Report - az.bkin-8443.space/420.html

Report Overview

Submitted URL
az.bkin-8443.space/420.html
IP
172.67.188.40
ASN
#13335 CLOUDFLARENET
Submitted
2022-09-06 15:58:12
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
8

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com	580028	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	53 kB	54.230.111.125
zz.connextra.com	14652	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	420 B	16 kB	104.85.191.64
ocsp.sectigo.com	487	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	328 B	964 B	104.18.32.68
sentry.softlabs.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	539 B	714 B	172.67.71.55
20media.world	501352	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	536 B	1.2 kB	104.26.3.3
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	5.6 kB	142.250.74.3
cdn.seon.io	212690	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	386 B	553 B	54.230.111.74
aswpsdkus.com	5300	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	397 B	798 B	34.160.158.95
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
track.trackingtraffo.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	485 B	792 B	88.214.195.156
tag.growthbuddy.app	470040	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	2.4 kB	52.19.162.115
tags.feedad.com	26948	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	486 B	475 B	216.239.38.21
cdn.livechatinc.com	6288	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	391 B	26 kB	23.36.79.17
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	905 B	1.5 kB	142.250.74.10
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	406 B	58 kB	142.250.74.72
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.35
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	3.5 kB	93.184.220.29
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	34.210.39.83
platform.20bet.com	784200	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	14 kB	51 kB	104.22.35.208
static.cloudflareinsights.com	1294	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	474 B	393 B	172.64.156.26
az.bkin-8443.space	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.5 kB	15 kB	104.21.81.37
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	59 kB	34.120.237.76
20bet.com	249292	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	13 kB	1.1 MB	104.22.35.208
ocsp.entrust.net	1208	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	656 B	3.9 kB	104.110.10.32
casino.cur.a8r.games	336046	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	393 B	2.7 kB	104.18.42.56
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	439 B	1.2 kB	142.250.74.164
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	522 B	17 kB	142.250.74.163
static.hotjar.com	641	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	402 B	660 B	54.230.111.8
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.49
cdn.onesignal.com	3015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	398 B	496 B	104.18.226.52
api.feedad.com	5296	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	491 B	475 B	216.239.32.21
assets.customer.io	19446	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	394 B	473 B	54.230.111.79
tm.ads.sportradar.com	40177	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	415 B	31 kB	23.36.79.43
api.livechatinc.com	5353	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.1 kB	5.0 kB	23.36.79.17
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.3 kB	6.2 kB	23.36.76.226
ocsp.sca1b.amazontrust.com	1015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	676 B	1.9 kB	54.230.245.110
vars.hotjar.com	1014	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	487 B	1.8 kB	143.204.55.101
a.sportradarserving.com	2372	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	4.6 kB	35.156.185.100
tracker.ads.sportradar.com	41720	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	835 B	43 kB	23.36.79.43

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-06	medium	az.bkin-8443.space/420.html	Malware
2022-09-06	medium	az.bkin-8443.space/420.html	Malware
2022-09-06	medium	c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com/apg-seal.js	Malware
2022-09-06	medium	az.bkin-8443.space/420.html	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (51)

	URL	Size	First Seen	Last Seen
	casino.cur.a8r.games/public/sg.js	8.9 kB	2023-03-07	2023-07-18
Pretty URL casino.cur.a8r.games/public/sg.js IP 104.18.42.56 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:36:10 Last Seen2023-07-18 02:05:55 Times Seen323 Hash 064dcd724b18ec9ed31da07e13b21672 8e2c268fcc2f584a26a28e7b4c90f86f672eca81 fa3224f234fa4b7fffd841c7ca8760bdf3affa2a4d51d7c452b2da06e0144e46 Loading...

	20bet.com/promotions/first-deposit-casino?btag=656524_A3A6890430B74AC4B1D2449B8E4D7414	261 B	2023-03-07	2024-01-08
Pretty URL 20bet.com/promotions/first-deposit-casino?btag=656524_A3A6890430B74AC4B1D2449B8E4D7414 IP 104.22.35.208 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:36:10 Last Seen2024-01-08 10:05:06 Times Seen30 Hash e4db7e68c493e943053e7f16ecdb09bb f163db5bff8db11d4eb06cb990c61a3c854b188d 9696c55049e620563b539f01192ab3ad58c59ba2e3fca21dadee3e312effa0cc Loading...

	ws-cdn001.akamaized.net/7693683943e78a298c36d469e68b47d8/widgetloader	197 kB	2023-03-07	2023-03-07
Pretty URL ws-cdn001.akamaized.net/7693683943e78a298c36d469e68b47d8/widgetloader IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:00:05 Last Seen2023-03-07 13:16:43 Times Seen1 Hash bddb9ced58f351997f7ad0d24a029b20 2e018e38d0245fbf6d2e104cd326c0b9904566d9 b4a55d27429e6088af662c586b74cd42e63978e4421c5c47c573604db6fc8feb Loading...

	20bet.com/promotions/first-deposit-casino?btag=656524_A3A6890430B74AC4B1D2449B8E4D7414	357 B	2023-03-07	2024-04-24
Pretty URL 20bet.com/promotions/first-deposit-casino?btag=656524_A3A6890430B74AC4B1D2449B8E4D7414 IP 104.22.35.208 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:21 Last Seen2024-04-24 07:23:48 Times Seen354 Hash 9ba5e2cc94604bac192e1ff9eafcdded f7469f9e9c81cd6a1038cb4b4d1ce6e62172ecd9 11fe5062dd0a4108233106939370ecf442e97a38e7a78578f7a18e7a0eb3bf0e Loading...

	20bet.com/app/runtime.1db12f9d83191ab4.esm.js	5.2 kB	2023-03-07	2023-03-17
Pretty URL 20bet.com/app/runtime.1db12f9d83191ab4.esm.js IP 104.22.35.208 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:20:52 Last Seen2023-03-17 10:32:42 Times Seen1 Hash 3977395071911552084b15f5d330e0c3 eff6973403c0aa1a8c1038d5b80abb1fcbbc3911 d8d37fd36bb9de7bc96fd87fff2d6983ed6ec31030a6ed9b204e4166776fb279 Loading...

	api.livechatinc.com/v3.3/customer/action/get_dynamic_configuration?license_id=9054575&url=https%3A%2F%2F20bet.com%2Fpromotions%2Ffirst-deposit-casino%3Fbtag%3D656524_A3A6890430B74AC4B1D2449B8E4D7414&channel_type=code&jsonp=__5kjpykeyjka	625 B	2023-03-07	2023-03-07
Pretty URL api.livechatinc.com/v3.3/customer/action/get_dynamic_configuration?license_id=9054575&url=https%3A%2F%2F20bet.com%2Fpromotions%2Ffirst-deposit-casino%3Fbtag%3D656524_A3A6890430B74AC4B1D2449B8E4D7414&channel_type=code&jsonp=__5kjpykeyjka IP 23.36.79.17 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:13:07 Last Seen2023-03-07 13:13:07 Times Seen1 Hash d7173b69918b4427dc3edb6ecb91d5e6 0429b435a10d3decec5741489de34ca97d4a5e49 6dc193f0d729b986cf0193b783e0b8abcfec494792f107f1d51b70901b2f9628 Loading...

	static.cloudflareinsights.com/beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194	14 kB	2023-03-07	2024-04-23
Pretty URL static.cloudflareinsights.com/beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194 IP 172.64.156.26 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-23 06:45:22 Times Seen1630 Hash 19514b1be5ee33b45d32c1fcd4c67ec2 bdeab77b43cafcc638df9d7c26f1aa7f46bf1fd5 fd0a1ac929c11b08e819fe4b0a18c5574012c44f09de8987c6be99a0f055a505 Loading...

	20bet.com/promotions/first-deposit-casino?btag=656524_A3A6890430B74AC4B1D2449B8E4D7414	909 B	2023-03-07	2024-04-20
Pretty URL 20bet.com/promotions/first-deposit-casino?btag=656524_A3A6890430B74AC4B1D2449B8E4D7414 IP 104.22.35.208 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:36:10 Last Seen2024-04-20 19:19:14 Times Seen582 Hash ebcbda0c54d95f97e83353d7c9f02e64 f4133dc966560b8ae25821c5189da1313d304350 8c33076336ee60dcf10b1a876fd1bf0d53c394038bd28e09b5b2bac872941cef Loading...

	unknown	0 B	2023-03-07	2024-04-25
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-25 00:43:51 Times Seen37051432 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	tm.ads.sportradar.com/dist/tag-manager.js?id=STM-AAAACT	222 kB	2023-03-07	2023-03-17
Pretty URL tm.ads.sportradar.com/dist/tag-manager.js?id=STM-AAAACT IP 23.36.79.43 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:33 Last Seen2023-03-17 10:32:42 Times Seen1 Hash da26e3615ab0dc054540e488f0f0c5fd 91aa0332bb03f21e6c958da2c6d7810a4fec81c2 be17df4b72630df7c74cb1c7cf982bfbe822a2ba4d02f6ed20c537a2edd6c780 Loading...

	aswpsdkus.com/notify/v1/ua-sdk.min.js	233 kB	2023-03-07	2023-03-17
Pretty URL aswpsdkus.com/notify/v1/ua-sdk.min.js IP 34.160.158.95 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:06:18 Last Seen2023-03-17 10:32:42 Times Seen1 Hash a88571913dc0292610acfcad20259eed 85e8584be4322ba9326c0284697368dbededd9fb 60d86669bd9ed9711c63f3ae3da3922facc9e47fb76416895727cad3d879f71c Loading...

	onesignal.com/api/v1/sync/bfcbf72d-aeed-4a12-a72f-46bec0e8859b/web?callback=__jp0	5.0 kB	2023-03-07	2023-03-07
Pretty URL onesignal.com/api/v1/sync/bfcbf72d-aeed-4a12-a72f-46bec0e8859b/web?callback=__jp0 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:13:07 Last Seen2023-03-07 13:13:07 Times Seen1 Hash 6b3c075951edd50b7b3fd1178d7df6d7 9eb71be8db0ff542e5598224c219051fb8f69fd6 61507048481ba53ce5fbb51d0435cc8012789b6f8292191aa40330191b74e5d4 Loading...

	vars.hotjar.com/box-1ada912494ba7fc7aca15fcef1c2a7ae.html	2.3 kB	2023-03-07	2023-03-17
Pretty URL vars.hotjar.com/box-1ada912494ba7fc7aca15fcef1c2a7ae.html IP 143.204.55.101 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:30 Last Seen2023-03-17 10:41:48 Times Seen1 Hash 5865f399c24cc57cb46de74ac4a640ff 8381437171dd8dcc5fb411fa75059fb059eb6e0b 82ab863e1e4c6fe101da9839cd7977627f2fd9da5123a21d1cda32a15c9348aa Loading...

	20bet.com/app/polyfills.4743b5f1698ee308.esm.js	95 kB	2023-03-07	2023-03-17
Pretty URL 20bet.com/app/polyfills.4743b5f1698ee308.esm.js IP 104.22.35.208 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:36:10 Last Seen2023-03-17 10:21:37 Times Seen1 Hash 5086e7cbe1be4d381a79adfb71c37b7c 07c7c6953b1d0964da935569dab597cbce6421dc ed7874d1fb849df5a0f12b463f175899eb9e1d2cd7ddc1d1975128eb692aafde Loading...

	api.livechatinc.com/v3.3/customer/action/get_configuration?license_id=9054575&version=298133.12.12.41649.1209.1285.266.16.3.3.3.244&group_id=24&jsonp=__lc_static_config	4.0 kB	2023-03-07	2023-03-17
Pretty URL api.livechatinc.com/v3.3/customer/action/get_configuration?license_id=9054575&version=298133.12.12.41649.1209.1285.266.16.3.3.3.244&group_id=24&jsonp=__lc_static_config IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:36:10 Last Seen2023-03-17 10:21:38 Times Seen1 Hash 1c7823fb03d757f87665532a4bd3626e c3169e0f392b5909ea9594a17408b0460973c609 4c3056c29ddd0d6af279c7d1e1755faeb7a21102c236fda89fd90f36ec64a836 Loading...

	20bet.com/configuration.js	2.3 kB	2023-03-07	2023-03-17
Pretty URL 20bet.com/configuration.js IP 104.22.35.208 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:36:10 Last Seen2023-03-17 10:32:42 Times Seen1 Hash e65cc470dc18cf294c1e1e56476c4c91 b40af4bb34abc6311723e05cf9d61e26a82df75c 7c8c21f7509f1f1414939b3ae59288bd47b624b10bde5011397b03841f6077f5 Loading...

	cdn.onesignal.com/sdks/OneSignalSDK.js	9.1 kB	2023-03-07	2023-04-02
Pretty URL cdn.onesignal.com/sdks/OneSignalSDK.js IP 104.18.226.52 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:42 Last Seen2023-04-02 21:25:26 Times Seen2 Hash ae63ef8ff03da61fffaa7f165729897a 96a95093b2be6ed11dc11b689c728c2ec0dbe19c d12c6745eca14e06d4dea70f4c2bd875769b349770d04300477ab18d0db005d4 Loading...

	20bet.com/promotions/first-deposit-casino?btag=656524_A3A6890430B74AC4B1D2449B8E4D7414	394 B	2023-03-07	2024-04-24
Pretty URL 20bet.com/promotions/first-deposit-casino?btag=656524_A3A6890430B74AC4B1D2449B8E4D7414 IP 104.22.35.208 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:21 Last Seen2024-04-24 07:55:38 Times Seen937 Hash 9d6eb340ce0c810328b8866aa3e14118 b60a1e2489912170edee437799255873d46d0abe 3a84e7f9c0e72f5006c5e32ba4426a0ab0b9bad4c8a2ad4c7e1e4357970483fb Loading...

	track.trackingtraffo.com/pixel/js?auth=q1wumswr&event=visit&uid=undefined&tid={TRANSACTION_ID}&cur=undefined&amount=undefined	492 B	2023-03-07	2023-03-17
Pretty URL track.trackingtraffo.com/pixel/js?auth=q1wumswr&event=visit&uid=undefined&tid={TRANSACTION_ID}&cur=undefined&amount=undefined IP 88.214.195.156 ASN #46636 NATCOWEB Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:21 Last Seen2023-03-17 10:32:42 Times Seen1 Hash 3756cad2f2f81943455eecd9491da8ec 157eae8c2012f0024834d48b1b4d08d461da9d7b bb32cb34f8853772cba14cede98cb887fca7a412811488a79899a8620527cb9b Loading...

	20bet.com/app/326.5536a59ff425b07b.esm.js	618 B	2023-03-07	2023-03-07
Pretty URL 20bet.com/app/326.5536a59ff425b07b.esm.js IP 104.22.35.208 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:36:10 Last Seen2023-03-07 13:13:07 Times Seen1 Hash 05e9adfb576ca42a283f9e3489bcf4fb 7d91725e4a066b970350680495f17c8b02a43c56 24540f55a75afa02880a744576ad9d417e1f6f635cd8168433219d0c4fd00e7c Loading...

	cdn.livechatinc.com/tracking.js	86 kB	2023-03-07	2023-03-17
Pretty URL cdn.livechatinc.com/tracking.js IP 23.36.79.17 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:51 Last Seen2023-03-17 10:41:48 Times Seen1 Hash f4171ed4d15a2019f2f052cb238ce516 3cd4d5f2dea5265cf54ee7dcc9c067eb4a7b941a 838c59e1d7129992116cc2d8885a569a2e9ac5e2f90c79f51f1cc9fa0f0d572a Loading...

	c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com/apg-seal.js	3.6 kB	2023-03-07	2023-03-07
Pretty URL c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com/apg-seal.js IP 54.230.111.125 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:13:07 Last Seen2023-03-07 13:13:07 Times Seen1 Hash a6a8c4377f4bae1b701607cd4bc503aa a0b8f1cf8aecc1f13456252ba2133b3ef0753763 f59daeb9b200ee798a19945f20d41bf673f702b543f28960f77829ae903975f7 Loading...

	www.googletagmanager.com/gtag/js?id=G-J9LNZYMXZE&l=dataLayer&cx=c	212 kB	2023-03-07	2023-03-07
Pretty URL www.googletagmanager.com/gtag/js?id=G-J9LNZYMXZE&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:13:07 Last Seen2023-03-07 13:13:07 Times Seen1 Hash f64e2a9bf6b06dd79750e5b0f4ce3807 ae5313dcb40ec13d595243de45a9d823af33f43b a0cd7093f55e952832dd8e4aaafcca6707c6e73433a884be3ad42c2e3a411a40 Loading...

	www.google.com/recaptcha/api.js?render=6Ley_-AUAAAAABKS0CxGrXn7WcIrUtA7OZDmjlTZ	884 B	2023-03-07	2023-03-17
Pretty URL www.google.com/recaptcha/api.js?render=6Ley_-AUAAAAABKS0CxGrXn7WcIrUtA7OZDmjlTZ IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:20:52 Last Seen2023-03-17 10:32:42 Times Seen1 Hash d2d4f885ecc357ef51d38bef9e16be36 59de5983eaa8cefa4ef92c1b2291eb4f60e92214 6cc8aca721348ce6d42defcfbe59fbf6c238cc0e418ef3b48282d5443735ce08 Loading...

	track.trackingtraffo.com/pixel/js?auth=v3eu8spg&event=visit	422 B	2023-03-07	2023-03-29
Pretty URL track.trackingtraffo.com/pixel/js?auth=v3eu8spg&event=visit IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:36:10 Last Seen2023-03-29 23:39:33 Times Seen8 Hash a84da22ba993cb90a87bbc7196a83564 284dae1447b59756ec476d581d6aad1ddd3218c3 98b0ce9e2f8df8f89c2adf5bcc0cf0eaf3b43c8b7fb26418f8a72179f4e6a440 Loading...

	20bet.com/promotions/first-deposit-casino?btag=656524_A3A6890430B74AC4B1D2449B8E4D7414	2.6 kB	2023-03-07	2023-03-17
Pretty URL 20bet.com/promotions/first-deposit-casino?btag=656524_A3A6890430B74AC4B1D2449B8E4D7414 IP 104.22.35.208 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:20:52 Last Seen2023-03-17 10:21:38 Times Seen1 Hash b4c0a468181b317af1e3f9bb741af76c e5faed67c0670a6fe68571bd6b37f6f7710cd51b 3cb76d7420c20b57e43d9705188dc4cdbc5af1f3648b2484b9e90993742a2cac Loading...

	assets.customer.io/assets/track.js	5.4 kB	2023-03-07	2023-03-17
Pretty URL assets.customer.io/assets/track.js IP 54.230.111.79 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:36:10 Last Seen2023-03-17 10:32:42 Times Seen1 Hash 45a1bcb0150002229030f0ce628bd1a7 242de8dfe6abf85723989701f3d7f9a54de6763e 01f3ef44f91a2c518a7412ebbeb655416b3fbdb78c70a46a7edfc693551f9041 Loading...

	tracker.ads.sportradar.com/dist/tracker.js	40 kB	2023-03-07	2023-04-11
Pretty URL tracker.ads.sportradar.com/dist/tracker.js IP 23.36.79.43 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:36:10 Last Seen2023-04-11 01:45:29 Times Seen285 Hash 5ff82a1c468a89919e9437d33e0402cb 6baf383b129de295b63354f5030a374fbfbacd17 feda67648acd203488c2c74a84f52bef7a05a3154a00cb2fbc94c62d559afb46 Loading...

	tag.growthbuddy.app/tag.js?id=DV-02355017850611493202	5.0 kB	2023-03-07	2023-06-04
Pretty URL tag.growthbuddy.app/tag.js?id=DV-02355017850611493202 IP 52.19.162.115 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:36:10 Last Seen2023-06-04 22:57:56 Times Seen100 Hash 7a9715474602a46c280d5572202b7dad e18b836b7a3055cf6bd8b531e4233b763ee807d5 603abd169fdd8620bb6d8e7870cb963352580b765ccc4e32463ba1c2c2ea267a Loading...

	zz.connextra.com/dcs/tagController/tag/d3ea3fb1f9d4/homepage	46 kB	2023-03-07	2023-05-05
Pretty URL zz.connextra.com/dcs/tagController/tag/d3ea3fb1f9d4/homepage IP 104.85.191.64 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:21 Last Seen2023-05-05 01:17:50 Times Seen103 Hash 43ab4770520b433b5b51ad02003e3858 84e559fb544a4238023575b3975f44e668d59f27 eb551214d228e76a0698d9dcda141a4ca33d5003374e2e233039af78fb9448af Loading...

	20bet.com/app/main.ade23308abf2ae2d.esm.js	1.3 MB	2023-03-07	2023-03-17
Pretty URL 20bet.com/app/main.ade23308abf2ae2d.esm.js IP 104.22.35.208 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:25:22 Last Seen2023-03-17 10:21:38 Times Seen1 Hash 0a7b839682daa86c31246ed957d9cf0f ea6427f770db4b2d3978c94ae7d38d30a5bddccb 1bd924b14fcda3bce64aab482d626f5dea77aae19687c57bffc831ad184e1cd2 Loading...

	20bet.com/app/8416.6a10a2503c8ac29c.esm.js	974 B	2023-03-07	2023-03-17
Pretty URL 20bet.com/app/8416.6a10a2503c8ac29c.esm.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:36:10 Last Seen2023-03-17 10:32:42 Times Seen1 Hash 7d6baf2f72c272a9dbaa7e5beba3b7c3 542aedaa0fc4ea0127cdf91f3921dd8cb6a7aefd d740f690941ea94ed74b92bbb995700c8dca953438590060f52c2202c97ef7b1 Loading...

	20bet.com/app/common.5cf5d5315b886e63.esm.js	24 kB	2023-03-07	2023-03-17
Pretty URL 20bet.com/app/common.5cf5d5315b886e63.esm.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:33 Last Seen2023-03-17 10:32:42 Times Seen1 Hash bd1b4efa47a64ee1535583dc24a39910 aa3de3f0a0ff6cbdc7f208df345e85e9e6c8ce07 084d18f5c9d6043cc37caec03c4a537fdc09774e1f6574b03ca5eaf9caa5bb4f Loading...

	a.sportradarserving.com/pixel?type=js&aid=1121&id=1859	2.3 kB	2023-03-07	2023-03-07
Pretty URL a.sportradarserving.com/pixel?type=js&aid=1121&id=1859 IP 35.156.185.100 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:13:07 Last Seen2023-03-07 13:13:07 Times Seen1 Hash d287c21a503663250c6b208e762643e8 bcc482247b1b95041bac235e5eac95983630f6fb 6ef877bc3d82f242d3480f21614f5e5cafa05c873cdea50c5af99f255321fbcb Loading...

	20bet.com/promotions/first-deposit-casino?btag=656524_A3A6890430B74AC4B1D2449B8E4D7414	341 B	2023-03-07	2023-08-25
Pretty URL 20bet.com/promotions/first-deposit-casino?btag=656524_A3A6890430B74AC4B1D2449B8E4D7414 IP 104.22.35.208 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:36:10 Last Seen2023-08-25 00:20:38 Times Seen167 Hash 040b761a2da3fcb3129f6192467df1a3 e62a8f72e0f227b0ca149fe2c40558d3f2b04645 c9d14dad32baa86af9764aeebc430c57d184536ec4cf97882f7f62af20dda7a3 Loading...

	20bet.com/promotions/first-deposit-casino?btag=656524_A3A6890430B74AC4B1D2449B8E4D7414	504 B	2023-03-07	2023-03-17
Pretty URL 20bet.com/promotions/first-deposit-casino?btag=656524_A3A6890430B74AC4B1D2449B8E4D7414 IP 104.22.35.208 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:36:10 Last Seen2023-03-17 10:21:37 Times Seen1 Hash 5fd69141710b8209b382149af90a2381 e873ceb0ec745e9f90c455a81ba8e93be3c8d6d8 0e6ca31bc6603db757f7cdd0abdc013d839ca0a5c0d9e088a24cfe6a22a59b83 Loading...

	20bet.com/app/6485.83a5f1d2e8af3f67.esm.js	1.0 kB	2023-03-07	2023-03-17
Pretty URL 20bet.com/app/6485.83a5f1d2e8af3f67.esm.js IP 104.22.35.208 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:33 Last Seen2023-03-17 10:32:42 Times Seen1 Hash c24d6bbf136bb91bb05338af8ea50466 443a5e21ebe26b0d600b590c544cadad530cf155 0deb9ff7cdced5386a35a1b4dd98a653c22477eb488fc2d5b2bc4904267470f8 Loading...

	20bet.com/app/5027.6d5d01967898b175.esm.js	239 B	2023-03-07	2023-03-17
Pretty URL 20bet.com/app/5027.6d5d01967898b175.esm.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:36:10 Last Seen2023-03-17 10:32:42 Times Seen1 Hash 41d034d02fe88a8cefe2efbcefd3ff4f 9e3c37e2278d80cd1af7519646b2cdce98d55efe 9b8b323e3758da26829af227c88f64779a50753bd1860c2f039287f44ab2635f Loading...

	az.bkin-8443.space/420.html	3.7 kB	2023-03-07	2023-03-07
Pretty URL az.bkin-8443.space/420.html IP 104.21.81.37 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:13:07 Last Seen2023-03-07 13:13:07 Times Seen1 Hash cc96450617bdd78db69472b0fc2e48ea e55774d5f8f3b971a6ed0773980bbfe585d6f0cd 23da1762018a6c7473f51c2d77ca764497b4fa132700f41a5a891eae10335006 Loading...

	20bet.com/promotions/first-deposit-casino?btag=656524_A3A6890430B74AC4B1D2449B8E4D7414	164 B	2023-03-07	2024-01-27
Pretty URL 20bet.com/promotions/first-deposit-casino?btag=656524_A3A6890430B74AC4B1D2449B8E4D7414 IP 104.22.35.208 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:36:10 Last Seen2024-01-27 18:37:34 Times Seen295 Hash 2ac03ddaeff961cbd154459a18287839 bb9ee89c28b4c36c912dde4f8fa2fac2f8a99f9c 74b11dac21fcd586602fccaec20f81e49f7d37ea5d0b0e5d321a348117e8a026 Loading...

	20bet.com/promotions/first-deposit-casino?btag=656524_A3A6890430B74AC4B1D2449B8E4D7414	322 B	2023-03-07	2024-04-05
Pretty URL 20bet.com/promotions/first-deposit-casino?btag=656524_A3A6890430B74AC4B1D2449B8E4D7414 IP 104.22.35.208 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:36:10 Last Seen2024-04-05 11:44:13 Times Seen320 Hash 2c006f2ad74fc589f2cc22058ad25088 4f85688626887b6cba84a7796794ca2d02a1990c de7aa06859284bdc02d0aa85884105c0854c2391954e2128ef793a2307c88832 Loading...

	20bet.com/promotions/first-deposit-casino?btag=656524_A3A6890430B74AC4B1D2449B8E4D7414	571 B	2023-03-07	2024-04-05
Pretty URL 20bet.com/promotions/first-deposit-casino?btag=656524_A3A6890430B74AC4B1D2449B8E4D7414 IP 104.22.35.208 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:36:10 Last Seen2024-04-05 11:44:13 Times Seen320 Hash 6cb00846b149224cd415638f33656f98 56c63238976d374e971426b826f6d2a5e376fd1e 7356578ff228bad3eea1df59bc2d2ec3e5c99956aae8caeb2abd5f33dfbcdcc9 Loading...

	tracker.ads.sportradar.com/dist//sp-2.14.0.js	100 kB	2023-03-07	2024-04-20
Pretty URL tracker.ads.sportradar.com/dist//sp-2.14.0.js IP 23.36.79.43 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:36:10 Last Seen2024-04-20 11:40:01 Times Seen531 Hash 8dba669b94e3865c9205ef8fd15ee4d1 5dceffefe841258fbee60749b15cbad56a4961b1 50cf303cfaa020fcbedd6ad1bf045a008cbb88dfc792f731f07235dd1ca13599 Loading...

	20bet.com/promotions/first-deposit-casino?btag=656524_A3A6890430B74AC4B1D2449B8E4D7414	748 B	2023-03-07	2023-09-18
Pretty URL 20bet.com/promotions/first-deposit-casino?btag=656524_A3A6890430B74AC4B1D2449B8E4D7414 IP 104.22.35.208 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:36:10 Last Seen2023-09-18 03:20:21 Times Seen244 Hash 9b78a097e8b84289026d8047d6b3eccb cbb5241291df8ed8b615f7ba8cce9d3253fe683d ec9ca9d8d24a65f5a70ef64db6c9798fccef92178df2dfab12406f6656e39c83 Loading...

	20bet.com/promotions/first-deposit-casino?btag=656524_A3A6890430B74AC4B1D2449B8E4D7414	15 kB	2023-03-07	2023-03-07
Pretty URL 20bet.com/promotions/first-deposit-casino?btag=656524_A3A6890430B74AC4B1D2449B8E4D7414 IP 104.22.35.208 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:20:52 Last Seen2023-03-07 13:13:07 Times Seen1 Hash e73e56ee6e16693c878450323fa62536 567dc1f8ef37470185858e2feec59f72a4521d15 0a9bd7a2ea3c7cb2980acf1d88984aea8e1682c135d8e3da5e1ec0e5bdd056b5 Loading...

	20bet.com/promotions/first-deposit-casino?btag=656524_A3A6890430B74AC4B1D2449B8E4D7414	390 B	2023-03-07	2024-02-09
Pretty URL 20bet.com/promotions/first-deposit-casino?btag=656524_A3A6890430B74AC4B1D2449B8E4D7414 IP 104.22.35.208 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:36:10 Last Seen2024-02-09 11:01:23 Times Seen22 Hash 3dc4bca10e399d200fd6a527e8c59ff8 633b14fdbe5b80e375251e1b09b0585b646d8d19 69cb1bfcbb3d15541e21673e493cad2adabca9eb7bc43ba65352a58b015ae5ca Loading...

	20bet.com/promotions/first-deposit-casino?btag=656524_A3A6890430B74AC4B1D2449B8E4D7414	426 B	2023-03-07	2024-04-24
Pretty URL 20bet.com/promotions/first-deposit-casino?btag=656524_A3A6890430B74AC4B1D2449B8E4D7414 IP 104.22.35.208 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:36:10 Last Seen2024-04-24 07:55:38 Times Seen695 Hash 6511fa3f7e30db934ae70cdf5eb1bffb 06027e62a2071ae9164f835ab1f4e79816127797 a1155914c10f25434890e72a446669748c3c4a2569fbc39e6625f4dcae502dc7 Loading...

	20bet.com/static/js/app-692ed3cf06.js	1.2 kB	2023-03-07	2024-01-08
Pretty URL 20bet.com/static/js/app-692ed3cf06.js IP 104.22.35.208 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:36:10 Last Seen2024-01-08 10:05:07 Times Seen151 Hash 692ed3cf065b5346c90fc80eb60d4dc2 d95b093d59687c6d1a50ba511b1149aa4a4aa0f5 413c9b49b6509fcca0f26dfe96be88b0d3bb9a7f5efd51095500b382ba126369 Loading...

	static.hotjar.com/c/hotjar-2053477.js?sv=6	4.7 kB	2023-03-07	2023-03-07
Pretty URL static.hotjar.com/c/hotjar-2053477.js?sv=6 IP 54.230.111.8 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:13:07 Last Seen2023-03-07 13:13:07 Times Seen1 Hash 826d9f4ca6910b66bd7d0f24b0dfac6c 86061e8cdc3acf5bf3ccae341ff8c8c341854edb a6dc8f26e6339d8f9980bfdb18cb8edef06af942e265b702f4c98701c374ac39 Loading...

	20bet.com/promotions/first-deposit-casino?btag=656524_A3A6890430B74AC4B1D2449B8E4D7414	423 B	2023-03-07	2024-04-24
Pretty URL 20bet.com/promotions/first-deposit-casino?btag=656524_A3A6890430B74AC4B1D2449B8E4D7414 IP 104.22.35.208 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:21 Last Seen2024-04-24 07:23:48 Times Seen356 Hash 98b4892766a0f7c68156bef4ed5a21e6 58e7da61395ebef335feec02cea6a36a2b52d5e4 0d0be9c5209b8bbb628fda457cfe7bcc9062fc8b1aac37597ddd3dbea2fbf5c6 Loading...

	api.livechatinc.com/v3.3/customer/action/get_localization?license_id=9054575&version=ff93808ef52c6dd040640c4853b854bd&language=en&group_id=24&jsonp=__lc_localization	11 kB	2023-03-07	2023-03-17
Pretty URL api.livechatinc.com/v3.3/customer/action/get_localization?license_id=9054575&version=ff93808ef52c6dd040640c4853b854bd&language=en&group_id=24&jsonp=__lc_localization IP 23.36.79.17 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:37 Last Seen2023-03-17 12:40:04 Times Seen1 Hash 6aa4da4fab320d7e305a4a2c6d050eb5 a7ca2fa80784effaa747d93829960e2c2baf514d 4dbfef10d4d6893abb724637f9d54d1db71f14d858bd96f4286acbe52828182f Loading...

HTTP Transactions (110)

URL IP Response Size

az.bkin-8443.space/420.html

104.21.81.37

301 Moved Permanently

0 B

URL HTTP/1.1
az.bkin-8443.space/420.html
IP
104.21.81.37:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /420.html HTTP/1.1
Host: az.bkin-8443.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Sep 2022 15:58:01 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Tue, 06 Sep 2022 16:58:01 GMT
Location: https://az.bkin-8443.space/420.html
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2ujI%2BDh75PAlhBz7ws7dfbkJam5qGVO84ReOOzKp2UIo9q1OtLjZw1hUreHPHXMUnA%2Fs%2F3fiX%2Bn0Rc7PqnpUeEv3%2BmgDrUYG9wDAQu%2F2ApvBtzJoi6U%2FhB9yjrdVo9uELmAUhTU%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7468675c4b85b51e-OSL
alt-svc: h2=":443"; ma=60

firefox.settings.services.mozilla.com/v1/

143.204.55.35

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.35:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 06 Sep 2022 15:04:19 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 48yG7V-Mpb0gJNANxDpQ3PMFuSZqYoY4UiA_kavx4uarM7du6EOpew==
Age: 3222

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b9adda4796e3cda8d92753c46964621c
5f1eba1f6085b23dea088a91fe6f8947172f9f62
a0577a8fcfa81b3f86d99566eb4429655b93a238ffd1a3752bc9aae3d969deea

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A0577A8FCFA81B3F86D99566EB4429655B93A238FFD1A3752BC9AAE3D969DEEA"
Last-Modified: Tue, 06 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7819
Expires: Tue, 06 Sep 2022 18:08:20 GMT
Date: Tue, 06 Sep 2022 15:58:01 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain

143.204.55.49

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP
143.204.55.49:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 06 Sep 2022 01:15:18 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: T5ie0I3J5SBKxU1MAFy_vJxZas6c-RCcxvKtegpP4GwHKsyAx0a7hQ==
age: 52964
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 15:58:01 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.35

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.35:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Tue, 06 Sep 2022 15:38:18 GMT
Expires: Tue, 06 Sep 2022 16:34:52 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Eu_nk1DswsHwK_N7jOTy1jMv74bRYZVQwMQkE63oTI5kDM8t8EmXlA==
Age: 1184

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
e8952752ad4a452a575522a7eb737217
c5554fa2af05d7a7117032b0f99352de08988346
8c182bed7bbd843774a2136823b30a4cb707e2a5386f71d01640aa3558888bf7

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 531
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 15:58:02 GMT
Last-Modified: Tue, 06 Sep 2022 15:49:11 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

34.210.39.83

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.210.39.83:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: HzR1U119ylqffRrfNCRUNw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: EpJfT59cnuwlyw3CWkfojqEhlV0=

az.bkin-8443.space/420.html

104.21.81.37

302 Found

12 kB

URL HTTP/2
az.bkin-8443.space/420.html
IP
104.21.81.37:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4018)
Size
12 kB (12150 bytes)
Hash
4dd5714064e55e62d7ed162f55e2864f
8f1beb75872ec6e6ae5df3ca6c3c8accfcb23b3f
8a92ad2039034f12ae512ba4fe22949bc529322a2cfa6f11087cdeb26b8dc15e

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /420.html HTTP/1.1
Host: az.bkin-8443.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: antibot_uid=1af7b4916f9d7d4a10dd64c5c9ab7e8e; antibot_country=NO; antibot_lang=en; antibot_ptr=s919042154.blix.com; antibot_a9531063f4d6b0aa370a30fbb0eda4aa=d5612d160ee76d4cce5f22e8a8baa5e8; lastcid=1662479881.8725
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Tue, 06 Sep 2022 15:58:03 GMT
content-type: text/html; charset=UTF-8
location: https://promo.20bet.partners/redirect.aspx?pid=11600&bid=1971&lpid=293
set-cookie: antibot_hits=2; expires=Wed, 07-Sep-2022 15:58:03 GMT; Max-Age=86400; path=/
antibot_unique_20220906=1; expires=Wed, 07-Sep-2022 15:58:03 GMT; Max-Age=86400; path=/
lastcid=0; expires=Tue, 06-Sep-2022 15:56:23 GMT; Max-Age=0; path=/
4ea436624a0b3b625b833141b837205a=0; expires=Tue, 06-Sep-2022 16:58:03 GMT; Max-Age=3600; path=/
expires: Fri, 16 Sep 2022 15:58:03 GMT
last-modified: Tue, 06 Sep 2022 15:58:03 GMT
cache-control: public, max-age=864000
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Drz3213IwWSaj%2F2bOssI4RwNCK1km5fxiOuwnsC8GMC5DU5MeuyIHqD98wzUcbMJOaHKn3MYCDLcF%2FmLgsQvvi6xaJ2PGSNRGjtdBAoFmOfBKNryOTaTNJAzXMhrgXJ8XlA%2BQb8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 746867653dca0b31-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
40441d063c1cbf0b3ee6b587016a4626
346307f663a858fc0493312e3ad1fa0e1d9ae694
8ac57a9b86c04b4dff945c8b5b32b6284cdfa7c5da4b21278c73407ebaf62354

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1637
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 15:58:03 GMT
Last-Modified: Tue, 06 Sep 2022 15:30:46 GMT
Server: ECS (amb/6BB8)
X-Cache: HIT
Content-Length: 279

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2717
Expires: Tue, 06 Sep 2022 16:43:21 GMT
Date: Tue, 06 Sep 2022 15:58:04 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2717
Expires: Tue, 06 Sep 2022 16:43:21 GMT
Date: Tue, 06 Sep 2022 15:58:04 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2717
Expires: Tue, 06 Sep 2022 16:43:21 GMT
Date: Tue, 06 Sep 2022 15:58:04 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2717
Expires: Tue, 06 Sep 2022 16:43:21 GMT
Date: Tue, 06 Sep 2022 15:58:04 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2717
Expires: Tue, 06 Sep 2022 16:43:21 GMT
Date: Tue, 06 Sep 2022 15:58:04 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed40d152-6303-4f00-ad80-054a81ea5425.webp

34.120.237.76

200 OK

6.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed40d152-6303-4f00-ad80-054a81ea5425.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.5 kB (6482 bytes)
Hash
0efc32eccbf76ac0d89f324d09a7fd1f
f8589eb3907582137d8b9373af745d80eddbf1bb
ee0f5e56c97e50e1c20801ad0a5379982feef16a11137f784f404d14e9c65824

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed40d152-6303-4f00-ad80-054a81ea5425.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6482
x-amzn-requestid: 5e5b342b-0224-4916-8656-237b4c90ae66
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAX-5FaYIAMFzjw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166d2b-412f897b451130af70026eab;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:42:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: kD_wcIHwmUDV9M9Pl2NtUwRw0CElnHhX6NGZ5PQlnchvdxpLAZhm0w==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:46:42 GMT
etag: "f8589eb3907582137d8b9373af745d80eddbf1bb"
content-type: image/jpeg
age: 65482
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79118911-9148-4daf-8809-5e20fe16c9eb.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11650 bytes)
Hash
21826f85e6f926272f6a770645040b4a
21aad3ec92f4e1a353601d0c5ab8b60f44ea418f
adb23b43d5f65606cfb5fc69c3d410f10df39575f69abc0d786cfbe564819cae

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79118911-9148-4daf-8809-5e20fe16c9eb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11650
x-amzn-requestid: 83dd95be-9176-4798-94f9-c538bfcc8c49
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YBJxTE0GIAMF7SA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6316bcd4-4d5b7d8b28221944331a0f14;Sampled=0
x-amzn-remapped-date: Tue, 06 Sep 2022 03:21:57 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: mFE-xzX9i8VCcgNNoNFHCJ6BRlFkqOg9VxEYo9v7QNHa2Yyjbb9ytQ==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 06:56:07 GMT
age: 32517
etag: "21aad3ec92f4e1a353601d0c5ab8b60f44ea418f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1756524-f0d1-4149-aa44-603b827f87d4.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.7 kB (6656 bytes)
Hash
983e705542fa78b4d5c876e0c1eada7e
5fc951e5236edd282d4975853ca35dab2e55fb17
fa6e478fc213f6cb6c9f33c96c51105262c857bfe313b3d310755be30b1feeb3

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1756524-f0d1-4149-aa44-603b827f87d4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6656
x-amzn-requestid: 2703eaf4-1a5a-41a6-859b-47255865efb0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAX-3F2ZIAMFpLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166d2b-6df026de5a9230ed429d08c1;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:42:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: FIIvB2jeQ_PBDzi8XRN0jnNxze3OwDbz8TBaIcadRvmQd2EFhCwX7Q==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:44:33 GMT
age: 65611
etag: "5fc951e5236edd282d4975853ca35dab2e55fb17"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf271bbd-cebf-41d8-a0c3-8f16d4423a79.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.2 kB (7152 bytes)
Hash
8ce50dfa23e7f34ff68cc6426c2823f7
b1685694999272feb4d9fc39296418cd95480678
4df89827b1b34bb577f28f281ed85067a2e34dd48923b9bae1561e81f67be49b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf271bbd-cebf-41d8-a0c3-8f16d4423a79.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7152
x-amzn-requestid: 2571ff54-e2f8-4072-8a26-3d0dd4cd3523
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAWsfHz_IAMFaXQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166b1c-6a598849314cdc433f9f82f7;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:33:16 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: I6xmRiAaxHPKpBlCPaRWoMiISlrXRrltO57N3NayiuIvv3gCWTWCZQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:53:35 GMT
age: 65069
etag: "b1685694999272feb4d9fc39296418cd95480678"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc4b02d0f-9da0-42dc-a234-02e974e7d286.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.9 kB (7855 bytes)
Hash
8c23179b2131543088771e3fa84ff231
ae50ae4aecd962b698c19f2863857b51cea7fcec
660900ca69b1787a734c1dbe3d6b9b19656912b4bc4715964c4325edff57f008

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc4b02d0f-9da0-42dc-a234-02e974e7d286.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7855
x-amzn-requestid: d7c8054c-d7d3-4b76-815d-36c3a2e1f6a4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAYn6FwzoAMF40g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166e32-3ededbf27f83503978e0d775;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:46:26 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: QFEoJOq9eyhQH3KTlAB_ctOvGWRfAkPMHiZUa34wae07KaezXFodBg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:57:14 GMT
age: 64850
etag: "ae50ae4aecd962b698c19f2863857b51cea7fcec"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F106059e1-95ed-4ffb-b6d2-7b4f160333ed.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (12683 bytes)
Hash
ec466c0d472e43c11d36bf6fce068205
720d3624a76d060b8e2699e9aa7a320e3efd4878
5553fc24713aae808f5ab81671551b0ae719435f3ced9f25df97d8edf6bfe86f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F106059e1-95ed-4ffb-b6d2-7b4f160333ed.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12683
x-amzn-requestid: 6127e5b6-72f6-40df-b400-41a1f147f6da
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xz8XmEe0IAMFQDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63117430-2b27a2683d2d320172cef32e;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 03:10:40 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Mj_IT5g7hGu2AunKK7mvierv5BQ8cAxhnbGaUNsL6hRNu6MRAzIBDw==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 04:31:02 GMT
age: 41222
etag: "720d3624a76d060b8e2699e9aa7a320e3efd4878"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
77bf26dcec732e368e68222be04965a7
fde950716f6fd21cb3b9e73b7237c583d7916f1e
52e1d130790757ebe0228d95da402996147dd2cfd581fc1d071b90875a14f955

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6124
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 15:58:04 GMT
Last-Modified: Tue, 06 Sep 2022 14:16:00 GMT
Server: ECS (amb/6B7A)
X-Cache: HIT
Content-Length: 471

20media.world/promotions/first-deposit-casino?btag=656524_A3A6890430B74AC4B1D2449B8E4D7414

104.26.3.3

302 Found

117 B

URL HTTP/2
20media.world/promotions/first-deposit-casino?btag=656524_A3A6890430B74AC4B1D2449B8E4D7414
IP
104.26.3.3:0
ASN
#13335 CLOUDFLARENET

File type
HTML document, ASCII text
Size
117 B (117 bytes)
Hash
dc15e3b4919c03f24473a2c8be0040b7
3abdf22691277f7ff65d5a2f405a73628fcf42c6
7b079fd6b36c2d852b4cd2f379ce020bd1189c1bcd61e1d835f41b96019b5c03

HTTP Headers

GET /promotions/first-deposit-casino?btag=656524_A3A6890430B74AC4B1D2449B8E4D7414 HTTP/1.1
Host: 20media.world
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Tue, 06 Sep 2022 15:58:04 GMT
content-type: text/html; charset=UTF-8
location: https://app.adjust.com/js8txs6?btag=656524_A3A6890430B74AC4B1D2449B8E4D7414&label=656524_A3A6890430B74AC4B1D2449B8E4D7414&redirect=https%3A%2F%2F20bet.com%2Fpromotions%2Ffirst-deposit-casino%3Fbtag%3D656524_A3A6890430B74AC4B1D2449B8E4D7414
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rnVVbnofHGzq%2FYUWMJINF4d036OsLFHyZLlrq37%2F%2BfvORPOUoq1u0dWtgmQhWeeou5yOb5vrYJanl4BfTAuYIwkNMSEZ2hDLbe4G3DbRPGFQ4Mp9VZWPecUDe7laJtU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7468676afad4b503-OSL
X-Firefox-Spdy: h2

20bet.com/assets/loader.gif

104.22.35.208

200 OK

403 kB

URL HTTP/2
20bet.com/assets/loader.gif
IP
104.22.35.208:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 400 x 400\012- data
Size
403 kB (402680 bytes)
Hash
8529d23ed344b353f7b89b4c90b1aa82
5433dc4344e9fc4f3b516febe6c9df5e9fec1657
d8a42ccb018c64bda5b2cac2f522c7895ce66055455e9eb9a0425dd7cfe18771

HTTP Headers

GET /assets/loader.gif HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/promotions/first-deposit-casino?btag=656524_A3A6890430B74AC4B1D2449B8E4D7414
Cookie: preferred-language=en; btag=656524_A3A6890430B74AC4B1D2449B8E4D7414
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 06 Sep 2022 15:58:07 GMT
content-type: image/gif
content-length: 402680
last-modified: Fri, 02 Sep 2022 09:36:59 GMT
etag: "6311cebb-624f8"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6861
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74686783dc479932-ARN
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
c0498832f97967e1fbaa64eba7c65094
2dcaaa99759c7b3279d75f4f934bf05a1c4ca8e7
63621ee746f1a80c3c6167ca190e5008e3e79db0bc8f0e5cb0e5dccc11ceb822

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 15:58:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
c0498832f97967e1fbaa64eba7c65094
2dcaaa99759c7b3279d75f4f934bf05a1c4ca8e7
63621ee746f1a80c3c6167ca190e5008e3e79db0bc8f0e5cb0e5dccc11ceb822

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 15:58:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
c0498832f97967e1fbaa64eba7c65094
2dcaaa99759c7b3279d75f4f934bf05a1c4ca8e7
63621ee746f1a80c3c6167ca190e5008e3e79db0bc8f0e5cb0e5dccc11ceb822

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 15:58:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

20bet.com/static/js/app-692ed3cf06.js

104.22.35.208

200 OK

501 B

URL HTTP/2
20bet.com/static/js/app-692ed3cf06.js
IP
104.22.35.208:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (1212)
Size
501 B (501 bytes)
Hash
f49ff09b49ce8d70fdf172806f8cf1f0
bb48a7ca6ce533f7b37a918908c850cfb82e4856
b36b787299a38fa0ccef9ed68a8a1fd37f638f3730474c81d347acbd783b2ee3

HTTP Headers

GET /static/js/app-692ed3cf06.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/promotions/first-deposit-casino?btag=656524_A3A6890430B74AC4B1D2449B8E4D7414
Cookie: preferred-language=en; btag=656524_A3A6890430B74AC4B1D2449B8E4D7414
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 06 Sep 2022 15:58:07 GMT
content-type: application/javascript
last-modified: Wed, 31 Aug 2022 06:07:00 GMT
etag: W/"630efa84-4bd"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1562
vary: Accept-Encoding
server: cloudflare
cf-ray: 74686783dc4b9932-ARN
content-encoding: br
X-Firefox-Spdy: h2

c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com/sealassets/8e55c698b278ff1ef4c833e53901a803-20bet.com-f5faf6d82a7be2057527120fa49724355adf2a8c973918d432fa7b70160234e717ac6b01358f27fc0aff52358b79fb11-c3ByaXRlLXNlYWwucG5n?status=valid

54.230.111.125

200 OK

49 kB

URL HTTP/2
c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com/sealassets/8e55c698b278ff1ef4c833e53901a803-20bet.com-f5faf6d82a7be2057527120fa49724355adf2a8c973918d432fa7b70160234e717ac6b01358f27fc0aff52358b79fb11-c3ByaXRlLXNlYWwucG5n?status=valid
IP
54.230.111.125:0
ASN
#16509 AMAZON-02

File type
PNG image data, 512 x 256, 8-bit/color RGBA, non-interlaced\012- data
Size
49 kB (49397 bytes)
Hash
8ef6782be55b8ce8f5b132d28af8e0d0
cb99df77f4865d9c2f287539a5ca474cf76f7d09
d614922fde9604f8899e47f3cc3d69bf952312b996f7cf1421163996710850fa

HTTP Headers

GET /sealassets/8e55c698b278ff1ef4c833e53901a803-20bet.com-f5faf6d82a7be2057527120fa49724355adf2a8c973918d432fa7b70160234e717ac6b01358f27fc0aff52358b79fb11-c3ByaXRlLXNlYWwucG5n?status=valid HTTP/1.1
Host: c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 49397
x-powered-by: Express
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 74685eafac589250-FRA
date: Tue, 06 Sep 2022 15:57:06 GMT
cache-control: max-age=1200
etag: W/"c0f5-y5nfd/SGXZwvKHU5pcpHTPdvfQk"
x-cache: Hit from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: dP54aQ-xUG9chHmnHvjbFajkwC0vq-413VdVL8ohZ1cVbG4Pt8MO9Q==
age: 62
X-Firefox-Spdy: h2

tm.ads.sportradar.com/dist/tag-manager.js?id=STM-AAAACT

23.36.79.43

200 OK

31 kB

URL HTTP/2
tm.ads.sportradar.com/dist/tag-manager.js?id=STM-AAAACT
IP
23.36.79.43:0
ASN
#20940 Akamai International B.V.

File type
Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
Size
31 kB (30881 bytes)
Hash
0251bbcc02c98cc8347f19baaccacf83
fd1873bc9c359f3659d575973d7c4ea83d63b987
3f16f0d1896e5e10748df413a3344fee95579c7e6b77378a34e6008af04576bd

HTTP Headers

GET /dist/tag-manager.js?id=STM-AAAACT HTTP/1.1
Host: tm.ads.sportradar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
apigw-requestid: YC0hOhkfDoEEMFA=
vary: Accept-Encoding
content-encoding: gzip
content-length: 30881
date: Tue, 06 Sep 2022 15:58:08 GMT
cache-control: max-age=900, public
x-n: S
X-Firefox-Spdy: h2

20bet.com/app/styles.666b55852577885a.css

104.22.35.208

200 OK

29 kB

URL HTTP/2
20bet.com/app/styles.666b55852577885a.css
IP
104.22.35.208:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65536), with no line terminators
Size
29 kB (29223 bytes)
Hash
8b921fee3a962169be2541040a200683
9ab464053230188f4cf0ea7f614fb8f03867ef2b
24e25dc52f162e0401f41e9853943dd648c41ac500b2920fdf9327b94b6b8e00

HTTP Headers

GET /app/styles.666b55852577885a.css HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/promotions/first-deposit-casino?btag=656524_A3A6890430B74AC4B1D2449B8E4D7414
Cookie: preferred-language=en; btag=656524_A3A6890430B74AC4B1D2449B8E4D7414
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 06 Sep 2022 15:58:08 GMT
content-type: text/css
last-modified: Fri, 02 Sep 2022 09:36:21 GMT
vary: Accept-Encoding
etag: W/"6311ce95-21625"
cache-control: max-age=14400
cf-cache-status: EXPIRED
server: cloudflare
cf-ray: 74686783cc329932-ARN
content-encoding: br
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
eb53024bbd41c1d8f88fa7b9becb704a
c87f5ac53cff6e3436c15551f8092f1e0215cb79
f2f589c71f9426ead1c60e4707982aa501b785a6040c95214db905a5cff8a777

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 15:58:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
a89d52065930f3b201a027fd7cd1d0fe
262e5b31bdb345ce3a6e926e1c0b6184f7628ea8
2bba2fdcad4bda371c8263c81d81a9063e4541df1a653208eb41234ed1d2bfcf

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4655
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 15:58:08 GMT
Last-Modified: Tue, 06 Sep 2022 14:40:33 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471

20bet.com/configuration.js

104.22.35.208

200 OK

17 kB

URL HTTP/2
20bet.com/configuration.js
IP
104.22.35.208:0
ASN
#13335 CLOUDFLARENET

File type
JSON data\012- , ASCII text, with no line terminators
Size
17 kB (16858 bytes)
Hash
8b477a8e2ae12e5692c29b695ae2afd4
ab3cf91066dddeb4eab4094eef584894da534330
5f0076602c11e019ea001a3f92d7765d3034d6ada72bb560886fe5713fad8e40

HTTP Headers

GET /configuration.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/promotions/first-deposit-casino?btag=656524_A3A6890430B74AC4B1D2449B8E4D7414
Cookie: preferred-language=en; btag=656524_A3A6890430B74AC4B1D2449B8E4D7414
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 06 Sep 2022 15:58:08 GMT
content-type: text/javascript; charset=UTF-8
x-powered-by: PHP/7.4.29
cache-control: max-age=0, must-revalidate, private
expires: Tue, 06 Sep 2022 15:58:08 GMT
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: BYPASS
vary: Accept-Encoding
server: cloudflare
cf-ray: 74686783cc3c9932-ARN
content-encoding: br
X-Firefox-Spdy: h2

www.googletagmanager.com/gtm.js?id=GTM-55HKBB7

142.250.74.72

200 OK

57 kB

URL HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-55HKBB7
IP
142.250.74.72:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (23120)
Size
57 kB (57107 bytes)
Hash
31ea907382075a4db3422761a85dbaef
3e066c9f921debf33dd408e97c1528c25435840d
fe962d859642ace81b9a69134772e2f7c184aa43a09cfd9c2044bcb527facdeb

HTTP Headers

GET /gtm.js?id=GTM-55HKBB7 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 06 Sep 2022 15:58:08 GMT
expires: Tue, 06 Sep 2022 15:58:08 GMT
cache-control: private, max-age=900
last-modified: Tue, 06 Sep 2022 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 57107
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
a89d52065930f3b201a027fd7cd1d0fe
262e5b31bdb345ce3a6e926e1c0b6184f7628ea8
2bba2fdcad4bda371c8263c81d81a9063e4541df1a653208eb41234ed1d2bfcf

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4655
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 15:58:08 GMT
Last-Modified: Tue, 06 Sep 2022 14:40:33 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471

20bet.com/assets/favicon.png

104.22.35.208

200 OK

9.3 kB

URL HTTP/2
20bet.com/assets/favicon.png
IP
104.22.35.208:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 129 x 128, 8-bit/color RGBA, non-interlaced\012- data
Size
9.3 kB (9320 bytes)
Hash
76d3202979d99d33720b7b189cf8bc23
81cba7c933e4e332ea31208c388307d49bf1c1c8
7731ec4a0f05418aaf44b5d3b8010c5470303578fed1331bc18089fc802b2a96

HTTP Headers

GET /assets/favicon.png HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/promotions/first-deposit-casino?btag=656524_A3A6890430B74AC4B1D2449B8E4D7414
Cookie: preferred-language=en; btag=656524_A3A6890430B74AC4B1D2449B8E4D7414
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 06 Sep 2022 15:58:08 GMT
content-type: image/png
content-length: 9320
last-modified: Fri, 02 Sep 2022 09:37:22 GMT
etag: "6311ced2-2468"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6698
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74686786788d9932-ARN
X-Firefox-Spdy: h2

20bet.com/assets/favicon.png

104.22.35.208

200 OK

9.3 kB

URL HTTP/2
20bet.com/assets/favicon.png
IP
104.22.35.208:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 129 x 128, 8-bit/color RGBA, non-interlaced\012- data
Size
9.3 kB (9320 bytes)
Hash
76d3202979d99d33720b7b189cf8bc23
81cba7c933e4e332ea31208c388307d49bf1c1c8
7731ec4a0f05418aaf44b5d3b8010c5470303578fed1331bc18089fc802b2a96

HTTP Headers

GET /assets/favicon.png HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/promotions/first-deposit-casino?btag=656524_A3A6890430B74AC4B1D2449B8E4D7414
Cookie: preferred-language=en; btag=656524_A3A6890430B74AC4B1D2449B8E4D7414
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 06 Sep 2022 15:58:08 GMT
content-type: image/png
content-length: 9320
last-modified: Fri, 02 Sep 2022 09:37:22 GMT
etag: "6311ced2-2468"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6698
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74686786788a9932-ARN
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
62c739a1335c5cf0fd4e783db6cdf14b
4f4a2acf32a7b7d8d86f7d0b037cdd16d59704ff
de1d42a2f47b8a7f1fed1880f1b485f63a5e07ede87fee3194cabeab056cf6f9

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 15:58:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com/apg-seal.js

54.230.111.125

200 OK

1.8 kB

URL HTTP/2
c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com/apg-seal.js
IP
54.230.111.125:0
ASN
#16509 AMAZON-02

File type
data
Size
1.8 kB (1840 bytes)
Hash
522a60c3527c5e4b121bdcd6a68de451
60cbb386918789fe622d566b76b28dad38a8f316
6cfc20b4ce44fd361e14ac02b05cca9e38ff32dc90238fa8986d5e5ca10824c5

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /apg-seal.js HTTP/1.1
Host: c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
date: Tue, 06 Sep 2022 15:57:06 GMT
x-powered-by: Express
cache-control: max-age=300
etag: W/"e0f-oLjxz4rswfE0ViUrohM7PvB1N2M"
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 746866045fd49250-FRA
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1t9ZIM8Q6xnGwc9ZSuKUiVSW-jnAElDy4xTd1xJ_c0OmOWkNedWYXQ==
age: 62
X-Firefox-Spdy: h2

tracker.ads.sportradar.com/dist/tracker.js

23.36.79.43

200 OK

12 kB

URL HTTP/2
tracker.ads.sportradar.com/dist/tracker.js
IP
23.36.79.43:0
ASN
#20940 Akamai International B.V.

File type
Unicode text, UTF-8 text, with very long lines (34755)
Size
12 kB (11553 bytes)
Hash
b34b13d85152f71b7fd15289c78c0583
0bb20191b022bbd0e75f2bbce7f6332886079c2c
7a3fc57394ecc6745eb6e18745aa1e5e5d05cb2237c4d0d754ab43d33863a84c

HTTP Headers

GET /dist/tracker.js HTTP/1.1
Host: tracker.ads.sportradar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 20 Jan 2021 14:51:32 GMT
accept-ranges: bytes
server: AmazonS3
etag: "5ff82a1c468a89919e9437d33e0402cb"
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: lilTPTQwiFh0VJWkVzsVkg926mhW28TGKyOiSnBsA59oGt4a5kFU3Q==
vary: Accept-Encoding
content-encoding: gzip
content-length: 11553
date: Tue, 06 Sep 2022 15:58:08 GMT
cache-control: max-age=900, public
X-Firefox-Spdy: h2

tracker.ads.sportradar.com/dist//sp-2.14.0.js

23.36.79.43

200 OK

30 kB

URL HTTP/2
tracker.ads.sportradar.com/dist//sp-2.14.0.js
IP
23.36.79.43:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (64903)
Size
30 kB (30370 bytes)
Hash
44f237857b8d03f32b53fe551e83c95a
91536fe6c60d947d29dfcb5f04d09b752b5ccf03
a5e10dc2f3c729300afe8fe24aa430f57d91fdefa8112c0b35dd424ba612caa7

HTTP Headers

GET /dist//sp-2.14.0.js HTTP/1.1
Host: tracker.ads.sportradar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 20 Jan 2021 14:51:32 GMT
accept-ranges: bytes
server: AmazonS3
etag: "8dba669b94e3865c9205ef8fd15ee4d1"
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: BkEJYEd4ZgXvhrOZMYkJ33TO6-1fCSrXqN0YSeRsYveNKSz-gUQW2g==
vary: Accept-Encoding
content-encoding: gzip
date: Tue, 06 Sep 2022 15:58:08 GMT
content-length: 30370
cache-control: max-age=900, public
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

54.230.245.110

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.110:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
8806f7ce565af1530efafb651b2e8a35
608bccc6a3939255a804bfc115b455c38f649df7
50f63773b0f936c5105b7c01cee4b064c771a6d454adb61dcdb5f85d8a185e58

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 06 Sep 2022 15:58:08 GMT
Last-Modified: Tue, 06 Sep 2022 14:23:15 GMT
Server: ECS (nyb/1D2B)
X-Cache: Miss from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: U53VdEcVGWTWo6TshV6MCnu02t6tq-G1yyAaTVBM-hzherYXf3YfVA==
Age: 5693

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ad55e99613c40a0234eb408d845519cd
dcee5af0984a53cca80fe7a70bea8e24d1f2c951
4338839157b91c4172dba72dd6c2cf92e1348470beb2c6c2a2b08d61cce7db40

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4338839157B91C4172DBA72DD6C2CF92E1348470BEB2C6C2A2B08D61CCE7DB40"
Last-Modified: Tue, 06 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18245
Expires: Tue, 06 Sep 2022 21:02:13 GMT
Date: Tue, 06 Sep 2022 15:58:08 GMT
Connection: keep-alive

vars.hotjar.com/box-1ada912494ba7fc7aca15fcef1c2a7ae.html

143.204.55.101

200 OK

1.0 kB

URL HTTP/2
vars.hotjar.com/box-1ada912494ba7fc7aca15fcef1c2a7ae.html
IP
143.204.55.101:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2431), with no line terminators
Size
1.0 kB (1044 bytes)
Hash
0b3d3f4206ab84d8861a8cc4b2ddbe66
4561b7c0419b65db5c1314be2143bd1734e88d89
ec42652b198c82469afbe5e6e69312a25425c1fd38d379cf3761b328ecd48e4a

HTTP Headers

GET /box-1ada912494ba7fc7aca15fcef1c2a7ae.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/html
content-length: 1044
date: Wed, 13 Jul 2022 08:33:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "0b3d3f4206ab84d8861a8cc4b2ddbe66"
last-modified: Wed, 13 Jul 2022 08:32:20 GMT
strict-transport-security: max-age=86400; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: kcoFm6xuSKXIFvabTQq2KPw2lEpOukn6g2yJE6GPYWLOoZ6_h6yNXA==
age: 4778702
X-Firefox-Spdy: h2

zz.connextra.com/dcs/tagController/tag/d3ea3fb1f9d4/homepage

104.85.191.64

200 OK

16 kB

URL HTTP/2
zz.connextra.com/dcs/tagController/tag/d3ea3fb1f9d4/homepage
IP
104.85.191.64:0
ASN
#16625 AKAMAI-AS

File type
HTML document text\012- exported SGML document, ASCII text, with very long lines (2407)
Size
16 kB (16263 bytes)
Hash
a48b7d649ea4ff6d54adcc1966fdf787
d8d4c0645613806cf861cfa1d793e40aca2748f0
1479166998807326fbc3aa71ab41a46597b3dc39c6e9c9b372c0a0286030add0

HTTP Headers

GET /dcs/tagController/tag/d3ea3fb1f9d4/homepage HTTP/1.1
Host: zz.connextra.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-encoding: gzip
content-type: text/javascript;charset=utf-8
content-length: 16263
cache-control: must-revalidate, max-age=206
expires: Tue, 06 Sep 2022 16:01:34 GMT
date: Tue, 06 Sep 2022 15:58:08 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

54.230.245.110

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.110:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
b4c6f4a27ccd386b3469d9c9d33e1be4
8b056428007da80a092fbe3b9e9b78d205897e37
bd0ee36a5cae44c498ce019dc2d052436cb08c867b72cafe6c6efbbffcae3a5b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 06 Sep 2022 15:58:08 GMT
Last-Modified: Tue, 06 Sep 2022 14:20:31 GMT
Server: ECS (nyb/1D1C)
X-Cache: Miss from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 2aeL_ECjsLM_71mFwRfxVfR7GQaTa8gfG8hb6Ip2r8AQ7reveB_mMw==
Age: 5857

ocsp.entrust.net/

104.110.10.32

200 OK

1.6 kB

URL HTTP/1.1
ocsp.entrust.net/
IP
104.110.10.32:0
ASN
#16625 AKAMAI-AS

File type
data
Size
1.6 kB (1586 bytes)
Hash
ab47d879ff6ebccef024865550d5fa97
38f7437845310847da9a65a0293c14bc958ff30d
919df1f99ffd389aaebb9dec258c39f43f5e483de392b27935c4d7e22f0697b5

HTTP Headers

POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "919DF1F99FFD389AAEBB9DEC258C39F43F5E483DE392B27935C4D7E22F0697B5"
Last-Modified: Tue, 06 Sep 2022 10:00:00 UTC
Content-Length: 1586
Cache-Control: public, no-transform, must-revalidate, max-age=3502
Expires: Tue, 06 Sep 2022 16:56:30 GMT
Date: Tue, 06 Sep 2022 15:58:08 GMT
Connection: keep-alive

ocsp.entrust.net/

104.110.10.32

200 OK

1.6 kB

URL HTTP/1.1
ocsp.entrust.net/
IP
104.110.10.32:0
ASN
#16625 AKAMAI-AS

File type
data
Size
1.6 kB (1586 bytes)
Hash
ab47d879ff6ebccef024865550d5fa97
38f7437845310847da9a65a0293c14bc958ff30d
919df1f99ffd389aaebb9dec258c39f43f5e483de392b27935c4d7e22f0697b5

HTTP Headers

POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "919DF1F99FFD389AAEBB9DEC258C39F43F5E483DE392B27935C4D7E22F0697B5"
Last-Modified: Tue, 06 Sep 2022 10:00:00 UTC
Content-Length: 1586
Cache-Control: public, no-transform, must-revalidate, max-age=3507
Expires: Tue, 06 Sep 2022 16:56:35 GMT
Date: Tue, 06 Sep 2022 15:58:08 GMT
Connection: keep-alive

a.sportradarserving.com/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=

35.156.185.100

302 Moved Temporarily

0 B

URL HTTP/1.1
a.sportradarserving.com/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
IP
35.156.185.100:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId= HTTP/1.1
Host: a.sportradarserving.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Tue, 06 Sep 2022 15:58:08 GMT
Location: https://a.sportradarserving.com/ul_cb/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
Set-Cookie: zuuid=ec0605f0-7637-477a-b3b9-bb8f8231ac6f; path=/; expires=Wed, 06-Sep-2023 15:58:08 GMT; domain=sportradarserving.com; samesite=none; secure
c=1662479888; path=/; expires=Wed, 06-Sep-2023 15:58:08 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1662479888; path=/; expires=Wed, 06-Sep-2023 15:58:08 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 0
Connection: keep-alive

a.sportradarserving.com/pixel?type=js&aid=1121&id=1859

35.156.185.100

302 Moved Temporarily

0 B

URL HTTP/1.1
a.sportradarserving.com/pixel?type=js&aid=1121&id=1859
IP
35.156.185.100:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel?type=js&aid=1121&id=1859 HTTP/1.1
Host: a.sportradarserving.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Tue, 06 Sep 2022 15:58:08 GMT
Location: https://a.sportradarserving.com/ul_cb/pixel?type=js&aid=1121&id=1859
Set-Cookie: zuuid=29be567b-a476-4ef2-81af-8f8b8c29b7f4; path=/; expires=Wed, 06-Sep-2023 15:58:08 GMT; domain=sportradarserving.com; samesite=none; secure
c=1662479888; path=/; expires=Wed, 06-Sep-2023 15:58:08 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1662479888; path=/; expires=Wed, 06-Sep-2023 15:58:08 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 0
Connection: keep-alive

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
0583b5e4e11150bddb456ff7206a1765
a4c7af9a69e3c5a19ecd7aea7ce1c9394533f919
2ac020896df10ed00cb2a236c22681c1f41b3e8fb2b70a6e18b6a938c8fb9874

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 15:58:09 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 04 Sep 2022 12:04:38 GMT
Expires: Sun, 11 Sep 2022 12:04:37 GMT
Etag: "a4c7af9a69e3c5a19ecd7aea7ce1c9394533f919"
Cache-Control: max-age=417388,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 746867891df9b529-OSL

20bet.com/app/runtime.1db12f9d83191ab4.esm.js

104.22.35.208

200 OK

193 kB

URL HTTP/2
20bet.com/app/runtime.1db12f9d83191ab4.esm.js
IP
104.22.35.208:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (5176), with no line terminators
Size
193 kB (192881 bytes)
Hash
22463f7cea33bfaf6dc177474d871d13
f2d9822f40d02d49dbf74e58b44fb89e4b215804
10c1cc2cf245ffc2e5db454ae7c65de550993f80bc8906983a69883a0bbf3858

HTTP Headers

GET /app/runtime.1db12f9d83191ab4.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/promotions/first-deposit-casino?btag=656524_A3A6890430B74AC4B1D2449B8E4D7414
Cookie: preferred-language=en; btag=656524_A3A6890430B74AC4B1D2449B8E4D7414; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=1ecc1146-1500-4950-b40d-51d0c49b877c.1662479883.1.1662479883.1662479883.6587ec78-8ee0-40d2-af86-0014c7842f6a
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 06 Sep 2022 15:58:08 GMT
content-type: application/javascript
last-modified: Fri, 02 Sep 2022 09:36:40 GMT
vary: Accept-Encoding
etag: W/"6311cea8-1438"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6614
server: cloudflare
cf-ray: 746867878a199932-ARN
content-encoding: br
X-Firefox-Spdy: h2

track.trackingtraffo.com/pixel/js?auth=q1wumswr&event=visit&uid=undefined&tid={TRANSACTION_ID}&cur=undefined&amount=undefined

88.214.195.156

200 OK

492 B

URL HTTP/1.1
track.trackingtraffo.com/pixel/js?auth=q1wumswr&event=visit&uid=undefined&tid={TRANSACTION_ID}&cur=undefined&amount=undefined
IP
88.214.195.156:0
ASN
#46636 NATCOWEB

File type
ASCII text
Size
492 B (492 bytes)
Hash
3756cad2f2f81943455eecd9491da8ec
157eae8c2012f0024834d48b1b4d08d461da9d7b
bb32cb34f8853772cba14cede98cb887fca7a412811488a79899a8620527cb9b

HTTP Headers

GET /pixel/js?auth=q1wumswr&event=visit&uid=undefined&tid={TRANSACTION_ID}&cur=undefined&amount=undefined HTTP/1.1
Host: track.trackingtraffo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 06 Sep 2022 15:58:09 GMT
Content-Type: text/javascript
Content-Length: 492
Connection: keep-alive
Cache-Control: no-cache, max-age=0, must-revalidate, proxy-revalidate, no-store
Pragma: no-cache
Expires: Sat, 01 Jan 2000 00:00:00 GMT

tag.growthbuddy.app/tag.js?id=DV-02355017850611493202

52.19.162.115

200 OK

2.0 kB

URL HTTP/2
tag.growthbuddy.app/tag.js?id=DV-02355017850611493202
IP
52.19.162.115:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (4966)
Size
2.0 kB (1969 bytes)
Hash
b6e25997407245f0f6095b9865dc3828
bee1656f82ca83a9315759c80a5e3e91b53eabc7
94c80d2b5cf48e280ce2d53a629a003576a7f1b303b7b397103afc0ab1129ab7

HTTP Headers

GET /tag.js?id=DV-02355017850611493202 HTTP/1.1
Host: tag.growthbuddy.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 06 Sep 2022 15:58:08 GMT
content-type: application/javascript; charset=utf-8
set-cookie: INGRESSCOOKIE=1662479889.582.49.391950|5f2e1b57d78510d04b0cf9036879032b; Path=/; Secure; HttpOnly
vary: Accept-Encoding
cache-control: public, max-age=7200
x-content-type-options: nosniff
etag: "1382-4YuDa3owVc9r2LUx5CM7dj7oB9U"
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

platform.20bet.com/api/market-group-sorting/get-all-ordered

104.22.35.208

204 No Content

0 B

URL HTTP/2
platform.20bet.com/api/market-group-sorting/get-all-ordered
IP
104.22.35.208:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /api/market-group-sorting/get-all-ordered HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 204 No Content
date: Tue, 06 Sep 2022 15:58:09 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7468678b4fe39932-ARN
X-Firefox-Spdy: h2

20bet.com/push-worker.js

104.22.35.208

404 Not Found

7.5 kB

URL HTTP/2
20bet.com/push-worker.js
IP
104.22.35.208:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4744), with CRLF, LF line terminators
Size
7.5 kB (7528 bytes)
Hash
39ef6441f6519930f3f9c53a22019002
1af5398d35cc70376f878c2bfe2f65925399f09d
2bf8b2cb12fc0cd96fc66fd1ceb998d126f10a71b17cb04557566113b7efc7dd

HTTP Headers

GET /push-worker.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: preferred-language=en; btag=656524_A3A6890430B74AC4B1D2449B8E4D7414
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
date: Tue, 06 Sep 2022 15:58:08 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.29
cache-control: max-age=0, must-revalidate, private
expires: Tue, 06 Sep 2022 15:58:08 GMT
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: BYPASS
server: cloudflare
cf-ray: 74686786f9379932-ARN
content-encoding: br
X-Firefox-Spdy: h2

20bet.com/app/common.9fee8e38091ae3ff.css

104.22.35.208

200 OK

682 B

URL HTTP/2
20bet.com/app/common.9fee8e38091ae3ff.css
IP
104.22.35.208:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (2188), with no line terminators
Size
682 B (682 bytes)
Hash
489de15ccfb53119a92e456b8c42bffd
7d787b75cb9865b0ff9cef0dadfe49742bbbe87f
cf7b9b55f9089ff05e0cbc465085cd522a443cd5ca1773cfe7d5d3866a00b704

HTTP Headers

GET /app/common.9fee8e38091ae3ff.css HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/promotions/first-deposit-casino?btag=656524_A3A6890430B74AC4B1D2449B8E4D7414
Cookie: preferred-language=en; btag=656524_A3A6890430B74AC4B1D2449B8E4D7414; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=1ecc1146-1500-4950-b40d-51d0c49b877c.1662479883.1.1662479883.1662479883.6587ec78-8ee0-40d2-af86-0014c7842f6a; DV_TRACK=6872b45b-6988-41f6-97c5-3a537a80fcdd; _ga_J9LNZYMXZE=GS1.1.1662479883.1.0.1662479883.0.0.0; _ga=GA1.1.1053374442.1662479883
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 06 Sep 2022 15:58:09 GMT
content-type: text/css
last-modified: Fri, 02 Sep 2022 09:36:44 GMT
vary: Accept-Encoding
etag: W/"6311ceac-88c"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 7468678a9ee79932-ARN
content-encoding: br
X-Firefox-Spdy: h2

platform.20bet.com/api/sport/list/-1/0/en

104.22.35.208

204 No Content

0 B

URL HTTP/2
platform.20bet.com/api/sport/list/-1/0/en
IP
104.22.35.208:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /api/sport/list/-1/0/en HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 204 No Content
date: Tue, 06 Sep 2022 15:58:09 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7468678b3fdf9932-ARN
X-Firefox-Spdy: h2

20bet.com/app/polyfills.4743b5f1698ee308.esm.js

104.22.35.208

200 OK

36 kB

URL HTTP/2
20bet.com/app/polyfills.4743b5f1698ee308.esm.js
IP
104.22.35.208:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65536), with no line terminators
Size
36 kB (35687 bytes)
Hash
03115e9557f6e83e44487f65b2f6b873
be31829683c6b7c8f9e7ae83e1747fb2dc22f7e0
d0047347ba996cf0e03766175a02ac616ee9ee50918096d58ef994bd01f845f1

HTTP Headers

GET /app/polyfills.4743b5f1698ee308.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/promotions/first-deposit-casino?btag=656524_A3A6890430B74AC4B1D2449B8E4D7414
Cookie: preferred-language=en; btag=656524_A3A6890430B74AC4B1D2449B8E4D7414; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=1ecc1146-1500-4950-b40d-51d0c49b877c.1662479883.1.1662479883.1662479883.6587ec78-8ee0-40d2-af86-0014c7842f6a
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 06 Sep 2022 15:58:08 GMT
content-type: application/javascript
last-modified: Fri, 02 Sep 2022 09:36:44 GMT
vary: Accept-Encoding
etag: W/"6311ceac-17348"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6614
server: cloudflare
cf-ray: 746867878a179932-ARN
content-encoding: br
X-Firefox-Spdy: h2

20bet.com/app/6485.83a5f1d2e8af3f67.esm.js

104.22.35.208

200 OK

534 B

URL HTTP/2
20bet.com/app/6485.83a5f1d2e8af3f67.esm.js
IP
104.22.35.208:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (1023), with no line terminators
Size
534 B (534 bytes)
Hash
292931448f8479ca95f5dbb5adad1fe8
c7ad543db88628d37cb8441a01b3ff4e43345f09
8d9ddc762ea31577c9b227c40f027aaf15c097a390198e2d4c26442517f15162

HTTP Headers

GET /app/6485.83a5f1d2e8af3f67.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/promotions/first-deposit-casino?btag=656524_A3A6890430B74AC4B1D2449B8E4D7414
Cookie: preferred-language=en; btag=656524_A3A6890430B74AC4B1D2449B8E4D7414; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=1ecc1146-1500-4950-b40d-51d0c49b877c.1662479883.1.1662479883.1662479883.6587ec78-8ee0-40d2-af86-0014c7842f6a; DV_TRACK=6872b45b-6988-41f6-97c5-3a537a80fcdd; _ga_J9LNZYMXZE=GS1.1.1662479883.1.0.1662479883.0.0.0; _ga=GA1.1.1053374442.1662479883
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 06 Sep 2022 15:58:09 GMT
content-type: application/javascript
last-modified: Fri, 02 Sep 2022 09:36:20 GMT
etag: W/"6311ce94-3ff"
cache-control: max-age=14400
cf-cache-status: EXPIRED
vary: Accept-Encoding
server: cloudflare
cf-ray: 7468678abf089932-ARN
content-encoding: br
X-Firefox-Spdy: h2

casino.cur.a8r.games/public/sg.js

104.18.42.56

200 OK

2.2 kB

URL HTTP/2
casino.cur.a8r.games/public/sg.js
IP
104.18.42.56:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
2.2 kB (2221 bytes)
Hash
345601e2959efa03ff7eaa5eb3f6dff8
b378495da4375dedc86451be86406dee6d1cb596
a4cada8069c600a3632278ff6114340ab641ac651d5ad79a54af31eadca32212

HTTP Headers

GET /public/sg.js HTTP/1.1
Host: casino.cur.a8r.games
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 06 Sep 2022 15:58:08 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
last-modified: Tue, 06 Sep 2022 15:27:16 GMT
cf-cache-status: HIT
age: 517
expires: Tue, 06 Sep 2022 19:58:08 GMT
cache-control: public, max-age=14400
server: cloudflare
cf-ray: 746867845aa30b02-OSL
X-Firefox-Spdy: h2

platform.20bet.com/api/data/provinces

104.22.35.208

204 No Content

0 B

URL HTTP/2
platform.20bet.com/api/data/provinces
IP
104.22.35.208:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /api/data/provinces HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 204 No Content
date: Tue, 06 Sep 2022 15:58:09 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7468678b78179932-ARN
X-Firefox-Spdy: h2

a.sportradarserving.com/ul_cb/pixel?type=js&aid=1121&id=1859

35.156.185.100

200 OK

2.3 kB

URL HTTP/1.1
a.sportradarserving.com/ul_cb/pixel?type=js&aid=1121&id=1859
IP
35.156.185.100:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (2325), with no line terminators
Size
2.3 kB (2325 bytes)
Hash
d287c21a503663250c6b208e762643e8
bcc482247b1b95041bac235e5eac95983630f6fb
6ef877bc3d82f242d3480f21614f5e5cafa05c873cdea50c5af99f255321fbcb

HTTP Headers

GET /ul_cb/pixel?type=js&aid=1121&id=1859 HTTP/1.1
Host: a.sportradarserving.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20bet.com/
Connection: keep-alive
Cookie: zuuid=29be567b-a476-4ef2-81af-8f8b8c29b7f4; c=1662479888; zuuid_lu=1662479888
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache, no-store, must-revalidate
Content-Type: text/javascript; charset=UTF-8
Date: Tue, 06 Sep 2022 15:58:09 GMT
Set-Cookie: zuuid=29be567b-a476-4ef2-81af-8f8b8c29b7f4; path=/; expires=Wed, 06-Sep-2023 15:58:09 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1662479889; path=/; expires=Wed, 06-Sep-2023 15:58:09 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k=1; path=/; expires=Wed, 06-Sep-2023 15:58:09 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k_lu=1662479889; path=/; expires=Wed, 06-Sep-2023 15:58:09 GMT; domain=sportradarserving.com; samesite=none; secure
cm2=!bidswitch,431809089; path=/; expires=Wed, 06-Sep-2023 15:58:09 GMT; domain=sportradarserving.com; samesite=none; secure
bss=!bidswitch,431737089; path=/; expires=Wed, 06-Sep-2023 15:58:09 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 2325
Connection: keep-alive

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
21d1b5be072df45253749eeb3290be82
4ac9978797c085289b9fcc2fe9a57b619e1c78c9
9ea779e1ad86a4a7c403b574908e2dc60d079b366ab1cf439b34c73c9a9c64c9

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 15:58:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

platform.20bet.com/api/market-descriptions/get-all-markets/en

104.22.35.208

204 No Content

0 B

URL HTTP/2
platform.20bet.com/api/market-descriptions/get-all-markets/en
IP
104.22.35.208:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /api/market-descriptions/get-all-markets/en HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 204 No Content
date: Tue, 06 Sep 2022 15:58:09 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7468678b2fc49932-ARN
X-Firefox-Spdy: h2

platform.20bet.com/api/status

104.22.35.208

204 No Content

0 B

URL HTTP/2
platform.20bet.com/api/status
IP
104.22.35.208:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /api/status HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 204 No Content
date: Tue, 06 Sep 2022 15:58:09 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7468678b3fc79932-ARN
X-Firefox-Spdy: h2

platform.20bet.com/api/match-statuses/get-all/en

104.22.35.208

204 No Content

0 B

URL HTTP/2
platform.20bet.com/api/match-statuses/get-all/en
IP
104.22.35.208:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /api/match-statuses/get-all/en HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 204 No Content
date: Tue, 06 Sep 2022 15:58:09 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7468678b3fc69932-ARN
X-Firefox-Spdy: h2

www.google.com/recaptcha/api.js?render=6Ley_-AUAAAAABKS0CxGrXn7WcIrUtA7OZDmjlTZ

142.250.74.164

200 OK

584 B

URL HTTP/2
www.google.com/recaptcha/api.js?render=6Ley_-AUAAAAABKS0CxGrXn7WcIrUtA7OZDmjlTZ
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (884), with no line terminators
Size
584 B (584 bytes)
Hash
b4b4fa3c1e868607281acc7596015e05
3aa0e03f6974f0f7c2e11e471d98a33e12cdb33f
17f33f01a6ee02237345af11070a4d46e72c3fd0fb02dde6b6153447a81d46ef

HTTP Headers

GET /recaptcha/api.js?render=6Ley_-AUAAAAABKS0CxGrXn7WcIrUtA7OZDmjlTZ HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
expires: Tue, 06 Sep 2022 15:58:09 GMT
date: Tue, 06 Sep 2022 15:58:09 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 584
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

platform.20bet.com/api/market-descriptions/get-all-outcomes/en

104.22.35.208

204 No Content

0 B

URL HTTP/2
platform.20bet.com/api/market-descriptions/get-all-outcomes/en
IP
104.22.35.208:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /api/market-descriptions/get-all-outcomes/en HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 204 No Content
date: Tue, 06 Sep 2022 15:58:09 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7468678b1fae9932-ARN
X-Firefox-Spdy: h2

20bet.com/app/main.ade23308abf2ae2d.esm.js

104.22.35.208

200 OK

339 kB

URL HTTP/2
20bet.com/app/main.ade23308abf2ae2d.esm.js
IP
104.22.35.208:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65536), with no line terminators
Size
339 kB (338665 bytes)
Hash
72cf6d2fd9711d5628ab362a63b14c31
741492735faa89477f03455405e1b6f8dae44edb
0cbc65988b0c9c8af59619f468e65c4792fc5dc80e03a317832413798d679488

HTTP Headers

GET /app/main.ade23308abf2ae2d.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/promotions/first-deposit-casino?btag=656524_A3A6890430B74AC4B1D2449B8E4D7414
Cookie: preferred-language=en; btag=656524_A3A6890430B74AC4B1D2449B8E4D7414; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=1ecc1146-1500-4950-b40d-51d0c49b877c.1662479883.1.1662479883.1662479883.6587ec78-8ee0-40d2-af86-0014c7842f6a
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 06 Sep 2022 15:58:08 GMT
content-type: application/javascript
last-modified: Fri, 02 Sep 2022 09:36:21 GMT
vary: Accept-Encoding
etag: W/"6311ce95-143271"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6614
server: cloudflare
cf-ray: 746867878a149932-ARN
content-encoding: br
X-Firefox-Spdy: h2

platform.20bet.com/api/sport/list/-1/0/en

104.22.35.208

200 OK

5.1 kB

URL HTTP/2
platform.20bet.com/api/sport/list/-1/0/en
IP
104.22.35.208:0
ASN
#13335 CLOUDFLARENET

File type
JSON data\012- , ASCII text, with very long lines (22030), with no line terminators
Size
5.1 kB (5087 bytes)
Hash
1b05f7846bb6607da1a8d3473120d745
500ce74864172cb02d394cea49227275ef9063b6
b417f7f27a8ff4599da14ba170e2e63aa137f432c614224ba8b979704351fbff

HTTP Headers

GET /api/sport/list/-1/0/en HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=1ecc1146-1500-4950-b40d-51d0c49b877c.1662479883.1.1662479883.1662479883.6587ec78-8ee0-40d2-af86-0014c7842f6a; DV_TRACK=6872b45b-6988-41f6-97c5-3a537a80fcdd; _ga_J9LNZYMXZE=GS1.1.1662479883.1.0.1662479883.0.0.0; _ga=GA1.1.1053374442.1662479883
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 06 Sep 2022 15:58:09 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.30
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7468678ba84a9932-ARN
content-encoding: br
X-Firefox-Spdy: h2

ocsp.pki.goog/s/gts1d4/Bz2q3fRhivk

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1d4/Bz2q3fRhivk
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
507f79431a7656757f20237b3664dabc
1ce1f5023b7a6a93a8601f5f36f985ed6b69cde1
d5eb9ec3ccdae9be7f29bf9724f66c1904bd2c78d575e10d811c0a7087620d59

HTTP Headers

POST /s/gts1d4/Bz2q3fRhivk HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 15:58:09 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/s/gts1d4/mhuqZ1vnJhs

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1d4/mhuqZ1vnJhs
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e4233a8bf32e70b0fef55de3be56a78a
5eb7b6e14d9d2409e3884baa56ed3df125ca6973
7a4cb27a2ca86764be184e36fa6ae78df7d82eabfa93183933fbf9da992bd644

HTTP Headers

POST /s/gts1d4/mhuqZ1vnJhs HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 15:58:09 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

platform.20bet.com/api/data/get-countries

104.22.35.208

200 OK

4.4 kB

URL HTTP/2
platform.20bet.com/api/data/get-countries
IP
104.22.35.208:0
ASN
#13335 CLOUDFLARENET

File type
JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Size
4.4 kB (4372 bytes)
Hash
8d4c64113100c11ceed39e382ac45f28
105ce4778732c35379a84db05d54989b87e33876
42f852f223d4b043271131abfe3862c363aa34fbb8fb342f5fcbe5ea39733af7

HTTP Headers

GET /api/data/get-countries HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=1ecc1146-1500-4950-b40d-51d0c49b877c.1662479883.1.1662479883.1662479883.6587ec78-8ee0-40d2-af86-0014c7842f6a; DV_TRACK=6872b45b-6988-41f6-97c5-3a537a80fcdd; _ga_J9LNZYMXZE=GS1.1.1662479883.1.0.1662479883.0.0.0; _ga=GA1.1.1053374442.1662479883
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 06 Sep 2022 15:58:09 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.30
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7468678ba8499932-ARN
content-encoding: br
X-Firefox-Spdy: h2

api.feedad.com/1.1/web/usersyncs?b=8461718b-151b-486e-8ea2-a9b349f07f98&u=29be567b-a476-4ef2-81af-8f8b8c29b7f4

216.239.32.21

200 OK

42 B

URL HTTP/2
api.feedad.com/1.1/web/usersyncs?b=8461718b-151b-486e-8ea2-a9b349f07f98&u=29be567b-a476-4ef2-81af-8f8b8c29b7f4
IP
216.239.32.21:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /1.1/web/usersyncs?b=8461718b-151b-486e-8ea2-a9b349f07f98&u=29be567b-a476-4ef2-81af-8f8b8c29b7f4 HTTP/1.1
Host: api.feedad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/gif
set-cookie: fa_8461718b-151b-486e-8ea2-a9b349f07f98_u=29be567b-a476-4ef2-81af-8f8b8c29b7f4; Domain=.feedad.com; Path=/; Max-Age=2592000; HttpOnly; SameSite=None; Secure
x-cloud-trace-context: d28f39cc7c879d259a38d14ec0e4795d
date: Tue, 06 Sep 2022 15:58:09 GMT
server: Google Frontend
content-length: 42
expires: Tue, 06 Sep 2022 15:58:09 GMT
cache-control: private
X-Firefox-Spdy: h2

tags.feedad.com/1/usersyncs?b=8461718b-151b-486e-8ea2-a9b349f07f98&u=29be567b-a476-4ef2-81af-8f8b8c29b7f4

216.239.38.21

200 OK

42 B

URL HTTP/2
tags.feedad.com/1/usersyncs?b=8461718b-151b-486e-8ea2-a9b349f07f98&u=29be567b-a476-4ef2-81af-8f8b8c29b7f4
IP
216.239.38.21:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /1/usersyncs?b=8461718b-151b-486e-8ea2-a9b349f07f98&u=29be567b-a476-4ef2-81af-8f8b8c29b7f4 HTTP/1.1
Host: tags.feedad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/gif
set-cookie: fa_8461718b-151b-486e-8ea2-a9b349f07f98_u=29be567b-a476-4ef2-81af-8f8b8c29b7f4; Domain=.feedad.com; Path=/; Max-Age=2592000; HttpOnly; SameSite=None; Secure
x-cloud-trace-context: 9ceecad86b89ba40cdc71ece1887ce46
date: Tue, 06 Sep 2022 15:58:09 GMT
server: Google Frontend
content-length: 42
expires: Tue, 06 Sep 2022 15:58:09 GMT
cache-control: private
X-Firefox-Spdy: h2

20bet.com/assets/logo_white.webp

104.22.35.208

200 OK

23 kB

URL HTTP/2
20bet.com/assets/logo_white.webp
IP
104.22.35.208:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image\012- data
Size
23 kB (23194 bytes)
Hash
9c47bad4be0d152b3c4e9541eab4b30c
c4a098a961540d81cef7d459b07a62359cee7e5e
36c3917aaa5ff44fb95709cccb6adca4dcb9fbb4416f5b8685c32c73b8525d0d

HTTP Headers

GET /assets/logo_white.webp HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/promotions/first-deposit-casino?btag=656524_A3A6890430B74AC4B1D2449B8E4D7414
Cookie: preferred-language=en; btag=656524_A3A6890430B74AC4B1D2449B8E4D7414; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=1ecc1146-1500-4950-b40d-51d0c49b877c.1662479883.1.1662479883.1662479883.6587ec78-8ee0-40d2-af86-0014c7842f6a; DV_TRACK=6872b45b-6988-41f6-97c5-3a537a80fcdd; _ga_J9LNZYMXZE=GS1.1.1662479883.1.0.1662479883.0.0.0; _ga=GA1.1.1053374442.1662479883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 06 Sep 2022 15:58:09 GMT
content-type: image/webp
content-length: 23194
last-modified: Fri, 02 Sep 2022 09:36:59 GMT
etag: "6311cebb-5a9a"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3407
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7468678e0bf19932-ARN
X-Firefox-Spdy: h2

20bet.com/app/326.5536a59ff425b07b.esm.js

104.22.35.208

200 OK

16 kB

URL HTTP/2
20bet.com/app/326.5536a59ff425b07b.esm.js
IP
104.22.35.208:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (618), with no line terminators
Size
16 kB (16218 bytes)
Hash
c2b7a5c5b63128a919b99eaf87b10266
0302e5c5a0c8b37f1030ef7d1751a4fdc0ec53cc
f5d57331466acfd035f70d035f9971645eee95f88d80d37e14b4586cb92f0fef

HTTP Headers

GET /app/326.5536a59ff425b07b.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/promotions/first-deposit-casino?btag=656524_A3A6890430B74AC4B1D2449B8E4D7414
Cookie: preferred-language=en; btag=656524_A3A6890430B74AC4B1D2449B8E4D7414; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=1ecc1146-1500-4950-b40d-51d0c49b877c.1662479883.1.1662479883.1662479883.6587ec78-8ee0-40d2-af86-0014c7842f6a; DV_TRACK=6872b45b-6988-41f6-97c5-3a537a80fcdd; _ga_J9LNZYMXZE=GS1.1.1662479883.1.0.1662479883.0.0.0; _ga=GA1.1.1053374442.1662479883
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 06 Sep 2022 15:58:09 GMT
content-type: application/javascript
last-modified: Fri, 02 Sep 2022 09:36:25 GMT
etag: W/"6311ce99-26a"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1250
vary: Accept-Encoding
server: cloudflare
cf-ray: 7468678e3c359932-ARN
content-encoding: br
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

142.250.74.163

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Size
16 kB (15920 bytes)
Hash
3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://20bet.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 03 Sep 2022 02:02:22 GMT
expires: Sun, 03 Sep 2023 02:02:22 GMT
cache-control: public, max-age=31536000
age: 309347
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

platform.20bet.com/api/market-descriptions/get-all-markets/en

104.22.35.208

200 OK

27 kB

URL HTTP/2
platform.20bet.com/api/market-descriptions/get-all-markets/en
IP
104.22.35.208:0
ASN
#13335 CLOUDFLARENET

File type
JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Size
27 kB (27222 bytes)
Hash
41f73b88b63d95eca30f08af1a430d68
315b240917b6ffa927ed058e8e11ab66fae6cc85
5ee5657dbdb1639a862c71218f4b13cbacf6f5c3736ba4337b5a99324983af5f

HTTP Headers

GET /api/market-descriptions/get-all-markets/en HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=1ecc1146-1500-4950-b40d-51d0c49b877c.1662479883.1.1662479883.1662479883.6587ec78-8ee0-40d2-af86-0014c7842f6a; DV_TRACK=6872b45b-6988-41f6-97c5-3a537a80fcdd; _ga_J9LNZYMXZE=GS1.1.1662479883.1.0.1662479883.0.0.0; _ga=GA1.1.1053374442.1662479883
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 06 Sep 2022 15:58:09 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.30
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7468678be8979932-ARN
content-encoding: br
X-Firefox-Spdy: h2

platform.20bet.com/api/v2/ip-data

104.22.35.208

200 OK

721 B

URL HTTP/2
platform.20bet.com/api/v2/ip-data
IP
104.22.35.208:0
ASN
#13335 CLOUDFLARENET

File type
JSON data\012- , ASCII text, with very long lines (693), with no line terminators
Size
721 B (721 bytes)
Hash
360493fe3185a6eeb29b6640d83eef23
d26950f653b65ce13c6a6f8e04ac18dcbf58e135
53e14aa44ad8407da24ecc3404cbf7f1d61019245189fb0f60862dd9d07b3659

HTTP Headers

GET /api/v2/ip-data HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=1ecc1146-1500-4950-b40d-51d0c49b877c.1662479883.1.1662479883.1662479883.6587ec78-8ee0-40d2-af86-0014c7842f6a; DV_TRACK=6872b45b-6988-41f6-97c5-3a537a80fcdd; _ga_J9LNZYMXZE=GS1.1.1662479883.1.0.1662479883.0.0.0; _ga=GA1.1.1053374442.1662479883
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 06 Sep 2022 15:58:09 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.30
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7468678b98419932-ARN
content-encoding: br
X-Firefox-Spdy: h2

platform.20bet.com/api/user/is-auth

104.22.35.208

204 No Content

0 B

URL HTTP/2
platform.20bet.com/api/user/is-auth
IP
104.22.35.208:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /api/user/is-auth HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 204 No Content
date: Tue, 06 Sep 2022 15:58:09 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7468678f7de49932-ARN
X-Firefox-Spdy: h2

platform.20bet.com/api/match-statuses/get-all/en

104.22.35.208

200 OK

1.4 kB

URL HTTP/2
platform.20bet.com/api/match-statuses/get-all/en
IP
104.22.35.208:0
ASN
#13335 CLOUDFLARENET

File type
JSON data\012- , ASCII text, with very long lines (6171), with no line terminators
Size
1.4 kB (1401 bytes)
Hash
465335ad3774c681c7378c937fee0e23
c37ae0c813d844712d16f647332d54f56d60453a
49dd2a4e4777bcfdfce068cfe6f7b56504187838f5703fc6a25b59dd631b6789

HTTP Headers

GET /api/match-statuses/get-all/en HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=1ecc1146-1500-4950-b40d-51d0c49b877c.1662479883.1.1662479883.1662479883.6587ec78-8ee0-40d2-af86-0014c7842f6a; DV_TRACK=6872b45b-6988-41f6-97c5-3a537a80fcdd; _ga_J9LNZYMXZE=GS1.1.1662479883.1.0.1662479883.0.0.0; _ga=GA1.1.1053374442.1662479883
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 06 Sep 2022 15:58:09 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.30
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7468678bf8af9932-ARN
content-encoding: br
X-Firefox-Spdy: h2

sentry.softlabs.com/api/9/store/?sentry_key=913196a6014545bda28200a38ba9826a&sentry_version=7

172.67.71.55

200 OK

41 B

URL HTTP/2
sentry.softlabs.com/api/9/store/?sentry_key=913196a6014545bda28200a38ba9826a&sentry_version=7
IP
172.67.71.55:0
ASN
#13335 CLOUDFLARENET

File type
JSON data\012- , ASCII text, with no line terminators
Size
41 B (41 bytes)
Hash
188c8509841ac8a9593355801b8d0a40
a720494a861035de45d511dec0c31c78ffc5e281
7e4b93a3f859fdba7b2392ce57db275e09887506d74a5ab9d68d27403def436a

HTTP Headers

POST /api/9/store/?sentry_key=913196a6014545bda28200a38ba9826a&sentry_version=7 HTTP/1.1
Host: sentry.softlabs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20bet.com/
Content-Type: text/plain;charset=UTF-8
Origin: https://20bet.com
Content-Length: 2943
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 06 Sep 2022 15:58:09 GMT
content-type: application/json
content-length: 41
access-control-allow-origin: https://20bet.com
access-control-expose-headers: x-sentry-rate-limits, x-sentry-error, retry-after
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jwS3fqcuOEJBOo84S0YjJgn%2BhcauEfSI6Px0s%2Bq7axoRcTbvcMGAOHqKsiNJVbv50cZIeACy7rbT5H3P7dN6sNkKeOMrjmFgekqe50aYYsS0BuLRrV%2FjqXL25YuFhheefwJWErk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7468678f5e38b509-OSL
X-Firefox-Spdy: h2

cdn.livechatinc.com/tracking.js

23.36.79.17

200 OK

26 kB

URL HTTP/2
cdn.livechatinc.com/tracking.js
IP
23.36.79.17:0
ASN
#20940 Akamai International B.V.

File type
data
Size
26 kB (25676 bytes)
Hash
5f2358a99550d4776547cb972073bd61
8aa911d2bf317392eb9e9dc894c311ae57e83d14
aabffd826b1e615440082abba276f12e163e4ac2e00d6419aa58cf4366caf0d2

HTTP Headers

GET /tracking.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Thu, 01 Sep 2022 14:04:09 GMT
x-amz-version-id: UYKKGTF3dQKOE_ePnSPZ3k7YnXZnco.Q
server: AmazonS3
content-encoding: br
etag: W/"f4171ed4d15a2019f2f052cb238ce516"
vary: Accept-Encoding
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: NiZvMx_vc2BZHJpQzNMNcbogeyAGFhrQLewaG7j0g1I_FXoGDY_qnQ==
content-length: 25676
cache-control: max-age=28800
expires: Tue, 06 Sep 2022 23:58:09 GMT
date: Tue, 06 Sep 2022 15:58:09 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
X-Firefox-Spdy: h2

api.livechatinc.com/v3.3/customer/action/get_dynamic_configuration?license_id=9054575&url=https%3A%2F%2F20bet.com%2Fpromotions%2Ffirst-deposit-casino%3Fbtag%3D656524_A3A6890430B74AC4B1D2449B8E4D7414&channel_type=code&jsonp=__5kjpykeyjka

23.36.79.17

200 OK

625 B

URL HTTP/2
api.livechatinc.com/v3.3/customer/action/get_dynamic_configuration?license_id=9054575&url=https%3A%2F%2F20bet.com%2Fpromotions%2Ffirst-deposit-casino%3Fbtag%3D656524_A3A6890430B74AC4B1D2449B8E4D7414&channel_type=code&jsonp=__5kjpykeyjka
IP
23.36.79.17:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (625), with no line terminators
Size
625 B (625 bytes)
Hash
d7173b69918b4427dc3edb6ecb91d5e6
0429b435a10d3decec5741489de34ca97d4a5e49
6dc193f0d729b986cf0193b783e0b8abcfec494792f107f1d51b70901b2f9628

HTTP Headers

GET /v3.3/customer/action/get_dynamic_configuration?license_id=9054575&url=https%3A%2F%2F20bet.com%2Fpromotions%2Ffirst-deposit-casino%3Fbtag%3D656524_A3A6890430B74AC4B1D2449B8E4D7414&channel_type=code&jsonp=__5kjpykeyjka HTTP/1.1
Host: api.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-security-policy: frame-ancestors https://20bet.com/;
content-type: application/javascript; charset=UTF-8
legacy: 2023-06-30
vary: Accept-Encoding
x-frame-options: allow-from https://20bet.com/
content-length: 625
date: Tue, 06 Sep 2022 15:58:10 GMT
X-Firefox-Spdy: h2

c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com/54f396e0-b046-49b1-9cb3-0c69281d7ea9-beacon.png

54.230.111.125

200 OK

68 B

URL HTTP/2
c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com/54f396e0-b046-49b1-9cb3-0c69281d7ea9-beacon.png
IP
54.230.111.125:0
ASN
#16509 AMAZON-02

File type
PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Size
68 B (68 bytes)
Hash
e679fbd466a2d656f194a5da4fa083cd
2aa795c7607aa6ea41313be88f1b7a9c1ab516b3
f309b7c03d9cae63a9bedbee6ed655f3dbcdb194132943639344dead5f3b9710

HTTP Headers

GET /54f396e0-b046-49b1-9cb3-0c69281d7ea9-beacon.png HTTP/1.1
Host: c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 68
last-modified: Tue, 15 Dec 2020 08:04:53 GMT
accept-ranges: bytes
server: AmazonS3
date: Sat, 13 Aug 2022 23:26:57 GMT
cache-control: no-cache, no-store, must-revalidate
etag: "e679fbd466a2d656f194a5da4fa083cd"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: --TiwoFusVHdWTnYo5Zv3lNS1x5fY28FPon4CYOzJ1sGQbgEy6FxaA==
age: 2046875
X-Firefox-Spdy: h2

20bet.com/api/seo/get-data?pageUrl=/promotions/first-deposit-casino

104.22.35.208

200 OK

2.1 kB

URL HTTP/2
20bet.com/api/seo/get-data?pageUrl=/promotions/first-deposit-casino
IP
104.22.35.208:0
ASN
#13335 CLOUDFLARENET

File type
JSON data\012- , ASCII text, with very long lines (4515), with no line terminators
Size
2.1 kB (2149 bytes)
Hash
1962603134be72001a49f9293cbf1d23
66b77db2abd718fecbac3c302520a6efd34f635b
ff42ccc19164f1690e43bd04819676e884734cb0857d46fdc52da59f6779a740

HTTP Headers

GET /api/seo/get-data?pageUrl=/promotions/first-deposit-casino HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://20bet.com/promotions/first-deposit-casino?btag=656524_A3A6890430B74AC4B1D2449B8E4D7414
Cookie: preferred-language=en; btag=656524_A3A6890430B74AC4B1D2449B8E4D7414; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=1ecc1146-1500-4950-b40d-51d0c49b877c.1662479883.1.1662479883.1662479883.6587ec78-8ee0-40d2-af86-0014c7842f6a; DV_TRACK=6872b45b-6988-41f6-97c5-3a537a80fcdd; _ga_J9LNZYMXZE=GS1.1.1662479883.1.0.1662479883.0.0.0; _ga=GA1.1.1053374442.1662479883
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 06 Sep 2022 15:58:10 GMT
content-type: application/json
vary: Accept-Encoding
x-powered-by: PHP/7.4.29
cache-control: max-age=0, must-revalidate, private
expires: Tue, 06 Sep 2022 15:58:10 GMT
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7468678ebce29932-ARN
content-encoding: br
X-Firefox-Spdy: h2

api.livechatinc.com/v3.3/customer/action/get_localization?license_id=9054575&version=ff93808ef52c6dd040640c4853b854bd&language=en&group_id=24&jsonp=__lc_localization

23.36.79.17

200 OK

3.8 kB

URL HTTP/2
api.livechatinc.com/v3.3/customer/action/get_localization?license_id=9054575&version=ff93808ef52c6dd040640c4853b854bd&language=en&group_id=24&jsonp=__lc_localization
IP
23.36.79.17:0
ASN
#20940 Akamai International B.V.

File type
Unicode text, UTF-8 text, with very long lines (10855), with no line terminators
Size
3.8 kB (3776 bytes)
Hash
90496f5489197d6329e4a1724baac913
b05f8c26e827877f2e5930e1af0b8145fa45a307
b08b6783533f02ddfe54df4f74a25700b2d7a889ecec51f1da2f7f5b58b0a269

HTTP Headers

GET /v3.3/customer/action/get_localization?license_id=9054575&version=ff93808ef52c6dd040640c4853b854bd&language=en&group_id=24&jsonp=__lc_localization HTTP/1.1
Host: api.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
content-type: application/javascript; charset=UTF-8
legacy: 2023-06-30
vary: Accept-Encoding
cache-control: public, max-age=600
expires: Tue, 06 Sep 2022 16:08:10 GMT
date: Tue, 06 Sep 2022 15:58:10 GMT
content-length: 3776
X-Firefox-Spdy: h2

static.cloudflareinsights.com/beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194

172.64.156.26

200 OK

0 B

URL HTTP/2
static.cloudflareinsights.com/beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194
IP
172.64.156.26:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 06 Sep 2022 15:58:08 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2021.12.0
last-modified: Thu, 09 Dec 2021 19:55:17 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 746867840fcafabc-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto:400,500,700,300,900&display=swap&subset=cyrillic

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Roboto:400,500,700,300,900&display=swap&subset=cyrillic
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Roboto:400,500,700,300,900&display=swap&subset=cyrillic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 06 Sep 2022 15:58:08 GMT
date: Tue, 06 Sep 2022 15:58:08 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

platform.20bet.com/api/v2/configurations

104.22.35.208

200 OK

0 B

URL HTTP/2
platform.20bet.com/api/v2/configurations
IP
104.22.35.208:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /api/v2/configurations HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=1ecc1146-1500-4950-b40d-51d0c49b877c.1662479883.1.1662479883.1662479883.6587ec78-8ee0-40d2-af86-0014c7842f6a; DV_TRACK=6872b45b-6988-41f6-97c5-3a537a80fcdd; _ga_J9LNZYMXZE=GS1.1.1662479883.1.0.1662479883.0.0.0; _ga=GA1.1.1053374442.1662479883
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 06 Sep 2022 15:58:09 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.30
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7468678b98369932-ARN
content-encoding: br
X-Firefox-Spdy: h2

platform.20bet.com/api/data/get-currencies

104.22.35.208

200 OK

0 B

URL HTTP/2
platform.20bet.com/api/data/get-currencies
IP
104.22.35.208:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /api/data/get-currencies HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=1ecc1146-1500-4950-b40d-51d0c49b877c.1662479883.1.1662479883.1662479883.6587ec78-8ee0-40d2-af86-0014c7842f6a; DV_TRACK=6872b45b-6988-41f6-97c5-3a537a80fcdd; _ga_J9LNZYMXZE=GS1.1.1662479883.1.0.1662479883.0.0.0; _ga=GA1.1.1053374442.1662479883
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 06 Sep 2022 15:58:09 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.30
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7468678bc8699932-ARN
content-encoding: br
X-Firefox-Spdy: h2

az.bkin-8443.space/420.html

104.21.81.37

200 OK

0 B

URL HTTP/2
az.bkin-8443.space/420.html
IP
104.21.81.37:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /420.html HTTP/1.1
Host: az.bkin-8443.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
date: Tue, 06 Sep 2022 15:58:01 GMT
content-type: text/html; charset=UTF-8
set-cookie: antibot_uid=1af7b4916f9d7d4a10dd64c5c9ab7e8e; expires=Wed, 06-Sep-2023 15:58:01 GMT; Max-Age=31536000; path=/
antibot_country=NO; expires=Fri, 16-Sep-2022 15:58:01 GMT; Max-Age=864000; path=/
antibot_lang=en; expires=Fri, 16-Sep-2022 15:58:01 GMT; Max-Age=864000; path=/
antibot_ptr=s919042154.blix.com; expires=Fri, 16-Sep-2022 15:58:01 GMT; Max-Age=864000; path=/
x-robots-tag: noindex
expires: Mon, 26 Jul 1997 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate
link: </antibot/ab.php>; rel=dns-prefetch
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dq16aQSAMK1aS048NvXHRT%2Bvdc0QdtXK%2FrJ6MJcsTkXvXcqD4ChaBPeMOhmsXE32jNfw%2FFEnWB333CGOnLnfWNKOvJ%2BBw%2F2ReRAo1V4tWxIlJ1Esdz8X2CVqDYzNXJ%2FdsSCRO8U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7468675d5fb50b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

20bet.com/promotions/first-deposit-casino?btag=656524_A3A6890430B74AC4B1D2449B8E4D7414

104.22.35.208

302 Found

0 B

URL HTTP/2
20bet.com/promotions/first-deposit-casino?btag=656524_A3A6890430B74AC4B1D2449B8E4D7414
IP
104.22.35.208:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /promotions/first-deposit-casino?btag=656524_A3A6890430B74AC4B1D2449B8E4D7414 HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Tue, 06 Sep 2022 15:58:04 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.29
cache-control: no-cache, private
location: /en_ee/promotions/first-deposit-casino?btag=656524_A3A6890430B74AC4B1D2449B8E4D7414
set-cookie: preferred-language=en_ee; path=/; secure; httponly; samesite=lax
btag=656524_A3A6890430B74AC4B1D2449B8E4D7414; expires=Thu, 06-Oct-2022 00:00:00 GMT; Max-Age=2534516; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7468676c7a4a16a1-ARN
X-Firefox-Spdy: h2

cdn.seon.io/js/v4/agent.js

54.230.111.74

200 OK

0 B

URL HTTP/2
cdn.seon.io/js/v4/agent.js
IP
54.230.111.74:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /js/v4/agent.js HTTP/1.1
Host: cdn.seon.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 26 Jul 2022 13:57:26 GMT
x-amz-version-id: JuoCBi0JA7SmY.L7C7g9V8KK_xQqURYe
server: AmazonS3
content-encoding: gzip
date: Tue, 06 Sep 2022 15:15:21 GMT
cache-control: max-age=3600
etag: W/"c18b12cd862430e805cb05fd6309033f"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: HypbNVfwhwuETiR6EBsqWy7-joZT4xpe44EEtviUxcJX7J4a0m2vlQ==
age: 2574
X-Firefox-Spdy: h2

20bet.com/app/main.5904f30341952ea6.css

104.22.35.208

200 OK

0 B

URL HTTP/2
20bet.com/app/main.5904f30341952ea6.css
IP
104.22.35.208:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /app/main.5904f30341952ea6.css HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/promotions/first-deposit-casino?btag=656524_A3A6890430B74AC4B1D2449B8E4D7414
Cookie: preferred-language=en; btag=656524_A3A6890430B74AC4B1D2449B8E4D7414
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 06 Sep 2022 15:58:08 GMT
content-type: text/css
last-modified: Fri, 02 Sep 2022 09:36:44 GMT
vary: Accept-Encoding
etag: W/"6311ceac-3d373"
cache-control: max-age=14400
cf-cache-status: EXPIRED
server: cloudflare
cf-ray: 74686783cc319932-ARN
content-encoding: br
X-Firefox-Spdy: h2

20bet.com/app/vendor.84e9046d17e9905a.esm.js

104.22.35.208

200 OK

0 B

URL HTTP/2
20bet.com/app/vendor.84e9046d17e9905a.esm.js
IP
104.22.35.208:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /app/vendor.84e9046d17e9905a.esm.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/promotions/first-deposit-casino?btag=656524_A3A6890430B74AC4B1D2449B8E4D7414
Cookie: preferred-language=en; btag=656524_A3A6890430B74AC4B1D2449B8E4D7414; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=1ecc1146-1500-4950-b40d-51d0c49b877c.1662479883.1.1662479883.1662479883.6587ec78-8ee0-40d2-af86-0014c7842f6a
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 06 Sep 2022 15:58:08 GMT
content-type: application/javascript
last-modified: Fri, 02 Sep 2022 09:36:41 GMT
vary: Accept-Encoding
etag: W/"6311cea9-14edbe"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6614
server: cloudflare
cf-ray: 746867878a1b9932-ARN
content-encoding: br
X-Firefox-Spdy: h2

platform.20bet.com/api/market-descriptions/get-all-outcomes/en

104.22.35.208

200 OK

0 B

URL HTTP/2
platform.20bet.com/api/market-descriptions/get-all-outcomes/en
IP
104.22.35.208:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /api/market-descriptions/get-all-outcomes/en HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=1ecc1146-1500-4950-b40d-51d0c49b877c.1662479883.1.1662479883.1662479883.6587ec78-8ee0-40d2-af86-0014c7842f6a; DV_TRACK=6872b45b-6988-41f6-97c5-3a537a80fcdd; _ga_J9LNZYMXZE=GS1.1.1662479883.1.0.1662479883.0.0.0; _ga=GA1.1.1053374442.1662479883
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 06 Sep 2022 15:58:09 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.30
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7468678c18d59932-ARN
content-encoding: br
X-Firefox-Spdy: h2

assets.customer.io/assets/track.js

54.230.111.79

200 OK

0 B

URL HTTP/2
assets.customer.io/assets/track.js
IP
54.230.111.79:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /assets/track.js HTTP/1.1
Host: assets.customer.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 03 Aug 2022 22:26:20 GMT
server: AmazonS3
content-encoding: gzip
date: Mon, 05 Sep 2022 18:58:17 GMT
etag: W/"45a1bcb0150002229030f0ce628bd1a7"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: C19XlAtcmVL7K_k8NK4AH5GgKvHsoY-iAwMQDlkDq31oNteS0REUXA==
age: 75592
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto:300,400,500&subset=cyrillic-ext

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Roboto:300,400,500&subset=cyrillic-ext
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Roboto:300,400,500&subset=cyrillic-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 06 Sep 2022 15:58:08 GMT
date: Tue, 06 Sep 2022 15:58:08 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

20bet.com/api/translation/get?locale=en_GB

104.22.35.208

200 OK

0 B

URL HTTP/2
20bet.com/api/translation/get?locale=en_GB
IP
104.22.35.208:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /api/translation/get?locale=en_GB HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/promotions/first-deposit-casino?btag=656524_A3A6890430B74AC4B1D2449B8E4D7414
Cookie: preferred-language=en; btag=656524_A3A6890430B74AC4B1D2449B8E4D7414
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 06 Sep 2022 15:58:08 GMT
content-type: application/json
vary: Accept-Encoding
x-powered-by: PHP/7.4.29
cache-control: max-age=0, must-revalidate, private
expires: Tue, 06 Sep 2022 15:58:08 GMT
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 74686784fe029932-ARN
content-encoding: br
X-Firefox-Spdy: h2

static.hotjar.com/c/hotjar-2053477.js?sv=6

54.230.111.8

200 OK

0 B

URL HTTP/2
static.hotjar.com/c/hotjar-2053477.js?sv=6
IP
54.230.111.8:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /c/hotjar-2053477.js?sv=6 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=604800; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Tue, 06 Sep 2022 15:58:08 GMT
cache-control: max-age=60
etag: W/826d9f4ca6910b66bd7d0f24b0dfac6c
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: T-LpdOC2CmjsfhTFTCvTuWztLuY0Nlk445F5nCSbT8sWt8mrrA_gAA==
age: 2
X-Firefox-Spdy: h2

aswpsdkus.com/notify/v1/ua-sdk.min.js

34.160.158.95

200 OK

0 B

URL HTTP/2
aswpsdkus.com/notify/v1/ua-sdk.min.js
IP
34.160.158.95:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /notify/v1/ua-sdk.min.js HTTP/1.1
Host: aswpsdkus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-guploader-uploadid: ADPycdukZH3s1rWEQBy7dpPDbH-ghBEs0UvtbnkBVSdAzD3_lTIUCL3vrZqEeNCr65WwCOTZjOfpO-AkhVLpO2IMCyGjCg
x-goog-generation: 1661795824566829
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 42547
content-encoding: gzip
x-goog-hash: crc32c=a8SXJw==, md5=sqlzQK8S6r8fFW8JZ4O0ug==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 42547
server: UploadServer
date: Tue, 06 Sep 2022 15:53:43 GMT
expires: Tue, 06 Sep 2022 15:58:43 GMT
cache-control: public,max-age=300,no-transform
age: 265
last-modified: Mon, 29 Aug 2022 17:57:04 GMT
etag: "b2a97340af12eabf1f156f096783b4ba"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

platform.20bet.com/api/user/is-auth

104.22.35.208

200 OK

0 B

URL HTTP/2
platform.20bet.com/api/user/is-auth
IP
104.22.35.208:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /api/user/is-auth HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=1ecc1146-1500-4950-b40d-51d0c49b877c.1662479883.1.1662479883.1662479883.6587ec78-8ee0-40d2-af86-0014c7842f6a; DV_TRACK=6872b45b-6988-41f6-97c5-3a537a80fcdd; _ga_J9LNZYMXZE=GS1.1.1662479883.1.0.1662479883.0.0.0; _ga=GA1.1.1053374442.1662479883
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 06 Sep 2022 15:58:09 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.30
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7468678fbe479932-ARN
content-encoding: br
X-Firefox-Spdy: h2

platform.20bet.com/api/tournaments/bet-tournament/get-active?fields%5B%5D=tournaments&fields%5B%5D=leaderboards&fields%5B%5D=authorizedUsers

104.22.35.208

200 OK

0 B

URL HTTP/2
platform.20bet.com/api/tournaments/bet-tournament/get-active?fields%5B%5D=tournaments&fields%5B%5D=leaderboards&fields%5B%5D=authorizedUsers
IP
104.22.35.208:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /api/tournaments/bet-tournament/get-active?fields%5B%5D=tournaments&fields%5B%5D=leaderboards&fields%5B%5D=authorizedUsers HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=1ecc1146-1500-4950-b40d-51d0c49b877c.1662479883.1.1662479883.1662479883.6587ec78-8ee0-40d2-af86-0014c7842f6a; DV_TRACK=6872b45b-6988-41f6-97c5-3a537a80fcdd; _ga_J9LNZYMXZE=GS1.1.1662479883.1.0.1662479883.0.0.0; _ga=GA1.1.1053374442.1662479883
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 06 Sep 2022 15:58:09 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.30
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7468678bc86f9932-ARN
content-encoding: br
X-Firefox-Spdy: h2

cdn.onesignal.com/sdks/OneSignalSDK.js

104.18.226.52

200 OK

0 B

URL HTTP/2
cdn.onesignal.com/sdks/OneSignalSDK.js
IP
104.18.226.52:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /sdks/OneSignalSDK.js HTTP/1.1
Host: cdn.onesignal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 06 Sep 2022 15:58:08 GMT
content-type: application/javascript
etag: W/"ae63ef8ff03da61fffaa7f165729897a"
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 2914
expires: Fri, 09 Sep 2022 15:58:08 GMT
cache-control: public, max-age=259200
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains
server: cloudflare
cf-ray: 746867840d6bb503-OSL
content-encoding: br
X-Firefox-Spdy: h2

platform.20bet.com/api/status

104.22.35.208

200 OK

0 B

URL HTTP/2
platform.20bet.com/api/status
IP
104.22.35.208:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /api/status HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=1ecc1146-1500-4950-b40d-51d0c49b877c.1662479883.1.1662479883.1662479883.6587ec78-8ee0-40d2-af86-0014c7842f6a; DV_TRACK=6872b45b-6988-41f6-97c5-3a537a80fcdd; _ga_J9LNZYMXZE=GS1.1.1662479883.1.0.1662479883.0.0.0; _ga=GA1.1.1053374442.1662479883
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 06 Sep 2022 15:58:09 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.30
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7468678be8999932-ARN
content-encoding: br
X-Firefox-Spdy: h2

platform.20bet.com/api/market-group-sorting/get-all-ordered

104.22.35.208

200 OK

0 B

URL HTTP/2
platform.20bet.com/api/market-group-sorting/get-all-ordered
IP
104.22.35.208:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /api/market-group-sorting/get-all-ordered HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=1ecc1146-1500-4950-b40d-51d0c49b877c.1662479883.1.1662479883.1662479883.6587ec78-8ee0-40d2-af86-0014c7842f6a; DV_TRACK=6872b45b-6988-41f6-97c5-3a537a80fcdd; _ga_J9LNZYMXZE=GS1.1.1662479883.1.0.1662479883.0.0.0; _ga=GA1.1.1053374442.1662479883
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 06 Sep 2022 15:58:09 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.30
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7468678b98399932-ARN
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (51)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations