firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 21 Sep 2022 14:12:02 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ieZt5GmCoHFarskrCO_Dslhcjt5Khp9RAXdEycFR9Ora3VL5doko4A==
Age: 1662
supertotobet1108.com/
104.21.49.30301 Moved Permanently 17 kB IP 104.21.49.30:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (11591)
Hash e8b4a72f20cf585c525a0dd7e7bb4e76
bcee0ca478111f998484a93db6cd81093d0c3a6c
32e351d42c35f777aa0c7c4490c3be8c5cbf65afd549d3b7c9fe3a593fe2e4d3
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: supertotobet1108.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Wed, 21 Sep 2022 14:39:44 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.1.33
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=53cb167fcce221e9977662d1981be037; path=/
language=tr_TR; path=/
Location: https://supertotobet1108.com/
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4mfYPOWLk4V9VlQBnDRNT%2BfB5ElilroFYGqUntjFN5kKzUwzkyCId3f75BM%2BQ9AGnLw5rK9cG3WPBaniGv%2B5hKzcjiVjwsXNEYldv3owlDSjRyvrbhOxhKI%2FIv0pXU1gnShqaOCYow%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 74e38d4d1b66b50f-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a26d0784548ecab22f417f3d689daf23
8893b79366bbadeb5c8d587b8f023e310694df1c
35baaae7b3ce3110ebb2b075881cfab55ecf3eab57d834283fd18ac691b41fa2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35BAAAE7B3CE3110EBB2B075881CFAB55ECF3EAB57D834283FD18AC691B41FA2"
Last-Modified: Tue, 20 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13140
Expires: Wed, 21 Sep 2022 18:18:44 GMT
Date: Wed, 21 Sep 2022 14:39:44 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.35200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.35:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 21 Sep 2022 04:35:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Yz9DmZZ9YLz1r7gz4kCfkJzRqkglO090Ht0bWMtVZEOBWyHv1ChZqw==
age: 36271
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 14:39:44 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8a967e72b761056950b15e676bbe0030
99ae62f2d823200c59789e72b1042929cfa1777f
861c58d5742cbec75620a8a28be59a431bd5017e5be5de3a648005ccf40c1fd0
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "861C58D5742CBEC75620A8A28BE59A431BD5017E5BE5DE3A648005CCF40C1FD0"
Last-Modified: Wed, 21 Sep 2022 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21590
Expires: Wed, 21 Sep 2022 20:39:34 GMT
Date: Wed, 21 Sep 2022 14:39:44 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8a967e72b761056950b15e676bbe0030
99ae62f2d823200c59789e72b1042929cfa1777f
861c58d5742cbec75620a8a28be59a431bd5017e5be5de3a648005ccf40c1fd0
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "861C58D5742CBEC75620A8A28BE59A431BD5017E5BE5DE3A648005CCF40C1FD0"
Last-Modified: Wed, 21 Sep 2022 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21590
Expires: Wed, 21 Sep 2022 20:39:34 GMT
Date: Wed, 21 Sep 2022 14:39:44 GMT
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash c80b0e8924db43f156dd5e71d9ed53a2
04a33b70cac5bfb70ed0ce4f986a81c681c49a0e
d2c86370868301dd121403d22351b03197be559d4f136ebf0c6c5b017d7bf045
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 21 Sep 2022 14:39:45 GMT
Last-Modified: Wed, 21 Sep 2022 14:00:48 GMT
Server: ECS (nyb/1D2B)
X-Cache: Miss from cloudfront
Via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: aEpgTjR8cUSwey1zC5UnWpZT_hCAn-tELLiUUKpqkHVx0UJsmW7gEQ==
Age: 2337
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Wed, 21 Sep 2022 14:03:22 GMT
Expires: Wed, 21 Sep 2022 14:42:15 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: QWo3zBnqF2YYZxwMlULIThAWcEROoQPvS6NTtnafCAo2PzI17MVtqQ==
Age: 2183
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ff6d50919e56aed75c47feb45ee2f2ec
98f558a4b2d4f3c271abc93d0b74ece4ad7a59ef
b1b6f0e78b5a1e2092cba6d71d0d5a918066c0486176cef0a19f51e2d5a9962e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4914
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 14:39:45 GMT
Last-Modified: Wed, 21 Sep 2022 13:17:51 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.162.203.49101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.162.203.49:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: L0ufGidb7gw2NHi+7/2+Yw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: xwL/EIjnxm4MfcZKaeMBnXCm1dY=
assetscdn.pushengage.com/site_images/062961530110739.png
143.204.55.33200 OK 3.9 kB URL HTTP/2 assetscdn.pushengage.com/site_images/062961530110739.png
IP 143.204.55.33:0
File type PNG image data, 256 x 256, 8-bit colormap, non-interlaced\012- data
Hash 1ec2fd4b8a45c2708df780ade5863941
3bb21b2f2b66e9219c723276ebd839725beb27a3
5af66177f5389ef9bdf72c3dea841f8b614ff008ce0a492e22c1ebb3f6e3fbca
GET /site_images/062961530110739.png HTTP/1.1
Host: assetscdn.pushengage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supertotobet1108.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 3875
date: Tue, 23 Aug 2022 07:58:31 GMT
last-modified: Wed, 09 Jan 2019 12:50:58 GMT
etag: "1ec2fd4b8a45c2708df780ade5863941"
cache-control: max-age=31536000
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: hzpgZwEN_pTromlrGmQpEeHl4YwouF7o7fh5qHD7Z7TPQn-t17ui0w==
age: 2529675
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsalphasha2g2
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP 104.18.20.226:0
Hash 6648bec239472f1cb28f1676a5708936
db9f16cd3e6ae3822fadde569b351b8919dde546
8f9e525d591d1bf2b4d1c7e784e76183d1d461c2cce34172e5725f348935fe80
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:39:45 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Sun, 25 Sep 2022 12:04:12 GMT
ETag: "db9f16cd3e6ae3822fadde569b351b8919dde546"
Last-Modified: Wed, 21 Sep 2022 12:04:13 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3591
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74e38d576e7b0b06-OSL
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash bd4473ea9f27bd5a12c56d7c5836c14d
88bab0b2272603f095498cf75a04291e9309e874
799a594ca28d909e498d94b2f16fba457d1936283d90cf5e67153cd51ac3da7d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 21 Sep 2022 14:39:45 GMT
Last-Modified: Wed, 21 Sep 2022 13:20:21 GMT
Server: ECS (bsa/EB23)
X-Cache: Miss from cloudfront
Via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: WBjvOnyFLg4iMf8wRcejF-BLwTBn1Xvk31RQk1ZPnrxFuMc6wv9K9Q==
Age: 4764
data2.gosquared.com/pv?cs=UTF-8&cd=24&la=en-US&sw=1280&sh=1024&dp=1&pu=https%3A%2F%2Fsupertotobet1108.com%2F&pt=Supertotobet%20%7C%20Bahis%20%7C%20Casino%20%7C%20En%20y%C3%BCksek%20Oranlar%20Hemen%20Oyna&ri=0&ru=-&re=0&vi=1&pv=1&lv=0&vw=1280&vh=939&dw=1280&dh=939&st=0&sl=0&tz=0&rc=1&cb=0&a=GSN-349119-C&id=caaaa20af4440f40e6e3565f5342c0c8&tv=6.6.1933
54.147.139.202200 OK 8 B URL HTTP/2 data2.gosquared.com/pv?cs=UTF-8&cd=24&la=en-US&sw=1280&sh=1024&dp=1&pu=https%3A%2F%2Fsupertotobet1108.com%2F&pt=Supertotobet%20%7C%20Bahis%20%7C%20Casino%20%7C%20En%20y%C3%BCksek%20Oranlar%20Hemen%20Oyna&ri=0&ru=-&re=0&vi=1&pv=1&lv=0&vw=1280&vh=939&dw=1280&dh=939&st=0&sl=0&tz=0&rc=1&cb=0&a=GSN-349119-C&id=caaaa20af4440f40e6e3565f5342c0c8&tv=6.6.1933
IP 54.147.139.202:0
File type ASCII text, with no line terminators
Hash cd5232368803911b6d37f64740cfc3c9
2ff4de186edf36fb486fe0ac7e2100bde897e552
c24a65ac901ef285ee99d016d2eaebcdbadf171639d8857dd7ff6a9458ab2b6c
GET /pv?cs=UTF-8&cd=24&la=en-US&sw=1280&sh=1024&dp=1&pu=https%3A%2F%2Fsupertotobet1108.com%2F&pt=Supertotobet%20%7C%20Bahis%20%7C%20Casino%20%7C%20En%20y%C3%BCksek%20Oranlar%20Hemen%20Oyna&ri=0&ru=-&re=0&vi=1&pv=1&lv=0&vw=1280&vh=939&dw=1280&dh=939&st=0&sl=0&tz=0&rc=1&cb=0&a=GSN-349119-C&id=caaaa20af4440f40e6e3565f5342c0c8&tv=6.6.1933 HTTP/1.1
Host: data2.gosquared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supertotobet1108.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:39:45 GMT
content-type: text/javascript
content-length: 8
X-Firefox-Spdy: h2
supertoto.pushengage.com/dialog.css
54.160.160.113200 OK 21 kB URL HTTP/2 supertoto.pushengage.com/dialog.css
IP 54.160.160.113:0
Hash 2281e10bcfbbf60b7c0020117655a07f
ae5d795b190c5853bf32cb6fcbd2024f09d24a96
c3d49c375202a614736ecc1ae6eae3b69c92ed04ed1ea4954e212ca5e41ca9b0
GET /dialog.css HTTP/1.1
Host: supertoto.pushengage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supertotobet1108.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:39:45 GMT
content-type: text/css;charset=UTF-8
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash b38fda8506c0fd0358b88c3baecaf2fb
1ec4ce7066f337a5f05c6efb5e5214c3e6ee45a5
173ab8ad2586abce9a45d23fb54dce9bcb2f79806d605883c185e8370e4f06cf
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:39:46 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 21 Sep 2022 08:08:10 GMT
Expires: Wed, 28 Sep 2022 08:08:09 GMT
Etag: "1ec4ce7066f337a5f05c6efb5e5214c3e6ee45a5"
Cache-Control: max-age=580702,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74e38d5a7b7db505-OSL
static-cdn.betsolutions.com/casino/GameStarter/Staging/gameStarter.min.js
152.199.21.175200 OK 5.0 kB URL HTTP/2 static-cdn.betsolutions.com/casino/GameStarter/Staging/gameStarter.min.js
IP 152.199.21.175:0
Hash 557be782eebd7c87276c92e5b63fe814
510155fa9a6fd724c82160fb2c86314279646023
c2cf4ea989d069c19fd0e4acbf917a4e052c462a78380ab3f9c850dad1a19525
GET /casino/GameStarter/Staging/gameStarter.min.js HTTP/1.1
Host: static-cdn.betsolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supertotobet1108.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,x-ms-version
age: 520557
content-md5: 1zF6+xzP/UCQ1huCtu8fQw==
content-type: application/x-javascript
date: Wed, 21 Sep 2022 14:39:46 GMT
etag: 0x8D7B1EB0CADE934
last-modified: Sat, 15 Feb 2020 07:45:38 GMT
server: ECAcc (ska/F746)
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 97251439-201e-0112-3c0b-c9c9a6000000
x-ms-version: 2009-09-19
content-length: 4894
X-Firefox-Spdy: h2
verification.curacao-egaming.com/validate.ashx?domain=supertotobet.com
157.245.28.47200 OK 61 kB URL HTTP/1.1 verification.curacao-egaming.com/validate.ashx?domain=supertotobet.com
IP 157.245.28.47:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 200 x 222, 8-bit/color RGBA, non-interlaced\012- data
Hash 44fd7a225f8e00a3f6f95f2c3d9a2ea4
60032519d00e75c96bda1731eb5251caa44994db
91efb9b7e15c730da36a7b07d0b62542da40f8a942de7aee977d1cbf0b44aec2
GET /validate.ashx?domain=supertotobet.com HTTP/1.1
Host: verification.curacao-egaming.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supertotobet1108.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: public, no-cache="Set-Cookie", max-age=120
Transfer-Encoding: chunked
Content-Type: image/png
Expires: Wed, 21 Sep 2022 14:41:46 GMT
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
Set-Cookie: ReqId=bb4e6dd7-cf59-40d9-b1a3-deb6c0e3989c; path=/
X-Powered-By: ASP.NET
Date: Wed, 21 Sep 2022 14:39:45 GMT
r3.o.lencr.org/
23.36.76.226200 OK 1.0 kB IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3406b6a40788373abe9cb70e23470998
d046f5704fe3029fe2aea325cdcf5a0580d63762
e6654373a0a33de502f76c4864e7cd84a22fc42d8cbd800a424203679dcf9f96
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3481
Expires: Wed, 21 Sep 2022 15:37:47 GMT
Date: Wed, 21 Sep 2022 14:39:46 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3481
Expires: Wed, 21 Sep 2022 15:37:47 GMT
Date: Wed, 21 Sep 2022 14:39:46 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3481
Expires: Wed, 21 Sep 2022 15:37:47 GMT
Date: Wed, 21 Sep 2022 14:39:46 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff8fb4f53-c4a2-4769-939e-c2f7ff562e36.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff8fb4f53-c4a2-4769-939e-c2f7ff562e36.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 681b3e236c8b9bc524d935af247ec72b
96048f054243b5a13f14ab3dd9f4a0f3f2e0feae
aaa2f649fd336f89b3c0fc1d9226f8763f5a8cd850826a7f0819ebe7414fbf2a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff8fb4f53-c4a2-4769-939e-c2f7ff562e36.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7383
x-amzn-requestid: 32b97df0-b979-4e80-a54f-cae77affc915
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yxy2sHJ_oAMF0bg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632a31c4-2c6db6e21fa1db233a4c1f49;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 21:33:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: cgtMqpEEGh4T-E7vTcy_XhKVaoN9trQ_gtoxx1igk62zYATMmZBQCA==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 21:41:30 GMT
age: 61096
etag: "96048f054243b5a13f14ab3dd9f4a0f3f2e0feae"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06a0b4c5-4223-42cf-b012-2e09b250c8c1.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06a0b4c5-4223-42cf-b012-2e09b250c8c1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c2db94039cb675cb250519fe57b2b3c9
37222a70df5d9a69073b4b32ebc3a5da60006001
444f4359ac25747e7c5d7e09202f195d407bc94a4933ac7ebbbaf9839bf59aff
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06a0b4c5-4223-42cf-b012-2e09b250c8c1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12048
x-amzn-requestid: 59e98571-f927-44b3-b088-29ec1e4cc3bb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YYxD-FnIIAMF5Eg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63202ee6-14e47d9a3ae47d0f607033a8;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 07:19:02 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 55e0txtcytlUpcNWSLrHWN3FC1t4dMHGTrHGhNV7YFIhOz6c45UcCQ==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 12:43:54 GMT
age: 6952
etag: "37222a70df5d9a69073b4b32ebc3a5da60006001"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1874c3ef-e614-4fd9-9d88-b87eac5ea0e6.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1874c3ef-e614-4fd9-9d88-b87eac5ea0e6.jpeg
IP 34.120.237.76:0
Hash 864aae775a20f9408941ddd881468051
567637749823e16bacc5f5838b666629696a0c10
420a4337cb0de930946abac84533c40304da46eaaba78358dbc8da471db40eb9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1874c3ef-e614-4fd9-9d88-b87eac5ea0e6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9201
x-amzn-requestid: 6dbfae76-f9ab-4f31-9b62-bcf5d9ce4515
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YxzxlEYcoAMFaQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632a333d-7d147481402cc46a751b72ed;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 21:40:13 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JEb0g486u6AjYFbf8rSbreKjh0m1GsAGbvykHl0oahmVN2ciqe5FOw==
via: 1.1 7dcaa43cd0535d889b549e6a30a57aa0.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 22:14:57 GMT
etag: "1eef1ab0099d09d1cf965b6e7b55fe2aa4e18e54"
content-type: image/jpeg
age: 59089
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fecaa9082-610c-41c1-ae9a-e453d87828ab.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fecaa9082-610c-41c1-ae9a-e453d87828ab.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dab1f2cd68979d2004ba4449d759a341
54ed14436a75ba2aeb8459bad2ce70229aff4203
e782fb5ede547e1b167719068c6821c62414dcb0991bf9ac38285cb3ce8894e3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fecaa9082-610c-41c1-ae9a-e453d87828ab.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10038
x-amzn-requestid: 4cf38a70-a706-4e6a-b854-9404727c599d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yxy1mHDCIAMF5-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632a31bd-5aba5b0640221b302a19781b;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 21:33:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NzOpixfxr2pFiDhF5WUGmjD8r2CTn1grSkCEyWvthxRq0djbDKjknA==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 22:15:05 GMT
age: 59081
etag: "54ed14436a75ba2aeb8459bad2ce70229aff4203"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf057f43-44fd-440b-bd96-67b16eb4eb13.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf057f43-44fd-440b-bd96-67b16eb4eb13.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f7b780d39877eea116277625aaa01f1b
d8ac8a7e19b06e38070a0319cde24b5bf0eaa7db
ca9d59056e0a3f512d36db11f4a4bd3109c2ce1e13b29b5f40dce84df079e71f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf057f43-44fd-440b-bd96-67b16eb4eb13.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12654
x-amzn-requestid: efc99152-2b51-462d-b48b-67ba8263b1cf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YpOJOGVYoAMFcvQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6326c3d4-00eeb6913e06ac151f293263;Sampled=0
x-amzn-remapped-date: Sun, 18 Sep 2022 07:08:04 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: nSWUmBqJPIBYNoLtyrfAN7CK4367b6TEku9eki8BGJVdTWW3dSyckw==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 06:45:55 GMT
age: 28431
etag: "d8ac8a7e19b06e38070a0319cde24b5bf0eaa7db"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f06ad5e-83fd-449e-b227-1b9d5389e57d.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f06ad5e-83fd-449e-b227-1b9d5389e57d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 14e6ddceb639a5f4875aecb796f95c79
b1cd04a66852694284eeef16a1cde38896e33c03
4c0657a00d7fb4caefa64c28340cad94a306cc393cffe692fcc69c65a80f2391
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f06ad5e-83fd-449e-b227-1b9d5389e57d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10244
x-amzn-requestid: 71f08b9e-e977-48de-ad60-5192a43db517
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YYwBkGqjIAMFz0Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63202d3d-0af3334d085ca4a764e31bb5;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 07:11:57 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: e3MMA-NVstIsR7M9_JGH05i1e8pK17RsjyERrSMlC3uoHsWw_7ABtA==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 19:18:32 GMT
age: 69674
etag: "b1cd04a66852694284eeef16a1cde38896e33c03"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b45235cccef1e74bf45cfa8e173b696e
333fc91a29ed98ad3d0d639ae4f03ff6e7e65678
5e5baa27a83bce6861f73cfdf980c6d3809328da69f516cb0034b09df1d5c5d9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5E5BAA27A83BCE6861F73CFDF980C6D3809328DA69F516CB0034B09DF1D5C5D9"
Last-Modified: Mon, 19 Sep 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=793
Expires: Wed, 21 Sep 2022 14:53:00 GMT
Date: Wed, 21 Sep 2022 14:39:47 GMT
Connection: keep-alive
client.xox.chat/lib/client.xox.chat.iframe.bundle.js?_t=1663771186308
116.203.123.171200 OK 21 kB URL HTTP/1.1 client.xox.chat/lib/client.xox.chat.iframe.bundle.js?_t=1663771186308
IP 116.203.123.171:0
ASN #24940 Hetzner Online GmbH
Hash af5805fb56d960d7ff5b9d3decd119c0
34d6b8ec0c00912b6142c1a6ada8bcec405036c5
0da1765eda55675867c295d28032345d375766da801bcfc7bfbabe469f321a25
GET /lib/client.xox.chat.iframe.bundle.js?_t=1663771186308 HTTP/1.1
Host: client.xox.chat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supertotobet1108.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 21 Sep 2022 14:39:47 GMT
Content-Type: application/javascript
Content-Length: 20742
Last-Modified: Fri, 25 Feb 2022 16:33:47 GMT
Connection: keep-alive
ETag: "621904eb-5106"
Accept-Ranges: bytes
client.xox.chat/?_t=1663771187634
116.203.123.171200 OK 1.6 kB URL HTTP/1.1 client.xox.chat/?_t=1663771187634
IP 116.203.123.171:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3305), with no line terminators
Hash 2c6c24a0740394e33ca8dd0509d3d2b3
64e2c9e3ceb47828e2744189677a9011fafac1ae
292a24c73fe53d809832be47d5f6b4e4024b631e5c117c4df52ddcf9c7065199
GET /?_t=1663771187634 HTTP/1.1
Host: client.xox.chat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supertotobet1108.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 21 Sep 2022 14:39:47 GMT
Content-Type: text/html
Last-Modified: Fri, 25 Feb 2022 16:33:47 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"621904eb-ce9"
Expires: Wed, 21 Sep 2022 14:39:52 GMT
Cache-Control: max-age=5, no-store, no-cache, must-revalidate
Content-Encoding: gzip
client.xox.chat/static/css/2.f3cc569f.chunk.css
116.203.123.171200 OK 546 kB URL HTTP/1.1 client.xox.chat/static/css/2.f3cc569f.chunk.css
IP 116.203.123.171:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (65434)
Size 546 kB (546502 bytes)
Hash fe15d26b0b78d181e21975a05113ef7a
d4d879c40fbe00e9d16a556828dde8c8cce1cad8
fdffdb4536537cc5e0067d9f2775bc540ec2339ae11f27edd6bcfc8eebd3fafc
GET /static/css/2.f3cc569f.chunk.css HTTP/1.1
Host: client.xox.chat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://client.xox.chat/?_t=1663771187634
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 21 Sep 2022 14:39:47 GMT
Content-Type: text/css
Content-Length: 546502
Last-Modified: Fri, 25 Feb 2022 16:33:47 GMT
Connection: keep-alive
ETag: "621904eb-856c6"
Accept-Ranges: bytes
client.xox.chat/static/css/main.00301aef.chunk.css
116.203.123.171200 OK 26 kB URL HTTP/1.1 client.xox.chat/static/css/main.00301aef.chunk.css
IP 116.203.123.171:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (25756)
Hash 59dce3641ba5e76dc90cd425a3633864
e03511f586f4230115cca96a23b5e8f0b416849d
dfcd64499ecc1a9a3e7a8241a6dad75d0d9800a7854a11847b21401210f7c284
GET /static/css/main.00301aef.chunk.css HTTP/1.1
Host: client.xox.chat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://client.xox.chat/?_t=1663771187634
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 21 Sep 2022 14:39:47 GMT
Content-Type: text/css
Content-Length: 25808
Last-Modified: Fri, 25 Feb 2022 16:33:47 GMT
Connection: keep-alive
ETag: "621904eb-64d0"
Accept-Ranges: bytes
client.xox.chat/static/js/main.d546d6ae.chunk.js
116.203.123.171200 OK 46 kB URL HTTP/1.1 client.xox.chat/static/js/main.d546d6ae.chunk.js
IP 116.203.123.171:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (46115)
Hash e606146f8bb70e71fdd07a61ef38d517
a6d38a3f324a3bf7d67cb90bf0fe5f5d8761db54
f883981e583e78b1f67c041af416064612841888cc23fabc5c5ab4d89c8b9f28
GET /static/js/main.d546d6ae.chunk.js HTTP/1.1
Host: client.xox.chat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://client.xox.chat/?_t=1663771187634
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 21 Sep 2022 14:39:47 GMT
Content-Type: application/javascript
Content-Length: 46163
Last-Modified: Fri, 25 Feb 2022 16:33:47 GMT
Connection: keep-alive
ETag: "621904eb-b453"
Accept-Ranges: bytes
supertotobet-cdn1.x1zxy.com/resources/media/games/pragmatic_play/16596299396554_7860.jpg
172.67.212.40200 OK 1.1 MB URL HTTP/2 supertotobet-cdn1.x1zxy.com/resources/media/games/pragmatic_play/16596299396554_7860.jpg
IP 172.67.212.40:0
File type JPEG image data, progressive, precision 8, 500x300, components 3\012- data
Size 1.1 MB (1143655 bytes)
Hash 0d249e7d48136c5776947b3142f7cfbd
1af17fe44290f2188b5233f3fdba367e5d18b093
2e5662f2d51cb297a05e60542e9b5326414f889e8617a6bdc8d2c5ff5ddc7be4
GET /resources/media/games/pragmatic_play/16596299396554_7860.jpg HTTP/1.1
Host: supertotobet-cdn1.x1zxy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supertotobet1108.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:39:47 GMT
content-type: image/jpeg
last-modified: Thu, 04 Aug 2022 16:18:59 GMT
vary: Accept-Encoding
etag: W/"62ebf173-1c016"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aaYICNVqEqt1Pj%2BaKxDh43LXOsTNbl4jGvFXDvMSRC8T7XyUSiKagSsc47lNEAah4EHdtqOovl%2B%2F3zv4yuYLQ92w5flygUDZHG7EaX3EULoLecwaOcEHmATBPv%2FXbsRm0W1GlmhTrdQ8UT60zmk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e38d604b6cb529-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 344 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 0b44e84131a9830a5b9ad69e6e417b2e
f2392e088c37943272af4d7417f129dad86b3374
cc6365c39209f21d9ce5e02ad1e96eb126c7da4267b40af4d890f33c245cd9b9
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "CC6365C39209F21D9CE5E02AD1E96EB126C7DA4267B40AF4D890F33C245CD9B9"
Last-Modified: Tue, 20 Sep 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14518
Expires: Wed, 21 Sep 2022 18:41:46 GMT
Date: Wed, 21 Sep 2022 14:39:48 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 344 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 0b44e84131a9830a5b9ad69e6e417b2e
f2392e088c37943272af4d7417f129dad86b3374
cc6365c39209f21d9ce5e02ad1e96eb126c7da4267b40af4d890f33c245cd9b9
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "CC6365C39209F21D9CE5E02AD1E96EB126C7DA4267B40AF4D890F33C245CD9B9"
Last-Modified: Tue, 20 Sep 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16351
Expires: Wed, 21 Sep 2022 19:12:19 GMT
Date: Wed, 21 Sep 2022 14:39:48 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 344 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 0b44e84131a9830a5b9ad69e6e417b2e
f2392e088c37943272af4d7417f129dad86b3374
cc6365c39209f21d9ce5e02ad1e96eb126c7da4267b40af4d890f33c245cd9b9
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "CC6365C39209F21D9CE5E02AD1E96EB126C7DA4267B40AF4D890F33C245CD9B9"
Last-Modified: Tue, 20 Sep 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 21 Sep 2022 20:39:48 GMT
Date: Wed, 21 Sep 2022 14:39:48 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 0245e08b29e96446662908d82d21858a
9f35adb4fb2fb29f430c1b3583ff70d17cc1e7c9
97ff12403269715991aeda9fb4c0085d36bb97e72a28e9dc3400b8aee49589b2
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "97FF12403269715991AEDA9FB4C0085D36BB97E72A28E9DC3400B8AEE49589B2"
Last-Modified: Tue, 20 Sep 2022 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 21 Sep 2022 20:39:48 GMT
Date: Wed, 21 Sep 2022 14:39:48 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 0245e08b29e96446662908d82d21858a
9f35adb4fb2fb29f430c1b3583ff70d17cc1e7c9
97ff12403269715991aeda9fb4c0085d36bb97e72a28e9dc3400b8aee49589b2
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "97FF12403269715991AEDA9FB4C0085D36BB97E72A28E9DC3400B8AEE49589B2"
Last-Modified: Tue, 20 Sep 2022 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 21 Sep 2022 20:39:48 GMT
Date: Wed, 21 Sep 2022 14:39:48 GMT
Connection: keep-alive
api.xox.chat/client/system/variables
116.203.123.171200 OK 844 B URL HTTP/1.1 api.xox.chat/client/system/variables
IP 116.203.123.171:0
ASN #24940 Hetzner Online GmbH
File type JSON data\012- , ASCII text, with very long lines (844), with no line terminators
Hash 7ff8a5ae2af47217c01177e06c0b5abb
76d994302f7768e8a1b560c44b204154cab32fa2
0f3306d8335b809ea74a396707a43cfc92f52079a4db8015b5734ee7391d737c
GET /client/system/variables HTTP/1.1
Host: api.xox.chat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://client.xox.chat/
Origin: https://client.xox.chat
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 21 Sep 2022 14:39:48 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 844
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
ETag: W/"34c-dtmUMC93aOihtWDESyBBVMqzL6I"
Front-End-Https: on
api.xox.chat/chat/socket/?userType=visitor&EIO=4&transport=websocket
116.203.123.171101 Switching Protocols 0 B URL HTTP/1.1 api.xox.chat/chat/socket/?userType=visitor&EIO=4&transport=websocket
IP 116.203.123.171:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /chat/socket/?userType=visitor&EIO=4&transport=websocket HTTP/1.1
Host: api.xox.chat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://client.xox.chat
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 2KJDR3TcEUYjLPYq42We/g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 21 Sep 2022 14:39:48 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: u0mzeLVL/L2Zn6rd0CXuC9+Lon4=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 75 kB IP 142.250.74.3:0
Hash 23bf28c74a59314728d0159833cc2a01
18dc02a417b89faf0d79ab8aa39ae761c4725e72
92667764857f807ece81469791c44c042c4e41be7f4a49ace22cad0897cae89b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 14:39:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ssl.google-analytics.com/ga.js
216.58.207.232200 OK 17 kB URL HTTP/2 ssl.google-analytics.com/ga.js
IP 216.58.207.232:0
File type ASCII text, with very long lines (1305)
Hash 01d5892e6e243b52998310c2925b9f3a
58180151b6a6ee4af73583a214b68efb9e8844d4
7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
GET /ga.js HTTP/1.1
Host: ssl.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bet.supertotobet1108.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 17168
date: Wed, 21 Sep 2022 14:29:20 GMT
expires: Wed, 21 Sep 2022 16:29:20 GMT
cache-control: public, max-age=7200
age: 629
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 596ea0e7cffcb12819c214fd7e55e6b5
fdf581b35743d7693bf8c7f6154471a1b2646f06
a78eee2be3725b096407fde832e7762dad74ac69165f57a10b1ef76b5b2d9874
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 14:39:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
api.xox.chat//uploads/clients/603/603391783f1f4d03cddaace3/launcherImage.1633098454186.png
116.203.123.171200 OK 6.4 kB URL HTTP/1.1 api.xox.chat//uploads/clients/603/603391783f1f4d03cddaace3/launcherImage.1633098454186.png
IP 116.203.123.171:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash 0eabf5f671991832690d8b8934f8f0bd
ae9380eca05c5ace95e5a404676ff11ab659f4c1
4418c081d57f62586f13ecf1ec44eaf0c59d028d9e805d6bae71a356de2d88a2
GET //uploads/clients/603/603391783f1f4d03cddaace3/launcherImage.1633098454186.png HTTP/1.1
Host: api.xox.chat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supertotobet1108.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 21 Sep 2022 14:39:49 GMT
Content-Type: image/png
Content-Length: 6360
Connection: keep-alive
X-Powered-By: Express
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Fri, 01 Oct 2021 14:27:34 GMT
ETag: W/"18d8-17c3c40d4a5"
Front-End-Https: on
ssl.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=2027745002&utmhn=bet.supertotobet1108.com&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x72&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Sportotobet.com&utmhid=279736874&utmr=https%3A%2F%2Fsupertotobet1108.com%2F&utmp=%2Fhome.php%3Flanding%3D1&utmht=1663771189055&utmac=UA-36411829-1&utmcc=__utma%3D204477955.994669311.1663771189.1663771189.1663771189.1%3B%2B__utmz%3D204477955.1663771189.1.1.utmcsr%3Dsupertotobet1108.com%7Cutmccn%3D(referral)%7Cutmcmd%3Dreferral%7Cutmcct%3D%2F%3B&utmjid=1688308662&utmredir=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~
216.58.207.232200 OK 35 B URL HTTP/2 ssl.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=2027745002&utmhn=bet.supertotobet1108.com&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x72&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Sportotobet.com&utmhid=279736874&utmr=https%3A%2F%2Fsupertotobet1108.com%2F&utmp=%2Fhome.php%3Flanding%3D1&utmht=1663771189055&utmac=UA-36411829-1&utmcc=__utma%3D204477955.994669311.1663771189.1663771189.1663771189.1%3B%2B__utmz%3D204477955.1663771189.1.1.utmcsr%3Dsupertotobet1108.com%7Cutmccn%3D(referral)%7Cutmcmd%3Dreferral%7Cutmcct%3D%2F%3B&utmjid=1688308662&utmredir=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~
IP 216.58.207.232:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /r/__utm.gif?utmwv=5.7.2&utms=1&utmn=2027745002&utmhn=bet.supertotobet1108.com&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x72&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Sportotobet.com&utmhid=279736874&utmr=https%3A%2F%2Fsupertotobet1108.com%2F&utmp=%2Fhome.php%3Flanding%3D1&utmht=1663771189055&utmac=UA-36411829-1&utmcc=__utma%3D204477955.994669311.1663771189.1663771189.1663771189.1%3B%2B__utmz%3D204477955.1663771189.1.1.utmcsr%3Dsupertotobet1108.com%7Cutmccn%3D(referral)%7Cutmcmd%3Dreferral%7Cutmcct%3D%2F%3B&utmjid=1688308662&utmredir=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~ HTTP/1.1
Host: ssl.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bet.supertotobet1108.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
date: Wed, 21 Sep 2022 14:39:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
x-content-type-options: nosniff
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i.ibb.co/8jVBk0k/Su-pertotobet-Logo2.png
51.210.32.103200 OK 7.1 kB URL HTTP/2 i.ibb.co/8jVBk0k/Su-pertotobet-Logo2.png
IP 51.210.32.103:0
File type PNG image data, 345 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 792ecddac6c4f0523adcfaca1390d53b
5b84ea503be488be868dfd0446ff86c2c05b54df
4f0936370aa8de127ebd39a215622965ca9986851f158f813e6340b29c7b856a
GET /8jVBk0k/Su-pertotobet-Logo2.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://client.xox.chat/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 14:39:49 GMT
content-type: image/png
content-length: 7135
last-modified: Mon, 06 Sep 2021 13:05:27 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
data2.gosquared.com/ping?vw=1280&vh=939&dw=1268&dh=4743&st=0&sl=0&i=0&et=5563&cb=1&a=GSN-349119-C&id=caaaa20af4440f40e6e3565f5342c0c8&tv=6.6.1933
54.147.139.202200 OK 6 B URL HTTP/2 data2.gosquared.com/ping?vw=1280&vh=939&dw=1268&dh=4743&st=0&sl=0&i=0&et=5563&cb=1&a=GSN-349119-C&id=caaaa20af4440f40e6e3565f5342c0c8&tv=6.6.1933
IP 54.147.139.202:0
File type ASCII text, with no line terminators
Hash ed4a5f32c246ea1d37db5f27335ad58c
1dc58ffc1807993eed9cb6de85c6535a2b084935
eb2ad463e0fd390d63acc0e4e0c064cd787cab3ee5711fc9e6e203ad1429d4c0
GET /ping?vw=1280&vh=939&dw=1268&dh=4743&st=0&sl=0&i=0&et=5563&cb=1&a=GSN-349119-C&id=caaaa20af4440f40e6e3565f5342c0c8&tv=6.6.1933 HTTP/1.1
Host: data2.gosquared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supertotobet1108.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:39:51 GMT
content-type: text/javascript
content-length: 6
X-Firefox-Spdy: h2
clientcdn.pushengage.com/core/fa674392f26c9f7d389572112abc0d6c.js
54.230.111.47200 OK 0 B URL HTTP/2 clientcdn.pushengage.com/core/fa674392f26c9f7d389572112abc0d6c.js
IP 54.230.111.47:0
GET /core/fa674392f26c9f7d389572112abc0d6c.js HTTP/1.1
Host: clientcdn.pushengage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supertotobet1108.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 21 Sep 2022 14:39:37 GMT
server: nginx
access-control-allow-origin: *
cache-control: max-age=3600, s-maxage=120
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: g4BQdjn2nmNc0ai9Cmk7zVn5XCJIrtZ8oCIy11dSWDF3esfOKbMvNQ==
age: 7
X-Firefox-Spdy: h2
supertotobet-cdn1.x1zxy.com/resources/media/games/pragmatic_play/16315411825343_555.png
172.67.212.40200 OK 0 B URL HTTP/2 supertotobet-cdn1.x1zxy.com/resources/media/games/pragmatic_play/16315411825343_555.png
IP 172.67.212.40:0
GET /resources/media/games/pragmatic_play/16315411825343_555.png HTTP/1.1
Host: supertotobet-cdn1.x1zxy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supertotobet1108.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:39:47 GMT
content-type: image/png
last-modified: Mon, 13 Sep 2021 13:53:02 GMT
vary: Accept-Encoding
etag: W/"613f57be-675cb"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xm96r8XuYkhfH%2F8mgX83o9lMKHB8v2%2F1HiB30R95niFNoiakJ4xuM%2F25rWGbcfgXU3GZT%2F6mEYDpuCaTWmDGL4vi%2B8Yi%2B6N%2BzM4E8PTBBCeTj1OM6oo6k2wuwr40xrRESZJ%2FBm%2BolMhfFB6w0%2BI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e38d602b44b529-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
supertotobet-cdn3.x1zxy.com/resources/media/games/pragmatic_play/16243585032093_Sweet_Bonanza.png
172.67.212.40200 OK 0 B URL HTTP/2 supertotobet-cdn3.x1zxy.com/resources/media/games/pragmatic_play/16243585032093_Sweet_Bonanza.png
IP 172.67.212.40:0
GET /resources/media/games/pragmatic_play/16243585032093_Sweet_Bonanza.png HTTP/1.1
Host: supertotobet-cdn3.x1zxy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supertotobet1108.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:39:47 GMT
content-type: image/png
last-modified: Tue, 22 Jun 2021 10:41:43 GMT
vary: Accept-Encoding
etag: W/"60d1be67-22ce4"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WnmP3cYlRQhp95aITrk6YZ6PG3qGI%2F2cK1FobTshwnPdevYY7mYg4IKbY8hZ%2BzYq9sjJYDvIH1WVbHg9DeEXz%2FBxz1Czsl5cjpXC7%2BmUNQm%2Bnh5WQENkzL048oVHJb1VTpUPHNFEYoyTiLtswcI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e38d602fb7b4e8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
supertotobet-cdn3.x1zxy.com/resources/media/games/pragmatic_play/16243584995887_Gems_Bonanza.png
172.67.212.40200 OK 0 B URL HTTP/2 supertotobet-cdn3.x1zxy.com/resources/media/games/pragmatic_play/16243584995887_Gems_Bonanza.png
IP 172.67.212.40:0
GET /resources/media/games/pragmatic_play/16243584995887_Gems_Bonanza.png HTTP/1.1
Host: supertotobet-cdn3.x1zxy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supertotobet1108.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:39:47 GMT
content-type: image/png
last-modified: Tue, 22 Jun 2021 10:41:39 GMT
vary: Accept-Encoding
etag: W/"60d1be63-292ba"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Bdytc%2B%2BY%2FBIh3rZGJAPfECephMdo%2B2eC7a0a2HMqbJMrlnjQDi6guNL3fMexUnhRHdi6u%2BRgoDNwIDi7qQzyUUaKG5s0g1rCmchsE5KWC7IQiolPpysZ6D58kXkK5Pg2IhWTWkwbcjsM8SHCeVs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e38d602fbcb4e8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
supertotobet1108.com/
172.67.140.130200 OK 0 B IP 172.67.140.130:0
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: supertotobet1108.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:39:44 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.1.33
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=f26944301021ceae869d2dcf7a581e9b; path=/
language=tr_TR; path=/
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NfO6LlHGEWZ%2Fam1fgzq7s0hzGpzNMU5PNZsPPmlultLKXErGoDQ4YGEXzmphsPpcjr0%2FFGIh6HGjHsH4kOc%2BRJgnmSaT3me045r%2FCKHSCpbvJwDoq8WJl0IxqHoR%2FYU5UEYYm7W60A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e38d503e890b39-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
de-west3-1.stkcdn.com/tr/logo/big/8911.png
104.21.61.246200 OK 0 B URL HTTP/2 de-west3-1.stkcdn.com/tr/logo/big/8911.png
IP 104.21.61.246:0
GET /tr/logo/big/8911.png HTTP/1.1
Host: de-west3-1.stkcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bet.supertotobet1108.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:39:48 GMT
content-type: image/png
last-modified: Fri, 27 Oct 2017 19:06:00 GMT
vary: Accept-Encoding
etag: W/"59f38398-3691"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=T3w%2BqyWZlJiksAiguBT6K%2FIsmpIRN8xsGbkId79dwT%2FPaTDSqwVFnJOfVQ5hOchNyU9CiwAxyl4iszxMmp3%2FvhQBRtoDm1ZiAPxVOsdZ2WPAt3m5yGO9onUiL78CcFb8TVFREe%2BulSg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e38d679922b4fd-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
de-west3-1.stkcdn.com/tr/logo/big/17223.png
104.21.61.246200 OK 0 B URL HTTP/2 de-west3-1.stkcdn.com/tr/logo/big/17223.png
IP 104.21.61.246:0
GET /tr/logo/big/17223.png HTTP/1.1
Host: de-west3-1.stkcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bet.supertotobet1108.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:39:48 GMT
content-type: image/png
last-modified: Fri, 27 Oct 2017 14:35:32 GMT
vary: Accept-Encoding
etag: W/"59f34434-50ae"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GYgMgD09M0kg0BP1%2B9Yd%2FwX0gd9iHbixL8%2BMoF2pLcJZSBubuUID5HzYO7qWIuDI2CDLc3OPO5yVqoMnkoCp4ieULsEbCtnc3eK1bwLA6PCEIRAGwHw8P8hZcYDmIhJNx2LwSM0%2Bh5w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e38d6809d3b4fd-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
d1l6p2sc9645hc.cloudfront.net/gosquared.js
143.204.55.52200 OK 0 B URL HTTP/2 d1l6p2sc9645hc.cloudfront.net/gosquared.js
IP 143.204.55.52:0
GET /gosquared.js HTTP/1.1
Host: d1l6p2sc9645hc.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supertotobet1108.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
last-modified: Fri, 19 Nov 2021 15:31:18 GMT
server: AmazonS3
content-encoding: br
date: Wed, 21 Sep 2022 05:29:19 GMT
cache-control: max-age=43200, public
etag: W/"43905f2ad338bdfa927ca79740e6e7a1"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: DzPWNnyKsM4qMSpfI-CsQ9DR4JDDQkaNKTaZ7bl_S1WNSGcVXwC_lA==
age: 33088
X-Firefox-Spdy: h2
supertotobet-cdn2.x1zxy.com/resources/media/games/pragmatic_play/16243584995351_Gates_of_Olympus.png
104.21.61.163200 OK 0 B URL HTTP/2 supertotobet-cdn2.x1zxy.com/resources/media/games/pragmatic_play/16243584995351_Gates_of_Olympus.png
IP 104.21.61.163:0
GET /resources/media/games/pragmatic_play/16243584995351_Gates_of_Olympus.png HTTP/1.1
Host: supertotobet-cdn2.x1zxy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supertotobet1108.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:39:47 GMT
content-type: image/png
last-modified: Tue, 22 Jun 2021 10:41:39 GMT
vary: Accept-Encoding
etag: W/"60d1be63-20720"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OqC3ZfkTM7BQq4IBxFpp4CYzD9ZPuO8%2FaOBWECMKRsBh4G5C8MTNVv62T0TczQywrZ4EBWMlZJRdXoHZlJ4BNRmqPOg3NCP3zmU4LDir%2F3KmBi8%2Bn2DDyA9Oj5dOY4N%2BQy1KA56r86RRUFXjhXE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e38d604ea50b49-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
supertotobet-cdn3.x1zxy.com/resources/media/games/pragmatic_play/16559950290426_7687.jpg
172.67.212.40200 OK 0 B URL HTTP/2 supertotobet-cdn3.x1zxy.com/resources/media/games/pragmatic_play/16559950290426_7687.jpg
IP 172.67.212.40:0
GET /resources/media/games/pragmatic_play/16559950290426_7687.jpg HTTP/1.1
Host: supertotobet-cdn3.x1zxy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supertotobet1108.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:39:47 GMT
content-type: image/jpeg
last-modified: Thu, 23 Jun 2022 14:37:09 GMT
vary: Accept-Encoding
etag: W/"62b47a95-20369"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tnUv0myMxZmTGHxmseGGkWnJm6rithEeXGUS%2BFcHP1S2fGlL3hO1My3PyXxYGpo8WHLTw6n%2BXw4b%2FdabE1RK8ZlVEGi1Mby9AQujz2mwAAT0GiieMBfaqMsImhDPhJmrz%2FvpDdj8zSYw2AMC%2FDE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e38d604fd6b4e8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
supertotobet-cdn2.x1zxy.com/resources/media/games/pragmatic_play/16315411065042_531.png
104.21.61.163200 OK 0 B URL HTTP/2 supertotobet-cdn2.x1zxy.com/resources/media/games/pragmatic_play/16315411065042_531.png
IP 104.21.61.163:0
GET /resources/media/games/pragmatic_play/16315411065042_531.png HTTP/1.1
Host: supertotobet-cdn2.x1zxy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supertotobet1108.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:39:47 GMT
content-type: image/png
last-modified: Mon, 13 Sep 2021 13:51:46 GMT
vary: Accept-Encoding
etag: W/"613f5772-5d861"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=scAUrzzQb8rJqd%2F2Dzfa48dTWhZdMuZgZbdd35TiXcxtK%2FBpfabA14NH4vjcrVZAYZ9fCD1E8pHCutmyFVfX%2BnFTN43RKHwWFfiS5e%2BatfJEzo9LlybQ6yQiDjuSK7oyD%2FaNeHvy%2Bd5F9ZSsco0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e38d603e9c0b49-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
de-west3-1.stkcdn.com/tr/logo/big/169932.png
104.21.61.246200 OK 0 B URL HTTP/2 de-west3-1.stkcdn.com/tr/logo/big/169932.png
IP 104.21.61.246:0
GET /tr/logo/big/169932.png HTTP/1.1
Host: de-west3-1.stkcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bet.supertotobet1108.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:39:48 GMT
content-type: image/png
last-modified: Sun, 30 Sep 2018 22:01:34 GMT
vary: Accept-Encoding
etag: W/"5bb147be-289a"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3EZjftlxjib21ZhkI08FyL5ZFeyAZXkqgXbIW4wKxnGuzg%2B60rGVPGxuP8pCVp85tHOk2hIg0zgAtl%2F0a8lNsP8W9cyTVsbHg%2BnMflspGYjBqoiO%2FrbM%2FT2pLFC7NTD3b5BQEgFbQUo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e38d67c980b4fd-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
supertotobet-cdn3.x1zxy.com/resources/media/games/pragmatic_play/16587637633833_7847.jpg
172.67.212.40200 OK 0 B URL HTTP/2 supertotobet-cdn3.x1zxy.com/resources/media/games/pragmatic_play/16587637633833_7847.jpg
IP 172.67.212.40:0
GET /resources/media/games/pragmatic_play/16587637633833_7847.jpg HTTP/1.1
Host: supertotobet-cdn3.x1zxy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supertotobet1108.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:39:47 GMT
content-type: image/jpeg
last-modified: Mon, 25 Jul 2022 15:42:43 GMT
vary: Accept-Encoding
etag: W/"62deb9f3-1a336"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=i%2BohLbZOJEuV%2FbUXtdNsPX5Ma%2B3EYP3qANfozCdKQon2elHThFmA%2B2qPpiuNrTOSZdNEh23qMkq%2Fif3ueMrZdWptcIm1QCN%2BJOiL44wk2kYcqY5CVNm%2F1OIWFnhaukCE74mXEzbdZG%2BxOnMtoak%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e38d604fd1b4e8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
supertotobet-cdn5.x1zxy.com/resources/media/games/pragmatic_play/16243585016356_Fruit_Party.png
104.21.61.163200 OK 0 B URL HTTP/2 supertotobet-cdn5.x1zxy.com/resources/media/games/pragmatic_play/16243585016356_Fruit_Party.png
IP 104.21.61.163:0
GET /resources/media/games/pragmatic_play/16243585016356_Fruit_Party.png HTTP/1.1
Host: supertotobet-cdn5.x1zxy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supertotobet1108.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:39:47 GMT
content-type: image/png
last-modified: Tue, 22 Jun 2021 10:41:41 GMT
vary: Accept-Encoding
etag: W/"60d1be65-19418"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jsLg%2BlBanYvGjaIgJdedoV7ofZ%2B8V7YYNwUZSIJyX6MbxdxQiJ9MrOXc6V6ikjvz%2B5r4bgJSLgkRZYTq6h2kE49jkaWUNAuZtkAb4degAAIbmdEHj4CdmdmLw7VV3sw16Q5V%2Fqed5BLLe%2BoTy0w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e38d604e200b69-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
de-west3-1.stkcdn.com/tr/logo/big/16681.png
104.21.61.246200 OK 0 B URL HTTP/2 de-west3-1.stkcdn.com/tr/logo/big/16681.png
IP 104.21.61.246:0
GET /tr/logo/big/16681.png HTTP/1.1
Host: de-west3-1.stkcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bet.supertotobet1108.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:39:48 GMT
content-type: image/png
last-modified: Fri, 27 Oct 2017 13:44:45 GMT
vary: Accept-Encoding
etag: W/"59f3384d-4955"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=B20h0SntvOI74P3zjV7X6pgZ64tE2kPVE1b%2F431mAJ2foOVA18E%2Fhm56B3R3c7FOJPeQf0uhvy0mWpOFOb%2FysrbBhVdjmHiYlZndwyZPbG8kSYggZfI2d1iGbPBjVvSz2huWcJ6Ghx0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e38d679927b4fd-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
de-west3-1.stkcdn.com/tr/logo/big/126037.png
104.21.61.246200 OK 0 B URL HTTP/2 de-west3-1.stkcdn.com/tr/logo/big/126037.png
IP 104.21.61.246:0
GET /tr/logo/big/126037.png HTTP/1.1
Host: de-west3-1.stkcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bet.supertotobet1108.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:39:48 GMT
content-type: image/png
last-modified: Wed, 16 Jan 2019 13:30:49 GMT
vary: Accept-Encoding
etag: W/"5c3f3209-37b3"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HSM%2Bm4vUHaZKKOS4f6ubwaTTv19iZjQ3RxKlbTMA4jI3BdTjEfh%2BMHVWGesElwhqOV1gsW%2BV2ggqEFeIAaZTsXi50ipj%2F2gqD1yi%2BjhxqwXod7z1slnyp9fXikuWQvIoaxR8x%2FWAh5M%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e38d679920b4fd-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
de-west3-1.stkcdn.com/tr/logo/big/14387.png
104.21.61.246200 OK 0 B URL HTTP/2 de-west3-1.stkcdn.com/tr/logo/big/14387.png
IP 104.21.61.246:0
GET /tr/logo/big/14387.png HTTP/1.1
Host: de-west3-1.stkcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bet.supertotobet1108.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:39:48 GMT
content-type: image/png
last-modified: Fri, 27 Oct 2017 13:09:25 GMT
vary: Accept-Encoding
etag: W/"59f33005-387b"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3DyP%2FuGtj2EtfNpepqBH7kYfGM5P2YsKHmmbi1SOoXZ%2Fei%2BCW7sj2mWwPxs6%2BeRmdsMddDK%2FkViyT0%2BjAcloeM4XB6oMXYO2ofuTtGK47bqW441WT8GA2bBh9m1PsCsRYmCKXo5xztU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e38d67b94db4fd-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
de-west3-1.stkcdn.com/tr/logo/big/169013.png
104.21.61.246200 OK 0 B URL HTTP/2 de-west3-1.stkcdn.com/tr/logo/big/169013.png
IP 104.21.61.246:0
GET /tr/logo/big/169013.png HTTP/1.1
Host: de-west3-1.stkcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bet.supertotobet1108.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:39:48 GMT
content-type: image/png
last-modified: Tue, 20 Feb 2018 15:01:31 GMT
vary: Accept-Encoding
etag: W/"5a8c384b-3ad2"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TO8qLPWSems1JzeYDd%2FuBODlx333koTX13xpbPsFSRpB8rRXciMUiYMwTw4MpGrSzUc4grwMmip2lGjRp7QjSm0DCwWOigIivhZ5Oy5P52hnb2UMSG2InaWxPpNGrAxJD4Fc88S63PY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e38d67b950b4fd-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
de-west3-1.stkcdn.com/tr/logo/big/8876620.png
104.21.61.246200 OK 0 B URL HTTP/2 de-west3-1.stkcdn.com/tr/logo/big/8876620.png
IP 104.21.61.246:0
GET /tr/logo/big/8876620.png HTTP/1.1
Host: de-west3-1.stkcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bet.supertotobet1108.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:39:48 GMT
content-type: image/png
last-modified: Mon, 14 Jan 2019 10:34:30 GMT
vary: Accept-Encoding
etag: W/"5c3c65b6-2c3b"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ud82hGFPb07Aars6TvxiVgSlHNG5gpgreWccknFlNSDpEMQ37FVU%2FpHu%2FoE2CnKZrEaJj3Mv1NPNvDpq84jnPrGs1xXvicbuoyyM1ydXyOYEgKM4BaOrjWiRnhTMq0Jm2WAchBrC%2BRQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e38d67f9c9b4fd-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
supertotobet-cdn2.x1zxy.com/resources/media/games/pragmatic_play/16243585074871_Sweet_Bonanza_Xmas.png
104.21.61.163200 OK 0 B URL HTTP/2 supertotobet-cdn2.x1zxy.com/resources/media/games/pragmatic_play/16243585074871_Sweet_Bonanza_Xmas.png
IP 104.21.61.163:0
GET /resources/media/games/pragmatic_play/16243585074871_Sweet_Bonanza_Xmas.png HTTP/1.1
Host: supertotobet-cdn2.x1zxy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supertotobet1108.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:39:47 GMT
content-type: image/png
last-modified: Tue, 22 Jun 2021 10:41:47 GMT
vary: Accept-Encoding
etag: W/"60d1be6b-1ea05"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5216ZXvK1ffFyYHrE1O%2Fvzy7%2BNYKCvCYZ6mVl7hW5GI3dOiKpGnUZZuMMwG9uSwGFPLNRYQVyLKeMeR5r517zcMc%2Fym%2FOHNNtyAsuj4LmlgpgVcAVPXScZpZ0okELOVTxz9BRkCIliM7zcOAhyE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e38d602e860b49-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2