.197308 Permanent Redirect 0 B URL HTTP/2 megapari.com/registration/?tag=d_2032927m_25437c_
IP 83.147.204.197:0
ASN #202492 Silverhill Group Holding Ltd
GET /registration/?tag=d_2032927m_25437c_ HTTP/1.1
Host: megapari.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 308 Permanent Redirect
server: nginx
date: Wed, 08 Feb 2023 19:54:26 GMT
content-type: text/html; charset=utf-8
location: https://megapari.com/registration?tag=d_2032927m_25437c_
x-frame-options: SAMEORIGIN
set-cookie: SESSION=44a976d7be27b3f167718b9c3137e078; path=/; secure; HttpOnly; SameSite=Lax
ua=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
_glhf=1675903842; expires=Wed, 08-Feb-2023 20:54:26 GMT; Max-Age=3600; path=/
dnb=1; path=/; httponly; samesite=lax
auid=U5PMxWPj/fJrYEgpA0vOAg==; path=/; secure; httponly; samesite=lax
x-reason: 1079,1021
cache-control: no-cache, private
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
megapari.com/registration?tag=d_2032927m_25437c_
83.147.204.197200 OK 0 B URL HTTP/2 megapari.com/registration?tag=d_2032927m_25437c_
IP 83.147.204.197:0
ASN #202492 Silverhill Group Holding Ltd
GET /registration?tag=d_2032927m_25437c_ HTTP/1.1
Host: megapari.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 19:54:27 GMT
content-type: text/html; charset=utf-8
x-frame-options: SAMEORIGIN
set-cookie: SESSION=dc9b6ea121354dd4806d3d2ba8b737cb; path=/; secure; HttpOnly; SameSite=Lax
ua=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
_glhf=1675903842; expires=Wed, 08-Feb-2023 20:54:26 GMT; Max-Age=3600; path=/
referral_values=%7B%22type%22%3A%22reflinkid%22%2C%22val%22%3A%22d_2032927m_25437c_%22%2C%22additional%22%3A%7B%22name_tag%22%3A%22tag%22%2C%22ref_partner_id%22%3Anull%2C%22bw_%22%3Anull%7D%7D; expires=Sun, 09-Apr-2023 19:54:26 GMT; Max-Age=5184000; path=/; HttpOnly
is_rtl=1; expires=Thu, 08-Feb-2024 19:54:26 GMT; Max-Age=31536000; path=/; HttpOnly
disallow_sport=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; HttpOnly
visit=1-9bb5ef6008594bb8d4deed3c32b9d3a1; path=/; HttpOnly
referral_values=%7B%22type%22%3A%22reflinkid%22%2C%22val%22%3A%22d_2032927m_25437c_%22%2C%22additional%22%3A%7B%22name_tag%22%3A%22tag%22%2C%22ref_partner_id%22%3Anull%2C%22bw_%22%3Anull%7D%7D; expires=Sun, 09-Apr-2023 19:54:26 GMT; Max-Age=5184000; path=/; HttpOnly
reflinkid=d_2032927m_25437c_; expires=Wed, 08-Mar-2023 19:54:26 GMT; Max-Age=2419200; path=/; HttpOnly
fast_coupon=true; expires=Wed, 15-Feb-2023 19:54:26 GMT; Max-Age=604800; path=/
v3fr=1; expires=Sat, 11-Feb-2023 19:54:26 GMT; Max-Age=259200; path=/; HttpOnly; SameSite=lax
lng=en; expires=Fri, 10-Mar-2023 19:54:26 GMT; Max-Age=2592000; path=/
flaglng=en; expires=Fri, 10-Mar-2023 19:54:26 GMT; Max-Age=2592000; path=/
auid=U5PMxWPj/fNrYEgpA0vPAg==; path=/; secure; httponly; samesite=lax
vary: Accept-Encoding
content-encoding: br
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
20bet.com/app/5093.d02f7cc67d7d8427.esm.js
104.22.34.208200 OK 0 B URL HTTP/2 20bet.com/app/5093.d02f7cc67d7d8427.esm.js
IP 104.22.34.208:0
GET /app/5093.d02f7cc67d7d8427.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_092508971B8E40D1818935D0BBD4ADB8
Cookie: btag=668128_092508971B8E40D1818935D0BBD4ADB8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:30 GMT
content-type: application/javascript
cf-ray: 7966eae1ba7d2d89-ARN
etag: W/"63e25502-1c4fd"
last-modified: Tue, 07 Feb 2023 13:41:22 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/sport/10.svg
104.22.34.208200 OK 0 B URL HTTP/2 20bet.com/assets/sport/10.svg
IP 104.22.34.208:0
GET /assets/sport/10.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_092508971B8E40D1818935D0BBD4ADB8
Cookie: btag=668128_092508971B8E40D1818935D0BBD4ADB8; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=a3202463-4b6e-41f0-801f-3ddf52a83433.1675886126.1.1675886126.1675886126.7c9639ae-6142-44ef-bcdf-8e197498bee7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:31 GMT
content-type: image/svg+xml
cf-ray: 7966eae918ea2d89-ARN
etag: W/"63e255ea-16ac"
last-modified: Tue, 07 Feb 2023 13:45:14 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/event/list?isTop_eq=1&oddsExists_eq=1&competitor2Id_neq=&competitor1Id_neq=&main=1&status_in%5B%5D=0&limit=15&relations%5B%5D=league&relations%5B%5D=odds&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=players&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=es
104.22.34.208200 OK 0 B URL HTTP/2 platform.20bet.com/api/event/list?isTop_eq=1&oddsExists_eq=1&competitor2Id_neq=&competitor1Id_neq=&main=1&status_in%5B%5D=0&limit=15&relations%5B%5D=league&relations%5B%5D=odds&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=players&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=es
IP 104.22.34.208:0
GET /api/event/list?isTop_eq=1&oddsExists_eq=1&competitor2Id_neq=&competitor1Id_neq=&main=1&status_in%5B%5D=0&limit=15&relations%5B%5D=league&relations%5B%5D=odds&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=players&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=a3202463-4b6e-41f0-801f-3ddf52a83433.1675886126.1.1675886126.1675886126.7c9639ae-6142-44ef-bcdf-8e197498bee7
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:31 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7966eae70ee32d89-ARN
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/sport/list/-1/0/es
104.22.34.208200 OK 0 B URL HTTP/2 platform.20bet.com/api/sport/list/-1/0/es
IP 104.22.34.208:0
GET /api/sport/list/-1/0/es HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:29 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7966eadea8192d89-ARN
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/v2/configurations
104.22.34.208200 OK 0 B URL HTTP/2 platform.20bet.com/api/v2/configurations
IP 104.22.34.208:0
GET /api/v2/configurations HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:29 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7966eadea8222d89-ARN
content-encoding: br
X-Firefox-Spdy: h2
d1wfowvne3d4em.cloudfront.net/flags/conmebol.svg
54.230.245.101200 OK 0 B URL HTTP/2 d1wfowvne3d4em.cloudfront.net/flags/conmebol.svg
IP 54.230.245.101:0
GET /flags/conmebol.svg HTTP/1.1
Host: d1wfowvne3d4em.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
date: Tue, 07 Feb 2023 21:29:35 GMT
last-modified: Thu, 05 Jan 2023 15:45:59 GMT
etag: W/"0936ae4b3e4d0dc50cc7dea9471b2d85"
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: gvEd_K7QPkJ9cM3-bJFRazXw4XjH4V5GDa-beVXaEOooKzf_MqjaEg==
age: 80698
X-Firefox-Spdy: h2
20bet.com/assets/sport/22.svg
104.22.34.208200 OK 0 B URL HTTP/2 20bet.com/assets/sport/22.svg
IP 104.22.34.208:0
GET /assets/sport/22.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_092508971B8E40D1818935D0BBD4ADB8
Cookie: btag=668128_092508971B8E40D1818935D0BBD4ADB8; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=a3202463-4b6e-41f0-801f-3ddf52a83433.1675886126.1.1675886126.1675886126.7c9639ae-6142-44ef-bcdf-8e197498bee7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:31 GMT
content-type: image/svg+xml
cf-ray: 7966eae908e92d89-ARN
etag: W/"63e255ea-905"
last-modified: Tue, 07 Feb 2023 13:45:14 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/8319.7ec039d8049267af.esm.js
104.22.34.208200 OK 0 B URL HTTP/2 20bet.com/app/8319.7ec039d8049267af.esm.js
IP 104.22.34.208:0
GET /app/8319.7ec039d8049267af.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_092508971B8E40D1818935D0BBD4ADB8
Cookie: btag=668128_092508971B8E40D1818935D0BBD4ADB8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:30 GMT
content-type: application/javascript
cf-ray: 7966eae3ec4f2d89-ARN
etag: W/"63e2551f-25f6"
last-modified: Tue, 07 Feb 2023 13:41:51 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
promos.betano.com/cdn-cgi/challenge-platform/h/g/scripts/alpha/invisible.js?ts=1675872000
104.17.85.89200 OK 0 B URL HTTP/2 promos.betano.com/cdn-cgi/challenge-platform/h/g/scripts/alpha/invisible.js?ts=1675872000
IP 104.17.85.89:0
GET /cdn-cgi/challenge-platform/h/g/scripts/alpha/invisible.js?ts=1675872000 HTTP/1.1
Host: promos.betano.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: btag=a_13943b_1919c_PU_PE_PA_SB_DT_VOLD_BETANO; __cf_bm=aFcwsBvAxwEBLTJqknIH4xg3yMI4GTnj7hcUa.rU6mI-1675886068-0-AUmbrE0H59Wvwu3Vujn9ku7AolqgQ1ETx6e7PvVTCra5l9Zi0+pj2fN6/AG6s7WTjt6c0vui8nhudLdV0TSAp7E=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:28 GMT
content-type: application/javascript; charset=UTF-8
vary: accept-encoding
x-control-type-options: nosniff
cache-control: max-age=14400, public
server: cloudflare
cf-ray: 7966ead9af6cb4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2
betwarrior.bet/region_not_supported?register&btag=655952_A8946486889E4214A6D96FC6F271395D
104.18.21.114301 Moved Permanently 0 B URL HTTP/2 betwarrior.bet/region_not_supported?register&btag=655952_A8946486889E4214A6D96FC6F271395D
IP 104.18.21.114:0
GET /region_not_supported?register&btag=655952_A8946486889E4214A6D96FC6F271395D HTTP/1.1
Host: betwarrior.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a9279%2c%22BID%22%3a3038%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675886066580)%5c%2f%22%2c%22CookieTag%22%3a%2230389279451240919C2023281954%22%7d%5d
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Wed, 08 Feb 2023 19:54:29 GMT
location: /region_not_supported
cf-ray: 7966ead44da80b45-OSL
cf-cache-status: DYNAMIC
x-powered-by: Express
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
20bet.com/app/5352.a47af8ab3119be30.esm.js
104.22.34.208200 OK 0 B URL HTTP/2 20bet.com/app/5352.a47af8ab3119be30.esm.js
IP 104.22.34.208:0
GET /app/5352.a47af8ab3119be30.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_092508971B8E40D1818935D0BBD4ADB8
Cookie: btag=668128_092508971B8E40D1818935D0BBD4ADB8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:30 GMT
content-type: application/javascript
cf-ray: 7966eae23ae52d89-ARN
etag: W/"63e25508-3ba"
last-modified: Tue, 07 Feb 2023 13:41:28 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/2775.71943518a4ff78b7.esm.js
104.22.34.208200 OK 0 B URL HTTP/2 20bet.com/app/2775.71943518a4ff78b7.esm.js
IP 104.22.34.208:0
GET /app/2775.71943518a4ff78b7.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/pe?btag=668128_092508971B8E40D1818935D0BBD4ADB8
Cookie: btag=668128_092508971B8E40D1818935D0BBD4ADB8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:30 GMT
content-type: application/javascript
cf-ray: 7966eae21acd2d89-ARN
etag: W/"63e25502-d65"
last-modified: Tue, 07 Feb 2023 13:41:22 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/v3/menu/line/es?period=0
104.22.34.208200 OK 0 B URL HTTP/2 platform.20bet.com/api/v3/menu/line/es?period=0
IP 104.22.34.208:0
GET /api/v3/menu/line/es?period=0 HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=a3202463-4b6e-41f0-801f-3ddf52a83433.1675886126.1.1675886126.1675886126.7c9639ae-6142-44ef-bcdf-8e197498bee7
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:54:31 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7966eae72f012d89-ARN
content-encoding: br
X-Firefox-Spdy: h2
refpaiozdg.top/L?tag=d_2032927m_25437c_&site=2032927&ad=25437&r=registration/
45.135.120.29303 See Other 0 B URL HTTP/2 refpaiozdg.top/L?tag=d_2032927m_25437c_&site=2032927&ad=25437&r=registration/
IP 45.135.120.29:0
GET /L?tag=d_2032927m_25437c_&site=2032927&ad=25437&r=registration/ HTTP/1.1
Host: refpaiozdg.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 303 See Other
server: nginx
date: Wed, 08 Feb 2023 19:54:26 GMT
cache-control: private
location: https://megapari.com:443//registration/?tag=d_2032927m_25437c_
x-aspnetmvc-version: 5.0
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2