blancoshrimp.com/SB/BR
104.21.73.164301 Moved Permanently 162 B IP 104.21.73.164:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /SB/BR HTTP/1.1
Host: blancoshrimp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 04 Feb 2023 02:03:38 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://blancoshrimp.com/SB/BR
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AqEmhkL47tsD1ZtX3bhFNnTjQYQk4YSnjLomtAkdvsYeB5PoSqeDkzZEaW%2BGPDgqDOhpMOKHkWYBDh6z2WQ5NI83svam6hkYK6zRio8CbpO67NEz5Oib3R1n3U1dBIzjVPno"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 793fd4baae7ab515-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e935ea42be4feaed61a824b0b903913e
f966cfa80d65a805cb9d7c6a53b3340865d7c51a
eb0ce9ae50d156fe5924b2d77346735e4e93b5240cff301c9aa835bb0b385815
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB0CE9AE50D156FE5924B2D77346735E4E93B5240CFF301C9AA835BB0B385815"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6007
Expires: Sat, 04 Feb 2023 03:43:45 GMT
Date: Sat, 04 Feb 2023 02:03:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d4e95d0d8982bcd07804baf6fc88231c
5027abda0875bd2529dd4d6691784c74da71a9ee
373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7667
Expires: Sat, 04 Feb 2023 04:11:25 GMT
Date: Sat, 04 Feb 2023 02:03:38 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 04 Feb 2023 01:36:12 GMT
content-type: application/json
age: 1646
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9a76feabb767086ae0fa54e0ffbf763f
3655d78994a1e9838340669462728b67c8c12e54
bf215ab858c7785b7c01f7d3d437a918f056f00fe9b065820e1cdd09b7bba8f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BF215AB858C7785B7C01F7D3D437A918F056F00FE9B065820E1CDD09B7BBA8F9"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8039
Expires: Sat, 04 Feb 2023 04:17:37 GMT
Date: Sat, 04 Feb 2023 02:03:38 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: kwO0DHhVaf7JAFmEL6M+ym9Hxg8W+YNECI8ZbYW+yiuWnqz1Kt4phBqRdM63up1ehAu372u9QMI=
x-amz-request-id: X0D2EBG26AKA0444
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 04 Feb 2023 01:23:48 GMT
age: 2390
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:03:38 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash b4cede06098e6bce7ae3b9e7f5083d87
ffadab025aeea8377e6d019cf76ea7d59742f621
8dc6a46f189f992da3bde42f357f107b12c29b1c078ab713d7a545174a629766
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=99174
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:03:38 GMT
Etag: "63dc9d60-117"
Expires: Sun, 05 Feb 2023 05:36:32 GMT
Last-Modified: Fri, 03 Feb 2023 05:36:32 GMT
Server: nginx
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash b4cede06098e6bce7ae3b9e7f5083d87
ffadab025aeea8377e6d019cf76ea7d59742f621
8dc6a46f189f992da3bde42f357f107b12c29b1c078ab713d7a545174a629766
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=99174
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:03:38 GMT
Etag: "63dc9d60-117"
Expires: Sun, 05 Feb 2023 05:36:32 GMT
Last-Modified: Fri, 03 Feb 2023 05:36:32 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 279
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 04 Feb 2023 01:07:19 GMT
age: 3379
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash c181c51a9326d56e60915a792c306c2c
de1cc0ce1384905e65a9fa9575743091d785e528
b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:03:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13385
Expires: Sat, 04 Feb 2023 05:46:43 GMT
Date: Sat, 04 Feb 2023 02:03:38 GMT
Connection: keep-alive
securely-send.com/storage/howisliferightnow_br.js
161.35.78.172200 OK 73 kB URL HTTP/2 securely-send.com/storage/howisliferightnow_br.js
IP 161.35.78.172:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (65536), with no line terminators
Hash ce8b7a1adbef04f0713362a89dcf2d57
26795a06c7f34096c7ec77641356010157dca5c6
3cbca4208f31fdf694ac970778957d0e6a7483823d26cb64edc003a1517e5cc1
Analyzer Verdict Alert fortinet Phishing
GET /storage/howisliferightnow_br.js HTTP/1.1
Host: securely-send.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blancoshrimp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sat, 04 Feb 2023 02:03:38 GMT
content-type: application/javascript; charset=utf-8
content-length: 72840
last-modified: Thu, 02 Feb 2023 13:19:08 GMT
etag: "63dbb84c-11c88"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash c181c51a9326d56e60915a792c306c2c
de1cc0ce1384905e65a9fa9575743091d785e528
b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:03:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:03:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css2?family=Montserrat:wght@300;400;500;600&display=swap
142.250.74.106200 OK 32 kB URL HTTP/2 fonts.googleapis.com/css2?family=Montserrat:wght@300;400;500;600&display=swap
IP 142.250.74.106:0
Hash 3e81ff8c5a628ec260116c402df5dcd9
cdc143f4d09d8c5fc2e6557da2f23a31ce3fe095
01a44725a392d4ede02328e3088ee75486fa484102acbeb53d3f29f156182512
GET /css2?family=Montserrat:wght@300;400;500;600&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blancoshrimp.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 04 Feb 2023 02:03:38 GMT
date: Sat, 04 Feb 2023 02:03:38 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:03:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
54.200.178.235101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.200.178.235:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: uaU6wPVVuvA1G3UiSJyz3g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: jDSw2YsMvS82JiA4fQ+R3DKu1N0=
e1.o.lencr.org/
23.36.77.32200 OK 346 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b62003434217935f45d4a36c288cc814
4c36aae857ca36f64b7dfd33c16f6ec8bdeb2c33
cdaa0d2f5507d7d1e230ba2cdd823c980c7473d5bf4f4a8c8cd3c3185a364319
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "CDAA0D2F5507D7D1E230BA2CDD823C980C7473D5BF4F4A8C8CD3C3185A364319"
Last-Modified: Wed, 01 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7189
Expires: Sat, 04 Feb 2023 04:03:28 GMT
Date: Sat, 04 Feb 2023 02:03:39 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 2f0d3d81687a37f046b81d18b18405d8
af42a39b658ec4e72e85269808c41e22decc52e4
006f42b4bbdc26809dfa17c8d914ddee4e96ac4fa2fea3c9b48ad1bff4ce7e35
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4910
Cache-Control: max-age=168900
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:03:39 GMT
Etag: "63dd9a91-118"
Expires: Mon, 06 Feb 2023 00:58:39 GMT
Last-Modified: Fri, 03 Feb 2023 23:36:49 GMT
Server: ECS (amb/6B74)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash bca1a1c39808173f946b262922094b62
c21cb87878c0a28993beb6b7dda32c6f87c858a7
22878acb3acb0bde6cacae1833309fa5410214a75e95744e617b8f3466198f19
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5323
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:03:39 GMT
Last-Modified: Sat, 04 Feb 2023 00:34:56 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash bca1a1c39808173f946b262922094b62
c21cb87878c0a28993beb6b7dda32c6f87c858a7
22878acb3acb0bde6cacae1833309fa5410214a75e95744e617b8f3466198f19
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 7
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:03:39 GMT
Etag: "63dc5465-1d7"
Last-Modified: Sat, 04 Feb 2023 02:03:32 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9f93c096cdd2ec76c3dea40a1d63727f
2b1a3aad4481dbe2add0369b6373490d34f880a7
6e334d037f771664bf03bbe1769d375010b8b1418d0b097b72a975352b9db015
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6E334D037F771664BF03BBE1769D375010B8B1418D0B097B72A975352B9DB015"
Last-Modified: Thu, 02 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18019
Expires: Sat, 04 Feb 2023 07:03:58 GMT
Date: Sat, 04 Feb 2023 02:03:39 GMT
Connection: keep-alive
media.betwarrior.bet/redirect.aspx?pid=9275&bid=2636
23.36.79.17307 Temporary Redirect 0 B URL HTTP/2 media.betwarrior.bet/redirect.aspx?pid=9275&bid=2636
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect.aspx?pid=9275&bid=2636 HTTP/1.1
Host: media.betwarrior.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
content-type: text/html
content-length: 0
location: https://promo.betwarrior.bet/pt/welcome-offer-sports/?utm_source=netrefer&utm_medium=affiliates&utm_campaign=sports&btag=655952_5F3D35BD778945ED822FD8340F9A5004
p3p: CP="This is not a P3P policy! It is used to bypass IEs problematic handling of cookies"
x-aspnet-version: 4.0.30319
request-context: appId=cid-v1:83ffbda4-9458-475e-90ec-4427cfb5c3b0
access-control-expose-headers: Request-Context
expires: Sat, 04 Feb 2023 02:03:39 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 04 Feb 2023 02:03:39 GMT
set-cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a9275%2c%22BID%22%3a2636%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675476219431)%5c%2f%22%2c%22CookieTag%22%3a%2226369275451240919C20232423%22%7d%5d; SameSite=None;; domain=.betwarrior.bet; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; secure
NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%2239439319%7c1%22%7d%5d; domain=.betwarrior.bet; expires=Mon, 04-Feb-3022 02:03:39 GMT; path=/; secure; SameSite=Strict
server-timing: cdn-cache; desc=MISS, edge; dur=19, origin; dur=46
X-Firefox-Spdy: h2
wlf12bet.adsrv.eacdn.com/C.ashx?btag=a_3672b_86c_&affid=2450&siteid=3672&adid=86&c=PU_BR_PA_DT_VOLD_F12BET
40.127.232.184302 Found 253 B URL HTTP/1.1 wlf12bet.adsrv.eacdn.com/C.ashx?btag=a_3672b_86c_&affid=2450&siteid=3672&adid=86&c=PU_BR_PA_DT_VOLD_F12BET
IP 40.127.232.184:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 69bbc80d512db4d06033ea310c05502a
afff919e62355d25e81de3de1e7a50ef398c6914
005f9795ac30a2b2aec683fdc7dea4b031eb83e53af9fdce63b2996af1a9c89a
GET /C.ashx?btag=a_3672b_86c_&affid=2450&siteid=3672&adid=86&c=PU_BR_PA_DT_VOLD_F12BET HTTP/1.1
Host: wlf12bet.adsrv.eacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: //wlf12bet.adsrv.eacdn.com/C.ashx?btag=a_3672b_86c_&affid=2450&siteid=3672&adid=86&c=PU_BR_PA_DT_VOLD_F12BET&AutoR=1
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
Set-Cookie: CEK=a; expires=Fri, 05-May-2023 02:03:39 GMT; path=/; SameSite=None; Secure
X-Powered-By: ASP.NET
X-XSS-Protection: 1; mode=block
Date: Sat, 04 Feb 2023 02:03:38 GMT
Content-Length: 253
Vary: Accept-Encoding
wlpixbet.adsrv.eacdn.com/C.ashx?btag=a_1856b_104c_&affid=871&siteid=1856&adid=104&c=PU_BR_PA_DT_VOLD_PIXBET
40.127.232.184302 Found 254 B URL HTTP/1.1 wlpixbet.adsrv.eacdn.com/C.ashx?btag=a_1856b_104c_&affid=871&siteid=1856&adid=104&c=PU_BR_PA_DT_VOLD_PIXBET
IP 40.127.232.184:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 401c1c6f98744d5f972b5b7fb6934df1
679aba43c8eb9b942ac0a0e2d029693d259522fa
2f130eb13b89c26fbb9e65588a7f228248e8839692cd2ad52297b5b38e8c1a40
GET /C.ashx?btag=a_1856b_104c_&affid=871&siteid=1856&adid=104&c=PU_BR_PA_DT_VOLD_PIXBET HTTP/1.1
Host: wlpixbet.adsrv.eacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: //wlpixbet.adsrv.eacdn.com/C.ashx?btag=a_1856b_104c_&affid=871&siteid=1856&adid=104&c=PU_BR_PA_DT_VOLD_PIXBET&AutoR=1
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
Set-Cookie: CEK=a; expires=Fri, 05-May-2023 02:03:39 GMT; path=/; SameSite=None; Secure
X-Powered-By: ASP.NET
X-XSS-Protection: 1; mode=block
Date: Sat, 04 Feb 2023 02:03:38 GMT
Content-Length: 254
Vary: Accept-Encoding
ocsp.pki.goog/s/gts1p5/jIkIsUPfARQ
142.250.74.163200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/jIkIsUPfARQ
IP 142.250.74.163:0
Hash 101e8516845dacb0724f779a64cf20a6
935a5e6acc63321c43efda9b31fc892d1651c4ac
bdb063cb72db399fc16f29e3f4ae2b1197b66b22593bf5e16fe6dfef41602d7c
POST /s/gts1p5/jIkIsUPfARQ HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:03:39 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
wlf12bet.adsrv.eacdn.com/C.ashx?btag=a_3672b_86c_&affid=2450&siteid=3672&adid=86&c=PU_BR_PA_DT_VOLD_F12BET&AutoR=1
40.127.232.184302 Found 174 B URL HTTP/1.1 wlf12bet.adsrv.eacdn.com/C.ashx?btag=a_3672b_86c_&affid=2450&siteid=3672&adid=86&c=PU_BR_PA_DT_VOLD_F12BET&AutoR=1
IP 40.127.232.184:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 9a576d04ecc221479f28ef36d62876dc
9c3f7b9b5790fa2b2be7217ffc368afdc90fb4c1
84845a1009e63e0136af7ec2b9d4deb6fbd9eb592f733c47ee297d80737d6678
GET /C.ashx?btag=a_3672b_86c_&affid=2450&siteid=3672&adid=86&c=PU_BR_PA_DT_VOLD_F12BET&AutoR=1 HTTP/1.1
Host: wlf12bet.adsrv.eacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: CEK=a
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: https://f12.bet/?btag=a_3672b_86c_PU_BR_PA_DT_VOLD_F12BET
Server: Microsoft-IIS/10.0
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
X-AspNet-Version: 4.0.30319
Set-Cookie: XYZ=3&1&148&&&&0&1&&68ffc186-b807-4f1c-872f-803255b399bb&&a_3672b_86&; expires=Fri, 05-May-2023 02:03:39 GMT; path=/; SameSite=None; Secure
A_86=a=86&r=0&fv=0&lv=0&vc=0&fc=20230204&lc=20230204020339&cc=1; expires=Fri, 05-May-2023 02:03:39 GMT; path=/; SameSite=None; Secure
PM_2=c=PU_BR_PA_DT_VOLD_F12BET&s=3672&ad=86&md=0&pm=2&d=20230204020339&ip=1532635802&r=0&ref=&RedirectParams=btag%3da_3672b_86c_PU_BR_PA_DT_VOLD_F12BET; expires=Fri, 05-May-2023 02:03:39 GMT; path=/; SameSite=None; Secure
CEK=a; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; SameSite=None; Secure
X-Powered-By: ASP.NET
X-XSS-Protection: 1; mode=block
Date: Sat, 04 Feb 2023 02:03:38 GMT
Content-Length: 174
Vary: Accept-Encoding
promo.20bet.partners/redirect.aspx?pid=191753&bid=1971&lpid=1154
23.36.79.17307 Temporary Redirect 0 B URL HTTP/2 promo.20bet.partners/redirect.aspx?pid=191753&bid=1971&lpid=1154
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect.aspx?pid=191753&bid=1971&lpid=1154 HTTP/1.1
Host: promo.20bet.partners
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
content-type: text/html
content-length: 0
location: https://20media.world/br/?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
p3p: CP="This is not a P3P policy! It is used to bypass IEs problematic handling of cookies"
x-aspnet-version: 4.0.30319
request-context: appId=cid-v1:83ffbda4-9458-475e-90ec-4427cfb5c3b0
access-control-expose-headers: Request-Context
expires: Sat, 04 Feb 2023 02:03:39 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 04 Feb 2023 02:03:39 GMT
set-cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a191753%2c%22BID%22%3a1971%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675476219467)%5c%2f%22%2c%22CookieTag%22%3a%221971191753451240919C20232423%22%7d%5d; SameSite=None;; domain=.20bet.partners; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; secure
NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%221094715143%7c1%22%7d%5d; domain=.20bet.partners; expires=Mon, 04-Feb-3022 02:03:39 GMT; path=/; secure; SameSite=Strict
server-timing: cdn-cache; desc=MISS, edge; dur=57, origin; dur=66
X-Firefox-Spdy: h2
wlpixbet.adsrv.eacdn.com/C.ashx?btag=a_1856b_104c_&affid=871&siteid=1856&adid=104&c=PU_BR_PA_DT_VOLD_PIXBET&AutoR=1
40.127.232.184302 Found 185 B URL HTTP/1.1 wlpixbet.adsrv.eacdn.com/C.ashx?btag=a_1856b_104c_&affid=871&siteid=1856&adid=104&c=PU_BR_PA_DT_VOLD_PIXBET&AutoR=1
IP 40.127.232.184:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash b9ef7cbf2593e1fa335a8ea48ca65d7b
f5c2ee8f152bc0290842c5f1d57ff7708e83a69d
cee6dc9591c011240fa6f49feb4776f521cb73ac2fc98a0ecf1361b867d73796
GET /C.ashx?btag=a_1856b_104c_&affid=871&siteid=1856&adid=104&c=PU_BR_PA_DT_VOLD_PIXBET&AutoR=1 HTTP/1.1
Host: wlpixbet.adsrv.eacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: CEK=a
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: https://pixbet.com/casino/?btag=a_1856b_104c_PU_BR_PA_DT_VOLD_PIXBET
Server: Microsoft-IIS/10.0
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
X-AspNet-Version: 4.0.30319
Set-Cookie: XYZ=3&1&148&&&&0&1&&156c53a8-8485-481f-ab65-c5e19c90d477&&a_1856b_104&; expires=Fri, 05-May-2023 02:03:39 GMT; path=/; SameSite=None; Secure
A_104=a=104&r=0&fv=0&lv=0&vc=0&fc=20230204&lc=20230204020339&cc=1; expires=Fri, 05-May-2023 02:03:39 GMT; path=/; SameSite=None; Secure
PM_2=c=PU_BR_PA_DT_VOLD_PIXBET&s=1856&ad=104&md=0&pm=2&d=20230204020339&ip=1532635802&r=0&ref=&RedirectParams=btag%3da_1856b_104c_PU_BR_PA_DT_VOLD_PIXBET; expires=Fri, 05-May-2023 02:03:39 GMT; path=/; SameSite=None; Secure
CEK=a; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; SameSite=None; Secure
X-Powered-By: ASP.NET
X-XSS-Protection: 1; mode=block
Date: Sat, 04 Feb 2023 02:03:38 GMT
Content-Length: 185
Vary: Accept-Encoding
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5f503a8d9111a411a22aaf5ad73911b9
26e5870d28795f6a827f0348188667eee688e762
cc0d315a564550a2346665cf7747e2d78cdfe28d38b252bf40ff0699a04606d8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CC0D315A564550A2346665CF7747E2D78CDFE28D38B252BF40FF0699A04606D8"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14080
Expires: Sat, 04 Feb 2023 05:58:19 GMT
Date: Sat, 04 Feb 2023 02:03:39 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 346 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 777dbdd3a2fc8be4f2d5eef126fec894
52a35204131e5d74eeb8c31a4fd3f9f4e60f0d72
06b8dd4d6725826635d344d0cabd95045b22cb02b5da2c01f649f7f8e04ee4ac
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "06B8DD4D6725826635D344D0CABD95045B22CB02B5DA2C01F649F7F8E04EE4AC"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1732
Expires: Sat, 04 Feb 2023 02:32:31 GMT
Date: Sat, 04 Feb 2023 02:03:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7caeeb5699f95dfd7876051251475469
f9ccda34e41e738155ca537a2a7a67d6e93819d5
e673557b10be6ae5bb5cc0297525db4796ac567bb634547f3abbb330961431c5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E673557B10BE6AE5BB5CC0297525DB4796AC567BB634547F3ABBB330961431C5"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11823
Expires: Sat, 04 Feb 2023 05:20:42 GMT
Date: Sat, 04 Feb 2023 02:03:39 GMT
Connection: keep-alive
promo.betwarrior.bet/pt/welcome-offer-sports/?utm_source=netrefer&utm_medium=affiliates&utm_campaign=sports&btag=655952_5F3D35BD778945ED822FD8340F9A5004
3.69.136.55200 OK 13 kB URL HTTP/1.1 promo.betwarrior.bet/pt/welcome-offer-sports/?utm_source=netrefer&utm_medium=affiliates&utm_campaign=sports&btag=655952_5F3D35BD778945ED822FD8340F9A5004
IP 3.69.136.55:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3530), with CRLF, LF line terminators
Hash cf688820b7bf80cf901e095cd2e1a24a
2b98acfb0d912d0388885b42d55c5adf95ca7b03
155a0df61d00b64859dde62b63829f3fd3869fe3da22a061dd22e7c21f9761bb
GET /pt/welcome-offer-sports/?utm_source=netrefer&utm_medium=affiliates&utm_campaign=sports&btag=655952_5F3D35BD778945ED822FD8340F9A5004 HTTP/1.1
Host: promo.betwarrior.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a9275%2c%22BID%22%3a2636%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675476219431)%5c%2f%22%2c%22CookieTag%22%3a%2226369275451240919C20232423%22%7d%5d
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Sat, 04 Feb 2023 02:03:39 GMT
content-type: text/html; charset=utf-8
content-length: 13376
set-cookie: ubvs=f25c06af-ede1-46df-aef6-bd79e91de99a; Max-Age=15552000; Path=/; SameSite=Lax
ubvt=v2%7Cf25c06af-ede1-46df-aef6-bd79e91de99a%7Cd900212c-aaf6-4628-83f9-0172663a0851%3Aa%3Asingle; Max-Age=259200; Domain=betwarrior.bet; Path=/; SameSite=Lax
ubpv=a%2Cd900212c-aaf6-4628-83f9-0172663a0851; Max-Age=15897600; Path=/pt/welcome-offer-sports/; SameSite=Lax
content-location: https://promo.betwarrior.bet/pt/welcome-offer-sports/
etag: "a:f25c06afede146dfaef6bd79e91de99a"
link: <https://promo.betwarrior.bet/pt/welcome-offer-sports/>; rel="canonical"
x-unbounce-pageid: d900212c-aaf6-4628-83f9-0172663a0851
x-unbounce-variant: a
x-unbounce-visitorid: f25c06af-ede1-46df-aef6-bd79e91de99a
content-encoding: gzip
x-proxy-backend: page-server
e1.o.lencr.org/
23.36.77.32200 OK 346 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b62003434217935f45d4a36c288cc814
4c36aae857ca36f64b7dfd33c16f6ec8bdeb2c33
cdaa0d2f5507d7d1e230ba2cdd823c980c7473d5bf4f4a8c8cd3c3185a364319
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "CDAA0D2F5507D7D1E230BA2CDD823C980C7473D5BF4F4A8C8CD3C3185A364319"
Last-Modified: Wed, 01 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7189
Expires: Sat, 04 Feb 2023 04:03:28 GMT
Date: Sat, 04 Feb 2023 02:03:39 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash f6ee5358ccb0ba20f9b6e9395dead455
7610e0ad8117428d6f9e53b9e26f9525c7beb533
76ed7a3c00e1e91c88b4549201879b1bfabcf630f91a59ab309bddddc8ef8a55
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5553
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:03:39 GMT
Last-Modified: Sat, 04 Feb 2023 00:31:06 GMT
Server: ECS (amb/6BBE)
X-Cache: HIT
Content-Length: 279
e1.o.lencr.org/
23.36.77.32200 OK 346 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 38b244d94c275d98bc1a8acf2e79c6b4
7796d519f4e8f199b92c3ee812d8f3c4db632e5a
21d4e2184673de162fecd29dacca818cf17fe7bafe9286500d2be954b87dec3c
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "21D4E2184673DE162FECD29DACCA818CF17FE7BAFE9286500D2BE954B87DEC3C"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1759
Expires: Sat, 04 Feb 2023 02:32:58 GMT
Date: Sat, 04 Feb 2023 02:03:39 GMT
Connection: keep-alive
megapari.com//registration/?tag=d_2032927m_25437c_
83.147.204.197301 Moved Permanently 0 B URL HTTP/2 megapari.com//registration/?tag=d_2032927m_25437c_
IP 83.147.204.197:0
ASN #202492 Silverhill Group Holding Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET //registration/?tag=d_2032927m_25437c_ HTTP/1.1
Host: megapari.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Sat, 04 Feb 2023 02:03:39 GMT
content-type: text/html; charset=utf-8
content-length: 0
x-frame-options: SAMEORIGIN
set-cookie: SESSION=e65314164c921aebc877e7a3d2437e3d; path=/; secure; HttpOnly; SameSite=Lax
ua=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
auid=U5PMxWPdvPtT4RzDA6b+Ag==; path=/; secure; httponly; samesite=lax
location: /registration/?tag=d_2032927m_25437c_
x-reason: 100
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
builder-assets.unbounce.com/published-css/main-7b78720.z.css
54.230.111.34200 OK 2.9 kB URL HTTP/2 builder-assets.unbounce.com/published-css/main-7b78720.z.css
IP 54.230.111.34:0
File type ASCII text, with very long lines (15017)
Hash 3d27e56a34e34b278ab5e182cbc3b587
b871dae022b6537150e18df2bbf266caaa013fdc
3646920461d3a5dd11dfb46a1d063bee0eaad079e9d3e9341942f24f3688401f
GET /published-css/main-7b78720.z.css HTTP/1.1
Host: builder-assets.unbounce.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.betwarrior.bet/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
content-length: 2902
date: Sat, 21 Jan 2023 01:22:01 GMT
last-modified: Wed, 23 Nov 2022 23:24:30 GMT
etag: "3d27e56a34e34b278ab5e182cbc3b587"
cache-control: max-age=31536000
content-encoding: gzip
x-amz-version-id: F0XZlkUrGu6OlrfKzU_C7UXh1V6i6hug
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 6VNnfdAeNTXjzN6QFM7d9-42AHh9YKX43MiHYhREZqR2RM9uwaUX2w==
age: 1212099
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 6532a75964edb50e0c7553000a143734
78b346793ca37e698664ee5f1a2f231d1cfa85be
18f670cd00d4d86fc4aa5eaf03301404a227fd3251a936cfc9f56ab5f6dfc212
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=132331
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:03:39 GMT
Etag: "63dd1ee6-118"
Expires: Sun, 05 Feb 2023 14:49:10 GMT
Last-Modified: Fri, 03 Feb 2023 14:49:10 GMT
Server: nginx
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash b71b94b3682f35ef38e5d6af66035c3f
b3754599fe38b540c9364e2ecf9fc6b43271105a
992222e9324198de91c53dab70825a2852268f2833c2f5c0a02a4994c073a1a6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3865
Cache-Control: max-age=145888
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:03:39 GMT
Etag: "63dd44c2-118"
Expires: Sun, 05 Feb 2023 18:35:07 GMT
Last-Modified: Fri, 03 Feb 2023 17:30:42 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash b71b94b3682f35ef38e5d6af66035c3f
b3754599fe38b540c9364e2ecf9fc6b43271105a
992222e9324198de91c53dab70825a2852268f2833c2f5c0a02a4994c073a1a6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1798
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:03:39 GMT
Last-Modified: Sat, 04 Feb 2023 01:33:41 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 14ce1585885d0111913e10c5e4233619
0900480e0ed0800299b75ae5c375f786100c2017
b18f72471c58a32bbe1e67b247615e3bc6d583e70c7e47d88f7b84ecc318df4e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5719
Cache-Control: max-age=89468
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:03:39 GMT
Etag: "63dc6120-1d7"
Expires: Sun, 05 Feb 2023 02:54:47 GMT
Last-Modified: Fri, 03 Feb 2023 01:19:28 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash b71b94b3682f35ef38e5d6af66035c3f
b3754599fe38b540c9364e2ecf9fc6b43271105a
992222e9324198de91c53dab70825a2852268f2833c2f5c0a02a4994c073a1a6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1798
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:03:39 GMT
Last-Modified: Sat, 04 Feb 2023 01:33:41 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 280
b-partner.xyz/a74c621bf
104.21.94.12302 Found 608 B IP 104.21.94.12:0
Hash a34c29939c2eeba5128c9b5ea5494fa8
4b8c0a7ab61ddfca65f3eb320aa9109e024e63d4
569eeccc91ac1e35ab7d257b601cbd1a6518225adeb3a25e3e397f23139066e4
GET /a74c621bf HTTP/1.1
Host: b-partner.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 04 Feb 2023 02:03:39 GMT
content-type: text/html; charset=utf-8
location: https://bitslot.io/?stag=148527_63ddbcfb607ae792a8b19789&tracking_link=http%3A%2F%2Fb-partner.xyz%2Fa74c621bf
set-cookie: 73d3f1ba062585bce51f=63ddbcfb607ae792a8b19789; Expires=Mon, 06 Mar 2023 02:03:39 GMT
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
referrer-policy: strict-origin-when-cross-origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ag9kX6VFNU6elv%2FgEaVgW7Zu8X0Ve%2F7c7Gmido3cCTwv%2FhNXYa5WcIjCAzm6kzvbG4rCqd3Jk2nqKGMxfLZimYUuEMLWD3YoDfbH67cC7RUTiQ4rL0WGwUa1QdwuXJqX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793fd4c35c3bb523-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
refpaiozdg.top/L?tag=d_2032927m_25437c_&site=2032927&ad=25437&r=registration/
45.135.120.29303 See Other 162 B URL HTTP/2 refpaiozdg.top/L?tag=d_2032927m_25437c_&site=2032927&ad=25437&r=registration/
IP 45.135.120.29:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /L?tag=d_2032927m_25437c_&site=2032927&ad=25437&r=registration/ HTTP/1.1
Host: refpaiozdg.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 303 See Other
server: nginx
date: Sat, 04 Feb 2023 02:03:39 GMT
cache-control: private
location: https://megapari.com:443//registration/?tag=d_2032927m_25437c_
x-aspnetmvc-version: 5.0
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
www.platincasino.com/br/lp/sports
23.36.79.33301 Moved Permanently 430 B URL HTTP/2 www.platincasino.com/br/lp/sports
IP 23.36.79.33:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 0a3f0a4db788f26441d9bedf96509934
8841f8167c5f36cbb1951e590bdcba2b63644605
b10737dc87673f953d5f5656f89ceb5800167268f5c0cb6c9ccd909a080c30f4
GET /br/lp/sports HTTP/1.1
Host: www.platincasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
content-type: text/html; charset=UTF-8
location: https://www.platincasino.com/br/lp/sports.html
cache-tag: html
x-frame-options: SAMEORIGIN
content-length: 430
expires: Sat, 04 Feb 2023 02:03:39 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 04 Feb 2023 02:03:39 GMT
set-cookie: ak_bmsc=13CD944C3D29AC0BAE3607184559820B~000000000000000000000000000000~YAAQHU8kF7PyqeSFAQAA9DcqGhLeuT1xfdQjv/4Sx1dbdySM1f6rnA6zJQukK+x/Akp71prxtaGpqXIwd+QPxhmu/vcWbjYpZ6a0kVLvPVlvdYM2JM2WYt3IepmAyi3TxhbPrjSm3zk/GqVwXWyyr7eqkib0zP0x8L8a1ZIiMsf+x2nurITQvFPRZ/nzQDClFJY5OcFrMYhsiPS/aWlPAnmnLzMAfuEeA3GPVaqKDFNYlENDzQU8r9jUGw2uU1y8IMhTlGQBAi8rNjaNubcaqvnPA19GPoHtB+I60WRUaQbdzf9Zz2CLTn7Sq8rCgRl9yV/NFrlSZCAHiVNMQSMH7Tf7aEZ9gzQTJ3gJvtLup3DFRKQFbgj+1rLCQtpqL7bdo284LdX5hGPU3a0hrzBa; Domain=.platincasino.com; Path=/; Expires=Sat, 04 Feb 2023 04:03:39 GMT; Max-Age=7200; HttpOnly
X-Firefox-Spdy: h2
www.platincasino.com/br/lp/sports.html
23.36.79.33302 Found 0 B URL HTTP/2 www.platincasino.com/br/lp/sports.html
IP 23.36.79.33:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /br/lp/sports.html HTTP/1.1
Host: www.platincasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
location: https://www.platincasino.com/no/lp/sports.html
content-length: 0
expires: Sat, 04 Feb 2023 02:03:40 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 04 Feb 2023 02:03:40 GMT
set-cookie: PHPSESSID=s0tp23nc6g3n9oaefj8opb2mrj; path=/; secure; HttpOnly; SameSite=lax
b1pi=!vJtRwzd5p9PAVbZ81GQs2bd/OrbFP5iIL40kQbUo2Sp7IIFcOMugiuVrOjJ+Bt+HpV3Ko4GYGAhfOTU=; path=/; Httponly; Secure
ak_bmsc=F2C83CE8B9336BE8F26CA811204DCCCE~000000000000000000000000000000~YAAQHU8kF7fyqeSFAQAAvjgqGhJFJ+0UYOrLMbo4bsCHxcuHEOA4DMAKs64r5S2rD+V7eAfWnxIcvh+ZYB1V5atu6Pygbrf7KYTlSn2R2CH6n2n2CniN8bnwLJncNw19343J74IdWCpmEgjhDQhUq09CP+AST8lEmqDMN+Zl+ra18xGPHSINJOrbWFrmCL19Bs8DK43C2xyI/AP7CSvv3RdXySSDAohECZwxlaiQC4x45qyDEL84EJgbJdnfIrh3YTYkCm9NvFNHHnVFYxaV0RnLWtKmGf8AKl30uXQQxIVkkIleJd0SlU10EBFUsO3jAlNp+SWrmPFV5XCrlFxxnOuT5HpNx7c5HpBNabg6BqdZ9yZhvLRNoEJYkY+m7Mwjobphf+wx9NY98MRUPuba; Domain=.platincasino.com; Path=/; Expires=Sat, 04 Feb 2023 04:03:39 GMT; Max-Age=7199; HttpOnly
X-Firefox-Spdy: h2
www.platincasino.com/no/lp/sports.html
23.36.79.33302 Found 298 B URL HTTP/2 www.platincasino.com/no/lp/sports.html
IP 23.36.79.33:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash c5a72b78d3a66d0581af4b52f3958d93
24a2d5779a5051e3eeb338f4b73b8ede9b6c91e9
4b9bf3fa30253a4d0e0aac81ffe2d2ddb3beb0c4fa6444f705efac246ceb0ea5
GET /no/lp/sports.html HTTP/1.1
Host: www.platincasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
location: /no/home.html
cache-tag: html
x-frame-options: SAMEORIGIN
content-length: 298
expires: Sat, 04 Feb 2023 02:03:40 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 04 Feb 2023 02:03:40 GMT
set-cookie: ak_bmsc=D1531CA3EB612ECDF5557F88928CC14C~000000000000000000000000000000~YAAQHU8kF7jyqeSFAQAAzjgqGhIOrpNUjXXnqG0baStQLBOUKgDB/SS5D+rWXKq1iTlPXCnfSXg2tbapjCXYsjQ0TPn3rY9fTdMcplWfqcZ9qucCsMNkJWS+4BQ9obAzHtdiLAMgiPQBrQTpr5mDn2aN5fJungZEev3TvEIUEOa1bkzpTtZXfICiw54V/6AED5p47O8ZYXSOtMqtU5RDZwECWsHVRE4tjZiWdq229ZWfRyVyfnHnz8wMtrpbJSSWB7M4lFknLZ446fjD8UvJuvPaFLmFDiywEY8AfKhBBtK6gkn+oPxYy6PnlmTFrmJWZaNqxLZ1l/cwBmi4VIL8AaemujFkhCwaU8BB3l6Y+5K79ib78J/p9vpy6Ky+BglStmtqKlJOnePm9xET5aOT; Domain=.platincasino.com; Path=/; Expires=Sat, 04 Feb 2023 04:03:40 GMT; Max-Age=7200; HttpOnly
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash a62ee41cd8abd47a40869c9b5078d63a
c9ecb7ed1a81735780611b5bf520a44854c0e18b
7f473c22475ab92df851b4aec7f7d55f63efec329f9d5ed8283bdf25eed78336
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=165790
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:03:40 GMT
Etag: "63dda19a-117"
Expires: Mon, 06 Feb 2023 00:06:50 GMT
Last-Modified: Sat, 04 Feb 2023 00:06:50 GMT
Server: nginx
Content-Length: 279
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 6c3eb064d03373ee5151d7fcc22f1d86
3df00d6dbfec3c902b5f5887c6c185cb64eb652a
e053161d9c696d0f3e6e5ce011546d9673e646981a28167aa2dfccd2878ac7f1
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 04 Feb 2023 02:03:40 GMT
Last-Modified: Sat, 04 Feb 2023 00:29:59 GMT
Server: ECS (nyb/1D10)
X-Cache: Miss from cloudfront
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: OVF4kwaQCIyJrpWmroUzWxqFwkJsNh0D--62I6fBtVjlzte55oE4Vw==
Age: 5621
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 6c3eb064d03373ee5151d7fcc22f1d86
3df00d6dbfec3c902b5f5887c6c185cb64eb652a
e053161d9c696d0f3e6e5ce011546d9673e646981a28167aa2dfccd2878ac7f1
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=154689
Date: Sat, 04 Feb 2023 02:03:40 GMT
Etag: "63dd667c-1d7"
Expires: Sun, 05 Feb 2023 21:01:49 GMT
Last-Modified: Fri, 03 Feb 2023 19:54:36 GMT
Server: ECS (nyb/1D32)
X-Cache: Miss from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: g3p498-NJpcDH8eq9RrqiHNdCImlmLZa3xx4GFHrqoriqtXrLbi4ZA==
Age: 4033
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 6c3eb064d03373ee5151d7fcc22f1d86
3df00d6dbfec3c902b5f5887c6c185cb64eb652a
e053161d9c696d0f3e6e5ce011546d9673e646981a28167aa2dfccd2878ac7f1
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 04 Feb 2023 02:03:40 GMT
Last-Modified: Sat, 04 Feb 2023 01:13:58 GMT
Server: ECS (bsa/EB1F)
X-Cache: Miss from cloudfront
Via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: RLhzalXB8WDnTfS04nY0iOF05-NztepI5CFFUMNrsUoXP-ALmiriPw==
Age: 2983
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 6c3eb064d03373ee5151d7fcc22f1d86
3df00d6dbfec3c902b5f5887c6c185cb64eb652a
e053161d9c696d0f3e6e5ce011546d9673e646981a28167aa2dfccd2878ac7f1
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=153527
Date: Sat, 04 Feb 2023 02:03:40 GMT
Etag: "63dd667c-1d7"
Expires: Sun, 05 Feb 2023 20:42:27 GMT
Last-Modified: Fri, 03 Feb 2023 19:54:36 GMT
Server: ECS (nyb/1D23)
X-Cache: Miss from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ZRUZbT4gULl5xgWsGtrs9JxHmrk7bzJCxAmZKcNQLLoRAPVGPIM9pQ==
Age: 2871
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e6c980086cb82cd66647dd5ef13f024f
7b2e72a82306d9c11aaf56e435543efefacd9a61
fd4d93593708571cbcd91c4f021cbb08843fe41e5661e8088fee23b411cda7e3
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "FD4D93593708571CBCD91C4F021CBB08843FE41E5661E8088FEE23B411CDA7E3"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9253
Expires: Sat, 04 Feb 2023 04:37:53 GMT
Date: Sat, 04 Feb 2023 02:03:40 GMT
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 6c3eb064d03373ee5151d7fcc22f1d86
3df00d6dbfec3c902b5f5887c6c185cb64eb652a
e053161d9c696d0f3e6e5ce011546d9673e646981a28167aa2dfccd2878ac7f1
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 04 Feb 2023 02:03:40 GMT
Last-Modified: Sat, 04 Feb 2023 01:29:10 GMT
Server: ECS (nyb/1D1B)
X-Cache: Miss from cloudfront
Via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: nbDN2Nb44Ud2e_dea_zIEB-7h5TFD8gFGRHroBJd7QIEg07ApWlFiw==
Age: 2070
assets.ubembed.com/universalscript/releases/v0.179.2/bundle.js
54.230.111.68200 OK 178 kB URL HTTP/2 assets.ubembed.com/universalscript/releases/v0.179.2/bundle.js
IP 54.230.111.68:0
File type Unicode text, UTF-8 text, with very long lines (65524), with no line terminators
Size 178 kB (178069 bytes)
Hash 359008fe01078c59c66e034866170bd2
4a65a16a6f02824f60bc575ebcdeb53a490fa264
b318b179b35ca92c87626801798f3bce3864172926ae10288f0460a53f30177c
GET /universalscript/releases/v0.179.2/bundle.js HTTP/1.1
Host: assets.ubembed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.betwarrior.bet/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 178069
date: Sun, 11 Dec 2022 10:48:36 GMT
last-modified: Tue, 05 Apr 2022 16:31:05 GMT
etag: "359008fe01078c59c66e034866170bd2"
cache-control: max-age=31536000
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: p12S6iW8GjuRDB5hoHNR46mK2Mqa2t1NApavofpeMAc8pGGbBIQAHQ==
age: 4720504
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 5947e04a6bc7597c7e3d24f9765a7e07
f4b5d55db465e4b129055e9601279f60e03b9899
43e50bda0c66a7d183a43b112a406d297ab7596c5f2171732a6e549a3db191fa
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=158598
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:03:40 GMT
Etag: "63dd8582-116"
Expires: Sun, 05 Feb 2023 22:06:58 GMT
Last-Modified: Fri, 03 Feb 2023 22:06:58 GMT
Server: nginx
Content-Length: 278
20bet.com/br/?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
104.22.35.208301 Moved Permanently 4.9 kB URL HTTP/2 20bet.com/br/?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
IP 104.22.35.208:0
Hash 1ae5e361b5db392011563b2904bb7c06
8107673db41640f5a9e49431efe8447397dc4f15
55b0a9ba18e33ec82a9e859ad88d6c8b593838703fbdfe4c041852caf9d78419
GET /br/?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Sat, 04 Feb 2023 02:03:40 GMT
content-type: text/html; charset=UTF-8
location: /br?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
cf-ray: 793fd4c81e4495ee-ARN
set-cookie: btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E; expires=Sat, 04-Mar-2023 00:00:00 GMT; Max-Age=2411780; path=/; secure; samesite=none
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers: Content-Length,Content-Range
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2
97f5e28a6e174bb089f6d6f4991a7dff.js.ubembed.com/
151.101.65.131200 OK 3.4 kB URL HTTP/2 97f5e28a6e174bb089f6d6f4991a7dff.js.ubembed.com/
IP 151.101.65.131:0
File type ASCII text, with very long lines (477), with no line terminators
Hash eefd6c46bd9812572cb52fd39b8d6165
817d3d848dc3d252ddb395e21478e2828a339c9a
579d9af318473f236f7bcebf0bfe2518f6fb8a84ad1296ab0ebf8b16afa989b1
GET / HTTP/1.1
Host: 97f5e28a6e174bb089f6d6f4991a7dff.js.ubembed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.betwarrior.bet/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
x-amz-apigw-id: fyjfGEUejoEFrDQ=
x-amz-cf-pop: ARN56-P2
x-backend-region: eu_west_1
date: Sat, 04 Feb 2023 02:03:40 GMT
age: 2613
x-cache: Miss from cloudfront, HIT
access-control-allow-origin: *
cache-control: max-age=0, must-revalidate
vary: Accept-Encoding, Referer
etag: W/118a4f51ff6c6f384eb2ec093c989704-v0.179.2
content-encoding: br
accept-ranges: none
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e6c980086cb82cd66647dd5ef13f024f
7b2e72a82306d9c11aaf56e435543efefacd9a61
fd4d93593708571cbcd91c4f021cbb08843fe41e5661e8088fee23b411cda7e3
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "FD4D93593708571CBCD91C4F021CBB08843FE41E5661E8088FEE23B411CDA7E3"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9253
Expires: Sat, 04 Feb 2023 04:37:53 GMT
Date: Sat, 04 Feb 2023 02:03:40 GMT
Connection: keep-alive
s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_pix.svg
52.95.163.84200 OK 2.8 kB URL HTTP/1.1 s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_pix.svg
IP 52.95.163.84:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 82083b9fb03f35c93a9967ea4a1d7f94
721e1095e2f6914e6a6b1ead5b7bd5d610aea92a
6e4c4e43f1455c443d94b6342eaf61b296b30eab35d23edd498e1b66ddfbc06f
GET /static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_pix.svg HTTP/1.1
Host: s3.sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.betwarrior.bet/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: pibJHNPGJTC8uG/GfMIAK5I6WZQzKwCF2utnoJreIUM/aLLSLE3XIWUxedfaPWPTPHhvrCESo2Y=
x-amz-request-id: ZDCCNA6226SGPMVS
Date: Sat, 04 Feb 2023 02:03:41 GMT
Last-Modified: Mon, 17 May 2021 12:27:05 GMT
ETag: "82083b9fb03f35c93a9967ea4a1d7f94"
Accept-Ranges: bytes
Content-Type: image/svg+xml
Server: AmazonS3
Content-Length: 2844
s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_much_better.svg
52.95.163.84200 OK 6.4 kB URL HTTP/1.1 s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_much_better.svg
IP 52.95.163.84:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 6bd9449858dd1fc6d651a669742013a0
7a8afc8b5ce49b038712b210d4cddcf1bb96626d
6e00b84dc119b9e4438dbc4866c01326859ba83ff584a680f7c49eef2829289a
GET /static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_much_better.svg HTTP/1.1
Host: s3.sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.betwarrior.bet/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: NYVyOOqxQ8yZ0bW2mCJ9chLnbm1Y/V6+omjybd7w6ydC9r52hvkttgnpKQOBOnbehwhGR5bcNGU=
x-amz-request-id: ZDC65TNWGVBNK1ZX
Date: Sat, 04 Feb 2023 02:03:41 GMT
Last-Modified: Mon, 17 May 2021 12:27:05 GMT
ETag: "6bd9449858dd1fc6d651a669742013a0"
Accept-Ranges: bytes
Content-Type: image/svg+xml
Server: AmazonS3
Content-Length: 6432
s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_vcreditos.svg
52.95.163.84200 OK 3.6 kB URL HTTP/1.1 s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_vcreditos.svg
IP 52.95.163.84:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash a31ceb42356f3ef5aa00b9d8bb433ce1
e9cf88261cef92c0b58864a58e58e9d5f8215c02
e35676900ecf259d14f8969f3955d32a3dcfc250a83c2cc3726f9827c2b98d2f
GET /static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_vcreditos.svg HTTP/1.1
Host: s3.sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.betwarrior.bet/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: rF/oJF1sstG4thNZ8iHnK5YEWynUkAzF5KjtngFRO3rLIakCGRiwdMsJyAKjnvECMlqZtMI4DIs=
x-amz-request-id: ZDCCYH9N39QJRWVF
Date: Sat, 04 Feb 2023 02:03:41 GMT
Last-Modified: Mon, 17 May 2021 12:27:05 GMT
ETag: "a31ceb42356f3ef5aa00b9d8bb433ce1"
Accept-Ranges: bytes
Content-Type: image/svg+xml
Server: AmazonS3
Content-Length: 3550
s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_boleto.svg
52.95.163.84200 OK 4.1 kB URL HTTP/1.1 s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_boleto.svg
IP 52.95.163.84:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 06dfa71b9b2f3027e91a1bfeaff6948b
fe5c02d6e5f4f7a53b80cc973e418ae572d8df09
dc6458d733eb6bcf84ee37054ddf5bb8d7d3de5ea308f3f765c74aa05e782c40
GET /static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_boleto.svg HTTP/1.1
Host: s3.sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.betwarrior.bet/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: S6Y/wKRM+h8Loz7BwkpQwwYCnlmwIm0PxlEriZwknxwV8AhGTzKEtjkoGjEYJCcviW+uA4dGzY0=
x-amz-request-id: ZDC2PCJHBPQNYAKA
Date: Sat, 04 Feb 2023 02:03:41 GMT
Last-Modified: Mon, 17 May 2021 12:27:04 GMT
ETag: "06dfa71b9b2f3027e91a1bfeaff6948b"
Accept-Ranges: bytes
Content-Type: image/svg+xml
Server: AmazonS3
Content-Length: 4070
s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_caixa.svg
52.95.163.84200 OK 1.8 kB URL HTTP/1.1 s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_caixa.svg
IP 52.95.163.84:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 323d0b17d617eaabfb65e89cda2f23ad
17785ed5e122e73a467223ac2dc3caeadfaa1b25
676de7d4c29d435dca8dc96f33889ed90612cabdc8bf91b6cf2f41eaac197bb4
GET /static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_caixa.svg HTTP/1.1
Host: s3.sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.betwarrior.bet/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 0wiSvYAgQygRZO8JP72/39vRORYzuBhMZIai8SVrK3lWJGye10nZFLkEDRioUsvBnYt22DFElMM=
x-amz-request-id: ZDC58A0EWP6KHWGN
Date: Sat, 04 Feb 2023 02:03:41 GMT
Last-Modified: Mon, 17 May 2021 12:27:05 GMT
ETag: "323d0b17d617eaabfb65e89cda2f23ad"
Accept-Ranges: bytes
Content-Type: image/svg+xml
Server: AmazonS3
Content-Length: 1800
s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_santander.svg
52.95.163.84200 OK 4.7 kB URL HTTP/1.1 s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_santander.svg
IP 52.95.163.84:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 8853bd27115e397897bd4cb017b25974
9222a4bb2bd074051219f421d091645205cfe469
07602828f362a01f43ad6b884638f7761f7abf4b7aff304fe3e80649288e78c6
GET /static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_santander.svg HTTP/1.1
Host: s3.sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.betwarrior.bet/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: R0GWKur19PKX99xdNuI3c4sRxmJba5iP6/OCSRcUHMbtjYYtbGmkxT/EcjUpLYIf/iYAxeDpl+0=
x-amz-request-id: ZDCAB7G2PJHBXJWA
Date: Sat, 04 Feb 2023 02:03:41 GMT
Last-Modified: Mon, 17 May 2021 12:27:05 GMT
ETag: "8853bd27115e397897bd4cb017b25974"
Accept-Ranges: bytes
Content-Type: image/svg+xml
Server: AmazonS3
Content-Length: 4744
r3.o.lencr.org/
23.36.77.32200 OK 1.2 kB IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
File type gzip compressed data, from Unix\012- data
Hash 8c435cb584698b7655be8c16518509d9
2c90e3a5a3039d71947b0162aece7e50c93569c8
78a1273935b8c152fff124497bdc041084c3e9e44e485102d15a30dd3cd2f124
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7493
Expires: Sat, 04 Feb 2023 04:08:33 GMT
Date: Sat, 04 Feb 2023 02:03:40 GMT
Connection: keep-alive
20bet.com/br?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
104.22.35.208200 OK 8.3 kB URL HTTP/2 20bet.com/br?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
IP 104.22.35.208:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (6149), with CRLF, LF line terminators
Hash 18e1df27adef9ccf4cae20a573c49074
a37b03dde2cad285830cb4f89beccb63ccf14a49
0bc0fcffdf9742ad5e2be7c14dfe018f0ff72a3304977c5ee1736755969a548b
GET /br?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:40 GMT
content-type: text/html; charset=UTF-8
cf-ray: 793fd4c8ae8e95ee-ARN
cache-control: no-cache, private
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers: Content-Length,Content-Range
set-cookie: btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E; expires=Sat, 04-Mar-2023 00:00:00 GMT; Max-Age=2411780; path=/; secure; samesite=none
preferred-language=br; path=/; secure; httponly; samesite=lax
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7493
Expires: Sat, 04 Feb 2023 04:08:33 GMT
Date: Sat, 04 Feb 2023 02:03:40 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7493
Expires: Sat, 04 Feb 2023 04:08:33 GMT
Date: Sat, 04 Feb 2023 02:03:40 GMT
Connection: keep-alive
s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_itau.svg
52.95.163.84200 OK 1.6 kB URL HTTP/1.1 s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_itau.svg
IP 52.95.163.84:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash ab7b5d27de627aa677fc8a285b942781
e36f294ec5bcf22f615e4af9329bdcf81fce6ee3
e8712dfee5f2d1b764ed7c69be66d4d1bc8dc0a0f2197e942387aa19f99e88a3
GET /static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_itau.svg HTTP/1.1
Host: s3.sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.betwarrior.bet/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: XGjRtiw96fTIxTlhr433mFNe7NTepiBhtZSf97JajGKON7EbmZyQVu/AOZsqhuNBVK6KiMcSmaE=
x-amz-request-id: ZDC9WMZ62PX8GMNS
Date: Sat, 04 Feb 2023 02:03:41 GMT
Last-Modified: Mon, 17 May 2021 12:27:05 GMT
ETag: "ab7b5d27de627aa677fc8a285b942781"
Accept-Ranges: bytes
Content-Type: image/svg+xml
Server: AmazonS3
Content-Length: 1608
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7493
Expires: Sat, 04 Feb 2023 04:08:33 GMT
Date: Sat, 04 Feb 2023 02:03:40 GMT
Connection: keep-alive
s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_banco_do_brasil.svg
52.95.163.84200 OK 3.9 kB URL HTTP/1.1 s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_banco_do_brasil.svg
IP 52.95.163.84:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash c9fa306c7fdeda6c997c62f9bd51c6e8
dba8935682eed1aafd9627c3f413ef24b1ef6245
bed50d50ea152b8818fd9c3605d730de9ff21e6f94b983c3b806243c1a5af4f1
GET /static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_banco_do_brasil.svg HTTP/1.1
Host: s3.sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.betwarrior.bet/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: XvZ6iPKCK8QogpgWEFttQNwPh1OgwL5oVrpTG0hluFzTFSU1Qubc5lK4+SbdY8E0vkmKdBAGXzg=
x-amz-request-id: ZDC9NA7T44GMA8PZ
Date: Sat, 04 Feb 2023 02:03:41 GMT
Last-Modified: Mon, 17 May 2021 12:27:04 GMT
ETag: "c9fa306c7fdeda6c997c62f9bd51c6e8"
Accept-Ranges: bytes
Content-Type: image/svg+xml
Server: AmazonS3
Content-Length: 3928
s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_bradesco.svg
52.95.163.84200 OK 5.3 kB URL HTTP/1.1 s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_bradesco.svg
IP 52.95.163.84:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 1169d06998c13730c801af0013ae1777
62789d89ee71ba43dc193c00526f98a3c85f37e7
6c00b3a10624494369b709b92532999450b43743e8324fcdf0012f0571f26112
GET /static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_bradesco.svg HTTP/1.1
Host: s3.sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.betwarrior.bet/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: /Aq0yvtykpjHo6TFzHGlNopf4sXKqTw5keBGFTrZEVbomXkbYaplFzm/QlCm2dCd05NsbUGWreo=
x-amz-request-id: ZDC6HRY9XJ0MRK34
Date: Sat, 04 Feb 2023 02:03:41 GMT
Last-Modified: Mon, 17 May 2021 12:27:04 GMT
ETag: "1169d06998c13730c801af0013ae1777"
Accept-Ranges: bytes
Content-Type: image/svg+xml
Server: AmazonS3
Content-Length: 5288
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F651be34f-d4ea-4a24-987c-b006e5f9a876.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F651be34f-d4ea-4a24-987c-b006e5f9a876.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f926cd4f39b1a10b152e5959b28ae29e
2b1982d21321071394e363888e007598e968fb35
a51b246a9aa5a2583cae7fd4f0a3bdf73f0b318b7838828d36ea5674a5f26753
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F651be34f-d4ea-4a24-987c-b006e5f9a876.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13309
x-amzn-requestid: f6a3f0f3-d91b-4f4d-8265-0f87742ba5d2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyFeBFX4oAMFfpA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd82bf-5808ceec265756c702d212dc;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:55:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: WWjzs8W8GmSAM0-Uc8XBTxz67RJJCIzp3fBYhkoIWZ26UrobmZV8mw==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:28:17 GMT
age: 12923
etag: "2b1982d21321071394e363888e007598e968fb35"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 85cc6b2d1246c598e6c3e2d6e7be475d
d91c3e0bbb1e3eebe57cb90438525cb0ee375581
10233b5e7c8d9e4075d1855643ddb97797753b45891f0c46fab50737303a1b04
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4620
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:03:40 GMT
Last-Modified: Sat, 04 Feb 2023 00:46:40 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 157 kB IP 93.184.220.29:0
Size 157 kB (156861 bytes)
Hash 597e35c9736db993ba182b38afef400c
09e22a166d0221aa02f220aa9ee71f36ba884f9e
c76d114574ee196b39ca4159c9c88c40ff43c6cfb73640561eba2691211318a2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 7
Cache-Control: max-age=166154
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:03:40 GMT
Etag: "63dda2ff-118"
Expires: Mon, 06 Feb 2023 00:12:54 GMT
Last-Modified: Sat, 04 Feb 2023 00:12:47 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 280
s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_banco_original.svg
52.95.163.84200 OK 5.9 kB URL HTTP/1.1 s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_banco_original.svg
IP 52.95.163.84:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 0882f0f5a300a9d0e9bedbbd2d8a2d78
f08746a9e248529d4009005b6b9600d6784df0da
68fa88c175526ad3bfe138a802394f21a4bddb6338c21ecf019d2051bd44b5a5
GET /static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_banco_original.svg HTTP/1.1
Host: s3.sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.betwarrior.bet/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 8jbwxJi2P6vqDA5zO7i77JzYdv5AV/toPNErzoDg+fYbgf30wmRC09463A5ZjAGaYpxxf/NCL3s=
x-amz-request-id: ZDC7SMJEXRKE49NN
Date: Sat, 04 Feb 2023 02:03:41 GMT
Last-Modified: Mon, 17 May 2021 12:27:04 GMT
ETag: "0882f0f5a300a9d0e9bedbbd2d8a2d78"
Accept-Ranges: bytes
Content-Type: image/svg+xml
Server: AmazonS3
Content-Length: 5942
s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_banrisul.svg
52.95.163.84200 OK 3.8 kB URL HTTP/1.1 s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_banrisul.svg
IP 52.95.163.84:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash ff04a04e27bce74e43c48b79a31a5cdd
ec16e07f904f3609cd298979cb1630226583e9c3
83eb14ee6661b60feb5cd7cccb440607df5df626292c8e9637be9e18ca6a945e
GET /static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_banrisul.svg HTTP/1.1
Host: s3.sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.betwarrior.bet/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: GGfe6Yq9RekM8ZDL5u1qQdDWnxEAjrgbmDpOSsVTvdM4BdhQP3Ybas13QPhZJyOjD9SAxDm9rXo=
x-amz-request-id: ZDCFAWPNCR63CB8A
Date: Sat, 04 Feb 2023 02:03:41 GMT
Last-Modified: Mon, 17 May 2021 12:27:04 GMT
ETag: "ff04a04e27bce74e43c48b79a31a5cdd"
Accept-Ranges: bytes
Content-Type: image/svg+xml
Server: AmazonS3
Content-Length: 3823
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 5adf2c0a4b0cb0102bb2a801db222019
987b0d000fef5f238e256af039503019a60bb4f3
bc1467d19e8dea3983161468af524eb7c479b9e9e4f30df5f971f6816a8f4f85
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5412
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:03:40 GMT
Last-Modified: Sat, 04 Feb 2023 00:33:28 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 279
20bet.com/custom-assets/mainloader.gif
104.22.35.208200 OK 304 kB URL HTTP/2 20bet.com/custom-assets/mainloader.gif
IP 104.22.35.208:0
File type GIF image data, version 89a, 400 x 400\012- data
Size 304 kB (303571 bytes)
Hash 323a31f4cce6bcd83935bbccf0f665da
7ba68a35bec60487944b77a69f91c88556f7017a
9e9d2f310ed323e2649b69229dd077995f5c2217c12bc07c66ea3f17dbc1dafa
GET /custom-assets/mainloader.gif HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Cookie: btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:40 GMT
content-type: image/gif
content-length: 303571
cf-ray: 793fd4cb6f9395ee-ARN
accept-ranges: bytes
age: 2459
cache-control: public, max-age=14400
last-modified: Sat, 04 Feb 2023 01:22:41 GMT
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers: Content-Length,Content-Range
server: cloudflare
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
IP 34.120.237.76:0
Hash 30b570d6c37f98e3bdfb490c40b670bf
cd88db8713a243d1a0b79987da449e5db774a716
6cc52d0c0d41b299190832c890fa13c75c81a84714a4a605896a7a8434945113
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8527
x-amzn-requestid: f95a2821-ae89-4ea9-93b2-43e570285df3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyEC3FyboAMFe0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8078-7e2177f11d5715d4092cad2c;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:45:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: dcFgY5x3Ef0J__7wGn3llTjZ9as5nX1H4HErIT3VlKfeQaQTjymW2g==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:10:33 GMT
etag: "b7b5831c6b3ccc41d7a980b6088adc10ff8785f1"
content-type: image/jpeg
age: 13987
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9ab97f766ee1ed6ebbb2b3889a9157b4
f87f165404dec4d65531e6e25146cb77601f3616
f3d0f76f956371b1733a526f10a8253fc3396a459d7af59380d8e8db7dee8ec2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14071
x-amzn-requestid: 40cb363f-2c4d-4361-9fe1-10e4c8b2fe29
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fiTo4Ek2oAMFs6g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d73305-6cb63d3c49f9f84e639467f6;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 03:01:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: b7r7phj8i49RMSuWufxF1L34K9udWa0mJ4dY12izM9ofwAuCFBGEZQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 21:48:05 GMT
age: 15335
etag: "f87f165404dec4d65531e6e25146cb77601f3616"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18e70636-fb7d-4a6e-9742-a039e4d7253d.jpeg
34.120.237.76200 OK 7.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18e70636-fb7d-4a6e-9742-a039e4d7253d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 41580a501cc07c328e6ab6b167a110dc
a4dfa0f479b5f9a036b75b2eea6dffabd3a3486e
0fa45161e563101b3f1293f951a3edf84c88c9f3b29bed9b54f952ca325bf21d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18e70636-fb7d-4a6e-9742-a039e4d7253d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7101
x-amzn-requestid: 479d8004-430a-45b9-99fa-11cbcc605a7c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD7EHxqoAMFaug=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8046-25ac3c54427748bc191fd1ba;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6h25M_XSVuTCF-9FkTtwujV0X-0-M9fvw4ouOBFmSnMWeApCSHmBsA==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:13:30 GMT
age: 13810
etag: "a4dfa0f479b5f9a036b75b2eea6dffabd3a3486e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 392b61306c346508d3ac4a2f28218f9c
d2de32b52e0d3f4fc6acaf687b3521294b01dc03
018712a4d6734b84ac1777124f97dae4d93b1e5b297a5dcfe0955b52710b8a35
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10253
x-amzn-requestid: a90cb6b3-8a72-4b4b-b4f5-6dafc8c6752a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD7GGv5IAMFu8A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8046-3ca59e7c52800a4e44bda8fd;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: G8F3Fflod6HB4QFtjpD09xzi-2LKPw_DBJT0PKYKU3bs3pvOwO_LRw==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:10:32 GMT
age: 13988
etag: "d2de32b52e0d3f4fc6acaf687b3521294b01dc03"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 7.6 kB IP 93.184.220.29:0
File type gzip compressed data, max compression\012- data
Hash 38249404cd475da2081807f498f16ebb
362cfc42243aa7fefc90cdc797effb0072cd7086
d6141909721d439e2acd2381df47917e84de55a2452bc3ea1622b29c2bdf0756
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 7
Cache-Control: max-age=167625
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:03:41 GMT
Etag: "63dda8bf-116"
Expires: Mon, 06 Feb 2023 00:37:26 GMT
Last-Modified: Sat, 04 Feb 2023 00:37:19 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 85cc6b2d1246c598e6c3e2d6e7be475d
d91c3e0bbb1e3eebe57cb90438525cb0ee375581
10233b5e7c8d9e4075d1855643ddb97797753b45891f0c46fab50737303a1b04
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3300
Cache-Control: max-age=110795
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:03:41 GMT
Etag: "63dcbde4-117"
Expires: Sun, 05 Feb 2023 08:50:16 GMT
Last-Modified: Fri, 03 Feb 2023 07:55:16 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 279
s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_neteller.svg
52.95.163.84200 OK 1.1 kB URL HTTP/1.1 s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_neteller.svg
IP 52.95.163.84:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash b01a178a2ffa74630c0daa6d67a26f25
a71b96b59534b6b2f334f03106a9db91f07faf14
b02f9215394cd32d597063108bf93fc486908a37073a6d949ca53b82252218a3
GET /static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_neteller.svg HTTP/1.1
Host: s3.sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.betwarrior.bet/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: O7jgK7+z56PO3f5Ik/eqCbNhG/TjwMH1h+ecPBdd/6M4hyrvwWJ8sSpfcYppp+vd/0yiQ7xng0Q=
x-amz-request-id: ZDC3883035YZQG6F
Date: Sat, 04 Feb 2023 02:03:41 GMT
Last-Modified: Mon, 17 May 2021 12:27:05 GMT
ETag: "b01a178a2ffa74630c0daa6d67a26f25"
Accept-Ranges: bytes
Content-Type: image/svg+xml
Server: AmazonS3
Content-Length: 1143
s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_ecopayz.svg
52.95.163.84200 OK 3.8 kB URL HTTP/1.1 s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_ecopayz.svg
IP 52.95.163.84:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 82a8c1737556f9bf44d17e450393a191
48bca79f7fb606c4ad5fa5c36c0e01066f2e1d75
0ea54ac9ab54895a8cbacfeafe629f9d5fe42c1acdb1834cc43d8100290cad6e
GET /static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_ecopayz.svg HTTP/1.1
Host: s3.sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.betwarrior.bet/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 1wr3OxGIH02VmjGcGNrIIolagyJ2aHo4KLjwOHBp8WpPaKIIFhQbDnmKaI99lqeq+hOtcm3wzL4=
x-amz-request-id: ZDCER248BMQ9ETVJ
Date: Sat, 04 Feb 2023 02:03:41 GMT
Last-Modified: Mon, 17 May 2021 12:27:05 GMT
ETag: "82a8c1737556f9bf44d17e450393a191"
Accept-Ranges: bytes
Content-Type: image/svg+xml
Server: AmazonS3
Content-Length: 3787
s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_skrill.svg
52.95.163.84200 OK 1.4 kB URL HTTP/1.1 s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_skrill.svg
IP 52.95.163.84:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 480fbc2cb227ed53c815954cf150c86f
bfb5ffde0af383141abd65ba2ee599899457ce1e
480d0dc472f4e02acb903a68cde23bfcccf12382ff96df42d4775de9530c6e43
GET /static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_skrill.svg HTTP/1.1
Host: s3.sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.betwarrior.bet/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: GscZRZJYuhcfFY4S7vC/JsYxAfXlLXvS056hb9xDs+v4BJE3YZnYE5QvxG+WU1pbuKOE1WyJIIA=
x-amz-request-id: ZDC9VPD17E0WC76A
Date: Sat, 04 Feb 2023 02:03:41 GMT
Last-Modified: Mon, 17 May 2021 12:27:05 GMT
ETag: "480fbc2cb227ed53c815954cf150c86f"
Accept-Ranges: bytes
Content-Type: image/svg+xml
Server: AmazonS3
Content-Length: 1354
ocsp.digicert.com/
93.184.220.29200 OK 293 kB IP 93.184.220.29:0
Size 293 kB (293160 bytes)
Hash c3d52959693bb1b20d38d1549fec5668
b28124e035592594d2e40fd253635d2466d59849
b838360a9864dc41c0c3f6e487b9e2bb85c53f791cd5b43311fa4e80c8b7a528
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3522
Cache-Control: max-age=153810
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:03:41 GMT
Etag: "63dd650d-1d7"
Expires: Sun, 05 Feb 2023 20:47:11 GMT
Last-Modified: Fri, 03 Feb 2023 19:48:29 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_banco_safra.svg
52.95.163.84200 OK 22 kB URL HTTP/1.1 s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_banco_safra.svg
IP 52.95.163.84:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 131c8dd86f6ad201f5a6ba1364e2cee1
71333d90f56c25a8020f0c0295cc9b2fab555602
f11604fd0f3c4bb7810b500731f80761c0fb778d49bce4ad007bd38bd0098acb
GET /static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_banco_safra.svg HTTP/1.1
Host: s3.sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.betwarrior.bet/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: AS7YEMxNd7FFw7qQ50NUCSjVOgQvgar8gpyld06ZdT4eRDoRYm7cjgi6eOUKAHFENZIdPVY00To=
x-amz-request-id: ZDCDTCFBFJ9M6V4F
Date: Sat, 04 Feb 2023 02:03:41 GMT
Last-Modified: Mon, 17 May 2021 12:27:04 GMT
ETag: "131c8dd86f6ad201f5a6ba1364e2cee1"
Accept-Ranges: bytes
Content-Type: image/svg+xml
Server: AmazonS3
Content-Length: 21984
c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com/sealassets/c1bf7f7d538c30fb68d0d10a225cc9d7-20bet.com-f5faf6d82a7be2057527120fa49724355adf2a8c973918d432fa7b70160234e717ac6b01358f27fc0aff52358b79fb11-c3BhY2VyLXNwcml0ZS5wbmc%3D
54.230.111.60200 OK 95 B URL HTTP/2 c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com/sealassets/c1bf7f7d538c30fb68d0d10a225cc9d7-20bet.com-f5faf6d82a7be2057527120fa49724355adf2a8c973918d432fa7b70160234e717ac6b01358f27fc0aff52358b79fb11-c3BhY2VyLXNwcml0ZS5wbmc%3D
IP 54.230.111.60:0
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced\012- data
Hash 9591c410148e6883727c5339fd1c02cd
3442a95fe890ce4769b36b2ecc611b801a54cfb5
cafbd551d674da240212f6c44988757a728b9dc8cbc2a6c8dcf53c0d9159c323
Analyzer Verdict Alert fortinet Malware
GET /sealassets/c1bf7f7d538c30fb68d0d10a225cc9d7-20bet.com-f5faf6d82a7be2057527120fa49724355adf2a8c973918d432fa7b70160234e717ac6b01358f27fc0aff52358b79fb11-c3BhY2VyLXNwcml0ZS5wbmc%3D HTTP/1.1
Host: c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 95
date: Sat, 04 Feb 2023 02:03:34 GMT
x-powered-by: Express
cache-control: max-age=1200
etag: W/"5f-NEKpX+iQzkdps2suzGEbgBpUz7U"
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fd4a2efb88fef-FRA
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Ql7T6-vPiyJY6EkKoskvT3hDhHRviHrjC4U345T5NN_HgFkrTIXfIw==
age: 7
X-Firefox-Spdy: h2
c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com/sealassets/c1bf7f7d538c30fb68d0d10a225cc9d7-20bet.com-f5faf6d82a7be2057527120fa49724355adf2a8c973918d432fa7b70160234e717ac6b01358f27fc0aff52358b79fb11-c3ByaXRlLXNlYWwucG5n?status=valid
54.230.111.60200 OK 49 kB URL HTTP/2 c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com/sealassets/c1bf7f7d538c30fb68d0d10a225cc9d7-20bet.com-f5faf6d82a7be2057527120fa49724355adf2a8c973918d432fa7b70160234e717ac6b01358f27fc0aff52358b79fb11-c3ByaXRlLXNlYWwucG5n?status=valid
IP 54.230.111.60:0
File type PNG image data, 512 x 256, 8-bit/color RGBA, non-interlaced\012- data
Hash 8ef6782be55b8ce8f5b132d28af8e0d0
cb99df77f4865d9c2f287539a5ca474cf76f7d09
d614922fde9604f8899e47f3cc3d69bf952312b996f7cf1421163996710850fa
GET /sealassets/c1bf7f7d538c30fb68d0d10a225cc9d7-20bet.com-f5faf6d82a7be2057527120fa49724355adf2a8c973918d432fa7b70160234e717ac6b01358f27fc0aff52358b79fb11-c3ByaXRlLXNlYWwucG5n?status=valid HTTP/1.1
Host: c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 49397
date: Sat, 04 Feb 2023 02:03:34 GMT
x-powered-by: Express
cache-control: max-age=1200
etag: W/"c0f5-y5nfd/SGXZwvKHU5pcpHTPdvfQk"
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fd4a2ecc890a8-FRA
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: HSKyhb4F74wVrs8cIzrvIGqkApzM_nWNXoQeQVI6wq_Qn5OvIT5psw==
age: 7
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 5947e04a6bc7597c7e3d24f9765a7e07
f4b5d55db465e4b129055e9601279f60e03b9899
43e50bda0c66a7d183a43b112a406d297ab7596c5f2171732a6e549a3db191fa
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:03:41 GMT
Etag: "63dd8582-116"
Server: ECS (amb/6B74)
Content-Length: 278
tm.ads.sportradar.com/dist/tag-manager.js?id=STM-AAAACT
95.101.10.113200 OK 48 kB URL HTTP/2 tm.ads.sportradar.com/dist/tag-manager.js?id=STM-AAAACT
IP 95.101.10.113:0
ASN #20940 Akamai International B.V.
Hash 1b7d7a0ccd8f6f3a9b791d3ba7de6862
ad82d833d7917ae5a381f4d38e7da3ba68344c20
401750145aa25a32be1b38eec440460d7142cd2c976d6e70a348117262325f7b
GET /dist/tag-manager.js?id=STM-AAAACT HTTP/1.1
Host: tm.ads.sportradar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
apigw-requestid: fymwHiSADoEEPyw=
vary: Accept-Encoding
content-encoding: gzip
content-length: 31257
date: Sat, 04 Feb 2023 02:03:41 GMT
cache-control: max-age=900, public
x-n: S
X-Firefox-Spdy: h2
s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_payfun.svg
52.95.163.84200 OK 5.3 kB URL HTTP/1.1 s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_payfun.svg
IP 52.95.163.84:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash a64820b91d10fd4f986eff1ed262fafd
3b27421553ada42ef958a080c3869a751bf068d9
ad11bf8e95679d1ff9496f6d25b23d69b6541a8b64a8274da91797709bb3f116
GET /static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_payfun.svg HTTP/1.1
Host: s3.sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.betwarrior.bet/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: v7uQdJtCji+Rs2/IqQzKVpFfR81qH4jy1G5+g8rE51PuLZMVvwgcclx/vQ0+Cplan+6/JmQ0/6U=
x-amz-request-id: 4TTWXMDW9XWM3EA4
Date: Sat, 04 Feb 2023 02:03:42 GMT
Last-Modified: Mon, 17 May 2021 12:27:05 GMT
ETag: "a64820b91d10fd4f986eff1ed262fafd"
Accept-Ranges: bytes
Content-Type: image/svg+xml
Server: AmazonS3
Content-Length: 5300
s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_astropay.svg
52.95.163.84200 OK 4.9 kB URL HTTP/1.1 s3.sa-east-1.amazonaws.com/static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_astropay.svg
IP 52.95.163.84:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash c17e18ed732cc1e5e243ac27b4c80315
f2d8fec1f2a7a175a3d04a394f22644dc6861a9c
ffef44ba17dd6a9bfa9099cb9fc7184c8e49500b394616ccc9ea58eea9dd6a89
GET /static-content.betwarrior.bet/Product/Landing_page/Payment%20Methods%202021/PT/logo_astropay.svg HTTP/1.1
Host: s3.sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.betwarrior.bet/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 35F0GR1jflAgS5pScd9eP9WEnNLVAFPVE7aIw1dEcbNiqxk+wIP5UguP2oZZYjIomK3v0y1/Wv4=
x-amz-request-id: 4TTPPZCC5NWW4PQ2
Date: Sat, 04 Feb 2023 02:03:42 GMT
Last-Modified: Mon, 17 May 2021 12:27:04 GMT
ETag: "c17e18ed732cc1e5e243ac27b4c80315"
Accept-Ranges: bytes
Content-Type: image/svg+xml
Server: AmazonS3
Content-Length: 4922
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 078c6b8c278273a136af1354d01664f2
afe1398c1d2d6165117c014b97250de327283867
9836592a7c1aff09a52c3782b7e12a3893c412babb2f944715e3bc10cf928196
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2992
Cache-Control: max-age=102919
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:03:41 GMT
Etag: "63dca054-1d7"
Expires: Sun, 05 Feb 2023 06:39:00 GMT
Last-Modified: Fri, 03 Feb 2023 05:49:08 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
aswpsdkus.com/notify/v1/ua-sdk.min.js
34.160.158.95200 OK 43 kB URL HTTP/2 aswpsdkus.com/notify/v1/ua-sdk.min.js
IP 34.160.158.95:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 1cda07a2bbc55dcaf684954e7d897c40
ad0c471c1cd361f7a4ef8deb825aa63eb1b01029
8e12a7991dda2a0e6cbd6ba7423a98ea668c2f47a83f7b70180d21b1f3893270
GET /notify/v1/ua-sdk.min.js HTTP/1.1
Host: aswpsdkus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsgGfqWDNvP8V44F62c02a_g0U1B_39RHi-8gdgry_1u00WvoeVCvFeP7TIXs1kJmST-3za9xCPpM4MxCuBj-QEk_JTLuCO
vary: X-Goog-Allowed-Resources
x-goog-generation: 1673371354401478
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 42942
content-encoding: gzip
x-goog-hash: crc32c=CzJWog==, md5=HNoHorvFXcr2hJVOfYl8QA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 42942
server: UploadServer
date: Sat, 04 Feb 2023 01:58:59 GMT
expires: Sat, 04 Feb 2023 02:03:59 GMT
cache-control: public,max-age=300,no-transform
age: 282
last-modified: Tue, 10 Jan 2023 17:22:34 GMT
etag: "1cda07a2bbc55dcaf684954e7d897c40"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ws-cdn001.akamaized.net/7693683943e78a298c36d469e68b47d8/widgetloader
95.101.10.66200 OK 60 kB URL HTTP/2 ws-cdn001.akamaized.net/7693683943e78a298c36d469e68b47d8/widgetloader
IP 95.101.10.66:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (41453)
Hash 5dc6d3488dd7362a70e9169285e8ad6f
93e852b1719a689b303ec7998a36df4eb56731ed
d17bdf642a1123161e3d9a079274a2d2902c3b001d5211ead0a7b44a6fef9982
GET /7693683943e78a298c36d469e68b47d8/widgetloader HTTP/1.1
Host: ws-cdn001.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-security-policy: frame-ancestors 'self' https://st-cdn001.akamaized.net https://ls-cdn001.akamaized.net
cache-control: public, max-age=120, stale-while-revalidate=60, immutable
etag: "dbd94835299851de14a09ce08183eb22-35b43e5f7911802702540dc31af49b69"
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
x-ing-v: 2
content-length: 60143
date: Sat, 04 Feb 2023 02:03:41 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
builder-assets.unbounce.com/published-js/main.bundle-fed11df.z.js
54.230.111.34200 OK 33 kB URL HTTP/2 builder-assets.unbounce.com/published-js/main.bundle-fed11df.z.js
IP 54.230.111.34:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 0baa7928a61eec0ae7b70702e0a16542
e9b92639912795d539833b8d243c1eda96bbcd7c
4c6e30261a5912ceac380879db464143de9ff661ff6da61e2d7f9dc941f5daf6
GET /published-js/main.bundle-fed11df.z.js HTTP/1.1
Host: builder-assets.unbounce.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.betwarrior.bet/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 33154
date: Wed, 25 Jan 2023 03:52:39 GMT
last-modified: Tue, 18 Jan 2022 21:17:50 GMT
etag: "0baa7928a61eec0ae7b70702e0a16542"
cache-control: max-age=31536000
content-encoding: gzip
x-amz-version-id: unUaqO9013Xc011S.3KQRlXYPC3pdAjV
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: wLIm3-E8X-wI2Eb-2oOJATz7ilYgZiju1RMjCdI8WkepLUT-Kof1SA==
age: 857463
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 078c6b8c278273a136af1354d01664f2
afe1398c1d2d6165117c014b97250de327283867
9836592a7c1aff09a52c3782b7e12a3893c412babb2f944715e3bc10cf928196
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2992
Cache-Control: max-age=102919
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:03:41 GMT
Etag: "63dca054-1d7"
Expires: Sun, 05 Feb 2023 06:39:00 GMT
Last-Modified: Fri, 03 Feb 2023 05:49:08 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash d419db7d2a1b0fa5ad71bd70a163ae20
10d05146e7dfe78957ae92c28c4d92fab295b22b
c468704360c1e4da789bb46d62e0bd3d496b5774809f7532256970e5f2c7a068
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6319
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:03:41 GMT
Etag: "63dc573b-118"
Last-Modified: Sat, 04 Feb 2023 00:18:22 GMT
Server: ECS (amb/6B74)
X-Cache: HIT
Content-Length: 280
d34qb8suadcc4g.cloudfront.net/ub.js?1673990108
54.230.111.26200 OK 71 kB URL HTTP/2 d34qb8suadcc4g.cloudfront.net/ub.js?1673990108
IP 54.230.111.26:0
Hash 394cc8d567486cbc05053defb89581bc
f2aeed8044d79a624ef78ef9f48cc50edd4ddc79
cde3ff3c5c37846a813b707990ceff6f0acc3f41d8762cede7fcaa4304c952f8
GET /ub.js?1673990108 HTTP/1.1
Host: d34qb8suadcc4g.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.betwarrior.bet/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 1865
date: Tue, 17 Jan 2023 21:41:41 GMT
last-modified: Tue, 17 Jan 2023 21:14:25 GMT
etag: "fde4d3457a50df6eb5c2e00c8f2ae5b3"
cache-control: max-age=31536000
content-encoding: gzip
x-amz-version-id: TrrSG85SsnvjrZ_OWFs2jLqOdvnUHg06
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: MtfeIf4QeoULTCrCuotts1kVJaEAjWVsf2RyGOoDFhOi27t5p1pDkA==
age: 1484521
X-Firefox-Spdy: h2
p.teads.tv/teads-fellow.js
23.195.255.234200 OK 6.4 kB URL HTTP/1.1 p.teads.tv/teads-fellow.js
IP 23.195.255.234:0
File type ASCII text, with very long lines (19888), with no line terminators
Hash b6e227013e992031893f2833d1df522e
c6d55aba6762513c8a1eb320131cf46cfa932b4a
6338003a70f047fd7a382e87160754ab69d62edb039da75b4bfb331d16b20c71
GET /teads-fellow.js HTTP/1.1
Host: p.teads.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.betwarrior.bet/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: Fvk0n/5LJz3nBotNQWoB41nnYa7EY38OhmFTP/DeBSktyLC0h63NyNDrx49W519ODkwt3KRvtik=
x-amz-request-id: C1F8TJNV6Q5MR03D
Last-Modified: Mon, 23 Jan 2023 13:03:00 GMT
ETag: "52a95d12f789e4537934e239a8adddcb"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=310
Date: Sat, 04 Feb 2023 02:03:41 GMT
Content-Length: 6419
Connection: keep-alive
www.google-analytics.com/analytics.js
142.250.74.46200 OK 119 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.46:0
Size 119 kB (119067 bytes)
Hash 36853a559ef572db129f16c3459eef47
b3756d34a4de1dfa9c32d26689fddb1c8627f552
1c8e3630e7c2f7fdcf93c43aabd6a3e79fd48e082bae9e9b0aac7bc8c7345b4d
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.betwarrior.bet/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Sat, 04 Feb 2023 01:45:20 GMT
expires: Sat, 04 Feb 2023 03:45:20 GMT
cache-control: public, max-age=7200
age: 1101
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/Hq1Kz8ZiT_Y
142.250.74.163200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/Hq1Kz8ZiT_Y
IP 142.250.74.163:0
Hash 4e8470c9ad9379503d47776071a993e8
66ab976d2f90aba6f5df8ef7ed2ab7f53c0b0c30
b757f024942ad7241d021db60b15f9298b3de7ddcebf1575ea46fa4c85a02faa
POST /s/gts1d4/Hq1Kz8ZiT_Y HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:03:41 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.platincasino.com/no/home.html
23.36.79.33200 OK 50 kB URL HTTP/2 www.platincasino.com/no/home.html
IP 23.36.79.33:0
ASN #20940 Akamai International B.V.
Hash b949a654bae3431d4daa69cba15c68e7
91e93d749cd7e0fc33ce74f3e34d938842f73227
4ecefcba32f1ee005cedbcac62086aea4d04c6368db464f748d2bafde58830ee
GET /no/home.html HTTP/1.1
Host: www.platincasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
cache-tag: html
x-frame-options: SAMEORIGIN
x-akamai-transformed: 9 - 0 pmb=mTOE,2
vary: Accept-Encoding
content-encoding: gzip
expires: Sat, 04 Feb 2023 02:03:40 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 04 Feb 2023 02:03:40 GMT
set-cookie: ak_bmsc=6B945E87420B4F7305D48738D0FA84EB~000000000000000000000000000000~YAAQHU8kF7nyqeSFAQAA8DgqGhIgCkEJEA4Fnjp7oq6yiWmo4ulcPJdNr5wyM+bD13Z3pD4Yp54SH4dGeTtLbdhwo4/zb1MAE494R+tTI0u5s/MpTXWQydKAn43FNKl+6qYZwrew5aj8ECddNQJhdD/XYwZNtgLPg/WbpBoavu1zMUIArPFZ56itcaJ5ICyuk78Yn8TziwZXaMwPnDvMShhESrGEswWtfmP6ijIG5sTLkVyrCqcQvwwmFuVS5e/3XjkczxhmHe7wXv3p1bEkxjzzIFMprGEf+8ZFDd9t44FdB3qwdmGcnVV9oV7pHjJoRRp7xJkw01tEjL0L+oyT2Yf58cj9kqK8V+k4K0VAIP1lrH+bmBPry4TNitbUCajr/U6Tc34fDxJA7zfaMVXI; Domain=.platincasino.com; Path=/; Expires=Sat, 04 Feb 2023 04:03:40 GMT; Max-Age=7200; HttpOnly
bm_mi=F1AFE1920BF1E0FE4AB74DE77B7FA8E8~YAAQHU8kF7ryqeSFAQAA8DgqGhJUdA+G0ByjVWCdAKlWlsVk58mDdpVR7sFn0/96+mfuhoXVmhUlJHxDPdrdz1Cnb8U1LhiN33Bzwp/ZBzRJBTmatr8nxY5L/I5lSK3D3jRukex0Ma+R3CA6uvoji0hmn6yTyavxYJMXNI61wlCpdt+Ims2kyRu1TnLTAjOSsv799yjAcS1HZnOhvdKOVpl+51NfghTabf2szdctXsWRoY2SWtgDOt5IO9wpIs2foFzOQ3K2pLQ5Dth/xWebnZf3aj6NgVXqoDda1qRtOPM1s9tSCS6ZzVa2DRgq8MZSQdmYE0R9Fr3jUBhS32HWsA==~1; Domain=.platincasino.com; Path=/; Expires=Sat, 04 Feb 2023 02:03:40 GMT; Max-Age=0; Secure
X-Firefox-Spdy: h2
edge.fullstory.com/s/fs.js
35.201.112.186200 OK 79 kB URL HTTP/2 edge.fullstory.com/s/fs.js
IP 35.201.112.186:0
File type Java source, ASCII text, with very long lines (961)
Hash bf1b2114c2ead0619c2804050834e044
d1964e9fbe8952c71c1817127bf43950c4257a7b
0d90502a7d82a2fd14411fa60682eb88c9a572eb7ba6f9594487c3ad80887bc6
GET /s/fs.js HTTP/1.1
Host: edge.fullstory.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://promo.betwarrior.bet
Connection: keep-alive
Referer: https://promo.betwarrior.bet/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycduf0nbBVOAUsYow7J-X4AX6fR4PdPzFdQ10uGvvA4XwVLd6SzeJu3o1ZeFppuRSp6I-mLcrGRAUflzxgKzzHByDrunzjmSU
vary: X-Goog-Allowed-Resources,Accept-Encoding
x-goog-generation: 1675281800350652
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 271678
x-goog-hash: crc32c=y9+62w==, md5=RUfjnKNAH7ztjg4n0ESWcA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: none
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
content-encoding: br
date: Sat, 04 Feb 2023 02:02:14 GMT
expires: Sat, 04 Feb 2023 03:02:14 GMT
cache-control: public, max-age=3600
last-modified: Wed, 01 Feb 2023 20:03:20 GMT
etag: W/"4547e39ca3401fbced8e0e27d0449670"
content-type: application/javascript
content-length: 78368
age: 87
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/Hq1Kz8ZiT_Y
142.250.74.163200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/Hq1Kz8ZiT_Y
IP 142.250.74.163:0
Hash 4e8470c9ad9379503d47776071a993e8
66ab976d2f90aba6f5df8ef7ed2ab7f53c0b0c30
b757f024942ad7241d021db60b15f9298b3de7ddcebf1575ea46fa4c85a02faa
POST /s/gts1d4/Hq1Kz8ZiT_Y HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:03:41 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tracker.ads.sportradar.com/dist/tracker.js
95.101.10.113200 OK 13 kB URL HTTP/2 tracker.ads.sportradar.com/dist/tracker.js
IP 95.101.10.113:0
ASN #20940 Akamai International B.V.
Hash 2efdde7b5625990f624771c91c857753
d85d98394c0fcdcdedcb855f06816655437d64ca
b1c86ecfc5fbd74bf44df01da962fe0f9f7c4c19a55d0663e4026a649de9c3f2
GET /dist/tracker.js HTTP/1.1
Host: tracker.ads.sportradar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 20 Jan 2021 14:51:32 GMT
accept-ranges: bytes
server: AmazonS3
etag: "5ff82a1c468a89919e9437d33e0402cb"
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: lilTPTQwiFh0VJWkVzsVkg926mhW28TGKyOiSnBsA59oGt4a5kFU3Q==
vary: Accept-Encoding
content-encoding: gzip
content-length: 11553
date: Sat, 04 Feb 2023 02:03:41 GMT
cache-control: max-age=900, public
X-Firefox-Spdy: h2
d34qb8suadcc4g.cloudfront.net/sp-2.14.0.js
54.230.111.26200 OK 30 kB URL HTTP/2 d34qb8suadcc4g.cloudfront.net/sp-2.14.0.js
IP 54.230.111.26:0
File type ASCII text, with very long lines (64903)
Hash 73de733c308b8b5e44d2a6242dc4bd99
2f43a0cd155124d65ab5ce3574abc5f82b45fcf9
cf4ff4a67675a54e9a9469d967c77fba778ccf839a98119d246012447eb44ea3
GET /sp-2.14.0.js HTTP/1.1
Host: d34qb8suadcc4g.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.betwarrior.bet/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 30399
date: Sun, 11 Dec 2022 09:08:36 GMT
last-modified: Wed, 04 Nov 2020 01:35:32 GMT
etag: "73de733c308b8b5e44d2a6242dc4bd99"
cache-control: max-age=31536000
content-encoding: gzip
x-amz-version-id: rVTqklA1qqyT_0VdOCY323BKPISR0uej
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: qvEQmxY7izjYDvfcO0qHHn0vDZWm5jiKAkE6rZxwPHxOut5l5xVmzA==
age: 4726506
X-Firefox-Spdy: h2
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash 62d0e3a8fba23e2c4367b78df6425029
8d5d41dcd0a9da3c50682fea6225ce05b8513f85
1550af722223d0f7c2ecf711422b58f7c6789dcc0ea11b486c4030d2daa243de
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "1550AF722223D0F7C2ECF711422B58F7C6789DCC0EA11B486C4030D2DAA243DE"
Last-Modified: Fri, 03 Feb 2023 18:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3415
Expires: Sat, 04 Feb 2023 03:00:36 GMT
Date: Sat, 04 Feb 2023 02:03:41 GMT
Connection: keep-alive
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash 62d0e3a8fba23e2c4367b78df6425029
8d5d41dcd0a9da3c50682fea6225ce05b8513f85
1550af722223d0f7c2ecf711422b58f7c6789dcc0ea11b486c4030d2daa243de
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "1550AF722223D0F7C2ECF711422B58F7C6789DCC0EA11B486C4030D2DAA243DE"
Last-Modified: Fri, 03 Feb 2023 18:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3415
Expires: Sat, 04 Feb 2023 03:00:36 GMT
Date: Sat, 04 Feb 2023 02:03:41 GMT
Connection: keep-alive
a.sportradarserving.com/pixel?type=js&aid=1121&id=1859
3.122.131.74302 Moved Temporarily 0 B URL HTTP/1.1 a.sportradarserving.com/pixel?type=js&aid=1121&id=1859
IP 3.122.131.74:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel?type=js&aid=1121&id=1859 HTTP/1.1
Host: a.sportradarserving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Sat, 04 Feb 2023 02:03:41 GMT
Location: https://a.sportradarserving.com/ul_cb/pixel?type=js&aid=1121&id=1859
Set-Cookie: zuuid=0ea13f8c-7fa3-4f2b-8343-e3ce70179085; path=/; expires=Sun, 04-Feb-2024 02:03:41 GMT; domain=sportradarserving.com; samesite=none; secure
c=1675476221; path=/; expires=Sun, 04-Feb-2024 02:03:41 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1675476221; path=/; expires=Sun, 04-Feb-2024 02:03:41 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 0
Connection: keep-alive
a.sportradarserving.com/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
3.122.131.74302 Moved Temporarily 0 B URL HTTP/1.1 a.sportradarserving.com/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
IP 3.122.131.74:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId= HTTP/1.1
Host: a.sportradarserving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Sat, 04 Feb 2023 02:03:41 GMT
Location: https://a.sportradarserving.com/ul_cb/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
Set-Cookie: zuuid=0334d2df-a5fa-405e-9faa-91ebe069a8d1; path=/; expires=Sun, 04-Feb-2024 02:03:41 GMT; domain=sportradarserving.com; samesite=none; secure
c=1675476221; path=/; expires=Sun, 04-Feb-2024 02:03:41 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1675476221; path=/; expires=Sun, 04-Feb-2024 02:03:41 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 0
Connection: keep-alive
tracker.ads.sportradar.com/dist//sp-2.14.0.js
95.101.10.113200 OK 30 kB URL HTTP/2 tracker.ads.sportradar.com/dist//sp-2.14.0.js
IP 95.101.10.113:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (64903)
Hash 44f237857b8d03f32b53fe551e83c95a
91536fe6c60d947d29dfcb5f04d09b752b5ccf03
a5e10dc2f3c729300afe8fe24aa430f57d91fdefa8112c0b35dd424ba612caa7
GET /dist//sp-2.14.0.js HTTP/1.1
Host: tracker.ads.sportradar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 20 Jan 2021 14:51:32 GMT
accept-ranges: bytes
server: AmazonS3
etag: "8dba669b94e3865c9205ef8fd15ee4d1"
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: -pbphpFQJyu9Nsi2p1LGt7DQE698REkbCvUvYwK6DlYBv7KIUUoEFQ==
vary: Accept-Encoding
content-encoding: gzip
content-length: 30370
unused62: 8096267
date: Sat, 04 Feb 2023 02:03:41 GMT
cache-control: max-age=900, public
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0fbd0093a0ac02e7eb15807f24f3d721
4de38da90cb5293da24ec66a3e529d01d94d149b
a232f98ad97eef8a2bff64a3dda41bcc09c7a0f87f3c3b33c1c6ab27bb79c7ca
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A232F98AD97EEF8A2BFF64A3DDA41BCC09C7A0F87F3C3B33C1C6AB27BB79C7CA"
Last-Modified: Fri, 03 Feb 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18905
Expires: Sat, 04 Feb 2023 07:18:46 GMT
Date: Sat, 04 Feb 2023 02:03:41 GMT
Connection: keep-alive
20bet.com/app/runtime.3565d56e138e89a0.esm.js
104.22.35.208200 OK 83 kB URL HTTP/2 20bet.com/app/runtime.3565d56e138e89a0.esm.js
IP 104.22.35.208:0
File type Java source, ASCII text, with very long lines (641)
Hash 19d90b3ba97f0599303efaa4d517cb8c
e72338223854017a8561d49135e125eed137cabf
2fd2ecd7dd3a89ba8ae7dbb15b8cc4c1a743076c53d217495bcb66fa541b30f1
GET /app/runtime.3565d56e138e89a0.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Cookie: btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:41 GMT
content-type: application/javascript
cf-ray: 793fd4cfd91295ee-ARN
etag: W/"63dcff74-272e"
last-modified: Fri, 03 Feb 2023 12:35:00 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-5VJW6PC
216.58.207.200200 OK 105 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-5VJW6PC
IP 216.58.207.200:0
File type Java source, ASCII text, with very long lines (3664)
Size 105 kB (105313 bytes)
Hash c8a32ed6218c51a0a720bb47cb30135c
d690970e507e6a083de67c7aa7076a6edb7a1221
c89e1d967cfbe5cf6a06011cd47788832b0ac0551fab147cf74e563318bbad3b
GET /gtm.js?id=GTM-5VJW6PC HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.betwarrior.bet/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 04 Feb 2023 02:03:40 GMT
expires: Sat, 04 Feb 2023 02:03:40 GMT
cache-control: private, max-age=900
last-modified: Sat, 04 Feb 2023 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 55148
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
tracker.growthbuddy.app/track.js?e=pageview&u=&i=DV-02355017850611493202&v=1.0.0&uid=b694dfec-64a6-41a7-8301-3ae78acd815a&_nc=1675476255450
54.74.8.139200 OK 0 B URL HTTP/2 tracker.growthbuddy.app/track.js?e=pageview&u=&i=DV-02355017850611493202&v=1.0.0&uid=b694dfec-64a6-41a7-8301-3ae78acd815a&_nc=1675476255450
IP 54.74.8.139:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /track.js?e=pageview&u=&i=DV-02355017850611493202&v=1.0.0&uid=b694dfec-64a6-41a7-8301-3ae78acd815a&_nc=1675476255450 HTTP/1.1
Host: tracker.growthbuddy.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:42 GMT
content-type: application/javascript; charset=utf-8
content-length: 0
set-cookie: INGRESSCOOKIE=1675476223.015.105.607924|4755d7349ad2180cc27216e76023fb56; Path=/; Secure; HttpOnly
cache-control: no-cache
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
20bet.com/app/vendor.7f46fa567274024c.esm.js
104.22.35.208200 OK 549 kB URL HTTP/2 20bet.com/app/vendor.7f46fa567274024c.esm.js
IP 104.22.35.208:0
File type ASCII text, with very long lines (65451)
Size 549 kB (549360 bytes)
Hash b712436f9f85e488cd07ed1682ec3b7f
ca9c313f2a5969187ce45e438f400a985769e2af
08aae0db7aeac98855e2f2adbd17f107b0a427925b105865a3fcae59522c39d9
GET /app/vendor.7f46fa567274024c.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Cookie: btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:41 GMT
content-type: application/javascript
cf-ray: 793fd4cff91995ee-ARN
etag: W/"63dcff75-251c87"
last-modified: Fri, 03 Feb 2023 12:35:01 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 52104a66aec82cdc03b5303ba4b4e1b4
dc842551cf50a7dedb5f464e99f2065523a38d7e
b07cb29953de589ab181e3a13bf30bc70351a215c1d5c207cc71ef5114a6d7a9
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "B07CB29953DE589AB181E3A13BF30BC70351A215C1D5C207CC71EF5114A6D7A9"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9078
Expires: Sat, 04 Feb 2023 04:35:00 GMT
Date: Sat, 04 Feb 2023 02:03:42 GMT
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash cdf0a49182f9c7206b5ba8c48444f2cf
5bd08b7d6b62f69d4e381b6386e73c08b48cc277
b36a93ac1304440a87559e6aaab5ede19d98445798c6de80a560332a6da4d0b1
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=140905
Date: Sat, 04 Feb 2023 02:03:42 GMT
Etag: "63dd2894-1d7"
Expires: Sun, 05 Feb 2023 17:12:07 GMT
Last-Modified: Fri, 03 Feb 2023 15:30:28 GMT
Server: ECS (nyb/1D0E)
X-Cache: Miss from cloudfront
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Rm2k4isudl84pBULIHK4cJrR8j687_6iWP9yrnWmibF1vc3-72S4oA==
Age: 6099
events.ub-analytics.com/i?stm=1675476255275&e=pv&url=https%3A%2F%2Fpromo.betwarrior.bet%2Fpt%2Fwelcome-offer-sports%2F%3Futm_source%3Dnetrefer%26utm_medium%3Daffiliates%26utm_campaign%3Dsports%26btag%3D655952_5F3D35BD778945ED822FD8340F9A5004&tv=js-2.14.0&tna=sp-ub&aid=landing_page&p=web&tz=UTC&lang=en-US&cs=UTF-8&res=1280x1024&cd=24&eid=5871270f-06ee-47e1-a33e-125e4a4d2855&dtm=1675476255273&vp=0x0&ds=0x0&vid=1&sid=24e863d9-594a-4887-82ed-090c4fcd5a1b&duid=a194e04d-d621-40b0-a9a7-a71c0e50a7a0&uid=f25c06af-ede1-46df-aef6-bd79e91de99a&cx=eyJzY2hlbWEiOiJpZ2x1OmNvbS5zbm93cGxvd2FuYWx5dGljcy5zbm93cGxvdy9jb250ZXh0cy9qc29uc2NoZW1hLzEtMC0wIiwiZGF0YSI6W3sic2NoZW1hIjoianNfdHJhY2tlcl9jb250ZXh0X3YxLjEuanNvbiIsImRhdGEiOnsicGFnZUlkIjoiZDkwMDIxMmMtYWFmNi00NjI4LTgzZjktMDE3MjY2M2EwODUxIiwidmFyaWFudElkIjoiYSIsImV2ZW50VHlwZSI6InZpc2l0IiwiZXZlbnRNZXRhZGF0YSI6W10sInJvdXRpbmdTdHJhdGVneSI6InNpbmdsZSJ9fV19
34.238.109.20200 OK 43 B URL HTTP/2 events.ub-analytics.com/i?stm=1675476255275&e=pv&url=https%3A%2F%2Fpromo.betwarrior.bet%2Fpt%2Fwelcome-offer-sports%2F%3Futm_source%3Dnetrefer%26utm_medium%3Daffiliates%26utm_campaign%3Dsports%26btag%3D655952_5F3D35BD778945ED822FD8340F9A5004&tv=js-2.14.0&tna=sp-ub&aid=landing_page&p=web&tz=UTC&lang=en-US&cs=UTF-8&res=1280x1024&cd=24&eid=5871270f-06ee-47e1-a33e-125e4a4d2855&dtm=1675476255273&vp=0x0&ds=0x0&vid=1&sid=24e863d9-594a-4887-82ed-090c4fcd5a1b&duid=a194e04d-d621-40b0-a9a7-a71c0e50a7a0&uid=f25c06af-ede1-46df-aef6-bd79e91de99a&cx=eyJzY2hlbWEiOiJpZ2x1OmNvbS5zbm93cGxvd2FuYWx5dGljcy5zbm93cGxvdy9jb250ZXh0cy9qc29uc2NoZW1hLzEtMC0wIiwiZGF0YSI6W3sic2NoZW1hIjoianNfdHJhY2tlcl9jb250ZXh0X3YxLjEuanNvbiIsImRhdGEiOnsicGFnZUlkIjoiZDkwMDIxMmMtYWFmNi00NjI4LTgzZjktMDE3MjY2M2EwODUxIiwidmFyaWFudElkIjoiYSIsImV2ZW50VHlwZSI6InZpc2l0IiwiZXZlbnRNZXRhZGF0YSI6W10sInJvdXRpbmdTdHJhdGVneSI6InNpbmdsZSJ9fV19
IP 34.238.109.20:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash fb02f374b8f73825415db1bccd4bd76d
b103aa629cacdd90b39538a7561da7f8e49ad73f
caa849b179befa2645a8e2c474d2e82a76777a3305315ece911013e8ee9a916c
GET /i?stm=1675476255275&e=pv&url=https%3A%2F%2Fpromo.betwarrior.bet%2Fpt%2Fwelcome-offer-sports%2F%3Futm_source%3Dnetrefer%26utm_medium%3Daffiliates%26utm_campaign%3Dsports%26btag%3D655952_5F3D35BD778945ED822FD8340F9A5004&tv=js-2.14.0&tna=sp-ub&aid=landing_page&p=web&tz=UTC&lang=en-US&cs=UTF-8&res=1280x1024&cd=24&eid=5871270f-06ee-47e1-a33e-125e4a4d2855&dtm=1675476255273&vp=0x0&ds=0x0&vid=1&sid=24e863d9-594a-4887-82ed-090c4fcd5a1b&duid=a194e04d-d621-40b0-a9a7-a71c0e50a7a0&uid=f25c06af-ede1-46df-aef6-bd79e91de99a&cx=eyJzY2hlbWEiOiJpZ2x1OmNvbS5zbm93cGxvd2FuYWx5dGljcy5zbm93cGxvdy9jb250ZXh0cy9qc29uc2NoZW1hLzEtMC0wIiwiZGF0YSI6W3sic2NoZW1hIjoianNfdHJhY2tlcl9jb250ZXh0X3YxLjEuanNvbiIsImRhdGEiOnsicGFnZUlkIjoiZDkwMDIxMmMtYWFmNi00NjI4LTgzZjktMDE3MjY2M2EwODUxIiwidmFyaWFudElkIjoiYSIsImV2ZW50VHlwZSI6InZpc2l0IiwiZXZlbnRNZXRhZGF0YSI6W10sInJvdXRpbmdTdHJhdGVneSI6InNpbmdsZSJ9fV19 HTTP/1.1
Host: events.ub-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.betwarrior.bet/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:42 GMT
content-type: image/gif
content-length: 43
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
access-control-allow-origin: *
access-control-allow-credentials: true
server: akka-http/10.0.9
X-Firefox-Spdy: h2
tag.growthbuddy.app/tag.js?id=DV-02355017850611493202
54.74.8.139200 OK 2.3 kB URL HTTP/2 tag.growthbuddy.app/tag.js?id=DV-02355017850611493202
IP 54.74.8.139:0
Hash 52f016437024ec185ab6a24619229bc3
fbdb0a839b53038c6e09fb3aee1ff812f620f60a
1b8ce2042ece219f2f0b28244fa32ba2a6caef35bbf411aa41f6950a514db519
GET /tag.js?id=DV-02355017850611493202 HTTP/1.1
Host: tag.growthbuddy.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:41 GMT
content-type: application/javascript; charset=utf-8
set-cookie: INGRESSCOOKIE=1675476222.761.105.712320|5f2e1b57d78510d04b0cf9036879032b; Path=/; Secure; HttpOnly
vary: Accept-Encoding
cache-control: public, max-age=7200
x-content-type-options: nosniff
etag: "1382-4YuDa3owVc9r2LUx5CM7dj7oB9U"
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
a.sportradarserving.com/ul_cb/pixel?type=js&aid=1121&id=1859
3.122.131.74200 OK 1.5 kB URL HTTP/1.1 a.sportradarserving.com/ul_cb/pixel?type=js&aid=1121&id=1859
IP 3.122.131.74:0
File type ASCII text, with very long lines (1527), with no line terminators
Hash de48c7e8d528e11dfebac68a4b368810
a76521ee1c647827c9167e1a5122711befa92b1b
12c5f630d86801e96175e993b45f973eb96d980497fcf0ac4c6ad593379746d0
GET /ul_cb/pixel?type=js&aid=1121&id=1859 HTTP/1.1
Host: a.sportradarserving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20bet.com/
Connection: keep-alive
Cookie: zuuid=0334d2df-a5fa-405e-9faa-91ebe069a8d1; c=1675476221; zuuid_lu=1675476221
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store, must-revalidate
Content-Type: text/javascript; charset=UTF-8
Date: Sat, 04 Feb 2023 02:03:42 GMT
Set-Cookie: zuuid=0334d2df-a5fa-405e-9faa-91ebe069a8d1; path=/; expires=Sun, 04-Feb-2024 02:03:42 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1675476222; path=/; expires=Sun, 04-Feb-2024 02:03:42 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k=1; path=/; expires=Sun, 04-Feb-2024 02:03:42 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k_lu=1675476222; path=/; expires=Sun, 04-Feb-2024 02:03:42 GMT; domain=sportradarserving.com; samesite=none; secure
bss=!bidswitch,444733422; path=/; expires=Sun, 04-Feb-2024 02:03:42 GMT; domain=sportradarserving.com; samesite=none; secure
cm2=!bidswitch,444805422; path=/; expires=Sun, 04-Feb-2024 02:03:42 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 1527
Connection: keep-alive
a.sportradarserving.com/ul_cb/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
3.122.131.74302 Moved Temporarily 0 B URL HTTP/1.1 a.sportradarserving.com/ul_cb/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
IP 3.122.131.74:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ul_cb/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId= HTTP/1.1
Host: a.sportradarserving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20bet.com/
Connection: keep-alive
Cookie: zuuid=0334d2df-a5fa-405e-9faa-91ebe069a8d1; c=1675476221; zuuid_lu=1675476221
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Sat, 04 Feb 2023 02:03:42 GMT
Location: https://x.bidswitch.net/syncd?dsp_id=409&user_group=2&user_id=0334d2df-a5fa-405e-9faa-91ebe069a8d1&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3D0334d2df-a5fa-405e-9faa-91ebe069a8d1
Set-Cookie: zuuid=0334d2df-a5fa-405e-9faa-91ebe069a8d1; path=/; expires=Sun, 04-Feb-2024 02:03:42 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1675476222; path=/; expires=Sun, 04-Feb-2024 02:03:42 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k=1; path=/; expires=Sun, 04-Feb-2024 02:03:42 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k_lu=1675476222; path=/; expires=Sun, 04-Feb-2024 02:03:42 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 0
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 3c35a8b26f80fad07c0a61e0cb8fdafc
96787f8bf3cc8c68d0ac5e2c2e115298660511e0
c87236423fca154db6809abb5ee9884aab1006e4154307434afb57b28c009e84
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 04 Feb 2023 02:03:42 GMT
Last-Modified: Sat, 04 Feb 2023 00:41:40 GMT
Server: ECS (nyb/1D04)
X-Cache: Miss from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: whRiswJD-whE8HCwBLPTzbEWXurN9IPNBYGHqFhC2RQypCOZxlE2tw==
Age: 4922
platform.20bet.com/api/market-descriptions/get-all-markets/br
104.22.35.208204 No Content 0 B URL HTTP/2 platform.20bet.com/api/market-descriptions/get-all-markets/br
IP 104.22.35.208:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/market-descriptions/get-all-markets/br HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 02:03:42 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fd4d84c0e95ee-ARN
X-Firefox-Spdy: h2
platform.20bet.com/api/match-statuses/get-all/br
104.22.35.208204 No Content 0 B URL HTTP/2 platform.20bet.com/api/match-statuses/get-all/br
IP 104.22.35.208:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/match-statuses/get-all/br HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 02:03:42 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fd4d85c1195ee-ARN
X-Firefox-Spdy: h2
platform.20bet.com/api/sport/list/-1/0/br
104.22.35.208204 No Content 0 B URL HTTP/2 platform.20bet.com/api/sport/list/-1/0/br
IP 104.22.35.208:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/sport/list/-1/0/br HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 02:03:42 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fd4d86c1b95ee-ARN
X-Firefox-Spdy: h2
platform.20bet.com/api/market-group-sorting/get-all-ordered
104.22.35.208204 No Content 0 B URL HTTP/2 platform.20bet.com/api/market-group-sorting/get-all-ordered
IP 104.22.35.208:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/market-group-sorting/get-all-ordered HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 02:03:42 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fd4d86c1d95ee-ARN
X-Firefox-Spdy: h2
platform.20bet.com/api/status
104.22.35.208204 No Content 0 B URL HTTP/2 platform.20bet.com/api/status
IP 104.22.35.208:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/status HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 02:03:42 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fd4d85c1795ee-ARN
X-Firefox-Spdy: h2
platform.20bet.com/api/v2/ip-data
104.22.35.208204 No Content 0 B URL HTTP/2 platform.20bet.com/api/v2/ip-data
IP 104.22.35.208:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v2/ip-data HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 02:03:42 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fd4d86c2095ee-ARN
X-Firefox-Spdy: h2
platform.20bet.com/api/v2/configurations
104.22.35.208204 No Content 0 B URL HTTP/2 platform.20bet.com/api/v2/configurations
IP 104.22.35.208:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v2/configurations HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 02:03:42 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fd4d86c1995ee-ARN
X-Firefox-Spdy: h2
platform.20bet.com/api/data/get-countries
104.22.35.208204 No Content 0 B URL HTTP/2 platform.20bet.com/api/data/get-countries
IP 104.22.35.208:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/data/get-countries HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 02:03:42 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fd4d87c2395ee-ARN
X-Firefox-Spdy: h2
platform.20bet.com/api/market-descriptions/get-all-outcomes/br
104.22.34.208204 No Content 0 B URL HTTP/2 platform.20bet.com/api/market-descriptions/get-all-outcomes/br
IP 104.22.34.208:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/market-descriptions/get-all-outcomes/br HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 02:03:42 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fd4d889782d62-ARN
X-Firefox-Spdy: h2
platform.20bet.com/api/data/provinces
104.22.34.208204 No Content 0 B URL HTTP/2 platform.20bet.com/api/data/provinces
IP 104.22.34.208:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/data/provinces HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 02:03:42 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fd4d889792d62-ARN
X-Firefox-Spdy: h2
platform.20bet.com/api/data/get-currencies
104.22.34.208204 No Content 0 B URL HTTP/2 platform.20bet.com/api/data/get-currencies
IP 104.22.34.208:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/data/get-currencies HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 02:03:42 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fd4d8997d2d62-ARN
X-Firefox-Spdy: h2
platform.20bet.com/api/tournaments/bet-tournament/get-active?fields%5B%5D=tournaments&fields%5B%5D=leaderboards&fields%5B%5D=authorizedUsers
104.22.34.208204 No Content 0 B URL HTTP/2 platform.20bet.com/api/tournaments/bet-tournament/get-active?fields%5B%5D=tournaments&fields%5B%5D=leaderboards&fields%5B%5D=authorizedUsers
IP 104.22.34.208:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/tournaments/bet-tournament/get-active?fields%5B%5D=tournaments&fields%5B%5D=leaderboards&fields%5B%5D=authorizedUsers HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 02:03:42 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fd4d899812d62-ARN
X-Firefox-Spdy: h2
pixbet.com/casino/?btag=a_1856b_104c_PU_BR_PA_DT_VOLD_PIXBET
104.18.39.162403 Forbidden 13 kB URL HTTP/2 pixbet.com/casino/?btag=a_1856b_104c_PU_BR_PA_DT_VOLD_PIXBET
IP 104.18.39.162:0
Hash 994ec7b2251575c854ccdeae7771f8dd
7db495d842a983b38b3dfd524abaaba75782617d
78181b71a0b310dc03a5e3babcf1c298e2868ccc0ec81eb6d3eaa166f1e455da
GET /casino/?btag=a_1856b_104c_PU_BR_PA_DT_VOLD_PIXBET HTTP/1.1
Host: pixbet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
date: Sat, 04 Feb 2023 02:03:39 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
set-cookie: __cf_bm=89YJkRh5lJV00Zy0E6JhHrCjtp26aoKlDCOSlKm9A9M-1675476219-0-AY0d7MImFLLwl8pgpNYp0dM5uSxjbjPY8akg1Wx3qed8p2AbQ5BWWQp8FdxNhlFCSLyL4UWkeddsddH7zQNHfOE=; path=/; expires=Sat, 04-Feb-23 02:33:39 GMT; domain=.pixbet.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 793fd4c53b76b51d-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 621b586028d5acaf29b8777ca0872ce1
9d2a358576d0acab58e2eacf7765b686cee9181f
a7c99a5217e394c715679780ae1e3e60202653547212b0a4fd2efab0e1a01015
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:03:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
20bet.com/app/common.68e049bd60bde3ea.css
104.22.35.208200 OK 1.6 kB URL HTTP/2 20bet.com/app/common.68e049bd60bde3ea.css
IP 104.22.35.208:0
File type assembler source, ASCII text, with very long lines (3432), with no line terminators
Hash 955ac55c603cfc993a9086211ccbee24
c1f48f48b16cc07c00a3e4370cb83f95500ee185
78ef17a3146a293ac3a256850bc220d76079ff0439d5c8a43cadb0136878346c
GET /app/common.68e049bd60bde3ea.css HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Cookie: btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:42 GMT
content-type: text/css
cf-ray: 793fd4d73ba895ee-ARN
etag: W/"63dcff85-d68"
last-modified: Fri, 03 Feb 2023 12:35:17 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 8176ac8bbb8fa05f36bdfa163da09e0c
b936c84c5fa7e781b12a17952c82bca546ca0575
1aa7e39fd02514a4023036a8a100d7e7898ee220063ebfb41c509264c81ed727
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:03:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
socketv2.bc.game/socket.io/?p=01c3633a890eb2478d1861a2a3f401861a2ac177&EIO=3&transport=websocket
104.18.37.127101 Switching Protocols 0 B URL HTTP/1.1 socketv2.bc.game/socket.io/?p=01c3633a890eb2478d1861a2a3f401861a2ac177&EIO=3&transport=websocket
IP 104.18.37.127:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /socket.io/?p=01c3633a890eb2478d1861a2a3f401861a2ac177&EIO=3&transport=websocket HTTP/1.1
Host: socketv2.bc.game
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://bc.game
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: JFdU5ofoKWPyi/gSW891aA==
Connection: keep-alive, Upgrade
Cookie: invitation-code=4cxse6dr; invitation-url=https%3A%2F%2Fbc.game%2Flanding%2Fsports-br%3Fi%3D4cxse6dr%26stag%3D17409_63ddbcfb607ae792a8b1978d%26utm_source%3D4cxse6dr
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Sat, 04 Feb 2023 02:03:43 GMT
Connection: upgrade
upgrade: websocket
sec-websocket-accept: H02v9QYxEtzs2KKNIDVDPYGq5ng=
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793fd4d3de9c1c06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
20bet.com/custom-assets/logo.webp
104.22.35.208200 OK 14 kB URL HTTP/2 20bet.com/custom-assets/logo.webp
IP 104.22.35.208:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 38810a32194964dbdbf543e2a93e6a8c
e6c250ae7a2dd04c3473b6c03880c59960cabd74
7e7b70fbac7c9bd957367ddf9e51c883b7705307315a74899e94e04b0f1d6cd3
GET /custom-assets/logo.webp HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Cookie: btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:43 GMT
content-type: image/webp
content-length: 13882
cf-ray: 793fd4da7cea95ee-ARN
accept-ranges: bytes
age: 3093
cache-control: public, max-age=14400
last-modified: Sat, 04 Feb 2023 01:12:10 GMT
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers: Content-Length,Content-Range
server: cloudflare
X-Firefox-Spdy: h2
platform.20bet.com/api/v3/casino/game?dev_id=popular&per_page=6&has_live=0&perPage=6
104.22.34.208204 No Content 2.1 kB URL HTTP/2 platform.20bet.com/api/v3/casino/game?dev_id=popular&per_page=6&has_live=0&perPage=6
IP 104.22.34.208:0
Hash 7550abe25f3af45f9c02bebbf3764bde
2b6b18f10b2f3310e6138a764516d11cb47ec936
e4ec39ee094d22d8b12607eca72c33ff0d7c942f9276128d92975a44a1207fa6
OPTIONS /api/v3/casino/game?dev_id=popular&per_page=6&has_live=0&perPage=6 HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 02:03:43 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fd4db5a572d62-ARN
X-Firefox-Spdy: h2
cm.teads.tv/v2/advertiser?referer=https%3A%2F%2Fpromo.betwarrior.bet%2Fpt%2Fwelcome-offer-sports%2F%3Futm_source%3Dnetrefer%26utm_medium%3Daffiliates%26utm_campaign%3Dsports%26btag%3D655952_5F3D35BD778945ED822FD8340F9A5004&advertiser_id=28969
23.195.255.234200 OK 137 B URL HTTP/1.1 cm.teads.tv/v2/advertiser?referer=https%3A%2F%2Fpromo.betwarrior.bet%2Fpt%2Fwelcome-offer-sports%2F%3Futm_source%3Dnetrefer%26utm_medium%3Daffiliates%26utm_campaign%3Dsports%26btag%3D655952_5F3D35BD778945ED822FD8340F9A5004&advertiser_id=28969
IP 23.195.255.234:0
File type JSON data\012- , ASCII text, with no line terminators
Hash d5a6d7746ae6a581c78f577da9a579b6
7f5fe3d536c0b325704d2ab40cc25133ae6c8e2c
1c9fd11128c6e60006623504504c1aa076cf239270cc2cee5634fc6b1ff787d3
GET /v2/advertiser?referer=https%3A%2F%2Fpromo.betwarrior.bet%2Fpt%2Fwelcome-offer-sports%2F%3Futm_source%3Dnetrefer%26utm_medium%3Daffiliates%26utm_campaign%3Dsports%26btag%3D655952_5F3D35BD778945ED822FD8340F9A5004&advertiser_id=28969 HTTP/1.1
Host: cm.teads.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://promo.betwarrior.bet/
Origin: https://promo.betwarrior.bet
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json; charset=utf-8
Content-Length: 137
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://promo.betwarrior.bet
Observe-Browsing-Topics: ?1
Origin-Trial: Az9xQo/imzWWuauBg0JngENQMoxulJzGzdGQ0VfUZDk7et2DJfmfUxfOWnHlwQiZRFG+Grc8bH8xWgOPW2ltjQQAAAB+eyJvcmlnaW4iOiJodHRwczovL3RlYWRzLnR2OjQ0MyIsImZlYXR1cmUiOiJQcml2YWN5U2FuZGJveEFkc0FQSXMiLCJleHBpcnkiOjE2ODA2NTI3OTksImlzU3ViZG9tYWluIjp0cnVlLCJpc1RoaXJkUGFydHkiOnRydWV9
Expires: Sat, 04 Feb 2023 02:03:43 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sat, 04 Feb 2023 02:03:43 GMT
Connection: keep-alive
Set-Cookie: ar_debug=1; Path=/; HttpOnly; Secure; SameSite=None
platform.20bet.com/api/data/get-currencies
104.22.35.208200 OK 2.2 kB URL HTTP/2 platform.20bet.com/api/data/get-currencies
IP 104.22.35.208:0
File type JSON data\012- , ASCII text, with very long lines (10992), with no line terminators
Hash d9227a4920f8f96569eb97338612af9f
bff1bccb06df5bfd083831aca776fb9ab4ae7e37
2dd4129f04d2d4326b8daf3c51bc1698742c9287a9756f91ef80232474e91cf0
GET /api/data/get-currencies HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:42 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fd4d8dc4695ee-ARN
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash d6b60321c56dca3154f638b7c087abb1
b31df15328ce5870c604bd52acfaa4d8742b2d93
f746fa05ce7bb4c92f1bce2c27bf3a616e780e92e6d60e71e4f02d5d4de1f8c5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3520
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:03:43 GMT
Last-Modified: Sat, 04 Feb 2023 01:05:03 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 279
20bet.com/app/5238.c643742b8f51fd51.esm.js
104.22.35.208200 OK 4.0 kB URL HTTP/2 20bet.com/app/5238.c643742b8f51fd51.esm.js
IP 104.22.35.208:0
File type ASCII text, with very long lines (12260), with no line terminators
Hash 08106442460e2af4c8810619723d8dd6
cfd1b8814895832e3c5bc6dbed41b6a5be430f98
01ce58800005820b4b065a3ba007f009758b3e6a8e8334590d851751e016abb8
GET /app/5238.c643742b8f51fd51.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Cookie: btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:43 GMT
content-type: application/javascript
cf-ray: 793fd4daed1c95ee-ARN
etag: W/"63dcff7a-2fe4"
last-modified: Fri, 03 Feb 2023 12:35:06 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/v2/ip-data
104.22.35.208200 OK 1.6 kB URL HTTP/2 platform.20bet.com/api/v2/ip-data
IP 104.22.35.208:0
File type JSON data\012- , ASCII text, with very long lines (734), with no line terminators
Hash e5a799792254241d27630b724e6613ee
b574ce8362032fb7a85568abc9984505133631ec
4b2192c65c9da09e0abc21e36f689435a0c9c8b46c46d407397990d17fa57a58
GET /api/v2/ip-data HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:42 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fd4d8bc3a95ee-ARN
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/2775.71943518a4ff78b7.esm.js
104.22.35.208200 OK 112 kB URL HTTP/2 20bet.com/app/2775.71943518a4ff78b7.esm.js
IP 104.22.35.208:0
File type ASCII text, with very long lines (3429), with no line terminators
Size 112 kB (111563 bytes)
Hash 21bb3d78c091385d1f25772b0a696448
c267826825e0392ac70a1939bb511fbb8ad0691d
cf7fbd217e3d46198a05f1d754f576dc419bd9cba03ecf9174ba47297e4ca495
GET /app/2775.71943518a4ff78b7.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Cookie: btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:43 GMT
content-type: application/javascript
cf-ray: 793fd4dafd3395ee-ARN
etag: W/"63dcff68-d65"
last-modified: Fri, 03 Feb 2023 12:34:48 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/5093.d02f7cc67d7d8427.esm.js
104.22.35.208200 OK 32 kB URL HTTP/2 20bet.com/app/5093.d02f7cc67d7d8427.esm.js
IP 104.22.35.208:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 2d38f784d7a3b959bd8cb67052431019
8783034411b807efb5be0582af1a8b8c9e7464e5
e3d676bb19d6b6351e7201040fde52164762c3ba6a746c6ab91b1da07b86e3a6
GET /app/5093.d02f7cc67d7d8427.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Cookie: btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:43 GMT
content-type: application/javascript
cf-ray: 793fd4dabd0695ee-ARN
etag: W/"63dcff6e-1c4fd"
last-modified: Fri, 03 Feb 2023 12:34:54 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/9320.d7618dd1fd8f0311.esm.js
104.22.35.208200 OK 18 kB URL HTTP/2 20bet.com/app/9320.d7618dd1fd8f0311.esm.js
IP 104.22.35.208:0
File type ASCII text, with very long lines (4208), with no line terminators
Hash 13523c7aae98334f8a57b6720b99ab48
d559999a17f5828aca95ca9af5371d0289610f2f
463653af2663da4a22968e718b80ff34feaf519acff46becbfcd121ac5f7169c
GET /app/9320.d7618dd1fd8f0311.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Cookie: btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:43 GMT
content-type: application/javascript
cf-ray: 793fd4db0d3895ee-ARN
etag: W/"63dcff74-1070"
last-modified: Fri, 03 Feb 2023 12:35:00 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/v3/casino/game?dev_id=popular&per_page=6&has_live=0&perPage=6
104.22.35.208200 OK 12 kB URL HTTP/2 platform.20bet.com/api/v3/casino/game?dev_id=popular&per_page=6&has_live=0&perPage=6
IP 104.22.35.208:0
File type JSON data\012- , ASCII text, with very long lines (5258), with no line terminators
Hash 5e803bd2ea19f1eafff7961cf89435dd
c1d74a5dd6d3cce44e09fce667efafc120971c41
8dc12ee2f444e39701952ad1af562e180e072790a5d5d8aa3d31de37be19123e
GET /api/v3/casino/game?dev_id=popular&per_page=6&has_live=0&perPage=6 HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:43 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fd4db9d7195ee-ARN
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/9114.2d954ca350db845b.esm.js
104.22.35.208200 OK 16 kB URL HTTP/2 20bet.com/app/9114.2d954ca350db845b.esm.js
IP 104.22.35.208:0
File type ASCII text, with very long lines (1192), with no line terminators
Hash 2ef2670aa395959d7022b1ad02fb5173
2c4c31f98f871ceb7e052ed7ecdc534d0ffade56
bd41effbf194be7b2313006ea0d17173c99ccbf86a2c478764998310f6061306
GET /app/9114.2d954ca350db845b.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Cookie: btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:43 GMT
content-type: application/javascript
cf-ray: 793fd4db4d5095ee-ARN
etag: W/"63dcff85-4a8"
last-modified: Fri, 03 Feb 2023 12:35:17 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/status
104.22.35.208200 OK 17 kB URL HTTP/2 platform.20bet.com/api/status
IP 104.22.35.208:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 41526e99c001f31312d2229e01b35756
7c3f69d2430dfabc7a999874b69da3bdda8c9be6
ba93ae9e0fede513b69bd87b40de9cacaa0ace2aad5993e64e347c23136d316e
GET /api/status HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:42 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fd4d8ac3995ee-ARN
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/2096.c1ad3bd039c852b6.esm.js
104.22.35.208200 OK 13 kB URL HTTP/2 20bet.com/app/2096.c1ad3bd039c852b6.esm.js
IP 104.22.35.208:0
File type ASCII text, with very long lines (4814), with no line terminators
Hash 576e64b83770db2fd3e8e3e5af88d4d8
30f6c7c769ebcfc53d2087d8822a8ac34a7d68d1
76c1f1faf1661603356bf3cf3cd06aa0d494fc11243c340f821ddf25df6bb9fc
GET /app/2096.c1ad3bd039c852b6.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Cookie: btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:43 GMT
content-type: application/javascript
cf-ray: 793fd4db0d3795ee-ARN
etag: W/"63dcff74-12ce"
last-modified: Fri, 03 Feb 2023 12:35:00 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/v2/configurations
104.22.35.208200 OK 86 kB URL HTTP/2 platform.20bet.com/api/v2/configurations
IP 104.22.35.208:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 29f5f126e1777dab3faa019385ed95cc
92f59fbd6ca179fbf94888965bc83ca5c180ee53
a77a1d593392dbaea8ec9218cb6b8d18970750408ca035822d9291f6e479c24d
GET /api/v2/configurations HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:43 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fd4d8bc3b95ee-ARN
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/market-group-sorting/get-all-ordered
104.22.35.208200 OK 4.3 kB URL HTTP/2 platform.20bet.com/api/market-group-sorting/get-all-ordered
IP 104.22.35.208:0
File type JSON data\012- , ASCII text, with very long lines (23709), with no line terminators
Hash 8ebaf0f49acc0e3e6a5d1af50ef96336
2a2ef52f9d931d8c56fddc03b7460a02cdfb3bf2
0b411d731d96609c23f62897f9a0fb858b2409555d105fa397f3b00d604f5132
GET /api/market-group-sorting/get-all-ordered HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:42 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fd4d8ac3895ee-ARN
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/v3/menu/line/br?period=0
104.22.34.208204 No Content 0 B URL HTTP/2 platform.20bet.com/api/v3/menu/line/br?period=0
IP 104.22.34.208:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v3/menu/line/br?period=0 HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 02:03:43 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fd4ddeb172d62-ARN
X-Firefox-Spdy: h2
platform.20bet.com/api/sport/list/-1/0/br
104.22.35.208200 OK 6.6 kB URL HTTP/2 platform.20bet.com/api/sport/list/-1/0/br
IP 104.22.35.208:0
File type JSON data\012- , ASCII text, with very long lines (22834), with no line terminators
Hash 6f656ec42b079a8b0afdb1cf267265e9
b2a208d090756046c32a13c69ca2e366b2ebbc46
3b903603d119464a3a187e47d7319a588cbc5ab38caa8b884d16083b321f0642
GET /api/sport/list/-1/0/br HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:42 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fd4d8ac3795ee-ARN
content-encoding: br
X-Firefox-Spdy: h2
track.trackingtraffo.com/pixel/js?auth=v3eu8spg&event=visit
88.214.206.175200 OK 422 B URL HTTP/1.1 track.trackingtraffo.com/pixel/js?auth=v3eu8spg&event=visit
IP 88.214.206.175:0
Hash a84da22ba993cb90a87bbc7196a83564
284dae1447b59756ec476d581d6aad1ddd3218c3
98b0ce9e2f8df8f89c2adf5bcc0cf0eaf3b43c8b7fb26418f8a72179f4e6a440
GET /pixel/js?auth=v3eu8spg&event=visit HTTP/1.1
Host: track.trackingtraffo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 04 Feb 2023 02:03:43 GMT
Content-Type: text/javascript
Content-Length: 422
Connection: keep-alive
Cache-Control: no-cache, max-age=0, must-revalidate, proxy-revalidate, no-store
Pragma: no-cache
Expires: Sat, 01 Jan 2000 00:00:00 GMT
platform.20bet.com/api/v2/data/rates
104.22.35.208200 OK 1.6 kB URL HTTP/2 platform.20bet.com/api/v2/data/rates
IP 104.22.35.208:0
File type JSON data\012- , ASCII text, with very long lines (8356), with no line terminators
Hash e2d6d9c037f50719dc5a2aac507ba4f3
dbdfb7d7abd9f111fb91269eee0c81b56c56a7b5
5e8ea7175c715abbf1a29020175dee9324c0bf2f9fca875d44c1fcb77eddc128
GET /api/v2/data/rates HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:43 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fd4d8ec5495ee-ARN
content-encoding: br
X-Firefox-Spdy: h2
zz.connextra.com/dcs/tagController/tag/d3ea3fb1f9d4/homepage
104.110.28.81200 OK 16 kB URL HTTP/2 zz.connextra.com/dcs/tagController/tag/d3ea3fb1f9d4/homepage
IP 104.110.28.81:0
File type HTML document text\012- exported SGML document, ASCII text, with very long lines (2407)
Hash f5c6ed464a100daeec24c257b81aeba4
f73b688dfff651a1342f8f36b2763f16e8fa976e
c62f6ae2fe15b2279beb5110c4d7827a39865b01b4b53caabcbe5686c8eae626
GET /dcs/tagController/tag/d3ea3fb1f9d4/homepage HTTP/1.1
Host: zz.connextra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript;charset=utf-8
content-length: 16263
server: istio-envoy
content-encoding: gzip
x-envoy-upstream-service-time: 2
cache-control: must-revalidate, max-age=34
expires: Sat, 04 Feb 2023 02:04:17 GMT
date: Sat, 04 Feb 2023 02:03:43 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
20bet.com/app/8522.093b2b3cd6f2d1e6.esm.js
104.22.35.208200 OK 2.6 kB URL HTTP/2 20bet.com/app/8522.093b2b3cd6f2d1e6.esm.js
IP 104.22.35.208:0
File type ASCII text, with very long lines (2374), with no line terminators
Hash 1ce40132ff2e69bb4f04b3a4b74d99fc
92dc47f58d583125d82bd3a7f1c2b266d3aa4e10
2a7a9af4d28a83311160d8fa7a6f52e85cf3faf4cc1d4e4385fb4498814ab347
GET /app/8522.093b2b3cd6f2d1e6.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Cookie: btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:43 GMT
content-type: application/javascript
cf-ray: 793fd4dafd3595ee-ARN
etag: W/"63dcff7a-946"
last-modified: Fri, 03 Feb 2023 12:35:06 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/tournaments/bet-tournament/get-active?fields%5B%5D=tournaments&fields%5B%5D=leaderboards&fields%5B%5D=authorizedUsers
104.22.35.208200 OK 348 B URL HTTP/2 platform.20bet.com/api/tournaments/bet-tournament/get-active?fields%5B%5D=tournaments&fields%5B%5D=leaderboards&fields%5B%5D=authorizedUsers
IP 104.22.35.208:0
File type JSON data\012- , ASCII text, with very long lines (916), with no line terminators
Hash 000fc63afad98e7f3eab24e73415f067
5f4943c2f63a80341617d988d0c21646cc536a28
51e49a372fbfcf31e040f23b0559dced339abd8ee9abd5ede395e42bf85ba06f
GET /api/tournaments/bet-tournament/get-active?fields%5B%5D=tournaments&fields%5B%5D=leaderboards&fields%5B%5D=authorizedUsers HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:43 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fd4d8dc4c95ee-ARN
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/event/list?isTop_eq=1&oddsExists_eq=1&competitor2Id_neq=&competitor1Id_neq=&main=1&status_in%5B%5D=0&limit=15&relations%5B%5D=league&relations%5B%5D=odds&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=players&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=br
104.22.34.208204 No Content 0 B URL HTTP/2 platform.20bet.com/api/event/list?isTop_eq=1&oddsExists_eq=1&competitor2Id_neq=&competitor1Id_neq=&main=1&status_in%5B%5D=0&limit=15&relations%5B%5D=league&relations%5B%5D=odds&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=players&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=br
IP 104.22.34.208:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/event/list?isTop_eq=1&oddsExists_eq=1&competitor2Id_neq=&competitor1Id_neq=&main=1&status_in%5B%5D=0&limit=15&relations%5B%5D=league&relations%5B%5D=odds&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=players&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=br HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 02:03:43 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fd4de0b322d62-ARN
X-Firefox-Spdy: h2
collect.analyse.lnearn.com/sa.gif?project=production
143.204.55.13200 OK 0 B URL HTTP/2 collect.analyse.lnearn.com/sa.gif?project=production
IP 143.204.55.13:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /sa.gif?project=production HTTP/1.1
Host: collect.analyse.lnearn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 1674
Origin: https://bc.game
Connection: keep-alive
Referer: https://bc.game/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
date: Sat, 04 Feb 2023 02:03:43 GMT
server: Sws
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: Mon, 28 Sep 1970 05:00:00 GMT
x-cache: Miss from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: CMEieFxFgyCymSxycww9rD8FrYYT1jmK5h8keOk0hSHBE0xMxZrFbQ==
X-Firefox-Spdy: h2
platform.20bet.com/api/user/is-auth
104.22.34.208204 No Content 0 B URL HTTP/2 platform.20bet.com/api/user/is-auth
IP 104.22.34.208:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/user/is-auth HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 02:03:43 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fd4de0b332d62-ARN
X-Firefox-Spdy: h2
platform.20bet.com/api/event/list?isTopLive_eq=1&competitor2Id_neq=&competitor1Id_neq=&status_in%5B%5D=2&status_in%5B%5D=1&oddsExists_eq=1&main=1&limit=15&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=players&relations%5B%5D=sportCategories&relations%5B%5D=broadcasts&relations%5B%5D=statistics&relations%5B%5D=additionalInfo&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=br
104.22.34.208204 No Content 0 B URL HTTP/2 platform.20bet.com/api/event/list?isTopLive_eq=1&competitor2Id_neq=&competitor1Id_neq=&status_in%5B%5D=2&status_in%5B%5D=1&oddsExists_eq=1&main=1&limit=15&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=players&relations%5B%5D=sportCategories&relations%5B%5D=broadcasts&relations%5B%5D=statistics&relations%5B%5D=additionalInfo&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=br
IP 104.22.34.208:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/event/list?isTopLive_eq=1&competitor2Id_neq=&competitor1Id_neq=&status_in%5B%5D=2&status_in%5B%5D=1&oddsExists_eq=1&main=1&limit=15&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=players&relations%5B%5D=sportCategories&relations%5B%5D=broadcasts&relations%5B%5D=statistics&relations%5B%5D=additionalInfo&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=br HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 02:03:43 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fd4de1b352d62-ARN
X-Firefox-Spdy: h2
20bet.com/app/5027.dbcd8bbd67958df7.esm.js
104.22.35.208200 OK 27 kB URL HTTP/2 20bet.com/app/5027.dbcd8bbd67958df7.esm.js
IP 104.22.35.208:0
File type ASCII text, with no line terminators
Hash d5d03aafa7b94fd7c1d0a0aab0ad6865
d40f86caff43f2499ecf57005b12bd4f2754e4f3
7e4b1006d5d4a3380fb0815e89b20473349ed0e2b7d16238fff66e8ce63f7d4b
GET /app/5027.dbcd8bbd67958df7.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Cookie: btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:43 GMT
content-type: application/javascript
cf-ray: 793fd4dacd1195ee-ARN
etag: W/"63dcff85-ef"
last-modified: Fri, 03 Feb 2023 12:35:17 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/market-descriptions/get-all-outcomes/br
104.22.35.208200 OK 12 kB URL HTTP/2 platform.20bet.com/api/market-descriptions/get-all-outcomes/br
IP 104.22.35.208:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 53b2ce51a1a47df5d27199ca514f3245
682429664aa9dafa0391c85b8dd5cd6597117bcf
79a018b068efd8446606d6954391ef39c5f662d889bdc04b5a4e36443d038a6b
GET /api/market-descriptions/get-all-outcomes/br HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:42 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fd4d8cc4295ee-ARN
content-encoding: br
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.36200 OK 1.8 kB IP 192.124.249.36:0
Hash cca744485b3aa7a1ffdd32e694f1dd1d
22cc501c91ee339aa59aaa7c3c19215d08affd37
cf0bda7a018b4419ad18d3c2e3d88bbc61101efec345c29290155e738d7a759b
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sat, 04 Feb 2023 02:03:43 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 03 Feb 2023 20:50:51 GMT
Expires: Sat, 04 Feb 2023 20:50:51 GMT
ETag: "22cc501c91ee339aa59aaa7c3c19215d08affd37"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
track.trackingtraffo.com/pixel?auth=v3eu8spg&event=visit&site=20bet.com&ln=en-US
88.214.206.175200 OK 0 B URL HTTP/1.1 track.trackingtraffo.com/pixel?auth=v3eu8spg&event=visit&site=20bet.com&ln=en-US
IP 88.214.206.175:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel?auth=v3eu8spg&event=visit&site=20bet.com&ln=en-US HTTP/1.1
Host: track.trackingtraffo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 04 Feb 2023 02:03:43 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-cache, max-age=0, must-revalidate, proxy-revalidate, no-store
Pragma: no-cache
Expires: Sat, 01 Jan 2000 00:00:00 GMT
platform.20bet.com/api/match-statuses/get-all/br
104.22.35.208200 OK 13 kB URL HTTP/2 platform.20bet.com/api/match-statuses/get-all/br
IP 104.22.35.208:0
File type JSON data\012- , ASCII text, with very long lines (6960), with no line terminators
Hash cf5b36d498bda63a902b637c15eb2a8c
be71e3e23f3fb6fe288c1685e6241400ed9987f2
5d2d05d72deedab27b68e11bca2aa8c9f156023213f884dcd1577ff13381fb07
GET /api/match-statuses/get-all/br HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:42 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fd4d8ac3495ee-ARN
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/6485.c5e5798c269cfd52.esm.js
104.22.35.208200 OK 2.2 kB URL HTTP/2 20bet.com/app/6485.c5e5798c269cfd52.esm.js
IP 104.22.35.208:0
File type ASCII text, with very long lines (782), with no line terminators
Hash f7821321b54a2aed46098fa7b76a9c99
b5b611d141d47aa9322859a4d5fc4fbea97f2bad
473039bca0b0ccd5630364277ddb205347e209c09932830f8de1968ea2526b06
GET /app/6485.c5e5798c269cfd52.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Cookie: btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:42 GMT
content-type: application/javascript
cf-ray: 793fd4d73baa95ee-ARN
etag: W/"63dcff6e-30e"
last-modified: Fri, 03 Feb 2023 12:34:54 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/data/provinces
104.22.35.208200 OK 1.9 kB URL HTTP/2 platform.20bet.com/api/data/provinces
IP 104.22.35.208:0
File type JSON data\012- , ASCII text, with very long lines (1894), with no line terminators
Hash 94a77545eecfd58436480becd741e14c
1a06f608f3540e80e5c005bbe0658e043feb61c5
9085a44542a7bcca043d23f591aad9629fb922dbd7efbd992e2ec028869664d2
GET /api/data/provinces HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:42 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fd4d8cc4395ee-ARN
content-encoding: br
X-Firefox-Spdy: h2
serving.ads.sportradar.com/i?stm=1675476256108&e=pv&url=https%3A%2F%2F20bet.com%2Fbr%3Fbtag%3D668128_1B9F2C98E6D249D4B51F2CE8167B491E&page=A%20Melhor%20Casa%20de%20Apostas%20On-line%20%C2%BB%20Aposte%20Legalmente%20com%20a%2020Bet%20Sportsbook&tv=js-2.14.0&tna=cf&aid=sr-tracker-20bet-com&p=web&tz=UTC&lang=en-US&cs=UTF-8&res=1280x1024&cd=24&cookie=0&eid=bfd1ff91-8489-4c00-ad3c-b9eb99d102d2&dtm=1675476256106&vp=0x0&ds=0x0&vid=1&sid=8661e4bd-df88-4b00-a365-d993db363e51&duid=b58a54d6-f2ae-43d4-8597-a5acca452d5f&cx=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
63.33.93.29200 OK 43 B URL HTTP/1.1 serving.ads.sportradar.com/i?stm=1675476256108&e=pv&url=https%3A%2F%2F20bet.com%2Fbr%3Fbtag%3D668128_1B9F2C98E6D249D4B51F2CE8167B491E&page=A%20Melhor%20Casa%20de%20Apostas%20On-line%20%C2%BB%20Aposte%20Legalmente%20com%20a%2020Bet%20Sportsbook&tv=js-2.14.0&tna=cf&aid=sr-tracker-20bet-com&p=web&tz=UTC&lang=en-US&cs=UTF-8&res=1280x1024&cd=24&cookie=0&eid=bfd1ff91-8489-4c00-ad3c-b9eb99d102d2&dtm=1675476256106&vp=0x0&ds=0x0&vid=1&sid=8661e4bd-df88-4b00-a365-d993db363e51&duid=b58a54d6-f2ae-43d4-8597-a5acca452d5f&cx=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
IP 63.33.93.29:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash fb02f374b8f73825415db1bccd4bd76d
b103aa629cacdd90b39538a7561da7f8e49ad73f
caa849b179befa2645a8e2c474d2e82a76777a3305315ece911013e8ee9a916c
GET /i?stm=1675476256108&e=pv&url=https%3A%2F%2F20bet.com%2Fbr%3Fbtag%3D668128_1B9F2C98E6D249D4B51F2CE8167B491E&page=A%20Melhor%20Casa%20de%20Apostas%20On-line%20%C2%BB%20Aposte%20Legalmente%20com%20a%2020Bet%20Sportsbook&tv=js-2.14.0&tna=cf&aid=sr-tracker-20bet-com&p=web&tz=UTC&lang=en-US&cs=UTF-8&res=1280x1024&cd=24&cookie=0&eid=bfd1ff91-8489-4c00-ad3c-b9eb99d102d2&dtm=1675476256106&vp=0x0&ds=0x0&vid=1&sid=8661e4bd-df88-4b00-a365-d993db363e51&duid=b58a54d6-f2ae-43d4-8597-a5acca452d5f&cx=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 HTTP/1.1
Host: serving.ads.sportradar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Set-Cookie: _sr_ads=03894856-b658-4378-bbd2-3a48d8a1dafb; Expires=Sun, 04 Feb 2024 02:03:44 GMT; Domain=sportradar.com; Path=/; Secure; HttpOnly; SameSite=None
Cache-Control: no-cache, no-store, must-revalidate
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Server: akka-http/10.1.12
Date: Sat, 04 Feb 2023 02:03:44 GMT
Content-Type: image/gif
Content-Length: 43
api.livechatinc.com/v3.3/customer/action/get_dynamic_configuration?license_id=9054575&url=https%3A%2F%2F20bet.com%2Fbr%3Fbtag%3D668128_1B9F2C98E6D249D4B51F2CE8167B491E&channel_type=code&jsonp=__evs9zgxklxp
95.101.10.202200 OK 693 B URL HTTP/2 api.livechatinc.com/v3.3/customer/action/get_dynamic_configuration?license_id=9054575&url=https%3A%2F%2F20bet.com%2Fbr%3Fbtag%3D668128_1B9F2C98E6D249D4B51F2CE8167B491E&channel_type=code&jsonp=__evs9zgxklxp
IP 95.101.10.202:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (693), with no line terminators
Hash 15544353fc72b900771b14cfdf60ee25
9c0bcce3284a9c5a4239b5c15ae6db04b664c6c7
464ba7f92e8a8a8e0817cd1306e79c02c3db1a4868441fa8cf8f437499578070
GET /v3.3/customer/action/get_dynamic_configuration?license_id=9054575&url=https%3A%2F%2F20bet.com%2Fbr%3Fbtag%3D668128_1B9F2C98E6D249D4B51F2CE8167B491E&channel_type=code&jsonp=__evs9zgxklxp HTTP/1.1
Host: api.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-security-policy: frame-ancestors https://20bet.com/;
content-type: application/javascript; charset=UTF-8
legacy: 2023-06-30
vary: Accept-Encoding
x-frame-options: allow-from https://20bet.com/
content-length: 693
date: Sat, 04 Feb 2023 02:03:44 GMT
X-Firefox-Spdy: h2
platform.20bet.com/api/v3/menu/line/br?period=5
104.22.35.208200 OK 25 kB URL HTTP/2 platform.20bet.com/api/v3/menu/line/br?period=5
IP 104.22.35.208:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash d7d2c738a93e868571861759ed5e18c7
5a5d9265c13dbc2e6d60957a0a58ef71f8d100ee
48271ea1b8b54bf9483aaea5284d4e5573fcb7a3998e6c78543940819b5af280
GET /api/v3/menu/line/br?period=5 HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:44 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fd4de5eaf95ee-ARN
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/1969.7394f3f65ee00bbc.esm.js
104.22.35.208200 OK 29 kB URL HTTP/2 20bet.com/app/1969.7394f3f65ee00bbc.esm.js
IP 104.22.35.208:0
File type ASCII text, with very long lines (667), with no line terminators
Hash 3a5c04204fefc2df6cfd4e847097c715
9ed69eaa95ae0c6394632072bbbe08daf609caca
32bd5e7af52625de17c96fcc56000645ebc31a3d3ac845227c0f1fa348a7dc13
GET /app/1969.7394f3f65ee00bbc.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Cookie: btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:43 GMT
content-type: application/javascript
cf-ray: 793fd4db4d5195ee-ARN
etag: W/"63dcff6e-29b"
last-modified: Fri, 03 Feb 2023 12:34:54 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/event/list?isTopLive_eq=1&competitor2Id_neq=&competitor1Id_neq=&status_in%5B%5D=2&status_in%5B%5D=1&oddsExists_eq=1&main=1&limit=15&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=players&relations%5B%5D=sportCategories&relations%5B%5D=broadcasts&relations%5B%5D=statistics&relations%5B%5D=additionalInfo&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=br
104.22.35.208200 OK 61 kB URL HTTP/2 platform.20bet.com/api/event/list?isTopLive_eq=1&competitor2Id_neq=&competitor1Id_neq=&status_in%5B%5D=2&status_in%5B%5D=1&oddsExists_eq=1&main=1&limit=15&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=players&relations%5B%5D=sportCategories&relations%5B%5D=broadcasts&relations%5B%5D=statistics&relations%5B%5D=additionalInfo&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=br
IP 104.22.35.208:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash e4afba066536fb6b6fa50531b86f4e14
f5e18052483a7c7bfce3c1c6fb5dc1b817dcf256
0598be1e7d0d0a36c90d69f977dc0e8cd3229124e388abf08d0d619a4f3c6a30
GET /api/event/list?isTopLive_eq=1&competitor2Id_neq=&competitor1Id_neq=&status_in%5B%5D=2&status_in%5B%5D=1&oddsExists_eq=1&main=1&limit=15&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=players&relations%5B%5D=sportCategories&relations%5B%5D=broadcasts&relations%5B%5D=statistics&relations%5B%5D=additionalInfo&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=br HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:43 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fd4de6ebe95ee-ARN
content-encoding: br
X-Firefox-Spdy: h2
secure.adnxs.com/bounce?%2Fseg%3Fadd%3D32401244%26t%3D1
185.89.211.132200 OK 0 B URL HTTP/1.1 secure.adnxs.com/bounce?%2Fseg%3Fadd%3D32401244%26t%3D1
IP 185.89.211.132:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fseg%3Fadd%3D32401244%26t%3D1 HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20bet.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Sat, 04 Feb 2023 02:03:44 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: 50795205-ecf2-48fe-afef-065c70aa1dd9
Set-Cookie: anj=dTM7k!M4/8CxrEQF']wIg2HbxorCDv!@wnf-Te9(>wL5L!!'`N$r>81; SameSite=None; Path=/; Max-Age=7776000; Expires=Fri, 05-May-2023 02:03:44 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 961.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
platform.20bet.com/api/event/list?isTop_eq=1&oddsExists_eq=1&competitor2Id_neq=&competitor1Id_neq=&main=1&status_in%5B%5D=0&limit=15&relations%5B%5D=league&relations%5B%5D=odds&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=players&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=br
104.22.35.208200 OK 88 kB URL HTTP/2 platform.20bet.com/api/event/list?isTop_eq=1&oddsExists_eq=1&competitor2Id_neq=&competitor1Id_neq=&main=1&status_in%5B%5D=0&limit=15&relations%5B%5D=league&relations%5B%5D=odds&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=players&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=br
IP 104.22.35.208:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 67b555524459586ac69094019feb8a97
0f197b22314e66ffd6cc61aa93dc42e976d4f421
f5a47add557484960b2c13eaf43e63e56921309847f82c26c224a4004b9a0bc2
GET /api/event/list?isTop_eq=1&oddsExists_eq=1&competitor2Id_neq=&competitor1Id_neq=&main=1&status_in%5B%5D=0&limit=15&relations%5B%5D=league&relations%5B%5D=odds&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=players&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=br HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:44 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fd4de5eb795ee-ARN
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/633.544404564094be98.esm.js
104.22.35.208200 OK 3.4 kB URL HTTP/2 20bet.com/app/633.544404564094be98.esm.js
IP 104.22.35.208:0
File type ASCII text, with very long lines (3399), with no line terminators
Hash 370133beea1ff6807390e59f565bb4b9
1f6f028b159d708a02d05c9156868bf40b7734f7
5a0b3bce878ff7f3d81f1a6281a7c00b177d8a27f3c70f4b5f591418092f4566
GET /app/633.544404564094be98.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Cookie: btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:44 GMT
content-type: application/javascript
cf-ray: 793fd4e16fd095ee-ARN
etag: W/"63dcff7a-d47"
last-modified: Fri, 03 Feb 2023 12:35:06 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/teams/ts_rose.webp
104.22.35.208200 OK 1.8 kB URL HTTP/2 20bet.com/assets/teams/ts_rose.webp
IP 104.22.35.208:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 19ba1e0b01ca14f99e3538dbaa5e0d8e
f806fee3d7dfe2df6e93dfbf798828024efbe367
8f8b4c3beba9d41fa572c8e140ff15aafed6c9d4b6178ee9b3098edf5a4a4699
GET /assets/teams/ts_rose.webp HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Cookie: btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:44 GMT
content-type: image/webp
content-length: 1834
cf-ray: 793fd4e1cff495ee-ARN
accept-ranges: bytes
etag: "63dd0032-72a"
last-modified: Fri, 03 Feb 2023 12:38:10 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
X-Firefox-Spdy: h2
20bet.com/assets/sport/5.svg
104.22.35.208200 OK 3.9 kB URL HTTP/2 20bet.com/assets/sport/5.svg
IP 104.22.35.208:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2222)
Hash 915188ce3a49c7f8f89483c9da604af8
9d782b76bf33dcbd9820b1069b7d1cbcdbe6c658
40d42261970eead7b7abec7b8638b5d11898db3ec21ff2d870626688737ab94f
GET /assets/sport/5.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Cookie: btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:44 GMT
content-type: image/svg+xml
cf-ray: 793fd4e2e86095ee-ARN
etag: W/"63dd0049-13fb"
last-modified: Fri, 03 Feb 2023 12:38:33 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/sport/1056.svg
104.22.35.208200 OK 400 B URL HTTP/2 20bet.com/assets/sport/1056.svg
IP 104.22.35.208:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (356)
Hash 18416032229686e80445f80ad510f273
5caabd1406228289cc4e2796b83d75e5c041deb5
56c642973dbcf0c91eb2fb0c52ad2fbe48c5519712f487d72a2152d0ff93deb5
GET /assets/sport/1056.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Cookie: btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:44 GMT
content-type: image/svg+xml
cf-ray: 793fd4df5f0f95ee-ARN
etag: W/"63dd0041-2ca"
last-modified: Fri, 03 Feb 2023 12:38:25 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/3388.582acb98c66b3fc9.esm.js
104.22.35.208200 OK 6.8 kB URL HTTP/2 20bet.com/app/3388.582acb98c66b3fc9.esm.js
IP 104.22.35.208:0
File type ASCII text, with very long lines (1678), with no line terminators
Hash c4a4fae0597461eb69b156efc0021516
46998648bd04774c0152678140e7a582f7d62c0d
b9874e7ea86b5e3002053190cef09ac3f57d5153466bbdbe775632463575a4aa
GET /app/3388.582acb98c66b3fc9.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Cookie: btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:44 GMT
content-type: application/javascript
cf-ray: 793fd4e1effd95ee-ARN
etag: W/"63dcff74-68e"
last-modified: Fri, 03 Feb 2023 12:35:00 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/v4/coupon/get?system=1&lang=br
104.22.35.208200 OK 26 kB URL HTTP/2 platform.20bet.com/api/v4/coupon/get?system=1&lang=br
IP 104.22.35.208:0
File type JSON data\012- , ASCII text, with very long lines (336), with no line terminators
Hash c01421f73b6027dfc06ae6e6c4ea7d18
a0148c8bc22818a972d1ea872e96e4e573db01cb
9ac0c2e1479a46aff21b33c6b8d69db78ce46bbeb62ed97901f6f63e64335d2a
GET /api/v4/coupon/get?system=1&lang=br HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:43 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
set-cookie: sid=93e5b7b3f10b2270fadeef3f4a8566d9; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fd4de5eb695ee-ARN
content-encoding: br
X-Firefox-Spdy: h2
cdn.livechatinc.com/widget/static/js/0.d619df13.chunk.js
95.101.10.202200 OK 15 kB URL HTTP/2 cdn.livechatinc.com/widget/static/js/0.d619df13.chunk.js
IP 95.101.10.202:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (47599), with no line terminators
Hash f790030a4058f34f76fa8b0e0e4285cf
955ed12553baf05025f6f19f9079bad07af10bc3
5a57474ecc2a44ecf94ceae42e672745f900749479012ee2ba9eea180ee2a265
GET /widget/static/js/0.d619df13.chunk.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 11 Jan 2023 08:35:01 GMT
x-amz-version-id: fr6Gz9d8KXQbrJuaQVT4sDUpSqjnuR9Q
server: AmazonS3
content-encoding: br
etag: W/"10a3d7ac1ed37325d3341c379ee0de69"
vary: Accept-Encoding
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: M5BEPnK3INOuxV-Zd5EkJqKhsnyIsA6pc5CcKg9GF8ozNzaNoBaR7Q==
content-length: 14885
cache-control: max-age=31536000
expires: Sun, 04 Feb 2024 02:03:44 GMT
date: Sat, 04 Feb 2023 02:03:44 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
X-Firefox-Spdy: h2
cdn.livechatinc.com/widget/static/js/1.242d30c5.chunk.js
95.101.10.202200 OK 70 kB URL HTTP/2 cdn.livechatinc.com/widget/static/js/1.242d30c5.chunk.js
IP 95.101.10.202:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65462)
Hash 88298c1f3a966d806ce3dd802d2cfdb5
e19a54d47ddc9bd3ed805f6e5471ae2de613404b
9373f82e3b877dd04122dacfd587cb7f62562b53744142a734210c8af0a61dbf
GET /widget/static/js/1.242d30c5.chunk.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 16 Jan 2023 07:45:14 GMT
x-amz-version-id: Px6texczRRdv2H_bvm87pAIOH7z7Z.qa
server: AmazonS3
content-encoding: gzip
etag: W/"6cc6a8d0a347434070e1ae1406714b63"
vary: Accept-Encoding
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: BpmGXFPk1aGvtFzUfSPoO8bfNDP06kQHquXkuVVoPBldkY4nhooSMA==
content-length: 69814
cache-control: max-age=31536000
expires: Sun, 04 Feb 2024 02:03:44 GMT
date: Sat, 04 Feb 2023 02:03:44 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
X-Firefox-Spdy: h2
20bet.com/assets/sport/31.svg
104.22.35.208200 OK 12 kB URL HTTP/2 20bet.com/assets/sport/31.svg
IP 104.22.35.208:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1917)
Hash 1b6a2d951d5376073c0835e33d781bff
7d1faeb3c132546e505e3ccd8275b560d4b8832a
a1e74c4a7c2269de8e943a96f2ca32af64519d76d5618968df07ef132c216c6d
GET /assets/sport/31.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Cookie: btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:44 GMT
content-type: image/svg+xml
cf-ray: 793fd4e3087195ee-ARN
etag: W/"63dd0032-21d6"
last-modified: Fri, 03 Feb 2023 12:38:10 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/sport/19.svg
104.22.35.208200 OK 8.2 kB URL HTTP/2 20bet.com/assets/sport/19.svg
IP 104.22.35.208:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (435)
Hash 1674d24fd59dadf2c543ad66c22f94e9
324d7568dafb70694fd4c1b8ebad7acf8ab6a730
f5c49c990e55cc52f1e82d77228fe8d53af99e10534929147cd435ba74b4e45d
GET /assets/sport/19.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Cookie: btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:44 GMT
content-type: image/svg+xml
cf-ray: 793fd4e3087495ee-ARN
etag: W/"63dd0041-8b0"
last-modified: Fri, 03 Feb 2023 12:38:25 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
dwmu1hf7ovvid.cloudfront.net/logos/payments/mastercard.png
143.204.42.190200 OK 4.9 kB URL HTTP/2 dwmu1hf7ovvid.cloudfront.net/logos/payments/mastercard.png
IP 143.204.42.190:0
File type PNG image data, 128 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 3241207a4b2fd4957d6bf25551667d07
fa4588d222c491655174054a55273c17218210af
75c4977294b4f07265036907f1288561f535269399333c1a7bc84d47a942a9eb
GET /logos/payments/mastercard.png HTTP/1.1
Host: dwmu1hf7ovvid.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 4921
date: Fri, 03 Feb 2023 23:27:49 GMT
last-modified: Tue, 22 Feb 2022 12:42:14 GMT
etag: "3241207a4b2fd4957d6bf25551667d07"
x-amz-version-id: KMC3MLOi8PXeeV_QBnKLG5q42XSR1qG3
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: mXQm2re1tEdi-vIdwLraSyXoEPnYeMcgAnPWSvm4I8qg3cIkpMAu4w==
age: 9356
X-Firefox-Spdy: h2
20bet.com/assets/sport/12.svg
104.22.35.208200 OK 17 kB URL HTTP/2 20bet.com/assets/sport/12.svg
IP 104.22.35.208:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (347)
Hash 0ad59eba4b697451f827dd80c22c453a
7940c215fb0a450f802cf3e9b2d81d220a289496
346e739b7db776a89151151d0786d7907b51d3cb473b4e23b194efac4c2c549a
GET /assets/sport/12.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Cookie: btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:44 GMT
content-type: image/svg+xml
cf-ray: 793fd4e3086f95ee-ARN
etag: W/"63dd0049-c74"
last-modified: Fri, 03 Feb 2023 12:38:33 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/sport/7.svg
104.22.35.208200 OK 7.1 kB URL HTTP/2 20bet.com/assets/sport/7.svg
IP 104.22.35.208:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 5c4751b0d9bad0154ddda46b5ce9b087
7b0916c52ae10c01c123d973e1619340a69fc6e7
7c2bb814bf3249a58cf6b2e213d692e9174ee628170f694411bcf5eaed2652b8
GET /assets/sport/7.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Cookie: btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:44 GMT
content-type: image/svg+xml
cf-ray: 793fd4df5f0b95ee-ARN
etag: W/"63dd0049-a48"
last-modified: Fri, 03 Feb 2023 12:38:33 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/sport/22.svg
104.22.35.208200 OK 26 kB URL HTTP/2 20bet.com/assets/sport/22.svg
IP 104.22.35.208:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (341)
Hash 216d9e1ab6c29b1375895a30b09a5949
01f6c7363b358586bead72d81be2c1e94a0792de
f6d817a558c4ea8150effa8b8ffa27d820c3a613df59cb085e4633da030241cd
GET /assets/sport/22.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Cookie: btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:43 GMT
content-type: image/svg+xml
cf-ray: 793fd4df5f0e95ee-ARN
etag: W/"63dd0051-905"
last-modified: Fri, 03 Feb 2023 12:38:41 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/sport/1067.svg
104.22.35.208200 OK 6.0 kB URL HTTP/2 20bet.com/assets/sport/1067.svg
IP 104.22.35.208:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 6b2c15f874ec0159c5780c285c32e0f1
7c34e32c78beb2a2714a35e3843e879d6da56184
b2260e72b679ff20b52dc45be0b1fd642b82c597f8b9f495b6fe2b46c967d159
GET /assets/sport/1067.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Cookie: btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:43 GMT
content-type: image/svg+xml
cf-ray: 793fd4df6f1495ee-ARN
etag: W/"63dd0049-474"
last-modified: Fri, 03 Feb 2023 12:38:33 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
dwmu1hf7ovvid.cloudfront.net/logos/payments/perfectmoney.png
143.204.42.190200 OK 14 kB URL HTTP/2 dwmu1hf7ovvid.cloudfront.net/logos/payments/perfectmoney.png
IP 143.204.42.190:0
File type PNG image data, 489 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash b687d19f0c623c33a1e6d58d6bc56ba7
1b5208faf9ee99faa1a3ddc83fe1524468bd79e7
a0114642be5f014cfc4c5667808e33533ae6238c90753c1bfeca517b94d7e601
GET /logos/payments/perfectmoney.png HTTP/1.1
Host: dwmu1hf7ovvid.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 13901
date: Fri, 03 Feb 2023 23:52:40 GMT
last-modified: Tue, 22 Feb 2022 12:42:14 GMT
etag: "b687d19f0c623c33a1e6d58d6bc56ba7"
x-amz-version-id: QDpezYJtNxWCajaMhfNAKeuPQqSQVi7d
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: lc4lB9JHxcWcernq4v3r3Ko8_TWGMEXuAauEAgn02A0MnVM4roC_1Q==
age: 7865
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c7dca3f19d5f72804a6f1ac9e6729611
834490db5b5178a798814491bd4641a6b9ebeca4
c2985b7c81f97d919acd684eba9dc67893c9468d95d0d56524874b8951e5f791
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 498
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:03:44 GMT
Last-Modified: Sat, 04 Feb 2023 01:55:26 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
dwmu1hf7ovvid.cloudfront.net/logos/payments/cryptocurrency.png
143.204.42.190200 OK 9.9 kB URL HTTP/2 dwmu1hf7ovvid.cloudfront.net/logos/payments/cryptocurrency.png
IP 143.204.42.190:0
File type PNG image data, 342 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash c52fe749ee73a628e7c7020c185c80cb
e2ccff466dfe2829ccb0e5fe564ba04994ddbc6f
1998b613aec342fb0df530978a6136f9b59be0bd1664f1b656c6a23e46cadd70
GET /logos/payments/cryptocurrency.png HTTP/1.1
Host: dwmu1hf7ovvid.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 9908
date: Fri, 03 Feb 2023 23:52:40 GMT
last-modified: Tue, 22 Feb 2022 12:42:14 GMT
etag: "c52fe749ee73a628e7c7020c185c80cb"
x-amz-version-id: h_PHZ.6DGxv3SDQImdb1EMg8_ca0xkrs
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: iHmxU9kqg4mGsqEq3q_6ukv7pDZ5K12GW3a8_mzxuxgFx2w9PLP54g==
age: 7865
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d3e050cf67675c3c19014a74517e3747
9931fd6a416e220e15ef5eccad6d0cb12edf3995
8411e23b7bfeba91b6252f15de6ed18b8cff1f752af0efc4f5429b54fccb0da4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6523
Cache-Control: max-age=114012
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:03:45 GMT
Etag: "63dcbde2-1d7"
Expires: Sun, 05 Feb 2023 09:43:57 GMT
Last-Modified: Fri, 03 Feb 2023 07:55:14 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
www.gstatic.com/recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__en.js
142.250.74.35200 OK 164 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__en.js
IP 142.250.74.35:0
File type ASCII text, with very long lines (633)
Size 164 kB (163841 bytes)
Hash fe98364486b3206867b17008f995646f
35a5e9aa210970f7abd718d99e629c6982a3cc02
1fd703cb16e3f6f3f7192109d19c69d6e5ac1cfa0feb5b105a86564b7970d28a
GET /recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 163841
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 08:53:11 GMT
expires: Wed, 31 Jan 2024 08:53:11 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 31 Jan 2023 02:51:47 GMT
content-type: text/javascript
age: 321034
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
a.exoclick.com/tag_gen.js
205.185.216.10200 OK 515 B URL HTTP/1.1 a.exoclick.com/tag_gen.js
IP 205.185.216.10:0
File type ASCII text, with very long lines (1030), with no line terminators
Hash 628e0302068ade64b5f411f39d5ce7e5
ff1a609269f34bad5ae67ed1678df3f7b905d018
c583ceaeae2e9a05e25c27b61520710f16b8b98ca7f9087a75ae90a040b8bc3f
GET /tag_gen.js HTTP/1.1
Host: a.exoclick.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 02:03:45 GMT
Connection: Keep-Alive
Content-Encoding: gzip
Content-Length: 515
Content-Type: application/javascript
Accept-Ranges: bytes
Cache-Control: max-age=10800
Server: nginx
etag: W/"a56c0470b9aa925085e51a6271a"
X-HW: 1675476224.dop207.sk1.t,1675476225.cds219.sk1.shn,1675476225.dop207.sk1.t,1675476225.cds251.sk1.c
Access-Control-Allow-Origin: *, *
connect.facebook.net/en_US/fbevents.js
157.240.205.11200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.205.11:0
File type ASCII text, with very long lines (64348)
Hash dd1f85cc598419df61e254e53f9ec1ef
f86c0ee563f5b7a01e1d40b566f2bc184a32380f
c06f52b233c835b03292f39cb847507a03bb971066bf91341b58a580244398c0
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
content-security-policy: default-src * data: blob: 'self';script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' *;connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self';block-all-mixed-content;upgrade-insecure-requests;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: negWfg9c8tjzAFtqXmSmrDj19s4vTO2Yg4l+CL1I+gNGtDZJK0ybhAoEs+Uha7Wp4ObKxeBRnBGGi7vs1Hvg6A==
priority: u=3,i
content-length: 27843
x-fb-trip-id: 1679558926
date: Sat, 04 Feb 2023 02:03:45 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 939 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash 8df8c1278c1a9f6b12ca3ed34ad29cf7
72a90160c9a32a00a690e004a876cf7ad6abbd6f
d4b122bfb54ef4b7d7973cddfa546cee6e639a1254c9d36c1f41fb532b6c6941
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 02:03:45 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Tue, 07 Feb 2023 22:39:31 GMT
ETag: "72a90160c9a32a00a690e004a876cf7ad6abbd6f"
Last-Modified: Fri, 03 Feb 2023 22:39:32 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3203
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793fd4e6fd07b51d-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash bbd90245f244e76d9f45706b1fb5ae58
1e15a0d03d74175f976310f2db334050485ed546
03fda0816cd373e36f33630fc50b4fb5e5852fb1f2c65175b98437386c436dd4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 02:03:45 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 01:56:49 GMT
Expires: Sat, 11 Feb 2023 01:56:48 GMT
Etag: "1e15a0d03d74175f976310f2db334050485ed546"
Cache-Control: max-age=603782,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793fd4e65e6fb4e8-OSL
mc.yandex.ru/metrika/tag.js
93.158.134.119200 OK 74 kB URL HTTP/2 mc.yandex.ru/metrika/tag.js
IP 93.158.134.119:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (659)
Hash a236c7014c1f1a1e52d356f59e5d665a
b66c638eb2346287364c37725819bbab1f409d66
ad2d57579e453af0eac49156840bcd1dcfbd802a82135af98f41f714d7e698f2
GET /metrika/tag.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 73769
date: Sat, 04 Feb 2023 02:03:45 GMT
access-control-allow-origin: *
etag: "63c93a4b-12029"
expires: Sat, 04 Feb 2023 03:03:45 GMT
last-modified: Thu, 19 Jan 2023 15:40:43 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: application/javascript
content-encoding: br
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 92c45dc245a9155becc352af0714ce07
b9c4f04eea4517780fc3dcb3a43a76365de858eb
ba3430b98de428559eee21ac69a1d85748dc6b383ca5a088baa2bba8f3ebe6d4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3673
Cache-Control: max-age=134927
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:03:45 GMT
Etag: "63dd1ab7-13a"
Expires: Sun, 05 Feb 2023 15:32:32 GMT
Last-Modified: Fri, 03 Feb 2023 14:31:19 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 314
20bet.com/assets/sport/15.svg
104.22.35.208200 OK 7.0 kB URL HTTP/2 20bet.com/assets/sport/15.svg
IP 104.22.35.208:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (372)
Hash 2943a78f87d259b573cdec8bf96fe79a
0415af124a81820138ff4bc509644f6de9b82a1b
e1a3cae62319209284484ada403e6d5dd457a5eb8b7697e287669d6f84e48623
GET /assets/sport/15.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Cookie: btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:43 GMT
content-type: image/svg+xml
cf-ray: 793fd4df5f0795ee-ARN
etag: W/"63dd0041-a14"
last-modified: Fri, 03 Feb 2023 12:38:25 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
d1wfowvne3d4em.cloudfront.net/flags/cr.svg
54.230.245.19200 OK 293 B URL HTTP/2 d1wfowvne3d4em.cloudfront.net/flags/cr.svg
IP 54.230.245.19:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 7b4ebd50f5274e5bfca82408ca79c32d
acc7c61a910b75de4970d54b684b0560cd833a16
12fe80c814de382b53955ab5223514278f7b4985f51c32fd1f60356280e1e5cd
GET /flags/cr.svg HTTP/1.1
Host: d1wfowvne3d4em.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 293
date: Fri, 03 Feb 2023 19:27:43 GMT
last-modified: Thu, 05 Jan 2023 15:45:59 GMT
etag: "7b4ebd50f5274e5bfca82408ca79c32d"
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: CVQz4Cz5gCoR7KvX9I1MZ4BBnqJk9M4S2A__OPbteh49Pmi1BzZfYA==
age: 23763
X-Firefox-Spdy: h2
d1wfowvne3d4em.cloudfront.net/flags/england.svg
54.230.245.19200 OK 652 B URL HTTP/2 d1wfowvne3d4em.cloudfront.net/flags/england.svg
IP 54.230.245.19:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 08979e955a488aa6e9368f7900845221
723a8d44940bebc93620994a038ac444c1384da6
19758b639b6069444cbf1ce3fa40726515fa30fca4edfde41f53d279c1a35486
GET /flags/england.svg HTTP/1.1
Host: d1wfowvne3d4em.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 652
date: Fri, 03 Feb 2023 17:44:54 GMT
last-modified: Thu, 05 Jan 2023 15:46:00 GMT
etag: "08979e955a488aa6e9368f7900845221"
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: eDLIWC9U58LuCvDxEZ8X-Xf2H7oPMhmqEmaGDIoYzw0IR2dSasJMpw==
age: 29932
X-Firefox-Spdy: h2
d1wfowvne3d4em.cloudfront.net/flags/de.svg
54.230.245.19200 OK 213 B URL HTTP/2 d1wfowvne3d4em.cloudfront.net/flags/de.svg
IP 54.230.245.19:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 3e726c2b6a59e6e4543c0a1534d93796
d43327d97b3e75fd3bd8d8e0103ef182c2f4c93d
226631a8fa9deee07022680ce0461b7a09b416b616c56ebcaf21f50e2b34ea8f
GET /flags/de.svg HTTP/1.1
Host: d1wfowvne3d4em.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 213
date: Fri, 03 Feb 2023 17:50:31 GMT
last-modified: Thu, 05 Jan 2023 15:46:00 GMT
etag: "3e726c2b6a59e6e4543c0a1534d93796"
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: V_bqFRI1cZySA_MxQ5vgSjxuH5jnlQfqoWt-Or9rNGig6H2E8apHUg==
age: 29595
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/watch.js
93.158.134.119200 OK 58 kB URL HTTP/2 mc.yandex.ru/metrika/watch.js
IP 93.158.134.119:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (554)
Hash 315a601116a9b3b0fbc85feb58375ba4
5d283ed923d0b3beb8a2ec4e80c2958d1d132fbf
251ba0fc04953e3615e7c19a9a10c5d6a4f25cc03bef190f8a5e7c6cd72a991a
GET /metrika/watch.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 58140
date: Sat, 04 Feb 2023 02:03:45 GMT
access-control-allow-origin: *
etag: "63c93a4b-e31c"
expires: Sat, 04 Feb 2023 03:03:45 GMT
last-modified: Thu, 19 Jan 2023 15:40:43 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: application/javascript
content-encoding: br
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
d1wfowvne3d4em.cloudfront.net/flags/NBA.svg
54.230.245.19200 OK 732 B URL HTTP/2 d1wfowvne3d4em.cloudfront.net/flags/NBA.svg
IP 54.230.245.19:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash eb77d9f274f71a770e363d1b7fc14269
6ecb6aad8e420f053da9fb2b32425bde3695d8dd
46d397e33b88bb36abc70061f2c5d1d2b055b1b9b774043b59b0a90739feb346
GET /flags/NBA.svg HTTP/1.1
Host: d1wfowvne3d4em.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 732
date: Fri, 03 Feb 2023 09:40:21 GMT
last-modified: Thu, 05 Jan 2023 15:45:57 GMT
etag: "eb77d9f274f71a770e363d1b7fc14269"
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 41LkSUR79EoEsQg2k9bfCvtrjjbaHlkLFypSY92AZ4lZz98xv9IY7w==
age: 59004
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash bbd90245f244e76d9f45706b1fb5ae58
1e15a0d03d74175f976310f2db334050485ed546
03fda0816cd373e36f33630fc50b4fb5e5852fb1f2c65175b98437386c436dd4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 02:03:45 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 01:56:49 GMT
Expires: Sat, 11 Feb 2023 01:56:48 GMT
Etag: "1e15a0d03d74175f976310f2db334050485ed546"
Cache-Control: max-age=603782,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793fd4e74c94b505-OSL
d1wfowvne3d4em.cloudfront.net/flags/pa.svg
54.230.245.19200 OK 749 B URL HTTP/2 d1wfowvne3d4em.cloudfront.net/flags/pa.svg
IP 54.230.245.19:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash d0787677f0d7c9cdaa8f6acca3f19245
0106f7695beb36379634b39507b7bb2811c06635
0bd4b6709d9ca822851f2d7c57ef9fb3c098ceeea5d239bbf8f3196b062d1d11
GET /flags/pa.svg HTTP/1.1
Host: d1wfowvne3d4em.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 749
date: Fri, 03 Feb 2023 19:27:43 GMT
last-modified: Thu, 05 Jan 2023 15:46:05 GMT
etag: "d0787677f0d7c9cdaa8f6acca3f19245"
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: pRbPLBMWF_LF9HXvXkINmPYbTpiLcIb84sMOCRj6C2_1feza7CUBgg==
age: 23763
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d3e050cf67675c3c19014a74517e3747
9931fd6a416e220e15ef5eccad6d0cb12edf3995
8411e23b7bfeba91b6252f15de6ed18b8cff1f752af0efc4f5429b54fccb0da4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6523
Cache-Control: max-age=114012
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:03:45 GMT
Etag: "63dcbde2-1d7"
Expires: Sun, 05 Feb 2023 09:43:57 GMT
Last-Modified: Fri, 03 Feb 2023 07:55:14 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
20bet.com/assets/sport/1070.svg
104.22.35.208200 OK 12 kB URL HTTP/2 20bet.com/assets/sport/1070.svg
IP 104.22.35.208:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (7328)
Hash d21193738ba99522d463904c639b1e90
db27f92471b705116c0f86328ea68648210b1d98
2436f10d10c02a85c7b20ff9b64c87c310e837f1b7d139a074c5277fce12d751
GET /assets/sport/1070.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Cookie: btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:43 GMT
content-type: image/svg+xml
cf-ray: 793fd4df6f1395ee-ARN
etag: W/"63dd0039-6fa8"
last-modified: Fri, 03 Feb 2023 12:38:17 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bb0e1ff82ab6199f715e00974b7f6957
74edba6943c202d060b471c30a3c626542bfac84
d982aa0ae1b32ffba27f789ad265b594dfef0bc4c55a0d0489d38b0827e6a7e2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D982AA0AE1B32FFBA27F789AD265B594DFEF0BC4C55A0D0489D38B0827E6A7E2"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3659
Expires: Sat, 04 Feb 2023 03:04:44 GMT
Date: Sat, 04 Feb 2023 02:03:45 GMT
Connection: keep-alive
platform.20bet.com/api/popular/line-menu/br
104.22.35.208200 OK 1.6 kB URL HTTP/2 platform.20bet.com/api/popular/line-menu/br
IP 104.22.35.208:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 1367e0b117bafee3b196c8dfa93c2331
1e906552a5efa562ad9784e31c7aa144c1e2030d
5452538151615847733e668af7f732f3ef552d3b605194e3a0c1afae4c8c0bf7
GET /api/popular/line-menu/br HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:43 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fd4de6eba95ee-ARN
content-encoding: br
X-Firefox-Spdy: h2
dsp-trk.eskimi.com/tracking/cssession?tst&id=22441
34.120.139.69304 Not Modified 0 B URL HTTP/2 dsp-trk.eskimi.com/tracking/cssession?tst&id=22441
IP 34.120.139.69:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tracking/cssession?tst&id=22441 HTTP/1.1
Host: dsp-trk.eskimi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 304 Not Modified
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
date: Sat, 04 Feb 2023 02:03:45 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
main.realsrv.com/tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2
95.211.229.246200 OK 20 B URL HTTP/1.1 main.realsrv.com/tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2
IP 95.211.229.246:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2 HTTP/1.1
Host: main.realsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 02:03:45 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: goals=a%3A1%3A%7Bi%3A93090%3Ba%3A1%3A%7Bs%3A4%3A%22date%22%3Bs%3A10%3A%222023-02-03%22%3B%7D%7D; expires=Sun, 04 Feb 2024 02:03:45 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
my.rtmark.net/p.js?f=sync&lr=1&partner=cd60a55da311d1562975ffab2a7f08e376179d9ae222cd454571a6753429581a
139.45.195.8200 OK 697 B URL HTTP/2 my.rtmark.net/p.js?f=sync&lr=1&partner=cd60a55da311d1562975ffab2a7f08e376179d9ae222cd454571a6753429581a
IP 139.45.195.8:0
Hash 50bd6e5705d2521bca2b787e709a056b
6216f7e6fce68eba983e254863c86f29248531b0
0f9b337808a018383c64035060134c4bbf0d8de9e9541284ab5ffaa9f42cd434
GET /p.js?f=sync&lr=1&partner=cd60a55da311d1562975ffab2a7f08e376179d9ae222cd454571a6753429581a HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:03:45 GMT
content-type: text/javascript
content-length: 697
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
20bet.com/assets/sport/1054.svg
104.22.35.208200 OK 0 B URL HTTP/2 20bet.com/assets/sport/1054.svg
IP 104.22.35.208:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /assets/sport/1054.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Cookie: btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:44 GMT
content-type: image/svg+xml
cf-ray: 793fd4e3086d95ee-ARN
etag: W/"63dd0041-10d5"
last-modified: Fri, 03 Feb 2023 12:38:25 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c7dca3f19d5f72804a6f1ac9e6729611
834490db5b5178a798814491bd4641a6b9ebeca4
c2985b7c81f97d919acd684eba9dc67893c9468d95d0d56524874b8951e5f791
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 499
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:03:45 GMT
Last-Modified: Sat, 04 Feb 2023 01:55:26 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c7dca3f19d5f72804a6f1ac9e6729611
834490db5b5178a798814491bd4641a6b9ebeca4
c2985b7c81f97d919acd684eba9dc67893c9468d95d0d56524874b8951e5f791
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4948
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:03:45 GMT
Last-Modified: Sat, 04 Feb 2023 00:41:17 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash bbd90245f244e76d9f45706b1fb5ae58
1e15a0d03d74175f976310f2db334050485ed546
03fda0816cd373e36f33630fc50b4fb5e5852fb1f2c65175b98437386c436dd4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 02:03:45 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 01:56:49 GMT
Expires: Sat, 11 Feb 2023 01:56:48 GMT
Etag: "1e15a0d03d74175f976310f2db334050485ed546"
Cache-Control: max-age=603782,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793fd4e6df9cb511-OSL
20bet.com/app/8181.9395c357a6a56a0c.esm.js
104.22.35.208200 OK 1.6 kB URL HTTP/2 20bet.com/app/8181.9395c357a6a56a0c.esm.js
IP 104.22.35.208:0
File type ASCII text, with very long lines (474), with no line terminators
Hash 64ef033a64ad371edec0441319d95029
ab449264285746c15bf8241110342c84caac1a8f
1379777ca1cef9c5ed6f667982cf0a4ee7fb385acbc92360b4b84715f8ae6dab
GET /app/8181.9395c357a6a56a0c.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Cookie: btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:44 GMT
content-type: application/javascript
cf-ray: 793fd4e1effc95ee-ARN
etag: W/"63dcff7a-1da"
last-modified: Fri, 03 Feb 2023 12:35:06 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
main.exdynsrv.com/tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2
95.211.229.247200 OK 20 B URL HTTP/1.1 main.exdynsrv.com/tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2
IP 95.211.229.247:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2 HTTP/1.1
Host: main.exdynsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 02:03:45 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: goals=a%3A1%3A%7Bi%3A93090%3Ba%3A1%3A%7Bs%3A4%3A%22date%22%3Bs%3A10%3A%222023-02-03%22%3B%7D%7D; expires=Sun, 04 Feb 2024 02:03:45 GMT; path=/; domain=.exdynsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
tsyndicate.com/api/v1/retargeting/set/45d3301c-de08-443f-9716-ba31e2632331
136.243.80.153200 OK 35 B URL HTTP/2 tsyndicate.com/api/v1/retargeting/set/45d3301c-de08-443f-9716-ba31e2632331
IP 136.243.80.153:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /api/v1/retargeting/set/45d3301c-de08-443f-9716-ba31e2632331 HTTP/1.1
Host: tsyndicate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:03:45 GMT
content-type: text/plain; charset=utf-8
content-length: 35
pragma: no-cache
expires: 0
vary: *
x-api-version: 1
x-request-id: 89135495cf986b25
set-cookie: ts_rt_45d3301c-de08-443f-9716-ba31e2632331=AAMC; expires=Sun, 04 Feb 2024 02:03:45 GMT; path=/; HttpOnly; secure; SameSite=None
cache-control: no-cache, no-store, no-transform, must-revalidate, no-transform
x-robots-tag: none, noindex, nofollow
report-to: { "url": "https://pxl.tsyndicate.com/api/v1/heavy-ad/report", "max_age": 86401 }
X-Firefox-Spdy: h2
x.bidswitch.net/ul_cb/syncd?dsp_id=409&user_group=2&user_id=0334d2df-a5fa-405e-9faa-91ebe069a8d1&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3D0334d2df-a5fa-405e-9faa-91ebe069a8d1
18.195.128.19200 OK 43 B URL HTTP/2 x.bidswitch.net/ul_cb/syncd?dsp_id=409&user_group=2&user_id=0334d2df-a5fa-405e-9faa-91ebe069a8d1&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3D0334d2df-a5fa-405e-9faa-91ebe069a8d1
IP 18.195.128.19:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/syncd?dsp_id=409&user_group=2&user_id=0334d2df-a5fa-405e-9faa-91ebe069a8d1&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3D0334d2df-a5fa-405e-9faa-91ebe069a8d1 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20bet.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:45 GMT
content-type: image/gif
content-length: 43
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/advert.gif
93.158.134.119200 OK 43 B URL HTTP/2 mc.yandex.ru/metrika/advert.gif
IP 93.158.134.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Sat, 04 Feb 2023 02:03:45 GMT
access-control-allow-origin: *
etag: "63c93a4b-2b"
expires: Sat, 04 Feb 2023 03:03:45 GMT
accept-ranges: bytes
last-modified: Thu, 19 Jan 2023 15:40:43 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ctrack.trafficjunky.net/ctrack?action=list&type=add&id=notregistered-new&context=20bet.com&cookiename=notregistered-new&age=259200&maxcookiecount=10
66.254.114.89200 OK 35 B URL HTTP/1.1 ctrack.trafficjunky.net/ctrack?action=list&type=add&id=notregistered-new&context=20bet.com&cookiename=notregistered-new&age=259200&maxcookiecount=10
IP 66.254.114.89:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /ctrack?action=list&type=add&id=notregistered-new&context=20bet.com&cookiename=notregistered-new&age=259200&maxcookiecount=10 HTTP/1.1
Host: ctrack.trafficjunky.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
server: openresty
date: Sat, 04 Feb 2023 02:03:45 GMT
content-type: image/gif
content-length: 35
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Sun, 22 Jan 1984 03:00:00 GMT
p3p: CP="IDC DSP COR CURa ADMa OUR IND PHY ONL COM STA"
pragma: no-cache
set-cookie: tj_UUID=631cd2ee2b4f4cf89a98c513c08d9583; Path=/; Domain=trafficjunky.net; Expires=Mon, 06 Mar 2023 02:03:45 GMT; Secure; SameSite=None
tj_UUID_v2=631cd2ee-2b4f-4cf8-9a98-c513c08d9583; Path=/; Domain=trafficjunky.net; Expires=Mon, 06 Mar 2023 02:03:45 GMT; Secure; SameSite=None
614ac6550300bc7c00c3f821d11e0512=notregistered-new; Path=/; Domain=trafficjunky.net; Expires=Thu, 03 Aug 2023 02:03:45 GMT; Secure; SameSite=None
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET,POST
access-control-allow-headers: Content-Type
access-control-max-age: 86400
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
x-request-id: 63DDBD01-42FE725901BB2B00-114F20CA
x.bidswitch.net/ul_cb/syncd?dsp_id=409&user_id=0334d2df-a5fa-405e-9faa-91ebe069a8d1&user_group=2&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D
18.195.128.19200 OK 43 B URL HTTP/2 x.bidswitch.net/ul_cb/syncd?dsp_id=409&user_id=0334d2df-a5fa-405e-9faa-91ebe069a8d1&user_group=2&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D
IP 18.195.128.19:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/syncd?dsp_id=409&user_id=0334d2df-a5fa-405e-9faa-91ebe069a8d1&user_group=2&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20bet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:45 GMT
content-type: image/gif
content-length: 43
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=2&user_id=0334d2df-a5fa-405e-9faa-91ebe069a8d1&cb=2c2626f7-cbe2-4fb5-b30e-7c668e4d45a5
18.195.128.19302 Found 0 B URL HTTP/2 x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=2&user_id=0334d2df-a5fa-405e-9faa-91ebe069a8d1&cb=2c2626f7-cbe2-4fb5-b30e-7c668e4d45a5
IP 18.195.128.19:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ul_cb/sync?dsp_id=409&expires=14&user_group=2&user_id=0334d2df-a5fa-405e-9faa-91ebe069a8d1&cb=2c2626f7-cbe2-4fb5-b30e-7c668e4d45a5 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20bet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sat, 04 Feb 2023 02:03:45 GMT
content-length: 0
cache-control: no-cache, no-store, must-revalidate
location: //match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=0334d2df-a5fa-405e-9faa-91ebe069a8d1&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
X-Firefox-Spdy: h2
main.exoclick.com/tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2
95.211.229.246200 OK 20 B URL HTTP/1.1 main.exoclick.com/tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2
IP 95.211.229.246:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2 HTTP/1.1
Host: main.exoclick.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 02:03:45 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: goals=a%3A1%3A%7Bi%3A93090%3Ba%3A1%3A%7Bs%3A4%3A%22date%22%3Bs%3A10%3A%222023-02-03%22%3B%7D%7D; expires=Sun, 04 Feb 2024 02:03:45 GMT; path=/; domain=.exoclick.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
main.exosrv.com/tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2
95.211.229.246200 OK 20 B URL HTTP/1.1 main.exosrv.com/tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2
IP 95.211.229.246:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /tag.php?goal=8b2e6ea6f4f288415527d8eb7f5c3dc2 HTTP/1.1
Host: main.exosrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 02:03:45 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: goals=a%3A1%3A%7Bi%3A93090%3Ba%3A1%3A%7Bs%3A4%3A%22date%22%3Bs%3A10%3A%222023-02-03%22%3B%7D%7D; expires=Sun, 04 Feb 2024 02:03:45 GMT; path=/; domain=.exosrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
trc.taboola.com/1460267/log/3/unip?item-url=https%3A%2F%2F20bet.com%2Fbr%3Fbtag%3D668128_1B9F2C98E6D249D4B51F2CE8167B491E&ref=&en=20betcom_notreg
151.101.129.44204 No Content 0 B URL HTTP/2 trc.taboola.com/1460267/log/3/unip?item-url=https%3A%2F%2F20bet.com%2Fbr%3Fbtag%3D668128_1B9F2C98E6D249D4B51F2CE8167B491E&ref=&en=20betcom_notreg
IP 151.101.129.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1460267/log/3/unip?item-url=https%3A%2F%2F20bet.com%2Fbr%3Fbtag%3D668128_1B9F2C98E6D249D4B51F2CE8167B491E&ref=&en=20betcom_notreg HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
content-type: image/gif
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
accept-ranges: bytes
date: Sat, 04 Feb 2023 02:03:45 GMT
via: 1.1 varnish
x-served-by: cache-bma1671-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675476226.655986,VS0,VE93
x-vcl-time-ms: 93
X-Firefox-Spdy: h2
dsp-media.eskimi.com/assets/js/e/gtr.min.js?_=0.0.0.3
194.242.11.186200 OK 166 kB URL HTTP/2 dsp-media.eskimi.com/assets/js/e/gtr.min.js?_=0.0.0.3
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type ASCII text, with very long lines (4859), with no line terminators
Size 166 kB (166041 bytes)
Hash 7bbb534c068db31910bedd264f092d6a
13c8bf21f7ce3e2f999217b272c11b04fc2fdf3c
df3c1bb776e40cef09967ec25e2595c8bd71ce113b6ff4d1957b8075949e29d5
GET /assets/js/e/gtr.min.js?_=0.0.0.3 HTTP/1.1
Host: dsp-media.eskimi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:45 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 692289
cdn-uid: ce2848ff-13c5-49e5-873d-af24ad423612
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31536000
etag: W/"621cbfb5-12fb"
expires: Tue, 28 Nov 2023 12:07:50 GMT
last-modified: Mon, 28 Feb 2022 12:27:33 GMT
x-content-type-options: nosniff
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/28/2022 12:07:50
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 493e9018b127b64ab2f26b523201fc11
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
api.livechatinc.com/v3.3/customer/rtm/ws?license_id=9054575
95.101.10.171101 Switching Protocols 0 B URL HTTP/1.1 api.livechatinc.com/v3.3/customer/rtm/ws?license_id=9054575
IP 95.101.10.171:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v3.3/customer/rtm/ws?license_id=9054575 HTTP/1.1
Host: api.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://secure.livechatinc.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 3aPdR8FWEIJfz5xNYHq5tA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
sec-websocket-accept: rgGq2r6LSApJhUT+zyHFTcYHdsE=
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://secure.livechatinc.com
legacy: 2023-06-30
Date: Sat, 04 Feb 2023 02:03:45 GMT
Upgrade: websocket
Connection: Upgrade
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash acc6e0e956622e0edcd2ac459c12fe91
01ce4a761ffe6d45e2fbeee435681722824da8a1
21333a80669f45aee8b5b226202317f0857d8022f1f485ecc2692c380b69aad7
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 04 Feb 2023 02:03:45 GMT
Last-Modified: Sat, 04 Feb 2023 00:52:51 GMT
Server: ECS (nyb/1D06)
X-Cache: Miss from cloudfront
Via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: FMuY_U4hOXK_xM2Lt78Rb8NLKP7Giawl0zeW32EVB2PQOo8fxDXLFQ==
Age: 4254
match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=0334d2df-a5fa-405e-9faa-91ebe069a8d1&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
52.58.114.55204 No Content 0 B URL HTTP/2 match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=0334d2df-a5fa-405e-9faa-91ebe069a8d1&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
IP 52.58.114.55:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=0334d2df-a5fa-405e-9faa-91ebe069a8d1&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy= HTTP/1.1
Host: match.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20bet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 02:03:45 GMT
X-Firefox-Spdy: h2
match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=0334d2df-a5fa-405e-9faa-91ebe069a8d1&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
52.58.114.55204 No Content 0 B URL HTTP/2 match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=0334d2df-a5fa-405e-9faa-91ebe069a8d1&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
IP 52.58.114.55:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=0334d2df-a5fa-405e-9faa-91ebe069a8d1&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy= HTTP/1.1
Host: match.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20bet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 02:03:45 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=4565082360183930&ev=PageView&dl=https%3A%2F%2F20bet.com%2Fbr%3Fbtag%3D668128_1B9F2C98E6D249D4B51F2CE8167B491E&rl=&if=true&ts=1675476259318&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&it=1675476258814&coo=false&rqm=GET
157.240.205.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=4565082360183930&ev=PageView&dl=https%3A%2F%2F20bet.com%2Fbr%3Fbtag%3D668128_1B9F2C98E6D249D4B51F2CE8167B491E&rl=&if=true&ts=1675476259318&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&it=1675476258814&coo=false&rqm=GET
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=4565082360183930&ev=PageView&dl=https%3A%2F%2F20bet.com%2Fbr%3Fbtag%3D668128_1B9F2C98E6D249D4B51F2CE8167B491E&rl=&if=true&ts=1675476259318&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&it=1675476258814&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 04 Feb 2023 02:03:45 GMT
X-Firefox-Spdy: h2
accounts.livechatinc.com/customer/token
95.101.10.202200 OK 138 B URL HTTP/2 accounts.livechatinc.com/customer/token
IP 95.101.10.202:0
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text
Hash ec1d63987e6c380f822f92d6b4b561f9
c353310a96acecdba4fcd5fc7208a65808a5d8f9
79a2d95764f4078799c07b920d92a8e5c29709efb6980741c51664ac0e1572e8
POST /customer/token HTTP/1.1
Host: accounts.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 189
Origin: https://secure.livechatinc.com
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://secure.livechatinc.com
cache-control: no-cache, no-store, max-age=0, must-revalidate
content-type: application/json
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
content-length: 138
date: Sat, 04 Feb 2023 02:03:46 GMT
set-cookie: __lc_cid=d1614245-1a8c-45ea-4360-a05d943b3cb6; Path=/v2/customer/token; Domain=accounts.livechatinc.com; Expires=Tue, 04 Feb 2025 02:03:45 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None
__lc_cst=d0f6a0f80001e5f8ed23c97faa118ac2f906a83a5c4a0e7fb499502e7cd4dcab144128b78741fc2a9350182b1a3f2466087d20225efdb1427f16b14d64f5; Path=/v2/customer/token; Domain=accounts.livechatinc.com; Expires=Tue, 04 Feb 2025 02:03:45 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None
__lc_cid=d1614245-1a8c-45ea-4360-a05d943b3cb6; Path=/customer/token; Domain=accounts.livechatinc.com; Expires=Tue, 04 Feb 2025 02:03:45 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None
__lc_cst=d0f6a0f80001e5f8ed23c97faa118ac2f906a83a5c4a0e7fb499502e7cd4dcab144128b78741fc2a9350182b1a3f2466087d20225efdb1427f16b14d64f5; Path=/customer/token; Domain=accounts.livechatinc.com; Expires=Tue, 04 Feb 2025 02:03:45 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None
__oauth_redirect_detector=counter=1&t=1675476255&tag=a3ebe526c030f6a997ca370fec0106fced20ae92; Path=/; Expires=Sat, 04 Feb 2023 02:04:15 GMT; HttpOnly; Secure; SameSite=None
X-Firefox-Spdy: h2
20bet.com/assets/sport/14.svg
104.22.35.208200 OK 1.3 kB URL HTTP/2 20bet.com/assets/sport/14.svg
IP 104.22.35.208:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (374)
Hash 704b81f12e58bc73c37c4d5373791bea
b53560ef38ce12ad168d57d2df8580ec25ef8d4c
0f13e6a0f069d394c9d738c71f72e374a7d741071881b4d13ad7833f0e4c879a
GET /assets/sport/14.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Cookie: btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:44 GMT
content-type: image/svg+xml
cf-ray: 793fd4e2f86795ee-ARN
etag: W/"63dd0049-cd6"
last-modified: Fri, 03 Feb 2023 12:38:33 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=0334d2df-a5fa-405e-9faa-91ebe069a8d1&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
52.58.114.55204 No Content 0 B URL HTTP/2 match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=0334d2df-a5fa-405e-9faa-91ebe069a8d1&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
IP 52.58.114.55:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=0334d2df-a5fa-405e-9faa-91ebe069a8d1&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy= HTTP/1.1
Host: match.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20bet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 02:03:46 GMT
X-Firefox-Spdy: h2
secure.adnxs.com/seg?add=30613014&t=1
185.89.211.132307 Redirection 0 B URL HTTP/1.1 secure.adnxs.com/seg?add=30613014&t=1
IP 185.89.211.132:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /seg?add=30613014&t=1 HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Sat, 04 Feb 2023 02:03:46 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://secure.adnxs.com/bounce?%2Fseg%3Fadd%3D30613014%26t%3D1
AN-X-Request-Uuid: b978028c-55fb-4143-bcb6-42c4f3b53310
Set-Cookie: uuid2=3882269413771382829; SameSite=None; Path=/; Max-Age=7776000; Expires=Fri, 05-May-2023 02:03:46 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 961.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
20bet.com/cdn-cgi/rum?
104.22.35.208204 No Content 0 B IP 104.22.35.208:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum? HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 49910
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Cookie: btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 02:03:46 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 793fd4ed4c1495ee-ARN
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
zz.connextra.com/20Bet/dcs/tagController/tagData/d3ea3fb1f9d4
104.110.28.81200 OK 20 B URL HTTP/2 zz.connextra.com/20Bet/dcs/tagController/tagData/d3ea3fb1f9d4
IP 104.110.28.81:0
Hash 163be0a88c70ca629fd516dbaadad96a
c8830ccf3a863e489ca37f4da572bad0e05d077b
ac73670af3abed54ac6fb4695131f4099be9fbe39d6076c5d0264a6bbdae9d83
POST /20Bet/dcs/tagController/tagData/d3ea3fb1f9d4 HTTP/1.1
Host: zz.connextra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 41
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain
server: istio-envoy
access-control-allow-credentials: true
access-control-allow-origin: https://20bet.com
vary: origin,accept-encoding
p3p: CP=NOI DSP COR CURa ADMa DEVa PSAa PSDa OUR SAMa BUS IND UNI PUR COM NAV
content-encoding: gzip
x-envoy-upstream-service-time: 2
expires: Sat, 04 Feb 2023 02:03:46 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 04 Feb 2023 02:03:46 GMT
content-length: 20
set-cookie: CxtId=1b696776-6b2e-4635-a92c-df20f2e0f1d4; Domain=.connextra.com; Expires=Mon, 03-Feb-2025 02:03:46 GMT; Path=/; Secure
20Bet=P%7Chomepage%7C1%7C202302040203; Domain=.connextra.com; Expires=Sun, 04-Feb-2024 02:03:46 GMT; Path=/; Secure; HttpOnly
X-Firefox-Spdy: h2
secure.adnxs.com/getuidnb?https%3A//zz.connextra.com/sync/data/uid/3bc1d7fd2e/%24UID
185.89.211.132200 OK 43 B URL HTTP/1.1 secure.adnxs.com/getuidnb?https%3A//zz.connextra.com/sync/data/uid/3bc1d7fd2e/%24UID
IP 185.89.211.132:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 592ebefc7104d681d57852665e9ad514
15cdf8df32aa251dd6dd590a60bf9cf74474e7c5
4b5b6b15c6255109e06720cce42a06d3aead8b7874423d9c52cb0303212c25ef
GET /getuidnb?https%3A//zz.connextra.com/sync/data/uid/3bc1d7fd2e/%24UID HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Sat, 04 Feb 2023 02:03:46 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: d809cf66-918b-46b6-8488-a60aee33ef77
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 961.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
ocsp.pki.goog/s/gts1d4/sJUSxLAL5HA
142.250.74.163200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/sJUSxLAL5HA
IP 142.250.74.163:0
Hash fa144643ba11b69dc7c51b9c21a8ec97
f6b7cdd00f7441a981c4db1529e5a8e6fdb291f8
5157d36698363f4c74004749423a63916f378f350b4cf2a9da1b7c7fd50f118b
POST /s/gts1d4/sJUSxLAL5HA HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:03:46 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
secure.adnxs.com/bounce?%2Fseg%3Fadd%3D30613014%26t%3D1
185.89.211.132200 OK 0 B URL HTTP/1.1 secure.adnxs.com/bounce?%2Fseg%3Fadd%3D30613014%26t%3D1
IP 185.89.211.132:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fseg%3Fadd%3D30613014%26t%3D1 HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20bet.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Sat, 04 Feb 2023 02:03:46 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: 8aa65dcc-dfe3-4a1e-be88-d7235d3594a4
Set-Cookie: anj=dTM7k!M4/8CxrEQF']wIg2HbzorCDv!@wnf-Te9(>wL5L!!'b*$s0j9; SameSite=None; Path=/; Max-Age=7776000; Expires=Fri, 05-May-2023 02:03:46 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 961.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
track.customer.io/events/page.gif?name=https%3A%2F%2F20bet.com%2Fbr%3Fbtag%3D668128_1B9F2C98E6D249D4B51F2CE8167B491E&data%5Bbtag%5D=668128_1B9F2C98E6D249D4B51F2CE8167B491E&data%5Bwidth%5D=0&data%5Bheight%5D=0&c=&s=&site_id=0e8fbf60ebbf2b4f79c2×tamp=1675476259660
35.227.225.220200 OK 35 B URL HTTP/2 track.customer.io/events/page.gif?name=https%3A%2F%2F20bet.com%2Fbr%3Fbtag%3D668128_1B9F2C98E6D249D4B51F2CE8167B491E&data%5Bbtag%5D=668128_1B9F2C98E6D249D4B51F2CE8167B491E&data%5Bwidth%5D=0&data%5Bheight%5D=0&c=&s=&site_id=0e8fbf60ebbf2b4f79c2×tamp=1675476259660
IP 35.227.225.220:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /events/page.gif?name=https%3A%2F%2F20bet.com%2Fbr%3Fbtag%3D668128_1B9F2C98E6D249D4B51F2CE8167B491E&data%5Bbtag%5D=668128_1B9F2C98E6D249D4B51F2CE8167B491E&data%5Bwidth%5D=0&data%5Bheight%5D=0&c=&s=&site_id=0e8fbf60ebbf2b4f79c2×tamp=1675476259660 HTTP/1.1
Host: track.customer.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate, max-age=0
content-disposition: attachment
content-length: 35
content-transfer-encoding: binary
content-type: image/gif
date: Sat, 04 Feb 2023 02:03:46 GMT
status: 200 OK
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/sJUSxLAL5HA
142.250.74.163200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/sJUSxLAL5HA
IP 142.250.74.163:0
Hash fa144643ba11b69dc7c51b9c21a8ec97
f6b7cdd00f7441a981c4db1529e5a8e6fdb291f8
5157d36698363f4c74004749423a63916f378f350b4cf2a9da1b7c7fd50f118b
POST /s/gts1d4/sJUSxLAL5HA HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:03:46 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dsp-ap.eskimi.com/v2/gtr?id=22441&url=https%3A%2F%2F20bet.com%2Fbr%3Fbtag%3D668128_1B9F2C98E6D249D4B51F2CE8167B491E&t=1675476258609
35.186.201.99200 OK 0 B URL HTTP/2 dsp-ap.eskimi.com/v2/gtr?id=22441&url=https%3A%2F%2F20bet.com%2Fbr%3Fbtag%3D668128_1B9F2C98E6D249D4B51F2CE8167B491E&t=1675476258609
IP 35.186.201.99:0
GET /v2/gtr?id=22441&url=https%3A%2F%2F20bet.com%2Fbr%3Fbtag%3D668128_1B9F2C98E6D249D4B51F2CE8167B491E&t=1675476258609 HTTP/1.1
Host: dsp-ap.eskimi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
set-cookie: __eConsent=1; Expires=Mon, 06 Mar 2023 02:03:45 GMT; Max-Age=2592000; Domain=.eskimi.com; Path=/; Secure; SameSite=None
__eDId=a3a2c0cf-5cca-4408-9695-bd90c3e24e85; Expires=Mon, 06 Mar 2023 02:03:45 GMT; Max-Age=2592000; Domain=.eskimi.com; Path=/; Secure; SameSite=None
__eP=1; Expires=Sat, 18 Feb 2023 02:03:45 GMT; Max-Age=1209600; Domain=.eskimi.com; Path=/; Secure; SameSite=None
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
cache-control: no-cache
date: Sat, 04 Feb 2023 02:03:45 GMT
content-type: application/json
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
20bet.com/app/main.8912bbb1732c40fd.esm.js
104.22.35.208200 OK 0 B URL HTTP/2 20bet.com/app/main.8912bbb1732c40fd.esm.js
IP 104.22.35.208:0
GET /app/main.8912bbb1732c40fd.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Cookie: btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:41 GMT
content-type: application/javascript
cf-ray: 793fd4cfc90895ee-ARN
etag: W/"63dcff7a-16d44e"
last-modified: Fri, 03 Feb 2023 12:35:06 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
help.br.betboo.com/closed?productId=SPORTSBOOK&trid=in13741
104.17.134.181200 OK 0 B URL HTTP/2 help.br.betboo.com/closed?productId=SPORTSBOOK&trid=in13741
IP 104.17.134.181:0
GET /closed?productId=SPORTSBOOK&trid=in13741 HTTP/1.1
Host: help.br.betboo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __cf_bm=gOjgnGjwDh8jUqDY7ZTajQ.BOUMgd7EDDC89flk5eWY-1675476219-0-ASQzQ6s19F2ZLEHVT5pXK3sr+6cxzVJWebSCmV1SfarPLmR65+EOO+rp65gXYWUWRFqDT395Fgz4q1s53Oas0F4=
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:39 GMT
content-type: text/html; charset=utf-8
cache-control: public, no-cache="Set-Cookie", max-age=900
last-modified: Sat, 04 Feb 2023 02:03:39 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=2592000
x-content-type-options: nosniff
set-cookie: ASP.NET_SessionId=z003di3fd11rp3ywhcakqgty; path=/; secure; HttpOnly; SameSite=Lax
cf-cache-status: MISS
server: cloudflare
cf-ray: 793fd4c39f22b527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.br.betboo.com/pt-br/mobileportal/register?productId=SPORTSBOOK&trid=in13741
104.17.134.181302 Found 0 B URL HTTP/2 www.br.betboo.com/pt-br/mobileportal/register?productId=SPORTSBOOK&trid=in13741
IP 104.17.134.181:0
GET /pt-br/mobileportal/register?productId=SPORTSBOOK&trid=in13741 HTTP/1.1
Host: www.br.betboo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 04 Feb 2023 02:03:39 GMT
content-type: text/html; charset=utf-8
location: https://help.br.betboo.com/closed?productId=SPORTSBOOK&trid=in13741
cache-control: private
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
accept-language: en-US,en;q=0.5
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
x-forwarded-for: 91.90.42.154, 162.158.111.70
x-forwarded-proto: https
cf-visitor: {"scheme":"https"}
upgrade-insecure-requests: 1
sec-fetch-dest: iframe
sec-fetch-mode: navigate
sec-fetch-site: cross-site
cf-connecting-ip: 91.90.42.154
true-client-ip: 91.90.42.154
cdn-loop: cloudflare
x-redirect-source: Redirex
cf-cache-status: DYNAMIC
set-cookie: redirex-original=http://www.br.betboo.com:80/pt-br/mobileportal/register?productId=SPORTSBOOK&trid=in13741;Ip=91.90.42.154;Path=/;Domain=.betboo.com;Expires=Sat, 04-Feb-2023 02:08:39 GMT;secure;HttpOnly
__cf_bm=gOjgnGjwDh8jUqDY7ZTajQ.BOUMgd7EDDC89flk5eWY-1675476219-0-ASQzQ6s19F2ZLEHVT5pXK3sr+6cxzVJWebSCmV1SfarPLmR65+EOO+rp65gXYWUWRFqDT395Fgz4q1s53Oas0F4=; path=/; expires=Sat, 04-Feb-23 02:33:39 GMT; domain=.betboo.com; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=2592000
server: cloudflare
cf-ray: 793fd4c31e86b527-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
adtraffic.agency/hit/betwarrior.gif?ref=&page=https%3A%2F%2Fpromo.betwarrior.bet%2Fpt%2Fwelcome-offer-sports%2F%3Futm_source%3Dnetrefer%26utm_medium%3Daffiliates%26utm_campaign%3Dsports%26btag%3D655952_5F3D35BD778945ED822FD8340F9A5004&date=1675476254393&tid=tid-34b9ba538.3084b63cf
104.21.5.175200 OK 0 B URL HTTP/2 adtraffic.agency/hit/betwarrior.gif?ref=&page=https%3A%2F%2Fpromo.betwarrior.bet%2Fpt%2Fwelcome-offer-sports%2F%3Futm_source%3Dnetrefer%26utm_medium%3Daffiliates%26utm_campaign%3Dsports%26btag%3D655952_5F3D35BD778945ED822FD8340F9A5004&date=1675476254393&tid=tid-34b9ba538.3084b63cf
IP 104.21.5.175:0
GET /hit/betwarrior.gif?ref=&page=https%3A%2F%2Fpromo.betwarrior.bet%2Fpt%2Fwelcome-offer-sports%2F%3Futm_source%3Dnetrefer%26utm_medium%3Daffiliates%26utm_campaign%3Dsports%26btag%3D655952_5F3D35BD778945ED822FD8340F9A5004&date=1675476254393&tid=tid-34b9ba538.3084b63cf HTTP/1.1
Host: adtraffic.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://promo.betwarrior.bet/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:41 GMT
content-type: text/javascript; charset=utf-8
status: 200 OK
cache-control: no-cache
access-control-allow-origin: *
referrer-policy: strict-origin-when-cross-origin
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
x-request-id: 9cc8b6fe-72e1-424e-a787-0a3fd3a1fc7e
x-download-options: noopen
etag: W/"c1e4a1570d95a4f7dd9569fbf588ca03"
x-runtime: 0.028573
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nf5z6O0KZr2rm4w7zdy0wOxtMESQZ4LwoRz8X1NW9coLZmGsIq5qDEQK%2F5zZ0V4rANl7roON6EouiNJMccpdVWEMut92XoDg2x0AxKYZ%2BhFPama4%2FEkmwl9ZD4JEnWu21mQj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793fd4cd5e9c0b61-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
20bet.com/api/translation/get?locale=pt_BR
104.22.35.208200 OK 0 B URL HTTP/2 20bet.com/api/translation/get?locale=pt_BR
IP 104.22.35.208:0
GET /api/translation/get?locale=pt_BR HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Cookie: btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:41 GMT
content-type: application/json
cf-ray: 793fd4cd984595ee-ARN
cache-control: no-cache, private
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers: Content-Length,Content-Range
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/user/is-auth
104.22.35.208200 OK 0 B URL HTTP/2 platform.20bet.com/api/user/is-auth
IP 104.22.35.208:0
GET /api/user/is-auth HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:43 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fd4de6ebd95ee-ARN
content-encoding: br
X-Firefox-Spdy: h2
d1wfowvne3d4em.cloudfront.net/flags/ar.svg
54.230.245.19200 OK 0 B URL HTTP/2 d1wfowvne3d4em.cloudfront.net/flags/ar.svg
IP 54.230.245.19:0
GET /flags/ar.svg HTTP/1.1
Host: d1wfowvne3d4em.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/svg+xml
date: Fri, 03 Feb 2023 11:46:55 GMT
last-modified: Thu, 05 Jan 2023 15:45:57 GMT
etag: W/"d205ca1376dbe5ce35b5b926fe739959"
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: OOpUTcGeA7BrBBNrNhbnftyy6SjK4A71tyYv1r-_Eb8aH3BzPDbqDA==
age: 51411
X-Firefox-Spdy: h2
cdn.jsdelivr.net/bxslider/4.2.12/jquery.bxslider.css
104.16.89.20200 OK 0 B URL HTTP/2 cdn.jsdelivr.net/bxslider/4.2.12/jquery.bxslider.css
IP 104.16.89.20:0
GET /bxslider/4.2.12/jquery.bxslider.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.betwarrior.bet/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:39 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
etag: W/"f5e-9CY+ZfG2D1tXr+G8dDrQnwbBEmY"
x-served-by: cache-fra19167-FRA, cache-bma1624-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
cf-cache-status: HIT
age: 27621344
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ztFt%2Fql5pCBjA84P4jk1UcgjhWlHMsVosynu1nvg2EE96MXKDK6eiyD5OfvMbh9ZsglltVFxu8OpacofchyzKnEaC%2Fo%2BcA4EhSql68tMXYfl%2BMk025MAfc4mq0i6Y9m3B%2BU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793fd4c5deda1bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-2053477.js?sv=6
54.230.111.39200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-2053477.js?sv=6
IP 54.230.111.39:0
GET /c/hotjar-2053477.js?sv=6 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Sat, 04 Feb 2023 02:03:24 GMT
access-control-allow-origin: *
cache-control: max-age=60
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: W/b3fa9d4445283a655c0fc8905230ce31
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: EJNut4v8sBkueWz9G9Zen5nya7kZ3Z8GqSypqlJ2ytunTu9jepqvvA==
age: 17
X-Firefox-Spdy: h2
platform.20bet.com/api/v3/menu/live/br
104.22.35.208200 OK 0 B URL HTTP/2 platform.20bet.com/api/v3/menu/live/br
IP 104.22.35.208:0
GET /api/v3/menu/live/br HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:43 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fd4de5eb295ee-ARN
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/sport/1059.svg
104.22.35.208200 OK 0 B URL HTTP/2 20bet.com/assets/sport/1059.svg
IP 104.22.35.208:0
GET /assets/sport/1059.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Cookie: btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:44 GMT
content-type: image/svg+xml
cf-ray: 793fd4df5f0c95ee-ARN
etag: W/"63dd0049-1fca"
last-modified: Fri, 03 Feb 2023 12:38:33 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
d1wfowvne3d4em.cloudfront.net/flags/ni.svg
54.230.245.19200 OK 0 B URL HTTP/2 d1wfowvne3d4em.cloudfront.net/flags/ni.svg
IP 54.230.245.19:0
GET /flags/ni.svg HTTP/1.1
Host: d1wfowvne3d4em.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/svg+xml
date: Fri, 03 Feb 2023 16:38:32 GMT
last-modified: Thu, 05 Jan 2023 15:46:05 GMT
etag: W/"7b131ab3ceaf55696b688d2617f21f54"
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: fECAV-RWI1SIEjAYLfTDrQMZTLYetcWjvRUEKilcldQev6Ocf97bVw==
age: 33914
X-Firefox-Spdy: h2
20bet.com/app/styles.09f1d7fd866591ab.css
104.22.35.208200 OK 0 B URL HTTP/2 20bet.com/app/styles.09f1d7fd866591ab.css
IP 104.22.35.208:0
GET /app/styles.09f1d7fd866591ab.css HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Cookie: btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:40 GMT
content-type: text/css
cf-ray: 793fd4cb5f8895ee-ARN
etag: W/"63dcff75-23c8a"
last-modified: Fri, 03 Feb 2023 12:35:01 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/8416.089b97ec0fb7c863.esm.js
104.22.35.208200 OK 0 B URL HTTP/2 20bet.com/app/8416.089b97ec0fb7c863.esm.js
IP 104.22.35.208:0
GET /app/8416.089b97ec0fb7c863.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Cookie: btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:42 GMT
content-type: application/javascript
cf-ray: 793fd4d74bab95ee-ARN
etag: W/"63dcff7a-2da"
last-modified: Fri, 03 Feb 2023 12:35:06 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/data/get-countries
104.22.35.208200 OK 0 B URL HTTP/2 platform.20bet.com/api/data/get-countries
IP 104.22.35.208:0
GET /api/data/get-countries HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:42 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fd4d8bc3c95ee-ARN
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/6612.8b90df75e8984f5b.esm.js
104.22.35.208200 OK 0 B URL HTTP/2 20bet.com/app/6612.8b90df75e8984f5b.esm.js
IP 104.22.35.208:0
GET /app/6612.8b90df75e8984f5b.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Cookie: btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:43 GMT
content-type: application/javascript
cf-ray: 793fd4db0d3c95ee-ARN
etag: W/"63dcff74-4ac"
last-modified: Fri, 03 Feb 2023 12:35:00 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
f12.bet/?btag=a_3672b_86c_PU_BR_PA_DT_VOLD_F12BET
172.64.146.105403 Forbidden 0 B URL HTTP/2 f12.bet/?btag=a_3672b_86c_PU_BR_PA_DT_VOLD_F12BET
IP 172.64.146.105:0
GET /?btag=a_3672b_86c_PU_BR_PA_DT_VOLD_F12BET HTTP/1.1
Host: f12.bet
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
date: Sat, 04 Feb 2023 02:03:39 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
set-cookie: __cf_bm=SU0UCB1EkpYBO.w0Cgi_bo6LF_dYbEyzPDmS16vSOFg-1675476219-0-AYLqpXkg8Ldl/vl3wkZrR0UdksYxv4Pz1xIhYMvnpPIaIKfUoLAoC+LPgf9lN8yoSVH/IaL/eihEkRVppHzpB8s=; path=/; expires=Sat, 04-Feb-23 02:33:39 GMT; domain=.f12.bet; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 793fd4c45b64b515-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
bitslot.io/?stag=148527_63ddbcfb607ae792a8b19789&tracking_link=http%3A%2F%2Fb-partner.xyz%2Fa74c621bf
104.18.19.207301 Moved Permanently 0 B URL HTTP/2 bitslot.io/?stag=148527_63ddbcfb607ae792a8b19789&tracking_link=http%3A%2F%2Fb-partner.xyz%2Fa74c621bf
IP 104.18.19.207:0
GET /?stag=148527_63ddbcfb607ae792a8b19789&tracking_link=http%3A%2F%2Fb-partner.xyz%2Fa74c621bf HTTP/1.1
Host: bitslot.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Sat, 04 Feb 2023 02:03:39 GMT
location: https://www.bitslot.io/?stag=148527_63ddbcfb607ae792a8b19789&tracking_link=http%3A%2F%2Fb-partner.xyz%2Fa74c621bf
cache-control: max-age=3600
expires: Sat, 04 Feb 2023 03:03:39 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 793fd4c4e9c2b4ee-OSL
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-3344694.js?sv=7
54.230.111.39200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-3344694.js?sv=7
IP 54.230.111.39:0
GET /c/hotjar-3344694.js?sv=7 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bc.game/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Sat, 04 Feb 2023 02:03:20 GMT
cache-control: max-age=60
etag: W/4b5f70b02ecb1830f8a3ec194dc578b1
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1TS85-bCJO3G0aiepatlXLV-4JekibspY2ByoXRS4fLYyllP2rSZiw==
age: 46
X-Firefox-Spdy: h2
d1wfowvne3d4em.cloudfront.net/flags/mx.svg
54.230.245.19200 OK 0 B URL HTTP/2 d1wfowvne3d4em.cloudfront.net/flags/mx.svg
IP 54.230.245.19:0
GET /flags/mx.svg HTTP/1.1
Host: d1wfowvne3d4em.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Thu, 05 Jan 2023 15:46:04 GMT
server: AmazonS3
content-encoding: br
date: Fri, 03 Feb 2023 22:18:00 GMT
etag: W/"8ee3aa6a7feaf34c5cc806f645cfd3c6"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: PJoxFs1vvxvXznhk2Ew3N0vtdmDi997yKv8vj5xqf5ZbVFOjWeHPDw==
age: 13546
X-Firefox-Spdy: h2
megapari.com/registration?tag=d_2032927m_25437c_
83.147.204.197200 OK 0 B URL HTTP/2 megapari.com/registration?tag=d_2032927m_25437c_
IP 83.147.204.197:0
ASN #202492 Silverhill Group Holding Ltd
GET /registration?tag=d_2032927m_25437c_ HTTP/1.1
Host: megapari.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:03:40 GMT
content-type: text/html; charset=utf-8
x-frame-options: SAMEORIGIN
set-cookie: SESSION=f1ff76c18476a6b25a17d98a7ae7887b; path=/; secure; HttpOnly; SameSite=Lax
ua=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
_glhf=1675493995; expires=Sat, 04-Feb-2023 03:03:39 GMT; Max-Age=3600; path=/
referral_values=%7B%22type%22%3A%22reflinkid%22%2C%22val%22%3A%22d_2032927m_25437c_%22%2C%22additional%22%3A%7B%22name_tag%22%3A%22tag%22%2C%22ref_partner_id%22%3Anull%2C%22bw_%22%3Anull%7D%7D; expires=Wed, 05-Apr-2023 02:03:39 GMT; Max-Age=5184000; path=/; HttpOnly
is_rtl=1; expires=Sun, 04-Feb-2024 02:03:39 GMT; Max-Age=31536000; path=/; HttpOnly
disallow_sport=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; HttpOnly
visit=1-55a4bded89fa8af5e1adf2a30c679c9a; path=/; HttpOnly
referral_values=%7B%22type%22%3A%22reflinkid%22%2C%22val%22%3A%22d_2032927m_25437c_%22%2C%22additional%22%3A%7B%22name_tag%22%3A%22tag%22%2C%22ref_partner_id%22%3Anull%2C%22bw_%22%3Anull%7D%7D; expires=Wed, 05-Apr-2023 02:03:39 GMT; Max-Age=5184000; path=/; HttpOnly
reflinkid=d_2032927m_25437c_; expires=Sat, 04-Mar-2023 02:03:39 GMT; Max-Age=2419200; path=/; HttpOnly
fast_coupon=true; expires=Sat, 11-Feb-2023 02:03:39 GMT; Max-Age=604800; path=/
v3fr=1; expires=Tue, 07-Feb-2023 02:03:39 GMT; Max-Age=259200; path=/; HttpOnly; SameSite=lax
lng=en; expires=Mon, 06-Mar-2023 02:03:39 GMT; Max-Age=2592000; path=/
flaglng=en; expires=Mon, 06-Mar-2023 02:03:39 GMT; Max-Age=2592000; path=/
auid=U5PMxWPdvPxT4RzDA6cBAg==; path=/; secure; httponly; samesite=lax
vary: Accept-Encoding
content-encoding: br
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
20bet.com/assets/sport/4.svg
104.22.35.208200 OK 0 B URL HTTP/2 20bet.com/assets/sport/4.svg
IP 104.22.35.208:0
GET /assets/sport/4.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Cookie: btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:44 GMT
content-type: image/svg+xml
cf-ray: 793fd4df5f0a95ee-ARN
etag: W/"63dd0051-15d5"
last-modified: Fri, 03 Feb 2023 12:38:41 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
blancoshrimp.com/SB/BR
172.67.146.68301 Moved Permanently 0 B IP 172.67.146.68:0
GET /SB/BR HTTP/1.1
Host: blancoshrimp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
date: Sat, 04 Feb 2023 02:03:38 GMT
content-type: text/html
location: https://blancoshrimp.com/SB/BR/
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4OM8o9330UrT2WKOe8%2B1nhmbgR7vdmyCEMpEmzVeTKJDiCUX6O0tEAo2Wrkx7MK8E5o8k9GIHjomM3y4WBJmvJwC2wCESvL7xVpKuqHvabW3YZgLAMPaMTDYRtrnzweRz5Qx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793fd4bddee80b55-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
record.platincasinoaffiliates.com/_ngIZ_9Igg2BDp78Ph1_jCGNd7ZgqdRLk/2/
104.18.192.136301 Moved Permanently 0 B URL HTTP/2 record.platincasinoaffiliates.com/_ngIZ_9Igg2BDp78Ph1_jCGNd7ZgqdRLk/2/
IP 104.18.192.136:0
GET /_ngIZ_9Igg2BDp78Ph1_jCGNd7ZgqdRLk/2/ HTTP/1.1
Host: record.platincasinoaffiliates.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Sat, 04 Feb 2023 02:03:39 GMT
content-type: text/html; charset=utf-8
location: https://www.platincasino.com/br/lp/sports?ma_token=qXvSp8_m98Bb6cDxZDyqQ2Nd7ZgqdRLk&ma_affiliate_id=2541
cache-control: private, no-cache, must-revalidate, Cache-Control: no-cache
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *
pragma: no-cache
x-powered-by: ZBan
cf-cache-status: BYPASS
set-cookie: VID1=KSxTMFksUyRTLFNAVgpgCg%3D%3D; expires=Sun, 04-Feb-2024 02:03:39 GMT; Max-Age=31536000; path=/; secure; HttpOnly; SameSite=None
ZBan=qXvSp8_m98Bb6cDxZDyqQ2Nd7ZgqdRLk; expires=Sun, 04-Feb-2024 02:03:39 GMT; Max-Age=31536000; path=/; domain=.platincasinoaffiliates.com; secure; HttpOnly; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 793fd4c37d24b50b-OSL
X-Firefox-Spdy: h2
static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
104.16.56.101200 OK 0 B URL HTTP/2 static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
IP 104.16.56.101:0
GET /beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:41 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2022.10.1
last-modified: Fri, 21 Oct 2022 01:56:09 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 793fd4cd1b5afac0-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
platform.20bet.com/api/market-descriptions/get-all-markets/br
104.22.35.208200 OK 0 B URL HTTP/2 platform.20bet.com/api/market-descriptions/get-all-markets/br
IP 104.22.35.208:0
GET /api/market-descriptions/get-all-markets/br HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:42 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fd4d8ac3395ee-ARN
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/2343.88bb85338fd2e975.esm.js
104.22.35.208200 OK 0 B URL HTTP/2 20bet.com/app/2343.88bb85338fd2e975.esm.js
IP 104.22.35.208:0
GET /app/2343.88bb85338fd2e975.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Cookie: btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:43 GMT
content-type: application/javascript
cf-ray: 793fd4daed2195ee-ARN
etag: W/"63dcff7f-4c5"
last-modified: Fri, 03 Feb 2023 12:35:11 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/2786.7bb20f7c68bb8324.esm.js
104.22.35.208200 OK 0 B URL HTTP/2 20bet.com/app/2786.7bb20f7c68bb8324.esm.js
IP 104.22.35.208:0
GET /app/2786.7bb20f7c68bb8324.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Cookie: btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:43 GMT
content-type: application/javascript
cf-ray: 793fd4dafd3195ee-ARN
etag: W/"63dcff68-d0f"
last-modified: Fri, 03 Feb 2023 12:34:48 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/main.ec1fae44db88d4f7.css
104.22.35.208200 OK 0 B URL HTTP/2 20bet.com/app/main.ec1fae44db88d4f7.css
IP 104.22.35.208:0
GET /app/main.ec1fae44db88d4f7.css HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Cookie: btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:40 GMT
content-type: text/css
cf-ray: 793fd4cb5f8b95ee-ARN
etag: W/"63dcff7f-5e6fb"
last-modified: Fri, 03 Feb 2023 12:35:11 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
casino.cur.a8r.games/public/sg.js
104.18.12.198200 OK 0 B URL HTTP/2 casino.cur.a8r.games/public/sg.js
IP 104.18.12.198:0
GET /public/sg.js HTTP/1.1
Host: casino.cur.a8r.games
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:40 GMT
content-type: text/javascript; charset=utf-8
strict-transport-security: max-age=15724800; includeSubDomains
last-modified: Sat, 04 Feb 2023 01:15:04 GMT
cf-cache-status: HIT
age: 2541
expires: Sat, 04 Feb 2023 06:03:40 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
server: cloudflare
cf-ray: 793fd4cd092a1bfe-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.jsdelivr.net/bxslider/4.2.12/jquery.bxslider.min.js
104.16.89.20200 OK 0 B URL HTTP/2 cdn.jsdelivr.net/bxslider/4.2.12/jquery.bxslider.min.js
IP 104.16.89.20:0
GET /bxslider/4.2.12/jquery.bxslider.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.betwarrior.bet/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:39 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
etag: W/"5bf7-z6ox3Bc9Kcb0lQd4zMXLOxqRM5Y"
x-served-by: cache-fra19160-FRA, cache-cdg20755-CDG
x-cache: HIT, HIT
vary: Accept-Encoding
cf-cache-status: HIT
age: 20916619
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=O4EFQmq7LikoVkxMIdcMHB25%2FVtA4ISUgiO8csI5HIoDOSltStbEU9t0BeCG68Lpwd0DywNi4nEDEkZol0MzN84Cd1rZHe0sY2kHlvnJFJkpjnu12zTytah9jtUPLwVNoqk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793fd4c5dedc1bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.seon.io/js/v4/agent.js
54.230.111.40200 OK 0 B URL HTTP/2 cdn.seon.io/js/v4/agent.js
IP 54.230.111.40:0
GET /js/v4/agent.js HTTP/1.1
Host: cdn.seon.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 20 Dec 2022 16:00:08 GMT
x-amz-version-id: oBwuMALhSWNlluJ4Z9BGO_.GELHIAD3H
server: AmazonS3
content-encoding: gzip
date: Sat, 04 Feb 2023 01:11:24 GMT
cache-control: max-age=3600
etag: W/"c34c3067f651e0fea2609171ab7bfec0"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: NFDDmWPuNzeIhyv3MFqHWSDu9EhNYeYPS7q8HmpvRi7fdRbTsL9VRg==
age: 3137
X-Firefox-Spdy: h2
cdn.onesignal.com/sdks/OneSignalSDK.js
104.18.225.52200 OK 0 B URL HTTP/2 cdn.onesignal.com/sdks/OneSignalSDK.js
IP 104.18.225.52:0
GET /sdks/OneSignalSDK.js HTTP/1.1
Host: cdn.onesignal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:40 GMT
content-type: application/javascript
etag: W/"ae63ef8ff03da61fffaa7f165729897a"
access-control-allow-headers: OneSignal-Subscription-Id
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 2872
expires: Tue, 07 Feb 2023 02:03:40 GMT
cache-control: public, max-age=259200
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains
server: cloudflare
cf-ray: 793fd4cd0fb01c16-OSL
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/sport/13.svg
104.22.35.208200 OK 0 B URL HTTP/2 20bet.com/assets/sport/13.svg
IP 104.22.35.208:0
GET /assets/sport/13.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Cookie: btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:44 GMT
content-type: image/svg+xml
cf-ray: 793fd4e2f86595ee-ARN
etag: W/"63dd0051-458"
last-modified: Fri, 03 Feb 2023 12:38:41 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
d1wfowvne3d4em.cloudfront.net/flags/conmebol.svg
54.230.245.19200 OK 0 B URL HTTP/2 d1wfowvne3d4em.cloudfront.net/flags/conmebol.svg
IP 54.230.245.19:0
GET /flags/conmebol.svg HTTP/1.1
Host: d1wfowvne3d4em.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/svg+xml
date: Fri, 03 Feb 2023 16:37:22 GMT
last-modified: Thu, 05 Jan 2023 15:45:59 GMT
etag: W/"0936ae4b3e4d0dc50cc7dea9471b2d85"
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 8NmspJoUmEIVbSknZ9Em0wQxZRiTcPTPLqIMGXSmQi_4w0cvP93uyQ==
age: 33984
X-Firefox-Spdy: h2
partnerbcgame.com/db2e7562c
188.114.97.1302 Found 0 B URL HTTP/2 partnerbcgame.com/db2e7562c
IP 188.114.97.1:0
GET /db2e7562c HTTP/1.1
Host: partnerbcgame.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 04 Feb 2023 02:03:39 GMT
content-type: text/html; charset=utf-8
location: https://bc.game/landing/sports-br?i=4cxse6dr&stag=17409_63ddbcfb607ae792a8b1978d&utm_source=4cxse6dr
set-cookie: 6b86b273ff34fce19d6b=63ddbcfb607ae792a8b1978d; Expires=Mon, 06 Mar 2023 02:03:39 GMT
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
referrer-policy: strict-origin-when-cross-origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Y6xp1TAuZjzAQQOUN8%2FluAd%2Fw%2Fc5rZPiivREsjJ9003Bla2nX2SUcHS0lIoa5zP1lOrP9il3gLOr9OWvTQ0B3NMvBNmIPQ%2BISUjqhXMaX5e%2BGbpkbQ96lAhbxGZzSiNcTTgD4Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793fd4c3cdbbb50c-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
d1wfowvne3d4em.cloudfront.net/flags/es.svg
54.230.245.19200 OK 0 B URL HTTP/2 d1wfowvne3d4em.cloudfront.net/flags/es.svg
IP 54.230.245.19:0
GET /flags/es.svg HTTP/1.1
Host: d1wfowvne3d4em.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Thu, 05 Jan 2023 15:46:00 GMT
server: AmazonS3
content-encoding: br
date: Fri, 03 Feb 2023 21:07:08 GMT
etag: W/"50623e6a761b392b5381ce35e8a77f99"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: sUmkh3KazcqmzJOzUoTqQnAGZHfHzP7-KpH66lsz1ntAj6OAHXE5qA==
age: 17798
X-Firefox-Spdy: h2
20media.world/br/?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
172.67.68.125302 Found 0 B URL HTTP/2 20media.world/br/?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
IP 172.67.68.125:0
GET /br/?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E HTTP/1.1
Host: 20media.world
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 04 Feb 2023 02:03:39 GMT
content-type: text/html; charset=UTF-8
location: https://20bet.com/br/?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hE1K%2BEGuPujtjddN4m9KxXnN2Z%2FJFTYaQTsEtB8C2BDe86%2F%2FBiuMPy%2FsERAy44M8m4AsM6722o2TIDC4IUbZvMb02iW9yyq3lg5XULDRSbcRPqApSyVUNNg3mwsRpak%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793fd4c5bd48b523-OSL
X-Firefox-Spdy: h2
scripts.prdredir.com/scripts/k_bcgame.js
172.64.160.2200 OK 0 B URL HTTP/2 scripts.prdredir.com/scripts/k_bcgame.js
IP 172.64.160.2:0
GET /scripts/k_bcgame.js HTTP/1.1
Host: scripts.prdredir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bc.game
Connection: keep-alive
Referer: https://bc.game/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:42 GMT
content-type: text/javascript; charset=utf-8
status: 200 OK
cache-control: no-cache
access-control-allow-origin: *
x-request-id: c753d4ea-9c6a-4315-860a-c27862d34037
etag: W/"23d1a28488ed4e92499ca48c1d338887"
x-runtime: 0.006074
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZSOAO0hdOoYKay4WPvhTlPbfJQBSN53FXFCzsHgoKe0DMyQZpr6sCj0ccPNOSir4ZdX5cXHFNyUVWOhrVR4O8HBL0Aaxa6iMc1wwqltFVEpkYWNx%2BcHRtP5%2Ba2vttM%2BfkX7C555%2BIg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793fd4d44c0275a1-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
apis.sharechat.com/self-serve-service/v1/external/selfServe/sdk/SG3eKxKT7W/get
104.17.236.9200 OK 0 B URL HTTP/2 apis.sharechat.com/self-serve-service/v1/external/selfServe/sdk/SG3eKxKT7W/get
IP 104.17.236.9:0
GET /self-serve-service/v1/external/selfServe/sdk/SG3eKxKT7W/get HTTP/1.1
Host: apis.sharechat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:44 GMT
content-type: application/json;charset=utf-8
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: https://20bet.com
vary: Origin
etag: W/"1f-6dkZ0odeH7r21LA6dRUG6G17Ebs"
via: 1.1 google
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=iquSb5kbLBqlrLwpQbhN1L2qlx2OjBQl7lh3dRZkHHo-1675476224-0-AY7ng6JROLAlnITr6dHPj8JmpSSWsEk5yKKhcx7kDHRMcRcAYFTdRNdE272cNs0CL9qagn8rorHVJxKlixz74Jw=; path=/; expires=Sat, 04-Feb-23 02:33:44 GMT; domain=.sharechat.com; HttpOnly; Secure; SameSite=None
_cfuvid=xzTcKmyPy6Hdq4ccHPCGrKF22XcxYK.p1RpoPAUDTzA-1675476224764-0-604800000; path=/; domain=.sharechat.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 793fd4e23d911bfa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www.bitslot.io/?stag=148527_63ddbcfb607ae792a8b19789&tracking_link=http%3A%2F%2Fb-partner.xyz%2Fa74c621bf
104.18.19.207403 Forbidden 0 B URL HTTP/2 www.bitslot.io/?stag=148527_63ddbcfb607ae792a8b19789&tracking_link=http%3A%2F%2Fb-partner.xyz%2Fa74c621bf
IP 104.18.19.207:0
GET /?stag=148527_63ddbcfb607ae792a8b19789&tracking_link=http%3A%2F%2Fb-partner.xyz%2Fa74c621bf HTTP/1.1
Host: www.bitslot.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
date: Sat, 04 Feb 2023 02:03:39 GMT
content-type: text/html; charset=UTF-8
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-frame-options: SAMEORIGIN
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 793fd4c57a12b4ee-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
assets.customer.io/assets/track.js
54.230.111.79200 OK 0 B URL HTTP/2 assets.customer.io/assets/track.js
IP 54.230.111.79:0
GET /assets/track.js HTTP/1.1
Host: assets.customer.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 26 Jan 2023 16:12:22 GMT
server: AmazonS3
content-encoding: gzip
date: Fri, 03 Feb 2023 16:12:51 GMT
etag: W/"60648b7089f3133807fa043435dcaf74"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: q1F_HpQKiAIH_MStALwGJzQ4Fh5wlxKd1piyvIs9ioo1brsMtXL-bA==
age: 55532
X-Firefox-Spdy: h2
a2.adform.net/Serving/TrackPoint/?CC=1&pm=2635697&ADFPageName=Landing%20Page_Brazil&ADFdivider=|
185.167.164.43200 OK 0 B URL HTTP/2 a2.adform.net/Serving/TrackPoint/?CC=1&pm=2635697&ADFPageName=Landing%20Page_Brazil&ADFdivider=|
IP 185.167.164.43:0
GET /Serving/TrackPoint/?CC=1&pm=2635697&ADFPageName=Landing%20Page_Brazil&ADFdivider=| HTTP/1.1
Host: a2.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bc.game/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:03:41 GMT
content-type: image/gif
cache-control: no-cache, no-store, must-revalidate, no-transform
pragma: no-cache
expires: -1
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
20bet.com/app/1549.cf9c18bc5ec878d1.esm.js
104.22.35.208200 OK 0 B URL HTTP/2 20bet.com/app/1549.cf9c18bc5ec878d1.esm.js
IP 104.22.35.208:0
GET /app/1549.cf9c18bc5ec878d1.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Cookie: btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:43 GMT
content-type: application/javascript
cf-ray: 793fd4daad0495ee-ARN
etag: W/"63dcff7f-24c"
last-modified: Fri, 03 Feb 2023 12:35:11 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/8459.ac653e03c2d7c942.esm.js
104.22.35.208200 OK 0 B URL HTTP/2 20bet.com/app/8459.ac653e03c2d7c942.esm.js
IP 104.22.35.208:0
GET /app/8459.ac653e03c2d7c942.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Cookie: btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:43 GMT
content-type: application/javascript
cf-ray: 793fd4dafd2995ee-ARN
etag: W/"63dcff74-cac"
last-modified: Fri, 03 Feb 2023 12:35:00 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/6629.5e3ae79726e54510.esm.js
104.22.35.208200 OK 0 B URL HTTP/2 20bet.com/app/6629.5e3ae79726e54510.esm.js
IP 104.22.35.208:0
GET /app/6629.5e3ae79726e54510.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Cookie: btag=668128_1B9F2C98E6D249D4B51F2CE8167B491E
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:42 GMT
content-type: application/javascript
cf-ray: 793fd4d73ba295ee-ARN
etag: W/"63dcff74-860e"
last-modified: Fri, 03 Feb 2023 12:35:00 GMT
set-cookie: is_mobile_device=false
vary: Accept-Encoding
cf-cache-status: BYPASS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/event/list?sportId_eq=1&period=5&limit=10&competitor2Id_neq=&competitor1Id_neq=&oddsExists_eq=1&status_in%5B%5D=0&main=1&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=tips&relations%5B%5D=sportCategories&relations%5B%5D=withMarketsCount&lang=br
104.22.35.208200 OK 0 B URL HTTP/2 platform.20bet.com/api/event/list?sportId_eq=1&period=5&limit=10&competitor2Id_neq=&competitor1Id_neq=&oddsExists_eq=1&status_in%5B%5D=0&main=1&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=tips&relations%5B%5D=sportCategories&relations%5B%5D=withMarketsCount&lang=br
IP 104.22.35.208:0
GET /api/event/list?sportId_eq=1&period=5&limit=10&competitor2Id_neq=&competitor1Id_neq=&oddsExists_eq=1&status_in%5B%5D=0&main=1&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=tips&relations%5B%5D=sportCategories&relations%5B%5D=withMarketsCount&lang=br HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=b58a54d6-f2ae-43d4-8597-a5acca452d5f.1675476256.1.1675476256.1675476256.8661e4bd-df88-4b00-a365-d993db363e51
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:03:45 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793fd4e3789b95ee-ARN
content-encoding: br
X-Firefox-Spdy: h2